$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32342d3234203d3e203137363731.roa File: 3230322e35322e382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: u42REbD0n8AVVqdk5QsuKg9n1N0o29MlwtCYc3Hk2RY= Subject key identifier: F4:F2:94:DB:A3:CF:6C:3D:1B:2C:D2:59:BA:8A:22:66:4E:99:94:A0 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 7DFB4681045671E40297E3BAE004B60780CB798E Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32342d3234203d3e203137363731.roa Signing time: Thu 13 Jun 2024 10:02:13 +0000 ROA not before: Thu 13 Jun 2024 09:57:13 +0000 ROA not after: Thu 12 Jun 2025 10:02:13 +0000 asID: 17671 IP address blocks: 202.52.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:fb:46:81:04:56:71:e4:02:97:e3:ba:e0:04:b6:07:80:cb:79:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 13 09:57:13 2024 GMT Not After : Jun 12 10:02:13 2025 GMT Subject: CN=F4F294DBA3CF6C3D1B2CD259BA8A22664E9994A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:37:2d:51:65:b1:cc:b8:1a:ff:fc:61:30:04: 20:68:5d:8c:e9:c5:ff:76:52:de:70:fe:93:af:c5: b1:80:61:81:77:ee:97:3e:f3:34:59:4e:27:14:f1: 0e:02:dc:8c:ea:39:09:81:2d:f2:74:14:13:ac:0e: e7:41:f2:d1:2d:ed:0b:fb:28:8f:87:df:c5:ee:0a: a6:e7:c0:e5:bc:e8:45:18:42:f7:0e:2a:0d:eb:83: e4:76:29:68:97:91:a8:a1:44:a0:f2:8d:12:e7:2a: 63:6e:f9:88:f2:ab:4f:da:0f:db:e9:fa:9c:29:59: 70:33:6a:e3:fe:3c:70:1c:38:d4:ed:f7:d1:f4:e2: c5:5b:13:5e:40:da:c8:cd:50:b1:28:35:5c:e7:f8: 0a:3f:d9:c9:01:a9:8f:c7:02:81:56:33:5e:cc:05: ef:bc:ec:5f:bf:29:b8:fc:e4:6a:1d:de:14:6d:66: 45:8b:2a:d0:0b:40:ff:c4:66:01:d0:d3:f8:cf:38: b5:d9:e4:6e:03:1e:1d:49:57:94:3e:f9:ec:77:68: ef:cb:3e:1d:d5:70:c3:75:e1:8d:65:d0:3d:f9:8d: 6c:75:ec:05:02:c4:d7:12:e5:a6:8d:13:1c:1d:54: c7:45:bc:8a:3a:50:07:16:63:7c:5e:31:fc:3c:2e: ca:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F2:94:DB:A3:CF:6C:3D:1B:2C:D2:59:BA:8A:22:66:4E:99:94:A0 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.8.0/24 Signature Algorithm: sha256WithRSAEncryption 13:76:ec:04:63:8b:70:31:e3:40:10:5b:3c:33:45:be:d6:df: f3:73:74:b0:a9:80:eb:e0:61:83:ea:e1:64:4f:3e:b2:a7:e4: 35:8e:d7:ec:ca:b4:49:d1:77:13:1f:ce:c5:ee:91:74:78:5c: bd:aa:01:3d:1b:e8:a4:59:c7:32:3e:c6:20:7b:cd:77:0a:8a: 14:d9:7d:0a:e2:41:f6:bc:98:60:f9:d0:d0:3f:5a:b7:00:bc: 61:67:84:43:41:aa:f6:e4:81:a0:4e:4a:39:8a:be:ac:24:fb: 12:d7:67:ff:77:f2:66:ae:56:38:e3:22:17:c2:1f:d2:c6:d8: aa:58:4f:ee:b4:9e:b3:bf:0d:bf:b4:fa:45:c2:b9:86:61:a9: dd:93:91:85:ab:ae:a5:37:d8:39:90:88:fb:a7:82:7c:87:89: 10:ec:bb:8c:5c:f3:59:5e:ac:8b:e4:ec:56:9b:10:5e:34:c6: 5a:6a:9f:ae:a1:d5:11:1c:ac:0b:42:ca:bb:ca:ed:8a:5e:61: a9:f8:4c:ce:c4:a4:1b:0d:b3:e7:11:dc:f0:82:48:dc:69:18: f2:31:1d:cc:75:34:71:c2:59:52:18:23:66:6d:bc:73:85:85: d0:22:f5:eb:3a:32:98:58:43:6a:55:0a:f9:ee:cc:a8:ae:ea: 74:5f:8b:72 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUfftGgQRWceQCl+O64AS2B4DLeY4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTMwOTU3MTNaFw0yNTA2MTIxMDAyMTNaMDMxMTAvBgNV BAMTKEY0RjI5NERCQTNDRjZDM0QxQjJDRDI1OUJBOEEyMjY2NEU5OTk0QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Ny1RZbHMuBr//GEwBCBoXYzp xf92Ut5w/pOvxbGAYYF37pc+8zRZTicU8Q4C3IzqOQmBLfJ0FBOsDudB8tEt7Qv7 KI+H38XuCqbnwOW86EUYQvcOKg3rg+R2KWiXkaihRKDyjRLnKmNu+Yjyq0/aD9vp +pwpWXAzauP+PHAcONTt99H04sVbE15A2sjNULEoNVzn+Ao/2ckBqY/HAoFWM17M Be+87F+/Kbj85God3hRtZkWLKtALQP/EZgHQ0/jPOLXZ5G4DHh1JV5Q++ex3aO/L Ph3VcMN14Y1l0D35jWx17AUCxNcS5aaNExwdVMdFvIo6UAcWY3xeMfw8LsqpAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU9PKU26PPbD0bLNJZuooiZk6ZlKAwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNlYmYxMTYtZmUyYS00OTFiLWFh YzgtMjIwZWFkMGI1NGUyLzAvMzIzMDMyMmUzNTMyMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKNAgwDQYJKoZIhvcNAQEL BQADggEBABN27ARji3Ax40AQWzwzRb7W3/NzdLCpgOvgYYPq4WRPPrKn5DWO1+zK tEnRdxMfzsXukXR4XL2qAT0b6KRZxzI+xiB7zXcKihTZfQriQfa8mGD50NA/WrcA vGFnhENBqvbkgaBOSjmKvqwk+xLXZ/938mauVjjjIhfCH9LG2KpYT+60nrO/Db+0 +kXCuYZhqd2TkYWrrqU32DmQiPungnyHiRDsu4xc81lerIvk7FabEF40xlpqn66h 1REcrAtCyrvK7YpeYan4TM7EpBsNs+cR3PCCSNxpGPIxHcx1NHHCWVIYI2ZtvHOF hdAi9es6MphYQ2pVCvnuzKiu6nRfi3I= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org