$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa File: 3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa (raw, json) Hash identifier: T6zBCDYCBei1sIwoPeFlZke8e/0x59ASpBVpgvqvRNg= Subject key identifier: F4:02:E3:1D:07:9D:D2:4F:36:FD:00:D5:17:FE:90:77:A2:C9:36:21 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 3CFEF17F192BE82650B1AFC8F870D18BF4C29747 Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa Signing time: Wed 24 Jul 2024 14:00:00 +0000 ROA not before: Wed 24 Jul 2024 13:55:00 +0000 ROA not after: Wed 23 Jul 2025 14:00:00 +0000 asID: 38505 IP address blocks: 203.153.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:fe:f1:7f:19:2b:e8:26:50:b1:af:c8:f8:70:d1:8b:f4:c2:97:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jul 24 13:55:00 2024 GMT Not After : Jul 23 14:00:00 2025 GMT Subject: CN=F402E31D079DD24F36FD00D517FE9077A2C93621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:47:89:f4:56:3c:11:1d:d8:e7:e6:0a:c1:f3: 39:c9:cb:47:e6:16:ca:b7:aa:82:5f:8e:ff:63:c9: e0:f1:86:94:52:92:90:61:99:9a:e3:94:2c:4f:25: 87:70:7b:3d:4c:dd:28:7c:74:d5:f9:ce:61:4f:46: 6e:74:9e:e7:8a:77:7f:6a:62:db:d1:c3:ac:dd:b6: a3:ba:3b:af:e7:01:8e:c3:80:d2:93:2c:18:a4:06: af:9c:63:19:c3:10:34:94:1f:21:a2:17:a4:a1:5e: c6:af:bd:5c:3a:8d:c0:63:13:23:9d:d6:62:0b:b6: 43:09:bd:ad:8c:57:3f:4b:fd:f1:7e:8d:62:dd:a8: 87:a5:e1:2f:63:aa:39:d9:34:f9:3c:d3:f4:ba:1d: 70:58:bc:1c:f0:21:9e:18:ea:ac:a9:1f:95:e1:10: d7:a2:58:1b:ca:97:c9:f1:1f:6b:d0:bc:48:c3:a4: 39:3f:c8:3d:d7:09:4e:80:c2:a7:0a:24:ec:31:80: 4f:f9:48:78:fd:90:a4:5a:ae:4f:60:fb:ba:4e:54: c1:81:c8:b0:22:89:76:7e:71:4c:5c:e8:c7:b7:76: 11:72:60:ee:cf:a6:51:aa:10:af:e4:42:ac:7a:0e: 2f:a7:29:9e:7e:ce:f9:66:56:b9:80:8d:b0:cc:9d: dd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:02:E3:1D:07:9D:D2:4F:36:FD:00:D5:17:FE:90:77:A2:C9:36:21 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.124.0/23 Signature Algorithm: sha256WithRSAEncryption 05:e3:0c:42:86:4b:4f:27:4b:e6:e7:4f:09:f1:bb:0c:f3:94: d8:e0:cc:d9:17:76:9a:58:89:96:35:56:ea:47:e3:5e:db:f3: 31:8e:86:a6:55:b9:4c:72:56:91:59:d0:3d:71:30:d0:85:34: 65:e3:5e:37:cb:13:03:ca:d4:9b:c1:bd:39:09:c2:56:03:5d: 87:80:c5:3a:a3:cf:1d:c5:f9:ca:18:bc:03:c7:45:87:2b:85: 81:98:61:7e:1f:4c:3f:b3:9b:58:25:3e:98:0c:62:5e:c0:c9: 3c:f7:15:54:de:26:ec:18:e8:66:ac:d0:d6:bb:4a:5c:eb:74: db:ed:cd:bf:82:08:bb:e0:9f:d5:5e:a2:fa:08:7d:24:76:81: 87:20:6b:19:da:87:77:22:d2:61:90:f5:bc:9a:62:84:30:12: 96:09:53:d8:c3:e2:86:11:84:d8:18:70:96:6c:ca:2c:09:1f: c0:6d:b5:10:73:fd:97:0a:1e:cd:4c:a3:45:5f:f3:48:67:26: 03:23:a7:36:d9:4c:89:24:ce:f5:41:c8:bc:48:d4:de:83:03: 43:2e:0e:b6:c9:0b:78:55:d5:05:53:02:f5:cc:95:35:3a:e3: a1:7a:35:ed:b0:03:b7:3e:02:50:46:f5:f4:71:89:97:0c:98: 8a:60:59:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPP7xfxkr6CZQsa/I+HDRi/TCl0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNDA3MjQxMzU1MDBaFw0yNTA3MjMxNDAwMDBaMDMxMTAvBgNV BAMTKEY0MDJFMzFEMDc5REQyNEYzNkZEMDBENTE3RkU5MDc3QTJDOTM2MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0R4n0VjwRHdjn5grB8znJy0fm Fsq3qoJfjv9jyeDxhpRSkpBhmZrjlCxPJYdwez1M3Sh8dNX5zmFPRm50nueKd39q YtvRw6zdtqO6O6/nAY7DgNKTLBikBq+cYxnDEDSUHyGiF6ShXsavvVw6jcBjEyOd 1mILtkMJva2MVz9L/fF+jWLdqIel4S9jqjnZNPk80/S6HXBYvBzwIZ4Y6qypH5Xh ENeiWBvKl8nxH2vQvEjDpDk/yD3XCU6AwqcKJOwxgE/5SHj9kKRark9g+7pOVMGB yLAiiXZ+cUxc6Me3dhFyYO7PplGqEK/kQqx6Di+nKZ5+zvlmVrmAjbDMnd2vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9ALjHQed0k82/QDVF/6Qd6LJNiEwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5l8MA0GCSqG SIb3DQEBCwUAA4IBAQAF4wxChktPJ0vm508J8bsM85TY4MzZF3aaWImWNVbqR+Ne 2/MxjoamVblMclaRWdA9cTDQhTRl4143yxMDytSbwb05CcJWA12HgMU6o88dxfnK GLwDx0WHK4WBmGF+H0w/s5tYJT6YDGJewMk89xVU3ibsGOhmrNDWu0pc63Tb7c2/ ggi74J/VXqL6CH0kdoGHIGsZ2od3ItJhkPW8mmKEMBKWCVPYw+KGEYTYGHCWbMos CR/AbbUQc/2XCh7NTKNFX/NIZyYDI6c22UyJJM71Qci8SNTegwNDLg62yQt4VdUF UwL1zJU1OuOhejXtsAO3PgJQRvX0cYmXDJiKYFmf -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org