$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231382e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: izEWcPWHcIF0O4bcQHppCBss/KetEnHpSQeqAC4gKG8= Subject key identifier: 68:E7:83:A5:49:A2:C2:8F:46:8C:74:32:0B:84:0C:17:5F:0A:E9:4B Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 43050A778FE67268C8B7EF3291BE04A38B7979F3 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231382e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:55 +0000 ROA not before: Sat 15 Jun 2024 11:56:55 +0000 ROA not after: Sat 14 Jun 2025 12:01:55 +0000 asID: 17671 IP address blocks: 202.58.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:05:0a:77:8f:e6:72:68:c8:b7:ef:32:91:be:04:a3:8b:79:79:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:55 2024 GMT Not After : Jun 14 12:01:55 2025 GMT Subject: CN=68E783A549A2C28F468C74320B840C175F0AE94B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:13:95:fb:73:c0:17:09:29:81:17:de:98:81: 89:e4:11:cd:fa:65:2e:43:0b:d6:88:75:7e:eb:44: ec:00:b6:eb:3e:59:8a:7e:49:f7:e5:d1:4c:5b:ef: 5d:5a:ae:f5:28:d0:a0:11:9f:44:38:fb:16:b4:6e: 8c:48:6d:88:0b:3b:77:e5:60:69:28:cc:3c:06:26: d6:55:f6:79:ec:90:27:bd:2d:d9:ab:fb:b0:f6:ae: 68:9e:04:2b:ba:0a:1b:8d:8d:9f:d2:79:0d:e0:3e: a5:96:f1:c9:ba:a4:55:82:80:c8:66:6c:15:61:1a: e8:67:b2:04:1a:a5:3b:fd:30:eb:8e:bd:b4:c9:58: f8:c6:d5:5a:51:ac:91:80:14:8b:a8:54:6a:57:62: bf:f8:8b:94:61:27:76:dc:38:92:10:95:a4:ba:05: 14:9b:54:a4:10:5b:50:48:0d:45:bb:e1:ba:85:cf: c1:71:3c:1c:3d:93:0d:1d:83:81:10:c4:58:55:b5: 10:b9:91:bb:de:bf:e1:47:38:79:08:dd:d8:6d:fb: 13:d9:02:8c:ab:b9:21:af:eb:ce:d3:59:89:16:eb: 48:ff:5e:ad:78:c7:50:02:3a:27:dc:e5:40:a2:f0: 4e:e0:64:dc:f8:f2:f6:95:69:73:86:12:c7:64:09: d3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E7:83:A5:49:A2:C2:8F:46:8C:74:32:0B:84:0C:17:5F:0A:E9:4B X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.218.0/24 Signature Algorithm: sha256WithRSAEncryption 25:e7:39:e7:78:4a:3f:dc:de:16:b2:de:d7:64:60:09:fc:9c: 0b:54:74:02:c0:a0:79:7e:b3:53:4b:9f:d7:c3:7d:18:cb:c1: ff:65:16:95:de:ee:e6:7b:fa:b4:5a:f6:01:53:51:85:62:15: 9b:44:7f:91:cf:21:95:77:81:a5:7e:95:b7:b6:da:9a:89:b1: 41:a1:9c:90:e7:c4:92:a3:b8:32:6d:01:ba:48:ad:2f:b4:cd: 22:4a:f2:d8:b5:2f:0e:f6:84:7f:8d:df:b7:52:bc:8e:96:a3: 0d:2a:95:30:1c:07:9f:af:79:5b:7a:25:7e:02:e1:4c:ef:9c: a1:a4:4a:7b:16:bd:81:79:c0:bd:a8:cf:7d:f2:2d:bf:53:8a: ff:57:08:5b:ee:74:12:44:fd:c0:1a:64:83:b9:49:8e:bd:fe: ce:a2:8a:7e:88:d2:8a:c8:6b:25:d6:88:73:7a:c5:c3:48:e7: b3:03:99:f4:96:36:c6:44:72:24:ff:c4:dd:67:2c:67:18:d3: 8d:e1:02:58:45:7b:36:33:50:89:f4:84:a7:84:4c:18:36:33: 24:ee:c7:90:f4:9a:0d:29:06:51:a4:9d:8f:8f:98:4f:99:ac: 7b:17:79:ca:7a:df:24:22:8d:7f:1a:fe:ca:eb:78:ed:6a:10: 5f:8d:37:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQwUKd4/mcmjIt+8ykb4Eo4t5efMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTVaFw0yNTA2MTQxMjAxNTVaMDMxMTAvBgNV BAMTKDY4RTc4M0E1NDlBMkMyOEY0NjhDNzQzMjBCODQwQzE3NUYwQUU5NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpE5X7c8AXCSmBF96YgYnkEc36 ZS5DC9aIdX7rROwAtus+WYp+Sffl0Uxb711arvUo0KARn0Q4+xa0boxIbYgLO3fl YGkozDwGJtZV9nnskCe9Ldmr+7D2rmieBCu6ChuNjZ/SeQ3gPqWW8cm6pFWCgMhm bBVhGuhnsgQapTv9MOuOvbTJWPjG1VpRrJGAFIuoVGpXYr/4i5RhJ3bcOJIQlaS6 BRSbVKQQW1BIDUW74bqFz8FxPBw9kw0dg4EQxFhVtRC5kbvev+FHOHkI3dht+xPZ AoyruSGv687TWYkW60j/Xq14x1ACOifc5UCi8E7gZNz48vaVaXOGEsdkCdOTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaOeDpUmiwo9GjHQyC4QMF18K6UswHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62jANBgkqhkiG 9w0BAQsFAAOCAQEAJec553hKP9zeFrLe12RgCfycC1R0AsCgeX6zU0uf18N9GMvB /2UWld7u5nv6tFr2AVNRhWIVm0R/kc8hlXeBpX6Vt7bamomxQaGckOfEkqO4Mm0B ukitL7TNIkry2LUvDvaEf43ft1K8jpajDSqVMBwHn695W3olfgLhTO+coaRKexa9 gXnAvajPffItv1OK/1cIW+50EkT9wBpkg7lJjr3+zqKKfojSishrJdaIc3rFw0jn swOZ9JY2xkRyJP/E3WcsZxjTjeECWEV7NjNQifSEp4RMGDYzJO7HkPSaDSkGUaSd j4+YT5msexd5ynrfJCKNfxr+yut47WoQX403Vw== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org