$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231372e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231372e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: jzJJLBJtcJ2bYk7xTyRu8ZVn0c4q9O+B0Pky0amRvQ8= Subject key identifier: A9:47:D0:2D:88:FF:B0:88:54:78:B0:92:73:60:11:72:E4:DD:4B:25 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 434211D456DD682CB03281E72F39B32E2BE4CD95 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231372e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:54 +0000 ROA not before: Sat 15 Jun 2024 11:56:54 +0000 ROA not after: Sat 14 Jun 2025 12:01:54 +0000 asID: 17671 IP address blocks: 202.58.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:42:11:d4:56:dd:68:2c:b0:32:81:e7:2f:39:b3:2e:2b:e4:cd:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:54 2024 GMT Not After : Jun 14 12:01:54 2025 GMT Subject: CN=A947D02D88FFB0885478B09273601172E4DD4B25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c6:17:cd:43:69:ff:a0:2a:69:9e:36:43:84: 5b:3f:6f:0f:1f:6b:87:4e:0b:4e:d4:d8:86:ba:e3: 70:ca:e5:25:f2:8d:41:5b:2f:51:71:08:d5:5b:51: ff:48:24:92:9f:cf:d8:45:24:26:86:76:e6:cd:e6: 9a:af:38:04:eb:f6:13:70:6e:c6:65:d3:b8:06:02: 6f:22:18:f2:4c:ca:b3:9e:d9:b6:a8:05:81:02:5e: dd:5d:a4:87:89:19:45:9f:df:b6:65:cd:28:58:bf: 0b:25:af:49:4b:4c:97:54:64:e6:c5:8f:a1:bb:28: 16:e9:a7:c2:38:8b:15:90:2a:85:df:74:d8:b7:3c: 38:45:33:ac:92:52:d3:09:16:4d:0f:7e:e5:77:d6: 55:a0:00:7f:53:4b:e6:83:77:60:23:e8:ba:98:03: a5:87:1f:99:3d:c8:88:fa:ce:81:71:58:f4:06:8e: eb:03:4a:a9:04:96:5d:3b:c2:e1:40:6f:23:ab:56: a4:e6:4c:73:5d:71:51:0e:dd:54:00:3b:05:27:f4: 92:b7:3f:af:02:fb:db:e0:f4:92:4b:bb:c4:44:01: 92:b8:18:9e:8d:f1:e5:5a:46:c7:ac:7d:7d:88:fd: 77:13:94:c1:17:6a:9c:7a:4d:a7:b9:48:60:e6:f0: f1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:47:D0:2D:88:FF:B0:88:54:78:B0:92:73:60:11:72:E4:DD:4B:25 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231372e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.217.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:b7:dd:c2:7e:73:66:70:78:3a:73:cd:ac:88:f0:c5:a0:59: 9e:25:c7:97:5b:43:f4:ba:2d:fd:aa:91:95:a6:d5:d4:67:a9: a6:1c:d6:de:96:ab:01:e5:48:a5:26:ab:fa:e0:81:71:2e:e5: a4:2e:b0:ed:94:21:1e:c1:ed:78:1f:76:a1:3a:77:a7:c0:6b: 9e:c7:31:b5:39:ef:a1:8c:ce:f8:75:8f:fb:4b:7f:ce:f5:15: fb:ba:2f:3e:28:e6:b9:2c:53:c2:3a:96:51:06:af:9c:a6:db: 1f:24:53:25:c9:51:ef:a5:8f:64:77:ec:bb:0c:53:bc:59:25: 6c:d1:b7:34:d1:7f:05:56:44:8a:63:43:9b:ee:48:c9:9f:1c: 0b:c6:a1:d3:7e:17:36:3c:cb:75:8c:40:d4:28:65:e7:9e:b6: 83:3f:8b:67:10:28:81:05:af:e8:ad:ac:f1:e7:82:ca:bb:49: 55:42:52:3f:f0:9f:f6:25:02:cc:62:64:59:90:3a:54:3c:b9: 94:d8:13:8f:36:70:9c:2d:58:07:d2:a3:91:62:eb:35:16:1e: b9:61:b9:13:e9:23:cd:4c:41:c8:e6:d5:4d:d9:06:30:82:77: 51:9f:60:63:fb:e2:b8:21:d0:18:aa:db:ad:2b:18:50:0b:61: b8:e2:cf:14 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ0IR1FbdaCywMoHnLzmzLivkzZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTRaFw0yNTA2MTQxMjAxNTRaMDMxMTAvBgNV BAMTKEE5NDdEMDJEODhGRkIwODg1NDc4QjA5MjczNjAxMTcyRTRERDRCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUxhfNQ2n/oCppnjZDhFs/bw8f a4dOC07U2Ia643DK5SXyjUFbL1FxCNVbUf9IJJKfz9hFJCaGdubN5pqvOATr9hNw bsZl07gGAm8iGPJMyrOe2baoBYECXt1dpIeJGUWf37ZlzShYvwslr0lLTJdUZObF j6G7KBbpp8I4ixWQKoXfdNi3PDhFM6ySUtMJFk0PfuV31lWgAH9TS+aDd2Aj6LqY A6WHH5k9yIj6zoFxWPQGjusDSqkEll07wuFAbyOrVqTmTHNdcVEO3VQAOwUn9JK3 P68C+9vg9JJLu8REAZK4GJ6N8eVaRsesfX2I/XcTlMEXapx6Tae5SGDm8PFlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqUfQLYj/sIhUeLCSc2ARcuTdSyUwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62TANBgkqhkiG 9w0BAQsFAAOCAQEAjbfdwn5zZnB4OnPNrIjwxaBZniXHl1tD9Lot/aqRlabV1Gep phzW3parAeVIpSar+uCBcS7lpC6w7ZQhHsHteB92oTp3p8BrnscxtTnvoYzO+HWP +0t/zvUV+7ovPijmuSxTwjqWUQavnKbbHyRTJclR76WPZHfsuwxTvFklbNG3NNF/ BVZEimNDm+5IyZ8cC8ah034XNjzLdYxA1Chl5562gz+LZxAogQWv6K2s8eeCyrtJ VUJSP/Cf9iUCzGJkWZA6VDy5lNgTjzZwnC1YB9KjkWLrNRYeuWG5E+kjzUxByObV TdkGMIJ3UZ9gY/viuCHQGKrbrSsYUAthuOLPFA== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org