$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231362e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: TEa7ngauJGMg9zrspbzRscUKvbnmxS5EYFEujCh6tMw= Subject key identifier: E4:35:81:12:76:D1:95:E7:43:5D:15:59:85:6C:ED:59:35:32:7F:23 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 6BFA1AC957E07ED1E1FE055B432156F70366ADE5 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:54 +0000 ROA not before: Sat 15 Jun 2024 11:56:54 +0000 ROA not after: Sat 14 Jun 2025 12:01:54 +0000 asID: 17671 IP address blocks: 202.58.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:fa:1a:c9:57:e0:7e:d1:e1:fe:05:5b:43:21:56:f7:03:66:ad:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:54 2024 GMT Not After : Jun 14 12:01:54 2025 GMT Subject: CN=E435811276D195E7435D1559856CED5935327F23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c4:6a:e2:bd:b3:db:4e:8f:27:61:b5:f8:f7: 2f:f6:32:79:0f:83:17:b3:97:94:85:86:0f:f6:2a: 42:dc:27:9f:41:c3:dd:5a:c2:cf:a9:a4:2c:f9:61: 99:91:6b:ea:a8:e8:9d:de:b5:fb:eb:1e:b2:a6:cf: 96:a3:fc:68:d6:1f:c1:7d:52:69:49:2a:d6:7c:e9: 6f:3a:bc:2c:26:ff:f6:4c:6d:34:49:2d:a1:68:53: 95:b9:39:79:e1:90:1c:c5:89:eb:08:0e:7f:a1:d6: 39:dd:17:92:8b:f2:93:49:25:d0:ea:e9:83:f0:27: be:ee:29:41:22:b3:80:74:65:8e:98:65:a5:cb:71: b5:36:a2:da:0d:16:a0:84:c0:55:bd:9a:9d:e4:19: 1f:be:d4:d0:08:52:4e:9d:41:8a:80:f0:e7:d7:86: 73:e1:59:a5:ad:19:f0:1a:d3:2a:e0:54:02:ab:63: 6d:ec:d5:d9:df:85:bf:50:6d:02:d6:f4:41:22:e1: 64:06:45:c2:37:82:03:b1:99:d4:e6:97:17:54:70: 84:c9:ac:6c:a0:e8:26:a8:53:a1:69:45:89:aa:ce: 98:0b:1c:98:48:af:fe:38:a1:91:2f:cb:22:b5:68: e9:f2:7a:db:f6:ac:25:c6:68:d8:54:56:d0:20:27: e5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:35:81:12:76:D1:95:E7:43:5D:15:59:85:6C:ED:59:35:32:7F:23 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.216.0/24 Signature Algorithm: sha256WithRSAEncryption 96:f6:29:97:6d:28:4d:5f:ae:be:fe:72:84:91:c2:f6:a9:9e: 28:dd:98:28:1b:cb:76:24:e0:ee:d2:3b:2d:1c:18:9a:7b:5e: 00:a8:20:26:07:8d:ac:46:15:04:43:e1:de:dc:4b:ec:d8:44: 10:88:74:46:ce:e8:c8:73:74:a7:7f:4f:6c:15:2e:d8:e6:d2: f3:3f:c3:37:c1:09:2a:8b:4c:69:b0:ba:c8:2d:65:4d:f7:c4: 2f:82:09:52:d5:33:3c:57:6b:9c:b3:b1:d8:06:c6:57:04:b6: 65:38:01:08:1a:1c:fb:eb:9e:29:77:62:b9:1f:f4:f9:95:a7: fa:59:88:91:f1:1d:a9:fd:3a:ba:01:00:14:d7:9b:19:71:a4: da:88:3e:b1:52:03:9c:08:1d:aa:50:94:b7:f5:7c:eb:b7:52: c8:54:45:35:69:95:4e:53:8c:cf:a1:ab:50:af:f3:5c:7d:33: 47:dc:fe:30:b6:71:98:fc:71:1a:eb:e6:87:19:b7:b9:03:59: 68:2c:a0:20:33:bb:1d:2a:dc:a4:b8:6a:fa:63:ee:44:48:0b: 0b:20:2c:64:93:87:d8:24:a4:e7:8d:5c:59:9b:0b:95:a7:7b: 6f:37:66:84:15:f5:f6:3d:f3:fe:3f:f9:b5:39:7e:62:f2:89: 2b:a2:82:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUa/oayVfgftHh/gVbQyFW9wNmreUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTRaFw0yNTA2MTQxMjAxNTRaMDMxMTAvBgNV BAMTKEU0MzU4MTEyNzZEMTk1RTc0MzVEMTU1OTg1NkNFRDU5MzUzMjdGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbxGrivbPbTo8nYbX49y/2MnkP gxezl5SFhg/2KkLcJ59Bw91aws+ppCz5YZmRa+qo6J3etfvrHrKmz5aj/GjWH8F9 UmlJKtZ86W86vCwm//ZMbTRJLaFoU5W5OXnhkBzFiesIDn+h1jndF5KL8pNJJdDq 6YPwJ77uKUEis4B0ZY6YZaXLcbU2otoNFqCEwFW9mp3kGR++1NAIUk6dQYqA8OfX hnPhWaWtGfAa0yrgVAKrY23s1dnfhb9QbQLW9EEi4WQGRcI3ggOxmdTmlxdUcITJ rGyg6CaoU6FpRYmqzpgLHJhIr/44oZEvyyK1aOnyetv2rCXGaNhUVtAgJ+VlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5DWBEnbRledDXRVZhWztWTUyfyMwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62DANBgkqhkiG 9w0BAQsFAAOCAQEAlvYpl20oTV+uvv5yhJHC9qmeKN2YKBvLdiTg7tI7LRwYmnte AKggJgeNrEYVBEPh3txL7NhEEIh0Rs7oyHN0p39PbBUu2ObS8z/DN8EJKotMabC6 yC1lTffEL4IJUtUzPFdrnLOx2AbGVwS2ZTgBCBoc++ueKXdiuR/0+ZWn+lmIkfEd qf06ugEAFNebGXGk2og+sVIDnAgdqlCUt/V867dSyFRFNWmVTlOMz6GrUK/zXH0z R9z+MLZxmPxxGuvmhxm3uQNZaCygIDO7HSrcpLhq+mPuREgLCyAsZJOH2CSk541c WZsLlad7bzdmhBX19j3z/j/5tTl+YvKJK6KC2Q== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org