$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32322d3234203d3e203137363731.roa File: 3230322e35322e382e302f32322d3234203d3e203137363731.roa (raw, json) Hash identifier: Rxajtu0TfO7VWK6Tpj8JJs4V0MFUht6/2DyWZDVbnY4= Subject key identifier: B3:CE:B6:B0:1B:35:B4:1A:9A:73:02:9A:81:A4:73:10:24:3F:6A:A6 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 293C4C118A8427B71487AA2CEED70620EEE58543 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32322d3234203d3e203137363731.roa Signing time: Thu 13 Jun 2024 10:02:13 +0000 ROA not before: Thu 13 Jun 2024 09:57:13 +0000 ROA not after: Thu 12 Jun 2025 10:02:13 +0000 asID: 17671 IP address blocks: 202.52.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:3c:4c:11:8a:84:27:b7:14:87:aa:2c:ee:d7:06:20:ee:e5:85:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 13 09:57:13 2024 GMT Not After : Jun 12 10:02:13 2025 GMT Subject: CN=B3CEB6B01B35B41A9A73029A81A47310243F6AA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e0:3e:48:ad:1f:6b:54:8c:32:25:ee:da:8c: dd:a6:23:ee:60:7c:06:6e:39:d2:2b:c4:5b:6a:5f: 7c:4a:5d:31:fb:3f:96:01:40:5d:66:23:e3:5c:06: ef:56:2c:73:ba:5a:61:3b:62:9f:4a:43:63:49:52: c4:fd:c2:de:ca:64:7f:13:0b:2f:49:57:ba:6c:16: 1e:cb:1f:80:18:0e:1d:0a:49:f4:87:95:dd:34:8f: d0:e7:64:53:44:8e:b9:91:e9:95:ce:e1:7c:2d:f9: 66:db:a0:be:d9:18:7b:93:fc:ce:72:8e:4e:08:7b: 13:27:f6:f0:7e:e6:a9:28:72:1d:46:ea:36:8f:eb: 7b:8f:8e:35:8d:17:fe:44:7b:e0:d5:17:7b:84:af: c5:96:de:1c:5e:94:24:e8:29:f6:84:69:bb:ba:c7: 0a:63:a7:68:e0:d2:b1:50:c9:4f:f6:bf:20:65:e8: f1:9e:dc:c4:04:75:8f:3c:2d:f8:65:67:47:31:b2: 03:cb:26:7e:ed:65:27:5d:8a:56:7d:37:2c:8c:9b: 99:7f:54:53:5c:f8:86:87:2b:e6:8b:af:bc:4c:55: b7:c9:0e:2f:5e:ef:c6:13:fd:95:8d:60:2e:3e:08: b3:a3:3c:87:81:9f:5c:fd:ed:b6:98:26:e7:58:82: 5d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CE:B6:B0:1B:35:B4:1A:9A:73:02:9A:81:A4:73:10:24:3F:6A:A6 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32322d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.8.0/22 Signature Algorithm: sha256WithRSAEncryption 69:32:a4:4d:fa:3f:b9:19:9a:59:a4:d8:3e:0b:79:c6:01:aa: 08:e2:d3:ea:d1:04:fc:ce:19:ff:b4:3e:7a:6a:c9:d6:b0:86: 44:f7:28:6d:ee:92:11:2f:12:8c:15:a9:da:5f:2d:9d:22:4f: 01:bf:6e:65:dd:db:fd:19:5c:14:5a:a4:fe:d2:fc:db:56:75: 31:8d:0b:78:f5:35:30:d6:e7:a9:ab:08:67:b1:24:a9:c6:7a: d6:cc:85:f9:32:39:70:2c:9e:64:c8:2a:b6:cc:14:d0:ee:2b: 4f:b8:a6:0f:e8:29:5a:32:0e:a0:78:df:95:0b:6a:c5:11:d7: d0:64:c3:8b:e2:4b:ca:80:69:ed:77:b7:4d:86:11:c7:5d:f2: d0:58:77:f5:32:fb:70:cb:02:c9:84:22:01:8f:5e:24:e3:bb: 6a:d7:fd:8e:82:4a:4a:3d:8f:1d:c4:69:12:84:33:8b:47:73: 1c:01:f5:e2:22:6a:d0:81:99:51:e2:75:5e:6d:d5:88:7b:66: cf:a5:6f:e3:bb:c5:a7:25:0e:1c:22:b4:9b:2b:8c:de:a7:48: 47:03:a4:b7:82:7d:46:b7:0b:47:30:34:a2:00:cf:c2:50:a1: 4f:77:ad:f3:25:2d:96:8c:46:c3:f3:52:d5:dd:a3:b6:5f:7a: cf:0a:22:92 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUKTxMEYqEJ7cUh6os7tcGIO7lhUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTMwOTU3MTNaFw0yNTA2MTIxMDAyMTNaMDMxMTAvBgNV BAMTKEIzQ0VCNkIwMUIzNUI0MUE5QTczMDI5QTgxQTQ3MzEwMjQzRjZBQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh4D5IrR9rVIwyJe7ajN2mI+5g fAZuOdIrxFtqX3xKXTH7P5YBQF1mI+NcBu9WLHO6WmE7Yp9KQ2NJUsT9wt7KZH8T Cy9JV7psFh7LH4AYDh0KSfSHld00j9DnZFNEjrmR6ZXO4Xwt+WbboL7ZGHuT/M5y jk4IexMn9vB+5qkoch1G6jaP63uPjjWNF/5Ee+DVF3uEr8WW3hxelCToKfaEabu6 xwpjp2jg0rFQyU/2vyBl6PGe3MQEdY88LfhlZ0cxsgPLJn7tZSddilZ9NyyMm5l/ VFNc+IaHK+aLr7xMVbfJDi9e78YT/ZWNYC4+CLOjPIeBn1z97baYJudYgl1VAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUs862sBs1tBqacwKagaRzECQ/aqYwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNlYmYxMTYtZmUyYS00OTFiLWFh YzgtMjIwZWFkMGI1NGUyLzAvMzIzMDMyMmUzNTMyMmUzODJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKNAgwDQYJKoZIhvcNAQEL BQADggEBAGkypE36P7kZmlmk2D4LecYBqgji0+rRBPzOGf+0PnpqydawhkT3KG3u khEvEowVqdpfLZ0iTwG/bmXd2/0ZXBRapP7S/NtWdTGNC3j1NTDW56mrCGexJKnG etbMhfkyOXAsnmTIKrbMFNDuK0+4pg/oKVoyDqB435ULasUR19Bkw4viS8qAae13 t02GEcdd8tBYd/Uy+3DLAsmEIgGPXiTju2rX/Y6CSko9jx3EaRKEM4tHcxwB9eIi atCBmVHidV5t1Yh7Zs+lb+O7xaclDhwitJsrjN6nSEcDpLeCfUa3C0cwNKIAz8JQ oU93rfMlLZaMRsPzUtXdo7Zfes8KIpI= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org