$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39372e302f32342d3234203d3e203130313337.roa File: 3230332e39392e39372e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: 8/eE/PYHMBJPTrQPC17Q3NEbx/FlMytkUCt7uXgNssQ= Subject key identifier: B2:70:32:CB:A6:EE:96:A6:A0:7A:B0:00:FB:5A:22:C9:57:CF:2B:BD Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 49322DCB6E7C2A9C8BDE942AC2D29EA2AC8984E9 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39372e302f32342d3234203d3e203130313337.roa Signing time: Thu 13 Jun 2024 08:00:02 +0000 ROA not before: Thu 13 Jun 2024 07:55:02 +0000 ROA not after: Thu 12 Jun 2025 08:00:02 +0000 asID: 10137 IP address blocks: 203.99.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:32:2d:cb:6e:7c:2a:9c:8b:de:94:2a:c2:d2:9e:a2:ac:89:84:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jun 13 07:55:02 2024 GMT Not After : Jun 12 08:00:02 2025 GMT Subject: CN=B27032CBA6EE96A6A07AB000FB5A22C957CF2BBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fc:80:3b:e3:72:a6:64:09:42:fd:a2:7d:a4: 0b:df:54:e6:2e:25:5f:f6:b9:45:13:59:09:02:9d: c9:c0:af:ae:c6:de:eb:59:82:a1:dc:3a:4f:06:73: 20:e3:8c:02:67:20:e5:0a:27:68:10:33:03:5e:56: 34:32:64:39:2e:ea:09:50:95:c1:ce:7c:29:78:24: 14:15:93:da:d5:a8:b9:6d:6f:47:d1:62:fc:00:c9: d5:bd:e9:76:50:d1:de:f4:bf:6e:63:4f:f4:02:fa: f1:a9:fe:44:65:bc:bb:85:d8:51:00:33:b8:71:e1: df:eb:82:0d:bf:31:e2:67:6b:a5:7b:1a:ee:bc:7f: 85:d0:60:94:24:78:54:4a:04:7b:5d:17:0b:2d:a6: 28:b3:fd:c3:b9:b3:cb:8f:a4:21:9d:5a:74:af:8a: 1d:81:e1:74:57:9d:72:55:c3:02:d9:96:34:0a:88: d3:76:1b:b0:b9:d9:17:18:1c:46:bd:05:01:6c:3f: 54:82:b7:b3:59:83:22:9c:e4:4e:f8:7b:49:87:c6: bf:5b:0e:d9:cf:c0:0a:84:54:8e:e9:3c:4d:77:d1: fd:5a:00:c5:71:26:ad:fb:3c:ec:6d:b2:c0:13:d8: 62:80:b2:fe:a3:2e:5f:44:e3:3b:42:97:d0:e4:de: 1a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:70:32:CB:A6:EE:96:A6:A0:7A:B0:00:FB:5A:22:C9:57:CF:2B:BD X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39372e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.97.0/24 Signature Algorithm: sha256WithRSAEncryption 67:65:2f:00:fc:cf:e5:31:35:06:20:80:66:92:ea:92:1a:f6: 2e:2e:19:0b:df:bf:89:67:a4:c0:79:df:94:a7:44:05:fc:43: 8d:6c:76:d3:e1:24:15:07:d3:24:f9:33:29:43:7b:88:28:28: 1a:3d:d4:98:b4:b1:db:dc:df:1d:ac:c3:bc:e6:ff:8f:b6:a0: 72:4d:b2:c6:52:32:1c:fd:10:a5:6b:fa:15:80:89:b7:94:36: 98:d1:41:f9:65:34:51:07:93:7e:5e:c6:60:55:a0:5d:80:41: a2:aa:32:6e:da:c2:e7:c1:19:93:32:b6:e2:d8:d9:e9:70:41: 0d:ea:bb:c8:f6:52:76:7a:7d:cc:4e:7b:b1:4f:2b:13:d6:33: a4:1e:98:29:24:09:6f:e0:3e:b2:62:f1:b6:7a:5b:93:1f:cc: 58:b1:1c:e6:df:ba:3d:db:e4:9c:8d:4e:b1:91:15:b7:65:4c: 72:1c:d8:d0:7c:ff:dc:78:ab:1d:fe:0f:f1:80:14:fd:a1:19: e5:6f:1e:d6:48:29:7d:8a:e1:61:d4:c9:9a:fc:23:38:2e:8d: 69:6f:99:a0:5b:1e:e8:db:b0:22:b3:4a:a1:5e:a8:e4:ac:ef: 40:d8:37:36:d3:3a:b6:a1:2a:d0:13:fa:5c:2f:92:63:4a:03: 5c:47:68:fa -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSTIty258KpyL3pQqwtKeoqyJhOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNDA2MTMwNzU1MDJaFw0yNTA2MTIwODAwMDJaMDMxMTAvBgNV BAMTKEIyNzAzMkNCQTZFRTk2QTZBMDdBQjAwMEZCNUEyMkM5NTdDRjJCQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw/IA743KmZAlC/aJ9pAvfVOYu JV/2uUUTWQkCncnAr67G3utZgqHcOk8GcyDjjAJnIOUKJ2gQMwNeVjQyZDku6glQ lcHOfCl4JBQVk9rVqLltb0fRYvwAydW96XZQ0d70v25jT/QC+vGp/kRlvLuF2FEA M7hx4d/rgg2/MeJna6V7Gu68f4XQYJQkeFRKBHtdFwstpiiz/cO5s8uPpCGdWnSv ih2B4XRXnXJVwwLZljQKiNN2G7C52RcYHEa9BQFsP1SCt7NZgyKc5E74e0mHxr9b DtnPwAqEVI7pPE130f1aAMVxJq37POxtssAT2GKAsv6jLl9E4ztCl9Dk3hqvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUsnAyy6bulqagerAA+1oiyVfPK70wHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzkzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzAzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLY2EwDQYJKoZIhvcN AQELBQADggEBAGdlLwD8z+UxNQYggGaS6pIa9i4uGQvfv4lnpMB535SnRAX8Q41s dtPhJBUH0yT5MylDe4goKBo91Ji0sdvc3x2sw7zm/4+2oHJNssZSMhz9EKVr+hWA ibeUNpjRQfllNFEHk35exmBVoF2AQaKqMm7awufBGZMytuLY2elwQQ3qu8j2UnZ6 fcxOe7FPKxPWM6QemCkkCW/gPrJi8bZ6W5MfzFixHObfuj3b5JyNTrGRFbdlTHIc 2NB8/9x4qx3+D/GAFP2hGeVvHtZIKX2K4WHUyZr8IzgujWlvmaBbHujbsCKzSqFe qOSs70DYNzbTOrahKtAT+lwvkmNKA1xHaPo= -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:06 2024 by rpki-client on console-ams.rpki-client.org