$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37392e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: BOXAr8XtTdMfz9/wKeBmOfsd5JX3c/TOlEpefzzlvbk= Subject key identifier: CD:F9:C0:17:02:ED:E7:BA:11:BE:C2:A5:2F:DD:9C:17:CC:66:44:A5 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 40ED3C7040296D1DEAB6290AC4378F1CAEC9FBE3 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37392e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:55 +0000 ROA not before: Sat 15 Jun 2024 11:56:55 +0000 ROA not after: Sat 14 Jun 2025 12:01:55 +0000 asID: 17671 IP address blocks: 202.47.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ed:3c:70:40:29:6d:1d:ea:b6:29:0a:c4:37:8f:1c:ae:c9:fb:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:55 2024 GMT Not After : Jun 14 12:01:55 2025 GMT Subject: CN=CDF9C01702EDE7BA11BEC2A52FDD9C17CC6644A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c3:97:a8:cd:ca:8d:11:95:89:2d:dc:a1:23: 59:e2:af:30:f3:a4:0d:7d:56:36:b5:ad:82:81:0c: 6b:3e:7b:f1:f6:31:dd:68:f0:79:dc:66:15:43:67: 03:a9:74:c4:ba:34:e3:96:75:92:41:1b:95:20:54: e1:b9:52:10:c7:c1:37:5f:2d:69:6b:1f:77:39:b8: cc:2a:e8:ca:35:e9:6d:3f:e4:29:57:5a:00:3f:21: 2c:29:98:a9:15:0a:74:67:81:30:ef:e6:ed:b1:17: b9:e5:74:bc:1f:6e:5a:b9:98:18:08:f1:1e:a1:80: 75:a9:7b:49:cf:e2:bd:3d:eb:db:09:43:ac:b6:29: 62:c9:3c:54:56:6c:2b:86:5c:80:91:19:45:0a:98: 9c:b7:2c:76:ef:7a:e6:ba:bc:cd:0a:24:9c:42:1c: 96:05:e7:f6:c3:46:55:7c:90:99:94:2a:ec:af:09: c4:53:76:0a:81:e1:4c:b9:f3:79:e0:77:47:f9:fc: 8f:84:93:51:0b:26:1f:d9:27:18:77:36:e5:0f:e3: b9:6e:d9:97:fc:67:ef:f2:3f:7f:d2:ec:ec:d1:e8: 7f:24:ac:e8:b0:a1:50:7e:a0:49:44:10:d7:ae:02: 46:60:44:7d:52:c9:44:ba:ad:2b:60:92:17:70:ed: 3b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F9:C0:17:02:ED:E7:BA:11:BE:C2:A5:2F:DD:9C:17:CC:66:44:A5 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.79.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:f6:51:09:1a:15:0c:c0:57:9f:26:89:33:84:b2:df:82:7c: 7a:aa:19:3e:9f:b8:b6:df:13:a3:f1:03:55:09:9f:e5:29:54: 29:02:a2:5d:28:8d:a0:cb:67:20:57:5c:23:5d:c0:7a:53:84: 73:02:8b:30:55:a1:15:ee:74:35:ce:d8:8f:e4:c8:7a:29:77: be:f4:bb:81:36:70:94:38:77:e4:92:f6:16:56:bf:1a:ca:81: 4e:10:be:1d:34:85:c3:96:0a:91:fc:7a:96:01:22:65:7d:ee: 46:b6:09:44:1e:4a:e4:7e:73:cb:7b:64:59:5f:cb:44:14:2e: fe:be:23:93:20:dc:62:ba:b5:01:98:5c:f2:36:37:89:02:4b: 0b:e2:21:19:76:54:d4:7f:c5:0d:f1:cb:b8:1f:2b:3b:bf:9d: 12:0e:6f:82:da:fd:4b:e2:5e:2c:0a:db:74:e8:d2:31:73:0b: 25:80:e7:fe:c1:b8:77:7c:75:d8:93:4e:51:21:2b:8b:a5:4e: 9b:50:f2:a2:cb:17:a4:8d:d2:a6:8e:1c:af:00:70:9a:75:db: ad:f8:25:7c:e3:86:2a:49:13:2e:e7:e0:ae:b1:75:9b:af:e3: 0a:98:3e:b9:17:54:1c:c2:4c:62:d5:e4:d8:8b:84:ec:b6:6c: d4:5b:81:22 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQO08cEApbR3qtikKxDePHK7J++MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTVaFw0yNTA2MTQxMjAxNTVaMDMxMTAvBgNV BAMTKENERjlDMDE3MDJFREU3QkExMUJFQzJBNTJGREQ5QzE3Q0M2NjQ0QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQw5eozcqNEZWJLdyhI1nirzDz pA19Vja1rYKBDGs+e/H2Md1o8HncZhVDZwOpdMS6NOOWdZJBG5UgVOG5UhDHwTdf LWlrH3c5uMwq6Mo16W0/5ClXWgA/ISwpmKkVCnRngTDv5u2xF7nldLwfblq5mBgI 8R6hgHWpe0nP4r0969sJQ6y2KWLJPFRWbCuGXICRGUUKmJy3LHbveua6vM0KJJxC HJYF5/bDRlV8kJmUKuyvCcRTdgqB4Uy583ngd0f5/I+Ek1ELJh/ZJxh3NuUP47lu 2Zf8Z+/yP3/S7OzR6H8krOiwoVB+oElEENeuAkZgRH1SyUS6rStgkhdw7Tv1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzfnAFwLt57oRvsKlL92cF8xmRKUwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL08wDQYJKoZIhvcN AQELBQADggEBAAv2UQkaFQzAV58miTOEst+CfHqqGT6fuLbfE6PxA1UJn+UpVCkC ol0ojaDLZyBXXCNdwHpThHMCizBVoRXudDXO2I/kyHopd770u4E2cJQ4d+SS9hZW vxrKgU4Qvh00hcOWCpH8epYBImV97ka2CUQeSuR+c8t7ZFlfy0QULv6+I5Mg3GK6 tQGYXPI2N4kCSwviIRl2VNR/xQ3xy7gfKzu/nRIOb4La/UviXiwK23To0jFzCyWA 5/7BuHd8ddiTTlEhK4ulTptQ8qLLF6SN0qaOHK8AcJp12634JXzjhipJEy7n4K6x dZuv4wqYPrkXVBzCTGLV5NiLhOy2bNRbgSI= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org