$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37332e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37332e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 2WjruuWFWY+ys5db1r+Fpwf72RtP1b3ul9gOm9Vu0xg= Subject key identifier: EB:29:75:70:FF:A2:1E:81:35:00:E9:AE:1F:29:A3:92:A8:F8:AE:C3 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 0C3AE76FB8E41E2ADA96ED08DFE12D4D0DCCBF94 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37332e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 11:00:02 +0000 ROA not before: Sat 15 Jun 2024 10:55:02 +0000 ROA not after: Sat 14 Jun 2025 11:00:02 +0000 asID: 17671 IP address blocks: 202.47.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:3a:e7:6f:b8:e4:1e:2a:da:96:ed:08:df:e1:2d:4d:0d:cc:bf:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 10:55:02 2024 GMT Not After : Jun 14 11:00:02 2025 GMT Subject: CN=EB297570FFA21E813500E9AE1F29A392A8F8AEC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ae:8f:c0:1f:65:8f:80:2a:82:33:d9:55:cd: ae:d9:c6:e2:e4:dc:ad:3d:2b:51:8a:95:5d:f9:43: 0c:82:10:1c:f6:9e:e1:ee:e6:6b:c9:bc:7e:5b:b5: d3:52:8d:ac:89:e8:d1:9f:c0:b8:02:cf:ab:c0:37: 2c:c3:21:88:e0:e1:df:72:41:5d:46:1d:96:aa:9d: 6c:10:67:16:fc:b8:ae:93:50:77:24:7b:46:95:c2: a0:a7:0d:9d:90:ed:99:8f:d6:52:91:5a:f2:16:3f: 4f:54:45:11:10:ad:f0:72:50:8d:67:00:0f:45:ff: 82:9c:17:14:44:a8:a7:64:11:ce:3a:91:a1:13:5c: 95:bf:7f:79:b7:8f:8f:fe:b3:9e:dc:21:ff:06:51: 72:b6:7b:5e:86:a8:be:45:c3:06:0e:d8:d8:52:05: 1f:df:6b:45:c0:17:23:20:f4:0b:d2:5b:07:09:4d: 12:24:59:70:40:8b:20:85:3f:a4:f3:47:0c:fd:b5: c9:34:31:2c:f7:73:84:77:c3:64:3d:7f:de:49:f6: 5d:7b:42:46:8d:ea:fa:e2:be:30:19:6d:09:24:52: ff:ee:d4:35:df:3b:f0:d0:52:4e:d4:83:34:01:a8: 50:b2:23:8c:55:1c:70:fb:a2:6d:f9:c6:6c:df:14: 7e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:29:75:70:FF:A2:1E:81:35:00:E9:AE:1F:29:A3:92:A8:F8:AE:C3 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37332e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.73.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:59:02:4e:cf:af:de:69:9a:67:20:e5:46:5c:fd:fb:ac:14: 98:cd:fa:80:aa:3b:06:5d:d7:ec:c3:24:5f:80:00:50:3c:6d: 5e:97:77:d6:d4:da:23:c8:e9:19:27:03:f5:00:33:dd:a4:5c: c4:1b:68:70:14:dc:8c:af:d5:b1:0e:6f:fc:91:21:5e:8d:42: 0f:b5:0e:bc:84:76:4a:8b:09:e6:c8:d0:b2:62:9d:dc:65:a2: ed:1c:b3:10:7f:3b:89:d5:f0:16:99:a7:18:ac:5b:59:9f:fd: 48:e5:16:bb:eb:a6:0d:7c:af:29:75:c9:13:f0:bf:44:32:dd: c3:83:1c:40:2a:41:cf:c0:f6:51:3d:21:3f:50:f9:9b:23:75: da:a9:e4:33:21:4f:8f:df:e5:2b:60:55:51:b6:d3:f5:17:c6: 48:1f:4b:82:ca:5c:38:bb:80:77:a3:3c:95:d0:87:3f:cf:77: fc:8a:bb:44:f1:e9:ac:83:fc:30:26:ae:42:9f:82:3f:0d:27: ac:a4:db:9e:b4:56:5d:3e:13:08:7f:0d:e7:40:31:f7:a7:e9: f7:38:69:a5:e8:a3:4b:fc:2d:7e:d5:70:11:c4:e3:07:3d:45: b6:d5:33:a7:21:8e:2b:3e:16:80:65:c5:c9:ef:46:6b:5d:56: 22:5f:4e:57 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDDrnb7jkHiralu0I3+EtTQ3Mv5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMDU1MDJaFw0yNTA2MTQxMTAwMDJaMDMxMTAvBgNV BAMTKEVCMjk3NTcwRkZBMjFFODEzNTAwRTlBRTFGMjlBMzkyQThGOEFFQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ro/AH2WPgCqCM9lVza7ZxuLk 3K09K1GKlV35QwyCEBz2nuHu5mvJvH5btdNSjayJ6NGfwLgCz6vANyzDIYjg4d9y QV1GHZaqnWwQZxb8uK6TUHcke0aVwqCnDZ2Q7ZmP1lKRWvIWP09URREQrfByUI1n AA9F/4KcFxREqKdkEc46kaETXJW/f3m3j4/+s57cIf8GUXK2e16GqL5FwwYO2NhS BR/fa0XAFyMg9AvSWwcJTRIkWXBAiyCFP6TzRwz9tck0MSz3c4R3w2Q9f95J9l17 QkaN6vrivjAZbQkkUv/u1DXfO/DQUk7UgzQBqFCyI4xVHHD7om35xmzfFH4HAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6yl1cP+iHoE1AOmuHymjkqj4rsMwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0kwDQYJKoZIhvcN AQELBQADggEBAD5ZAk7Pr95pmmcg5UZc/fusFJjN+oCqOwZd1+zDJF+AAFA8bV6X d9bU2iPI6RknA/UAM92kXMQbaHAU3Iyv1bEOb/yRIV6NQg+1DryEdkqLCebI0LJi ndxlou0csxB/O4nV8BaZpxisW1mf/UjlFrvrpg18ryl1yRPwv0Qy3cODHEAqQc/A 9lE9IT9Q+Zsjddqp5DMhT4/f5StgVVG20/UXxkgfS4LKXDi7gHejPJXQhz/Pd/yK u0Tx6ayD/DAmrkKfgj8NJ6yk2560Vl0+Ewh/DedAMfen6fc4aaXoo0v8LX7VcBHE 4wc9RbbVM6chjis+FoBlxcnvRmtdViJfTlc= -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org