$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32312d3234203d3e203137363731.roa File: 3230322e35382e3231362e302f32312d3234203d3e203137363731.roa (raw, json) Hash identifier: TKmQLSnqsDsUsamlEvxOYssu2CiPjiYskS+NWVZwi4E= Subject key identifier: F5:8D:8B:3D:DA:FF:44:44:C9:A4:7A:03:E9:B7:C9:21:68:F5:60:66 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 2FD3B063172EA11C9B225B963A168EC80DE1AB00 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32312d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:52 +0000 ROA not before: Sat 15 Jun 2024 11:56:52 +0000 ROA not after: Sat 14 Jun 2025 12:01:52 +0000 asID: 17671 IP address blocks: 202.58.216.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d3:b0:63:17:2e:a1:1c:9b:22:5b:96:3a:16:8e:c8:0d:e1:ab:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:52 2024 GMT Not After : Jun 14 12:01:52 2025 GMT Subject: CN=F58D8B3DDAFF4444C9A47A03E9B7C92168F56066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f7:d7:95:74:50:31:44:c3:fa:c3:9c:0c:b3: 13:70:0d:a0:4f:d8:83:4a:81:f3:7b:92:83:37:81: 2e:18:76:75:76:ca:6c:1b:26:78:05:77:59:d7:5b: e8:08:1b:58:17:53:bc:45:06:26:7d:c2:95:5b:19: db:28:8c:a7:07:eb:1d:b3:50:a4:32:6b:04:1b:81: 5e:d0:95:74:26:07:86:2d:99:84:3b:69:17:82:41: a5:92:b6:90:80:b5:81:72:2e:9f:36:f0:72:a1:64: 20:ec:8a:da:e8:3b:2c:60:44:d3:5b:93:63:e8:37: d9:4e:d4:4a:22:8d:ad:39:6a:36:7f:40:e1:23:35: f4:7d:95:0b:d1:09:48:01:a6:0e:5b:ec:af:03:50: bb:92:29:f7:ce:1b:48:c0:04:b1:f9:74:5b:89:72: 4c:20:e7:dc:10:86:6d:71:95:fb:20:cb:5a:01:8a: 4c:5d:49:88:76:1c:e2:43:8d:2d:c6:d7:8f:12:ad: b8:5d:21:30:15:00:37:b3:38:de:eb:d3:23:f0:9e: 16:27:56:48:87:37:f7:14:c7:4b:dc:64:17:b4:9f: a2:b1:76:1d:e0:ab:80:d2:2e:e5:a7:e8:48:4a:62: c6:bd:f9:8e:e3:ca:ea:97:9a:02:63:7c:e0:9a:0a: 7a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:8D:8B:3D:DA:FF:44:44:C9:A4:7A:03:E9:B7:C9:21:68:F5:60:66 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32312d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.216.0/21 Signature Algorithm: sha256WithRSAEncryption 53:5f:64:b5:1f:29:1e:be:89:bb:3a:b8:42:0b:c7:d3:17:6c: ca:15:cd:ba:9b:82:d6:db:50:a4:19:8b:f8:83:1e:4c:df:71: 43:58:fe:51:12:31:20:5d:91:7e:72:ea:54:17:4a:90:9c:d7: c3:1b:a2:53:e4:ca:0d:87:66:45:8d:fe:c2:95:a8:95:7d:16: 29:5e:33:8f:ed:2f:d2:da:62:40:a5:48:46:2a:89:bb:5d:2c: 35:3e:4c:e2:5f:bf:c3:36:7d:af:29:51:28:25:54:b2:fa:a8: d1:9e:16:de:a1:3e:a3:20:ab:57:e2:55:f5:8d:ff:42:bc:04: 15:de:68:00:1f:0c:53:05:91:68:c2:a2:92:ab:6f:2a:c5:9d: 2b:0b:3c:fc:a7:5a:f4:f7:a9:5e:f8:4b:99:ee:a7:04:f5:cd: 67:f1:3c:d0:4b:7b:35:4f:6a:26:68:87:f4:8e:d0:cf:12:7c: fe:c0:f7:f7:e0:89:5a:a6:a0:7f:17:77:a9:a1:d5:af:11:6d: 81:f1:b6:1d:bd:1d:6d:af:47:e1:37:1c:96:70:e8:c3:7a:17: 2b:7d:98:47:5b:e1:c6:fc:95:06:18:8b:da:ff:ba:c3:bf:ad: c2:e3:e0:f1:20:05:12:e5:cd:01:e0:da:5a:60:c2:c2:c1:e7: 5c:9a:96:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL9OwYxcuoRybIluWOhaOyA3hqwAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTJaFw0yNTA2MTQxMjAxNTJaMDMxMTAvBgNV BAMTKEY1OEQ4QjNEREFGRjQ0NDRDOUE0N0EwM0U5QjdDOTIxNjhGNTYwNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC999eVdFAxRMP6w5wMsxNwDaBP 2INKgfN7koM3gS4YdnV2ymwbJngFd1nXW+gIG1gXU7xFBiZ9wpVbGdsojKcH6x2z UKQyawQbgV7QlXQmB4YtmYQ7aReCQaWStpCAtYFyLp828HKhZCDsitroOyxgRNNb k2PoN9lO1Eoija05ajZ/QOEjNfR9lQvRCUgBpg5b7K8DULuSKffOG0jABLH5dFuJ ckwg59wQhm1xlfsgy1oBikxdSYh2HOJDjS3G148SrbhdITAVADezON7r0yPwnhYn VkiHN/cUx0vcZBe0n6Kxdh3gq4DSLuWn6EhKYsa9+Y7jyuqXmgJjfOCaCnoJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9Y2LPdr/RETJpHoD6bfJIWj1YGYwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8o62DANBgkqhkiG 9w0BAQsFAAOCAQEAU19ktR8pHr6Juzq4QgvH0xdsyhXNupuC1ttQpBmL+IMeTN9x Q1j+URIxIF2RfnLqVBdKkJzXwxuiU+TKDYdmRY3+wpWolX0WKV4zj+0v0tpiQKVI RiqJu10sNT5M4l+/wzZ9rylRKCVUsvqo0Z4W3qE+oyCrV+JV9Y3/QrwEFd5oAB8M UwWRaMKikqtvKsWdKws8/Kda9PepXvhLme6nBPXNZ/E80Et7NU9qJmiH9I7QzxJ8 /sD39+CJWqagfxd3qaHVrxFtgfG2Hb0dba9H4TcclnDow3oXK32YR1vhxvyVBhiL 2v+6w7+twuPg8SAFEuXNAeDaWmDCwsHnXJqWYQ== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org