$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: clUuFWemkVZOml54A1I0pQiPhp3XeA3STzuXrI6R7kw= Subject key identifier: 96:E7:31:AB:7F:FC:01:25:F3:65:89:9E:4E:37:C1:09:2C:51:2E:B0 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 2F85794A126A8D287A20B49575E89D97184639C6 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:53 +0000 ROA not before: Sat 15 Jun 2024 11:56:53 +0000 ROA not after: Sat 14 Jun 2025 12:01:53 +0000 asID: 17671 IP address blocks: 202.58.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:85:79:4a:12:6a:8d:28:7a:20:b4:95:75:e8:9d:97:18:46:39:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:53 2024 GMT Not After : Jun 14 12:01:53 2025 GMT Subject: CN=96E731AB7FFC0125F365899E4E37C1092C512EB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a6:e6:9c:08:32:5b:e3:74:c0:fc:b1:6c:8e: 60:2f:b8:68:b0:12:20:d1:76:72:50:56:9b:1d:d7: 50:ca:81:3e:56:92:3a:89:94:df:37:07:a9:ee:fc: 45:0f:ba:72:4f:93:bd:15:8e:f0:b4:da:e2:cd:07: dd:f4:be:a5:a7:15:ea:b1:6a:ad:b6:38:3f:e0:75: d4:0b:9d:68:16:27:c9:af:4d:00:89:f9:f0:39:03: 5e:c1:d0:ce:86:18:00:28:bd:ec:8d:12:11:67:d2: 12:22:86:32:1f:2a:bf:49:19:7b:64:b1:23:c9:a3: be:cc:61:b0:c2:cc:22:b6:97:f7:a9:4b:41:4f:0b: 3c:0f:e4:49:4b:0f:75:ec:2d:30:f0:8e:53:de:86: bf:bd:76:5e:1a:9d:c7:c8:ca:36:0b:0b:8d:01:ad: 63:55:72:4d:9e:ff:90:06:b4:a8:50:91:d8:f7:8b: 7f:dc:e6:87:fc:2c:50:74:fe:0a:bb:42:b6:69:c0: 7c:e9:2c:d2:5e:94:38:25:5d:a1:88:42:a4:8b:67: 16:13:4b:50:ab:8f:2f:7c:57:9e:94:50:ee:d7:c7: e7:cf:f5:f1:57:cf:dd:87:7e:db:8c:53:68:41:13: 87:68:3a:9e:b4:45:8f:59:31:ef:1a:cb:1e:06:40: fd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E7:31:AB:7F:FC:01:25:F3:65:89:9E:4E:37:C1:09:2C:51:2E:B0 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.219.0/24 Signature Algorithm: sha256WithRSAEncryption 98:2d:e3:c0:df:ce:75:73:17:e4:21:7d:ab:e6:ca:09:ad:d9: bd:2b:1a:48:ed:fb:b6:7c:f6:a8:84:ef:eb:e1:21:40:b3:ef: 23:c5:5f:46:c2:3a:76:98:00:67:cd:ed:4c:d8:48:6d:cd:d8: 63:81:80:3a:42:f1:34:a8:1c:e1:1f:04:40:95:1a:39:60:4c: 6a:16:af:a7:2d:ea:46:1e:01:d3:e4:17:e1:de:02:1c:24:16: 5a:4a:60:23:f2:79:12:1d:23:00:c8:61:ed:70:59:d6:8d:16: 4e:d3:2b:7b:42:f8:76:29:3a:08:b8:2a:66:b0:04:33:0a:68: c4:6e:b2:3f:e5:f8:e0:0f:73:eb:a2:8a:3f:1f:6c:f8:a5:fc: 9b:88:1a:4e:93:52:ad:e2:67:27:b1:84:b6:0b:e0:ca:01:b4: 71:f2:df:37:39:aa:b6:99:28:18:fb:2c:52:f4:e5:f5:a1:5d: fd:6e:f1:3f:f6:c0:59:72:73:72:32:1d:09:d1:f0:c2:c5:0a: 77:0e:b3:fc:a3:2b:95:68:ac:d2:58:36:fc:7f:f8:94:5f:82: 3f:b8:0d:ef:f8:2c:77:c8:54:dc:08:53:b5:87:99:0f:a5:9a: 14:74:56:23:1c:29:3e:59:6d:4e:2c:1e:3e:39:aa:87:b7:2d: 38:1a:ab:35 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL4V5ShJqjSh6ILSVdeidlxhGOcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTNaFw0yNTA2MTQxMjAxNTNaMDMxMTAvBgNV BAMTKDk2RTczMUFCN0ZGQzAxMjVGMzY1ODk5RTRFMzdDMTA5MkM1MTJFQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDpuacCDJb43TA/LFsjmAvuGiw EiDRdnJQVpsd11DKgT5WkjqJlN83B6nu/EUPunJPk70VjvC02uLNB930vqWnFeqx aq22OD/gddQLnWgWJ8mvTQCJ+fA5A17B0M6GGAAoveyNEhFn0hIihjIfKr9JGXtk sSPJo77MYbDCzCK2l/epS0FPCzwP5ElLD3XsLTDwjlPehr+9dl4ancfIyjYLC40B rWNVck2e/5AGtKhQkdj3i3/c5of8LFB0/gq7QrZpwHzpLNJelDglXaGIQqSLZxYT S1Crjy98V56UUO7Xx+fP9fFXz92HftuMU2hBE4doOp60RY9ZMe8ayx4GQP3dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlucxq3/8ASXzZYmeTjfBCSxRLrAwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62zANBgkqhkiG 9w0BAQsFAAOCAQEAmC3jwN/OdXMX5CF9q+bKCa3ZvSsaSO37tnz2qITv6+EhQLPv I8VfRsI6dpgAZ83tTNhIbc3YY4GAOkLxNKgc4R8EQJUaOWBMahavpy3qRh4B0+QX 4d4CHCQWWkpgI/J5Eh0jAMhh7XBZ1o0WTtMre0L4dik6CLgqZrAEMwpoxG6yP+X4 4A9z66KKPx9s+KX8m4gaTpNSreJnJ7GEtgvgygG0cfLfNzmqtpkoGPssUvTl9aFd /W7xP/bAWXJzcjIdCdHwwsUKdw6z/KMrlWis0lg2/H/4lF+CP7gN7/gsd8hU3AhT tYeZD6WaFHRWIxwpPlltTiwePjmqh7ctOBqrNQ== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org