$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39362e302f32342d3234203d3e203536323431.roa File: 3230332e39392e39362e302f32342d3234203d3e203536323431.roa (raw, json) Hash identifier: LxUd0O28QOB1FYX/IFpf9oVaAeBcqqLD1CISWs5/zKU= Subject key identifier: 11:90:1A:CB:C9:DC:0C:FF:C5:8F:F3:6B:D0:96:26:48:BF:53:81:A4 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 48D489D201159C9472740314402E458FD7F92A78 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39362e302f32342d3234203d3e203536323431.roa Signing time: Thu 13 Jun 2024 08:00:01 +0000 ROA not before: Thu 13 Jun 2024 07:55:01 +0000 ROA not after: Thu 12 Jun 2025 08:00:01 +0000 asID: 56241 IP address blocks: 203.99.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:d4:89:d2:01:15:9c:94:72:74:03:14:40:2e:45:8f:d7:f9:2a:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jun 13 07:55:01 2024 GMT Not After : Jun 12 08:00:01 2025 GMT Subject: CN=11901ACBC9DC0CFFC58FF36BD0962648BF5381A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d1:93:35:77:e1:07:cf:74:2b:1f:89:00:d8: 54:fb:50:1b:4c:cc:42:60:7d:e6:66:cc:8d:d9:8c: 35:ec:11:48:cf:71:a7:42:c8:5b:78:95:9f:17:d0: 8a:2b:64:f3:3e:bd:d8:e4:f2:51:88:ec:ca:81:d6: aa:4f:dd:12:33:32:2a:14:03:47:cb:27:e2:1e:dd: 02:d8:a1:f0:4b:97:1c:9d:b1:a5:ca:93:8c:9a:61: f5:e9:65:8b:76:63:4f:74:f0:51:f2:61:ce:c0:47: 49:b9:08:42:6b:b8:4f:53:69:31:4e:cc:70:10:91: 7a:88:6e:61:70:0b:25:86:5c:64:c0:60:ba:c0:7e: 0f:f3:fd:7b:dd:1a:ba:88:f8:2b:32:fb:8c:ee:a7: db:87:a4:39:d4:5f:ce:4a:06:cc:8d:57:bd:b0:c1: 88:88:da:25:7c:35:86:0a:5a:b3:83:79:51:74:92: 1c:23:f5:9f:14:b6:cc:4b:77:73:7f:ec:70:8e:10: ed:66:1a:3a:b2:70:b8:cc:fd:37:d4:63:ab:cf:57: b6:0f:ad:26:ee:0e:ad:cd:26:39:e7:67:8a:83:06: b4:fe:51:5c:cb:45:34:33:2d:a2:75:f7:f5:1f:a2: 9d:77:b5:5c:ea:7d:88:c4:94:9a:41:e3:da:5b:55: ae:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:90:1A:CB:C9:DC:0C:FF:C5:8F:F3:6B:D0:96:26:48:BF:53:81:A4 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39362e302f32342d3234203d3e203536323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.96.0/24 Signature Algorithm: sha256WithRSAEncryption 16:11:05:8c:a1:77:9a:0c:d2:3f:65:10:31:cc:50:d6:40:eb: 1f:cf:d6:a8:31:44:75:fc:c7:f9:53:54:5f:37:c8:f1:8f:3a: 55:37:70:d3:66:84:95:1a:2e:37:fb:de:8c:03:a5:52:d6:17: bd:49:39:8b:8d:93:7b:30:a4:ef:da:1a:b1:c2:af:4f:72:98: 52:7b:7e:e0:9a:d2:eb:4c:9f:5f:ba:84:fe:64:ed:c1:5c:25: 86:da:13:cd:0a:20:5f:d5:ca:fa:f1:c8:33:8a:cc:3c:48:20: 41:07:8e:ef:9e:5f:99:1b:5e:09:7b:c0:ee:57:6d:2f:67:47: 2b:06:85:6f:be:0d:e3:07:47:5d:43:d2:b9:50:91:5d:8e:85: df:5c:1c:7a:99:b1:6c:4e:df:d5:a0:7b:f1:4f:c3:00:c1:4a: 69:41:af:78:40:8e:55:a8:64:01:2f:83:af:3a:21:78:5b:21: aa:87:4d:03:da:ec:33:af:3f:00:18:bc:29:52:91:ff:76:81: 19:7b:50:37:39:14:23:2a:b4:ff:c2:f1:1a:d7:62:dd:9a:49: f4:b2:50:90:4b:53:7d:5e:46:fc:fc:86:fc:ab:a9:36:7d:c0: 47:54:68:7b:e5:0f:71:b6:36:e1:39:96:b9:a8:fa:60:90:3a: 02:ea:5f:17 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSNSJ0gEVnJRydAMUQC5Fj9f5KngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNDA2MTMwNzU1MDFaFw0yNTA2MTIwODAwMDFaMDMxMTAvBgNV BAMTKDExOTAxQUNCQzlEQzBDRkZDNThGRjM2QkQwOTYyNjQ4QkY1MzgxQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe0ZM1d+EHz3QrH4kA2FT7UBtM zEJgfeZmzI3ZjDXsEUjPcadCyFt4lZ8X0IorZPM+vdjk8lGI7MqB1qpP3RIzMioU A0fLJ+Ie3QLYofBLlxydsaXKk4yaYfXpZYt2Y0908FHyYc7AR0m5CEJruE9TaTFO zHAQkXqIbmFwCyWGXGTAYLrAfg/z/XvdGrqI+Csy+4zup9uHpDnUX85KBsyNV72w wYiI2iV8NYYKWrODeVF0khwj9Z8UtsxLd3N/7HCOEO1mGjqycLjM/TfUY6vPV7YP rSbuDq3NJjnnZ4qDBrT+UVzLRTQzLaJ19/Ufop13tVzqfYjElJpB49pbVa5LAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUEZAay8ncDP/Fj/Nr0JYmSL9TgaQwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzkzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzYzMjM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLY2AwDQYJKoZIhvcN AQELBQADggEBABYRBYyhd5oM0j9lEDHMUNZA6x/P1qgxRHX8x/lTVF83yPGPOlU3 cNNmhJUaLjf73owDpVLWF71JOYuNk3swpO/aGrHCr09ymFJ7fuCa0utMn1+6hP5k 7cFcJYbaE80KIF/VyvrxyDOKzDxIIEEHju+eX5kbXgl7wO5XbS9nRysGhW++DeMH R11D0rlQkV2Ohd9cHHqZsWxO39Wge/FPwwDBSmlBr3hAjlWoZAEvg686IXhbIaqH TQPa7DOvPwAYvClSkf92gRl7UDc5FCMqtP/C8RrXYt2aSfSyUJBLU31eRvz8hvyr qTZ9wEdUaHvlD3G2NuE5lrmo+mCQOgLqXxc= -----END CERTIFICATE-----Generated at Sat Nov 23 02:29:39 2024 by rpki-client on console-fra.rpki-client.org