$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e20313338313036.roa File: 3230322e34372e36362e302f32342d3234203d3e20313338313036.roa (raw, json) Hash identifier: At9ggxr71eOTmZNUd+9eceVfTL8SeJ/c0SAX5zpaAvU= Subject key identifier: 79:BF:E6:B4:90:6B:01:C1:8E:41:94:46:C4:7E:42:B3:7D:19:24:78 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 69446C11B55A73B8AABBFB30836A0985C0F552CF Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e20313338313036.roa Signing time: Wed 20 Nov 2024 04:23:54 +0000 ROA not before: Wed 20 Nov 2024 04:18:54 +0000 ROA not after: Wed 19 Nov 2025 04:23:54 +0000 asID: 138106 IP address blocks: 202.47.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:44:6c:11:b5:5a:73:b8:aa:bb:fb:30:83:6a:09:85:c0:f5:52:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Nov 20 04:18:54 2024 GMT Not After : Nov 19 04:23:54 2025 GMT Subject: CN=79BFE6B4906B01C18E419446C47E42B37D192478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ad:27:45:e3:1e:67:7c:8b:12:04:f6:46:1a: 03:d8:d0:7f:14:27:3e:ab:1b:52:6e:a0:4e:3f:7b: b6:3c:19:3c:86:78:f5:10:c6:48:13:d7:b5:de:64: 7b:e9:a9:0c:ab:04:47:1a:0a:86:6a:68:9c:a9:05: a2:63:4f:56:a0:e8:fc:84:6a:44:53:b2:8d:af:9c: f2:ca:9e:5f:ed:f8:66:d7:ae:79:06:3e:c4:56:12: cd:46:eb:44:f2:bd:f8:78:15:f1:31:2e:ff:fa:43: 18:99:c4:27:76:57:e6:74:79:2a:2f:7d:ce:d0:d8: 0f:59:37:d8:ee:63:cc:c7:29:19:76:4f:04:50:3f: f5:6b:36:ca:f4:70:a4:91:51:55:ef:f0:7a:6e:3a: 21:48:33:db:de:1d:08:50:89:d9:a8:e0:4c:ff:95: 2d:ba:cc:be:2f:07:f5:4c:97:59:34:7a:fc:7e:a7: 82:23:d5:75:54:14:93:63:f1:62:65:9c:59:3f:10: 3f:49:60:18:0d:cd:61:ee:68:10:ea:06:22:3d:8b: 27:03:f4:22:98:08:e7:d2:50:58:b8:b1:a5:e9:02: a4:09:e9:54:32:f5:a2:55:64:6c:73:7a:49:0c:69: c6:38:9f:10:10:12:17:6a:b6:68:48:9a:b8:5f:d4: e2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BF:E6:B4:90:6B:01:C1:8E:41:94:46:C4:7E:42:B3:7D:19:24:78 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e20313338313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.66.0/24 Signature Algorithm: sha256WithRSAEncryption 42:26:27:ca:50:45:22:25:80:e3:ce:ba:d9:22:cf:20:bd:38: 30:96:22:7a:33:de:69:d2:32:7d:6d:1c:e9:c0:16:60:7e:08: 8f:9b:9f:3a:b3:ab:39:d5:18:95:92:c5:27:8c:02:01:a7:a5: ea:31:35:e3:ca:34:ec:c1:a4:2e:40:c5:36:46:88:71:de:39: ef:c3:f8:f2:ba:a7:5e:5a:79:af:45:15:08:0d:59:67:67:ae: bf:9c:c6:d1:53:fa:22:7c:ba:15:05:13:ed:73:26:ea:15:6f: 66:80:9f:30:36:34:ec:8d:de:7f:58:ee:3b:b5:1b:d1:c8:9f: 00:18:75:b7:b2:4d:ae:ad:11:98:d3:59:a7:4e:8e:34:34:b4: 99:c2:89:71:36:61:95:a9:6f:90:8c:9c:d1:93:70:0e:22:b1: 14:22:57:9d:5b:ee:57:07:d4:18:79:f8:07:f3:4f:74:9a:fd: 86:c5:8c:66:91:61:bb:33:69:72:9b:76:65:2e:5c:3c:17:8b: d0:a0:5c:0f:f6:af:3b:6a:ee:51:7b:ac:f9:3b:5b:0a:5c:ba: 55:7c:a2:84:14:e7:33:80:85:6b:84:0a:2b:02:1a:07:97:1b: 9c:bd:9f:6b:00:0f:79:19:c9:1c:a7:b2:a8:60:cb:0f:8a:09: 72:b8:64:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaURsEbVac7iqu/swg2oJhcD1Us8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDExMjAwNDE4NTRaFw0yNTExMTkwNDIzNTRaMDMxMTAvBgNV BAMTKDc5QkZFNkI0OTA2QjAxQzE4RTQxOTQ0NkM0N0U0MkIzN0QxOTI0NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsrSdF4x5nfIsSBPZGGgPY0H8U Jz6rG1JuoE4/e7Y8GTyGePUQxkgT17XeZHvpqQyrBEcaCoZqaJypBaJjT1ag6PyE akRTso2vnPLKnl/t+GbXrnkGPsRWEs1G60Tyvfh4FfExLv/6QxiZxCd2V+Z0eSov fc7Q2A9ZN9juY8zHKRl2TwRQP/VrNsr0cKSRUVXv8HpuOiFIM9veHQhQidmo4Ez/ lS26zL4vB/VMl1k0evx+p4Ij1XVUFJNj8WJlnFk/ED9JYBgNzWHuaBDqBiI9iycD 9CKYCOfSUFi4saXpAqQJ6VQy9aJVZGxzekkMacY4nxAQEhdqtmhImrhf1OILAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeb/mtJBrAcGOQZRGxH5Cs30ZJHgwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODMxMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMovQjANBgkqhkiG 9w0BAQsFAAOCAQEAQiYnylBFIiWA48662SLPIL04MJYiejPeadIyfW0c6cAWYH4I j5ufOrOrOdUYlZLFJ4wCAael6jE148o07MGkLkDFNkaIcd4578P48rqnXlp5r0UV CA1ZZ2euv5zG0VP6Iny6FQUT7XMm6hVvZoCfMDY07I3ef1juO7Ub0cifABh1t7JN rq0RmNNZp06ONDS0mcKJcTZhlalvkIyc0ZNwDiKxFCJXnVvuVwfUGHn4B/NPdJr9 hsWMZpFhuzNpcpt2ZS5cPBeL0KBcD/avO2ruUXus+TtbCly6VXyihBTnM4CFa4QK KwIaB5cbnL2fawAPeRnJHKeyqGDLD4oJcrhkYQ== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org