$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36382e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: x6fXWbXIDegsa1J3p3gnL8GMm6GK1bI7PoHHv2C0R0w= Subject key identifier: B8:F8:64:CE:8E:1E:08:E4:48:FE:6E:1A:AD:37:01:40:03:0D:C7:F0 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 2F8703B34D19B96A3CAAAE18B5C5928FC58E8C4C Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36382e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 11:00:02 +0000 ROA not before: Sat 15 Jun 2024 10:55:02 +0000 ROA not after: Sat 14 Jun 2025 11:00:02 +0000 asID: 17671 IP address blocks: 202.47.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:87:03:b3:4d:19:b9:6a:3c:aa:ae:18:b5:c5:92:8f:c5:8e:8c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 10:55:02 2024 GMT Not After : Jun 14 11:00:02 2025 GMT Subject: CN=B8F864CE8E1E08E448FE6E1AAD370140030DC7F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:99:f8:03:ea:4c:1e:d1:3a:63:27:a8:33:31: 1a:82:8c:84:56:d9:9a:3d:1b:9a:a3:3f:d4:9e:d0: df:eb:77:24:ba:76:b9:f9:da:e0:47:0a:45:63:bf: 6f:8e:88:4c:29:aa:eb:3c:e2:73:cd:bd:3b:5d:9f: cb:5d:18:aa:98:e5:b0:b2:d7:b3:9c:15:9c:40:77: b9:b8:0d:be:a5:b2:f5:d3:38:ba:99:0c:ca:ac:82: 3b:85:22:2d:81:c3:eb:4c:f5:13:60:ce:9e:77:da: 74:de:1d:0d:a7:2a:be:ca:c0:ba:da:cf:5c:8e:d1: 45:53:68:66:a6:20:37:be:78:b3:2c:da:7c:29:ef: 5c:51:57:34:ee:08:b5:7d:8a:2a:45:06:13:ae:18: c1:c7:e4:f9:a0:4b:7c:b2:b3:f1:9e:8e:fb:47:68: e5:df:96:df:dd:6c:8f:86:76:ff:47:09:46:83:43: 84:1d:42:ac:23:61:58:c3:98:6a:d7:84:17:c2:94: d2:58:9c:e7:fc:d3:78:51:70:35:4b:17:f6:2a:05: 2e:b9:65:ca:be:b6:45:78:7f:b1:bb:82:2d:23:01: 55:ae:dd:50:3f:09:25:26:e6:f8:3f:b4:e0:e8:ac: c4:00:76:59:a1:2b:4e:4b:a8:92:b4:15:68:31:ab: a6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F8:64:CE:8E:1E:08:E4:48:FE:6E:1A:AD:37:01:40:03:0D:C7:F0 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.68.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:b4:13:62:e7:1e:f6:68:63:cd:8b:97:07:8f:e9:86:be:97: 9d:44:87:7b:a2:d6:f3:ad:8b:81:0a:b9:10:80:de:a0:47:98: b4:4a:d4:1e:1d:cf:4e:60:04:5c:63:0e:3a:49:5a:74:33:37: 9c:78:5e:09:0d:7d:82:67:60:18:7b:6f:21:88:10:5d:76:70: c7:e7:de:a7:11:59:9c:7a:8a:79:3d:bd:de:e8:be:77:07:b1: 68:1c:3b:c6:66:77:c9:4b:d6:12:d8:c4:e1:db:51:3b:74:7d: 49:16:1b:c8:c5:66:9c:f2:41:87:78:79:23:19:81:e3:29:37: 80:6e:83:4c:98:b1:0e:9b:06:d5:c4:b5:c7:df:ca:3a:1e:a3: d5:87:7e:f0:95:8a:ad:fb:0c:ef:aa:d5:d7:fa:89:30:3f:62: d7:c6:a4:14:df:1d:43:7b:11:84:05:c3:31:3d:43:92:0d:6a: c5:5a:45:9f:55:66:0d:f4:76:d8:e8:87:fc:3a:8e:01:10:27: e1:22:6c:17:3b:9d:c2:da:1d:f4:dc:9a:fb:d0:f2:f1:89:4e: 14:45:c7:33:26:8c:8c:c6:35:2b:06:4a:6b:69:64:19:8c:6c: 4f:09:6d:23:c5:d3:95:93:a6:34:a5:0c:fd:c5:7b:4f:5a:e6: 49:7a:8d:fd -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUL4cDs00ZuWo8qq4YtcWSj8WOjEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMDU1MDJaFw0yNTA2MTQxMTAwMDJaMDMxMTAvBgNV BAMTKEI4Rjg2NENFOEUxRTA4RTQ0OEZFNkUxQUFEMzcwMTQwMDMwREM3RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDimfgD6kwe0TpjJ6gzMRqCjIRW 2Zo9G5qjP9Se0N/rdyS6drn52uBHCkVjv2+OiEwpqus84nPNvTtdn8tdGKqY5bCy 17OcFZxAd7m4Db6lsvXTOLqZDMqsgjuFIi2Bw+tM9RNgzp532nTeHQ2nKr7KwLra z1yO0UVTaGamIDe+eLMs2nwp71xRVzTuCLV9iipFBhOuGMHH5PmgS3yys/GejvtH aOXflt/dbI+Gdv9HCUaDQ4QdQqwjYVjDmGrXhBfClNJYnOf803hRcDVLF/YqBS65 Zcq+tkV4f7G7gi0jAVWu3VA/CSUm5vg/tODorMQAdlmhK05LqJK0FWgxq6ZlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUuPhkzo4eCORI/m4arTcBQAMNx/AwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0QwDQYJKoZIhvcN AQELBQADggEBAJu0E2LnHvZoY82LlweP6Ya+l51Eh3ui1vOti4EKuRCA3qBHmLRK 1B4dz05gBFxjDjpJWnQzN5x4XgkNfYJnYBh7byGIEF12cMfn3qcRWZx6ink9vd7o vncHsWgcO8Zmd8lL1hLYxOHbUTt0fUkWG8jFZpzyQYd4eSMZgeMpN4Bug0yYsQ6b BtXEtcffyjoeo9WHfvCViq37DO+q1df6iTA/YtfGpBTfHUN7EYQFwzE9Q5INasVa RZ9VZg30dtjoh/w6jgEQJ+EibBc7ncLaHfTcmvvQ8vGJThRFxzMmjIzGNSsGSmtp ZBmMbE8JbSPF05WTpjSlDP3Fe09a5kl6jf0= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org