$ rpki-client -vvf repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39382e302f32342d3234203d3e203137393130.roa File: 3230322e3132372e39382e302f32342d3234203d3e203137393130.roa (raw, json) Hash identifier: 53tgdiqtdjNpYH/nxHiWdMfkZz/bYs/54zzLtN7gns8= Subject key identifier: A1:D2:EB:54:45:2A:24:A2:40:CE:5E:18:04:0D:FE:31:D2:AF:2E:DF Certificate issuer: /CN=1635F5E419798341BDC615D4E1C6AE340C34BEED Certificate serial: 0C5AA83D33D16CE655E83D3A5717085FC16E9806 Authority key identifier: 16:35:F5:E4:19:79:83:41:BD:C6:15:D4:E1:C6:AE:34:0C:34:BE:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1635F5E419798341BDC615D4E1C6AE340C34BEED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39382e302f32342d3234203d3e203137393130.roa Signing time: Thu 24 Oct 2024 01:00:02 +0000 ROA not before: Thu 24 Oct 2024 00:55:02 +0000 ROA not after: Thu 23 Oct 2025 01:00:02 +0000 asID: 17910 IP address blocks: 202.127.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/1635F5E419798341BDC615D4E1C6AE340C34BEED.crl rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/1635F5E419798341BDC615D4E1C6AE340C34BEED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1635F5E419798341BDC615D4E1C6AE340C34BEED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:5a:a8:3d:33:d1:6c:e6:55:e8:3d:3a:57:17:08:5f:c1:6e:98:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1635F5E419798341BDC615D4E1C6AE340C34BEED Validity Not Before: Oct 24 00:55:02 2024 GMT Not After : Oct 23 01:00:02 2025 GMT Subject: CN=A1D2EB54452A24A240CE5E18040DFE31D2AF2EDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c4:98:a6:91:3c:5a:88:1a:bb:d3:17:c4:8a: 13:49:61:ea:86:0e:86:73:14:b7:f3:ab:aa:5a:7d: 19:f9:ea:7a:df:fa:42:52:f6:f1:8a:65:2b:21:3b: c7:5b:47:9a:a8:83:41:9f:49:20:bb:45:b0:3e:60: ea:47:7b:ae:f0:47:cf:43:72:34:05:21:2e:59:2d: d3:81:38:9f:b8:20:b6:22:10:98:1f:97:3c:c3:d2: 66:be:4a:5b:9a:28:04:6b:c2:12:64:54:f9:ed:f0: d7:f1:40:e7:9f:f2:94:4c:c1:69:7c:49:0a:9c:f5: ce:fd:97:24:b7:1c:73:8e:35:6a:48:9c:89:25:c6: 9b:de:19:df:64:9f:0a:78:6f:cc:a6:52:3a:de:02: 0c:f7:4f:9c:0c:83:46:07:34:ce:91:ba:eb:cb:66: 3d:21:4e:a0:30:44:b8:47:7e:7a:eb:0b:17:77:e5: c6:16:7d:f0:f1:60:c1:73:e6:d9:6b:a3:31:d8:26: 63:e8:22:b6:26:13:ec:93:95:12:da:2e:be:11:f3: f7:d4:e9:53:6a:d3:14:45:4a:eb:09:10:54:84:ca: 0a:fc:86:db:5c:9b:7c:9d:80:e0:e6:88:6a:80:68: 89:d1:ac:d7:46:26:4d:c4:7b:75:bb:71:d2:34:4e: ef:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D2:EB:54:45:2A:24:A2:40:CE:5E:18:04:0D:FE:31:D2:AF:2E:DF X509v3 Authority Key Identifier: keyid:16:35:F5:E4:19:79:83:41:BD:C6:15:D4:E1:C6:AE:34:0C:34:BE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/1635F5E419798341BDC615D4E1C6AE340C34BEED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1635F5E419798341BDC615D4E1C6AE340C34BEED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86450032-5492-4a5a-943f-bdb473341233/0/3230322e3132372e39382e302f32342d3234203d3e203137393130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.127.98.0/24 Signature Algorithm: sha256WithRSAEncryption 23:00:dc:b4:82:ba:96:36:70:9a:e8:de:20:34:7f:1b:54:50: 94:b6:e6:79:4f:ec:f0:6a:6f:1c:a9:6a:f5:87:a8:44:7d:1c: 46:86:85:7c:b7:53:32:12:98:72:ec:68:29:0f:7b:7e:a6:0e: 8a:e3:d4:59:72:e3:db:8b:42:07:11:72:d8:da:ed:c3:73:7c: 42:d9:1c:cb:94:19:bf:5a:de:59:39:f1:86:f7:3b:d8:a0:08: 2a:c8:97:6b:1b:c7:ac:c4:56:69:7c:42:56:cc:66:f4:e6:93: 6e:73:00:8c:d3:48:7c:08:78:33:76:6c:ff:bc:87:6d:3f:bd: 43:34:bd:ce:75:17:1f:18:64:0e:08:49:62:ff:45:2f:75:c5: 16:23:68:5e:b6:3f:d9:eb:f6:37:28:6b:a5:db:c7:6e:6d:c2: 5a:18:a1:d6:26:47:ef:3a:70:55:fd:86:ba:ce:0e:52:a5:d1: c3:4d:99:d5:15:58:b1:e6:7c:38:9d:c0:01:0c:ed:15:a3:2c: 6f:24:43:ad:f9:45:77:4b:89:e9:33:93:b3:b8:23:88:82:c1: 42:8b:01:63:5f:0e:9d:7e:ae:93:ac:94:f6:7a:ee:bd:1d:23: 1b:dd:52:d8:da:d3:ae:60:24:3e:4e:f2:53:57:46:59:a3:ec: 08:54:92:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDFqoPTPRbOZV6D06VxcIX8FumAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTYzNUY1RTQxOTc5ODM0MUJEQzYxNUQ0RTFDNkFFMzQw QzM0QkVFRDAeFw0yNDEwMjQwMDU1MDJaFw0yNTEwMjMwMTAwMDJaMDMxMTAvBgNV BAMTKEExRDJFQjU0NDUyQTI0QTI0MENFNUUxODA0MERGRTMxRDJBRjJFREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDxJimkTxaiBq70xfEihNJYeqG DoZzFLfzq6pafRn56nrf+kJS9vGKZSshO8dbR5qog0GfSSC7RbA+YOpHe67wR89D cjQFIS5ZLdOBOJ+4ILYiEJgflzzD0ma+SluaKARrwhJkVPnt8NfxQOef8pRMwWl8 SQqc9c79lyS3HHOONWpInIklxpveGd9knwp4b8ymUjreAgz3T5wMg0YHNM6RuuvL Zj0hTqAwRLhHfnrrCxd35cYWffDxYMFz5tlrozHYJmPoIrYmE+yTlRLaLr4R8/fU 6VNq0xRFSusJEFSEygr8httcm3ydgODmiGqAaInRrNdGJk3Ee3W7cdI0Tu+bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUodLrVEUqJKJAzl4YBA3+MdKvLt8wHwYDVR0j BBgwFoAUFjX15Bl5g0G9xhXU4cauNAw0vu0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjQ1MDAzMi01NDkyLTRhNWEtOTQzZi1iZGI0NzMzNDEyMzMvMC8xNjM1RjVFNDE5 Nzk4MzQxQkRDNjE1RDRFMUM2QUUzNDBDMzRCRUVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTYzNUY1RTQxOTc5ODM0MUJEQzYxNUQ0RTFDNkFFMzQwQzM0 QkVFRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2NDUwMDMyLTU0OTItNGE1YS05 NDNmLWJkYjQ3MzM0MTIzMy8wLzMyMzAzMjJlMzEzMjM3MmUzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMp/YjANBgkqhkiG 9w0BAQsFAAOCAQEAIwDctIK6ljZwmujeIDR/G1RQlLbmeU/s8GpvHKlq9YeoRH0c RoaFfLdTMhKYcuxoKQ97fqYOiuPUWXLj24tCBxFy2Nrtw3N8Qtkcy5QZv1reWTnx hvc72KAIKsiXaxvHrMRWaXxCVsxm9OaTbnMAjNNIfAh4M3Zs/7yHbT+9QzS9znUX HxhkDghJYv9FL3XFFiNoXrY/2ev2NyhrpdvHbm3CWhih1iZH7zpwVf2Gus4OUqXR w02Z1RVYseZ8OJ3AAQztFaMsbyRDrflFd0uJ6TOTs7gjiILBQosBY18OnX6uk6yU 9nruvR0jG91S2NrTrmAkPk7yU1dGWaPsCFSS7g== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org