$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36342e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: nqfFZMcW49lNq3upHI7iSJ5jGm8wrBqbAhdcN1wSU+g= Subject key identifier: 24:FD:5D:FC:69:A5:B0:5D:05:04:1C:60:3B:F0:1F:CE:EF:A7:94:93 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 2838F64E6A5BAB45C0C4A65913C946CF8C83D11D Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:55 +0000 ROA not before: Sat 15 Jun 2024 11:56:55 +0000 ROA not after: Sat 14 Jun 2025 12:01:55 +0000 asID: 17671 IP address blocks: 202.47.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:38:f6:4e:6a:5b:ab:45:c0:c4:a6:59:13:c9:46:cf:8c:83:d1:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:55 2024 GMT Not After : Jun 14 12:01:55 2025 GMT Subject: CN=24FD5DFC69A5B05D05041C603BF01FCEEFA79493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:41:b0:ff:6f:77:6e:b0:c0:29:a4:21:e2:c8: 89:d6:93:88:97:dd:3e:41:e6:25:e1:c9:f9:72:f6: a4:a5:a6:33:00:12:3b:15:e0:0a:9e:38:a2:23:84: 6a:7d:b7:5f:15:66:b1:a7:aa:10:4f:fa:b7:85:00: c0:00:f5:67:62:4b:ca:4b:f4:b5:b3:bb:c3:59:b2: 36:9c:c3:43:7b:3c:0c:16:53:b5:9f:71:60:df:c8: bf:c2:9d:00:68:53:5f:97:05:c0:09:4e:fd:27:fc: 3d:20:34:bb:d1:f1:53:05:77:0d:cc:5e:90:89:39: a8:28:9c:f5:ee:0b:61:e7:a5:7a:84:fd:47:bb:e1: de:bd:ba:b4:bf:aa:a0:5e:2d:d3:91:fe:7e:0e:c1: 14:4f:3d:a3:1e:1f:f2:cb:d4:9c:29:d0:b3:30:f8: 8d:e1:b6:a3:43:a4:85:2b:cd:53:2e:af:68:ab:d0: 1f:3e:1d:9d:8d:77:a5:d8:14:58:b8:f1:71:1b:b7: d8:72:05:ba:bc:ce:73:42:97:49:d1:c4:23:f9:27: 23:a1:e4:44:a3:17:5b:b6:43:78:22:2b:65:c8:33: 3d:b0:ea:ca:f9:44:2d:d4:c4:b5:7c:87:a4:0b:dd: 51:3c:a7:c9:c0:e0:34:cc:31:5d:53:2d:a1:7f:da: 3b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FD:5D:FC:69:A5:B0:5D:05:04:1C:60:3B:F0:1F:CE:EF:A7:94:93 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.64.0/24 Signature Algorithm: sha256WithRSAEncryption 50:d9:ac:15:44:e1:fe:05:00:a1:d2:d9:a3:33:47:b0:c4:98: a6:68:ee:3c:ed:5b:35:cf:3f:dd:bb:f5:fc:cc:49:36:5c:be: 19:d1:e1:9e:14:db:e5:0a:62:43:98:ca:d4:c0:eb:61:da:6c: 80:bb:06:da:ee:9e:a1:86:98:47:ac:11:40:0f:20:90:8b:2f: 7d:c3:6c:c6:47:f3:40:b5:b2:4d:9c:37:0c:26:bc:77:10:8c: 0f:a8:5e:41:05:bb:79:42:e0:9e:da:5b:91:f6:51:d5:b3:b2: f8:81:8a:61:5e:4a:d6:1c:3a:38:2c:73:19:a3:34:0e:71:5e: 6a:10:12:6b:04:a5:5c:57:89:38:bf:62:e6:cf:9a:ba:b0:cd: c3:8a:31:db:2d:1f:b4:47:df:51:32:e5:ab:d1:ff:c5:81:ee: b0:32:eb:f1:35:4f:ee:ce:fd:6b:75:76:9f:89:4c:20:15:34: ae:ac:4e:5e:54:0a:9a:8c:c1:f1:6a:86:cb:5e:22:3a:e5:03: e2:a4:80:d0:5e:06:31:db:13:81:ca:d8:55:33:11:03:76:cf: fb:14:09:f9:11:8b:df:e6:ac:e4:f4:2e:8d:1a:7c:98:a2:46: bf:f9:2c:75:3d:f6:e0:29:0c:b3:60:bc:0d:f4:32:0b:10:26: b9:b3:65:b6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKDj2Tmpbq0XAxKZZE8lGz4yD0R0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTVaFw0yNTA2MTQxMjAxNTVaMDMxMTAvBgNV BAMTKDI0RkQ1REZDNjlBNUIwNUQwNTA0MUM2MDNCRjAxRkNFRUZBNzk0OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFQbD/b3dusMAppCHiyInWk4iX 3T5B5iXhyfly9qSlpjMAEjsV4AqeOKIjhGp9t18VZrGnqhBP+reFAMAA9WdiS8pL 9LWzu8NZsjacw0N7PAwWU7WfcWDfyL/CnQBoU1+XBcAJTv0n/D0gNLvR8VMFdw3M XpCJOagonPXuC2HnpXqE/Ue74d69urS/qqBeLdOR/n4OwRRPPaMeH/LL1Jwp0LMw +I3htqNDpIUrzVMur2ir0B8+HZ2Nd6XYFFi48XEbt9hyBbq8znNCl0nRxCP5JyOh 5ESjF1u2Q3giK2XIMz2w6sr5RC3UxLV8h6QL3VE8p8nA4DTMMV1TLaF/2ju7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUJP1d/GmlsF0FBBxgO/Afzu+nlJMwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0AwDQYJKoZIhvcN AQELBQADggEBAFDZrBVE4f4FAKHS2aMzR7DEmKZo7jztWzXPP9279fzMSTZcvhnR 4Z4U2+UKYkOYytTA62HabIC7BtrunqGGmEesEUAPIJCLL33DbMZH80C1sk2cNwwm vHcQjA+oXkEFu3lC4J7aW5H2UdWzsviBimFeStYcOjgscxmjNA5xXmoQEmsEpVxX iTi/YubPmrqwzcOKMdstH7RH31Ey5avR/8WB7rAy6/E1T+7O/Wt1dp+JTCAVNK6s Tl5UCpqMwfFqhsteIjrlA+KkgNBeBjHbE4HK2FUzEQN2z/sUCfkRi9/mrOT0Lo0a fJiiRr/5LHU99uApDLNgvA30MgsQJrmzZbY= -----END CERTIFICATE-----Generated at Thu Nov 28 12:13:47 2024 by rpki-client on console-fra.rpki-client.org