$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36392e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: KrcN6jauSEYLDHSTMDpbthlCpLrJmA3ddoKPxD7loas= Subject key identifier: E0:20:25:67:C8:68:FA:67:08:B6:5F:A7:D9:D3:25:8A:D7:39:4F:F0 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 5EB996E9145E76300DED9E1F74D01681FD9C4C2F Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36392e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:53 +0000 ROA not before: Sat 15 Jun 2024 11:56:53 +0000 ROA not after: Sat 14 Jun 2025 12:01:53 +0000 asID: 17671 IP address blocks: 202.47.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b9:96:e9:14:5e:76:30:0d:ed:9e:1f:74:d0:16:81:fd:9c:4c:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:53 2024 GMT Not After : Jun 14 12:01:53 2025 GMT Subject: CN=E0202567C868FA6708B65FA7D9D3258AD7394FF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:91:1f:08:62:f2:0d:b5:d0:3e:ae:0d:26:82: 68:5c:f8:f0:01:6d:7f:b2:f6:70:e3:52:25:04:0e: 49:7b:f0:4f:92:e7:b3:d0:79:8c:5b:88:86:db:21: 5e:e9:54:ec:1c:09:92:4f:fd:22:51:df:34:46:51: a5:1f:bf:41:62:13:f1:a0:62:f3:7d:be:e5:df:50: fd:0f:68:b2:ea:3a:58:f5:28:10:4c:8f:07:85:4f: dc:74:ef:9c:3e:97:e4:21:4f:4e:19:aa:c5:2b:8b: 5a:a0:71:e7:f3:50:d9:01:aa:c1:82:d1:be:63:9e: da:f2:68:48:80:d0:af:6f:45:6f:33:03:23:57:f5: 1f:61:98:83:c7:ea:ca:00:54:a9:c4:35:bd:04:48: 42:d7:4a:12:ba:ae:b3:73:8e:c4:4e:e5:73:5e:d9: d8:84:e0:8b:bb:24:04:d2:c4:92:33:fa:fe:1a:0b: 7b:04:f8:57:4f:d8:03:c0:cd:cc:0a:4b:7a:a5:12: f6:a3:da:1c:07:fc:f8:28:ef:46:bb:59:00:8c:3c: 06:c1:ae:a5:4b:46:c5:12:84:20:57:f5:cc:da:ac: 89:81:40:06:d3:8a:14:12:87:f2:d1:cb:55:ab:f4: 20:a9:c6:c1:cc:7b:7c:c2:0f:37:72:ef:ed:bf:4c: f5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:20:25:67:C8:68:FA:67:08:B6:5F:A7:D9:D3:25:8A:D7:39:4F:F0 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.69.0/24 Signature Algorithm: sha256WithRSAEncryption 42:76:58:0a:41:3a:e4:fb:4e:f4:58:80:ea:7d:ed:29:6c:aa: 96:d4:83:a2:83:ec:2d:4b:22:ee:7c:83:01:28:35:d3:65:e5: d1:a5:ac:a9:fe:d1:4d:6f:fb:92:b8:db:b6:c5:66:69:23:1f: ee:1a:07:e6:93:b7:7d:ab:b3:14:22:34:ec:94:bd:48:0c:c2: 50:45:7b:24:4d:ba:86:d5:81:f3:8d:5b:d2:4b:2e:05:ee:98: 4b:47:c8:13:6b:5f:b9:94:19:88:4f:3f:f8:8a:56:d5:48:2d: 81:64:2f:29:b2:7c:12:9c:2c:dd:13:c1:07:0b:f4:6b:1c:42: dc:27:f5:43:0a:92:1e:cd:12:34:d4:7e:f0:6d:1d:8b:da:0f: ef:78:80:80:05:b9:48:ba:8e:e4:67:40:3f:11:cb:19:95:96: 77:3a:d2:11:fe:ae:34:98:35:e9:4f:20:85:9a:a1:d2:7b:d3: c4:ca:8e:63:d4:6f:c0:cb:90:2c:b0:b9:41:fe:a6:07:b2:c1: 8f:ba:8f:44:c8:3e:03:f2:a4:b0:50:bb:7e:1f:85:59:6a:42: cc:0b:f2:02:aa:09:31:5a:cb:54:fb:76:90:ac:79:1e:f6:4b: 28:73:1b:b7:67:44:81:aa:21:18:fc:5a:51:d8:f5:55:21:7a: a5:7e:40:56 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXrmW6RRedjAN7Z4fdNAWgf2cTC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTNaFw0yNTA2MTQxMjAxNTNaMDMxMTAvBgNV BAMTKEUwMjAyNTY3Qzg2OEZBNjcwOEI2NUZBN0Q5RDMyNThBRDczOTRGRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLkR8IYvINtdA+rg0mgmhc+PAB bX+y9nDjUiUEDkl78E+S57PQeYxbiIbbIV7pVOwcCZJP/SJR3zRGUaUfv0FiE/Gg YvN9vuXfUP0PaLLqOlj1KBBMjweFT9x075w+l+QhT04ZqsUri1qgcefzUNkBqsGC 0b5jntryaEiA0K9vRW8zAyNX9R9hmIPH6soAVKnENb0ESELXShK6rrNzjsRO5XNe 2diE4Iu7JATSxJIz+v4aC3sE+FdP2APAzcwKS3qlEvaj2hwH/Pgo70a7WQCMPAbB rqVLRsUShCBX9czarImBQAbTihQSh/LRy1Wr9CCpxsHMe3zCDzdy7+2/TPVxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU4CAlZ8ho+mcItl+n2dMlitc5T/AwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0UwDQYJKoZIhvcN AQELBQADggEBAEJ2WApBOuT7TvRYgOp97SlsqpbUg6KD7C1LIu58gwEoNdNl5dGl rKn+0U1v+5K427bFZmkjH+4aB+aTt32rsxQiNOyUvUgMwlBFeyRNuobVgfONW9JL LgXumEtHyBNrX7mUGYhPP/iKVtVILYFkLymyfBKcLN0TwQcL9GscQtwn9UMKkh7N EjTUfvBtHYvaD+94gIAFuUi6juRnQD8RyxmVlnc60hH+rjSYNelPIIWaodJ708TK jmPUb8DLkCywuUH+pgeywY+6j0TIPgPypLBQu34fhVlqQswL8gKqCTFay1T7dpCs eR72SyhzG7dnRIGqIRj8WlHY9VUheqV+QFY= -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org