$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36362e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: XoHz0b2iMp/9jb2vyqeErlIeVTWOJsZIb3ofl1i431A= Subject key identifier: 9C:97:8B:16:3F:A9:E3:62:98:C0:30:07:F7:7B:D1:C6:6A:04:89:19 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 7CAF94C24B32A7619E4FB619FEFE2AC2A1F542F9 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:55 +0000 ROA not before: Sat 15 Jun 2024 11:56:55 +0000 ROA not after: Sat 14 Jun 2025 12:01:55 +0000 asID: 17671 IP address blocks: 202.47.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:af:94:c2:4b:32:a7:61:9e:4f:b6:19:fe:fe:2a:c2:a1:f5:42:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:55 2024 GMT Not After : Jun 14 12:01:55 2025 GMT Subject: CN=9C978B163FA9E36298C03007F77BD1C66A048919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4f:9a:61:01:6e:98:40:07:39:b3:43:ef:fa: 7c:ff:0f:84:43:33:12:72:14:b6:0f:fc:f6:f8:a3: fd:ea:48:0e:75:d2:e4:e9:76:0b:11:83:bc:0f:c6: 1a:5a:35:35:4a:88:8e:f4:49:7b:e2:b7:e1:51:44: 4d:d1:a1:74:a1:ef:4a:f0:d3:ee:5a:fd:19:36:2e: f8:b9:d1:0c:15:c0:11:a7:82:9e:a9:60:f1:3b:44: e3:dc:21:f2:f8:63:bb:7d:a0:7d:30:22:a9:b5:f6: fe:f4:c8:a8:64:67:a0:de:a6:9f:59:16:36:c8:78: 65:af:37:0e:7b:2a:20:58:17:bf:9b:a1:84:16:ff: 0b:62:b2:9b:f2:7e:1a:36:bb:94:23:a9:58:83:2f: 7a:ae:d5:a0:64:77:92:f2:18:bb:4e:c6:af:6c:8e: b1:c0:bd:0e:18:eb:6a:54:4c:7e:e4:78:f1:27:05: 74:80:33:1e:14:0e:6f:ac:a4:27:4b:78:2b:0e:96: e4:69:aa:1b:f3:82:c7:cb:a8:5e:5a:7b:c0:39:1b: 02:b3:07:af:79:af:da:5e:10:dc:46:4c:8a:bf:f1: 2f:11:89:97:d0:b4:9a:f3:78:53:57:09:6f:86:c4: 09:ce:0c:4b:8d:c9:f3:6e:63:b4:5d:cf:f7:8b:47: 95:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:97:8B:16:3F:A9:E3:62:98:C0:30:07:F7:7B:D1:C6:6A:04:89:19 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.66.0/24 Signature Algorithm: sha256WithRSAEncryption 56:22:dd:33:4e:5d:35:d5:6b:cd:f1:cf:fc:55:1b:75:3f:9b: 1e:2f:60:c6:60:08:a5:f8:5b:18:98:16:7c:cd:c4:fe:f5:02: 71:1d:cd:50:22:47:be:a1:81:8a:71:b7:09:ca:89:9c:dd:2b: 9d:1e:04:c0:2b:69:53:78:df:1a:2d:1e:e9:e9:53:a3:45:d7: b6:81:0b:83:85:2e:0c:d9:19:53:af:b5:c7:84:16:c4:57:c4: d1:c0:55:4d:76:18:f3:b5:6d:1e:ab:68:ec:9d:50:03:04:39: 6b:07:31:e6:48:1a:db:b2:b4:3b:4f:60:41:8f:cf:9e:06:f3: 16:f9:b0:8d:f1:1b:b8:10:1d:64:fc:d2:95:d4:65:bf:02:c6: 12:49:48:13:dc:8f:23:a9:67:f3:e1:a5:ae:93:e5:b6:91:ca: a9:cf:6a:b6:bb:31:91:49:22:06:8b:e6:f4:fc:a9:9c:b8:78: 58:5f:f0:a0:b6:79:56:71:74:8b:0b:0f:33:32:be:8b:90:79: 85:e2:14:39:be:9f:27:77:93:03:71:ac:b0:2f:46:f3:a7:84: 59:34:e8:79:a3:26:5d:df:d3:00:77:79:85:4e:bb:9e:ff:a1: 59:4e:df:7f:c7:96:a2:84:9a:88:d1:67:d0:45:62:90:1a:55: a3:ec:91:6e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUfK+Uwksyp2GeT7YZ/v4qwqH1QvkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTVaFw0yNTA2MTQxMjAxNTVaMDMxMTAvBgNV BAMTKDlDOTc4QjE2M0ZBOUUzNjI5OEMwMzAwN0Y3N0JEMUM2NkEwNDg5MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKT5phAW6YQAc5s0Pv+nz/D4RD MxJyFLYP/Pb4o/3qSA510uTpdgsRg7wPxhpaNTVKiI70SXvit+FRRE3RoXSh70rw 0+5a/Rk2Lvi50QwVwBGngp6pYPE7ROPcIfL4Y7t9oH0wIqm19v70yKhkZ6Depp9Z FjbIeGWvNw57KiBYF7+boYQW/wtispvyfho2u5QjqViDL3qu1aBkd5LyGLtOxq9s jrHAvQ4Y62pUTH7kePEnBXSAMx4UDm+spCdLeCsOluRpqhvzgsfLqF5ae8A5GwKz B695r9peENxGTIq/8S8RiZfQtJrzeFNXCW+GxAnODEuNyfNuY7Rdz/eLR5XTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUnJeLFj+p42KYwDAH93vRxmoEiRkwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0IwDQYJKoZIhvcN AQELBQADggEBAFYi3TNOXTXVa83xz/xVG3U/mx4vYMZgCKX4WxiYFnzNxP71AnEd zVAiR76hgYpxtwnKiZzdK50eBMAraVN43xotHunpU6NF17aBC4OFLgzZGVOvtceE FsRXxNHAVU12GPO1bR6raOydUAMEOWsHMeZIGtuytDtPYEGPz54G8xb5sI3xG7gQ HWT80pXUZb8CxhJJSBPcjyOpZ/Phpa6T5baRyqnPara7MZFJIgaL5vT8qZy4eFhf 8KC2eVZxdIsLDzMyvouQeYXiFDm+nyd3kwNxrLAvRvOnhFk06HmjJl3f0wB3eYVO u57/oVlO33/HlqKEmojRZ9BFYpAaVaPskW4= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org