$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232302e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232302e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: XC3thqvR+DkFRFnCm9LppD1TfINjawNPgQY0CEkZc0Q= Subject key identifier: 2D:CF:65:AB:80:83:ED:F7:E8:B2:96:B7:C5:0C:09:83:05:EF:84:9B Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 670BC55DC4B8A4D8F235272EE323933A9F9B6597 Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232302e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:53 +0000 ROA not before: Sat 15 Jun 2024 11:56:53 +0000 ROA not after: Sat 14 Jun 2025 12:01:53 +0000 asID: 17671 IP address blocks: 202.58.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:0b:c5:5d:c4:b8:a4:d8:f2:35:27:2e:e3:23:93:3a:9f:9b:65:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:53 2024 GMT Not After : Jun 14 12:01:53 2025 GMT Subject: CN=2DCF65AB8083EDF7E8B296B7C50C098305EF849B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bc:7d:0b:2f:72:92:a8:29:7b:96:16:2a:1c: 9a:cb:01:5d:42:2c:a4:a2:cc:a7:b1:9c:f3:23:f5: 6d:49:e1:3d:47:f0:1e:3e:a5:e7:9b:c3:02:cf:c0: 76:49:b4:ac:3c:f1:58:e3:68:b3:0b:c9:f3:67:1e: 91:b5:ec:a7:6e:21:8f:8c:ff:66:bc:5f:22:85:44: fb:b3:cb:5f:2f:1b:a9:b6:8e:91:02:45:6f:cc:39: d7:88:15:d2:52:65:e7:02:e4:73:cd:94:8f:3a:c3: da:c2:21:29:cf:81:69:18:99:82:0c:ec:0f:57:48: 1b:a9:b7:87:9a:7a:0a:b1:d6:9f:e8:b8:25:4d:bf: 23:08:6c:ac:b4:f0:12:e6:9f:df:ed:96:70:07:93: 10:e4:cc:a8:c3:41:47:1c:0f:6b:ce:1d:e7:9d:28: 1b:4e:91:55:9d:11:ad:02:d3:b4:7f:9e:c3:b6:22: b1:f8:e2:71:ed:4f:13:eb:36:83:3e:6f:39:a1:ee: 4f:32:22:58:b8:8f:f1:9c:55:df:74:a3:20:03:21: 6c:04:34:95:2a:9c:97:71:9d:e0:66:b1:84:58:be: d4:b7:2d:26:5f:04:4e:69:24:7e:d9:d8:0c:fc:56: 63:f0:9e:d5:e3:c2:b9:3a:55:9e:2b:b2:9e:0b:c0: 02:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:CF:65:AB:80:83:ED:F7:E8:B2:96:B7:C5:0C:09:83:05:EF:84:9B X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232302e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.220.0/24 Signature Algorithm: sha256WithRSAEncryption 81:70:75:73:a4:8c:57:c0:0f:21:06:10:15:5f:3f:cf:b7:01: d2:69:09:fe:9e:05:1a:4b:66:f9:d0:10:1c:66:2b:3b:94:92: db:b5:2f:38:82:2b:7a:f4:4b:95:8e:c9:4a:9a:15:ae:f4:0f: c0:13:ef:58:84:32:ff:a6:e0:c4:3d:88:95:8d:96:c4:08:d0: 81:96:33:aa:8a:d4:60:78:ee:9c:b3:ca:97:2c:41:e2:f2:04: d1:71:51:6b:ae:69:9f:64:75:29:b8:7f:83:74:29:e9:7c:1c: b0:16:58:5c:62:60:df:71:1e:cd:02:13:5f:c5:77:6b:a2:21: 98:2a:6f:e6:b6:b5:6e:f9:e9:72:67:18:93:1a:b5:2d:39:58: df:f8:c2:a0:35:a8:ce:0b:5a:b0:b0:02:8a:4d:49:78:c8:9c: 4d:e5:88:45:5e:f8:d0:f7:6e:25:4f:bb:a2:63:99:d1:a9:95: 45:56:84:29:36:d1:90:c8:4a:82:13:0d:3f:73:93:fc:f3:e3: 43:24:b1:a0:bd:5a:bd:26:ff:a6:0f:b5:57:d8:4e:59:00:b8: 7e:12:79:6c:04:07:15:23:db:2f:1d:33:6e:64:1f:d4:7b:90: d3:06:d9:10:fd:cb:86:96:5f:73:59:ca:29:30:b0:fe:72:0b: 09:2a:f6:47 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZwvFXcS4pNjyNScu4yOTOp+bZZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTNaFw0yNTA2MTQxMjAxNTNaMDMxMTAvBgNV BAMTKDJEQ0Y2NUFCODA4M0VERjdFOEIyOTZCN0M1MEMwOTgzMDVFRjg0OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjvH0LL3KSqCl7lhYqHJrLAV1C LKSizKexnPMj9W1J4T1H8B4+peebwwLPwHZJtKw88VjjaLMLyfNnHpG17KduIY+M /2a8XyKFRPuzy18vG6m2jpECRW/MOdeIFdJSZecC5HPNlI86w9rCISnPgWkYmYIM 7A9XSBupt4eaegqx1p/ouCVNvyMIbKy08BLmn9/tlnAHkxDkzKjDQUccD2vOHeed KBtOkVWdEa0C07R/nsO2IrH44nHtTxPrNoM+bzmh7k8yIli4j/GcVd90oyADIWwE NJUqnJdxneBmsYRYvtS3LSZfBE5pJH7Z2Az8VmPwntXjwrk6VZ4rsp4LwAKNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULc9lq4CD7ffospa3xQwJgwXvhJswHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63DANBgkqhkiG 9w0BAQsFAAOCAQEAgXB1c6SMV8APIQYQFV8/z7cB0mkJ/p4FGktm+dAQHGYrO5SS 27UvOIIrevRLlY7JSpoVrvQPwBPvWIQy/6bgxD2IlY2WxAjQgZYzqorUYHjunLPK lyxB4vIE0XFRa65pn2R1Kbh/g3Qp6XwcsBZYXGJg33EezQITX8V3a6IhmCpv5ra1 bvnpcmcYkxq1LTlY3/jCoDWozgtasLACik1JeMicTeWIRV740PduJU+7omOZ0amV RVaEKTbRkMhKghMNP3OT/PPjQySxoL1avSb/pg+1V9hOWQC4fhJ5bAQHFSPbLx0z bmQf1HuQ0wbZEP3LhpZfc1nKKTCw/nILCSr2Rw== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org