$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232312e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232312e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: n+slltWHjETh9KLQ9q8+k4QcZL20703pvPfJuQJZ5ig= Subject key identifier: 2C:45:6D:30:28:A3:C0:C4:CD:6B:DF:E6:7D:03:D7:C9:74:A6:FD:E2 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 79695A673DA52B822A7F9BAEFAEE27356238094B Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232312e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:54 +0000 ROA not before: Sat 15 Jun 2024 11:56:54 +0000 ROA not after: Sat 14 Jun 2025 12:01:54 +0000 asID: 17671 IP address blocks: 202.58.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:69:5a:67:3d:a5:2b:82:2a:7f:9b:ae:fa:ee:27:35:62:38:09:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:54 2024 GMT Not After : Jun 14 12:01:54 2025 GMT Subject: CN=2C456D3028A3C0C4CD6BDFE67D03D7C974A6FDE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:96:98:1a:5f:df:5d:a9:db:62:2a:59:c7: 44:bb:fa:60:4c:be:06:83:41:af:29:ca:d9:d2:bb: f5:e3:47:7f:e5:d9:d5:15:6b:f3:95:91:4d:4f:b0: 24:56:2e:fb:f2:e6:3b:dd:9f:75:ce:98:02:36:ea: d5:6f:ce:34:ac:f6:58:dc:8d:59:21:23:06:dc:67: 9d:d8:be:76:5b:5f:1c:99:23:64:e2:ba:aa:6c:8c: f6:fb:be:6d:2b:5e:64:14:3c:4b:db:26:f1:ae:d4: 46:34:55:2e:79:c6:61:17:81:64:06:c3:0d:69:17: 06:94:54:38:1b:e1:5b:24:c5:7f:73:06:b8:25:de: 0b:ec:6b:c1:ef:69:c5:b7:bd:3e:b2:fc:b1:bd:79: 49:9a:cb:a8:b4:33:9b:8f:ab:33:9c:e3:46:7d:be: 56:3c:64:3f:5a:6b:a5:79:d1:2b:86:34:1b:a0:54: f2:ec:f1:1d:2a:2a:aa:b7:ad:0f:47:25:bc:0a:44: 6a:bc:fd:d7:1c:0c:80:05:7f:e6:9f:91:36:54:ec: f2:1c:66:4e:77:11:1e:d0:28:92:d8:77:1b:0d:17: e7:a8:41:7e:6d:65:3c:2c:00:2d:46:24:10:11:72: c1:66:76:92:e0:d4:ea:09:37:72:89:be:98:2c:1b: 75:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:45:6D:30:28:A3:C0:C4:CD:6B:DF:E6:7D:03:D7:C9:74:A6:FD:E2 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232312e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.221.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:7e:79:1d:8d:fc:c0:09:2e:38:a4:29:51:1c:39:87:df:9e: 13:e0:08:f9:48:46:29:96:11:4e:dd:a1:f8:cb:9b:82:b7:0c: bc:de:2e:36:1d:58:83:98:c7:ce:ca:2b:bf:4a:dc:64:85:12: 34:30:fd:89:e1:40:07:bc:de:fd:f0:c3:53:78:91:57:33:56: 31:ef:22:fe:ec:f0:92:8e:1a:a0:06:4d:37:3c:88:8a:12:24: 5c:44:38:df:a9:32:3e:db:9d:b3:6d:08:83:9c:0b:cd:c3:c6: 47:db:c7:37:e0:87:f6:57:a7:8f:46:2d:5f:bd:8b:f2:95:e7: 78:37:c5:97:8c:d5:61:7b:61:43:f7:25:71:d6:8e:fa:af:62: b8:b1:75:cf:7d:1f:5f:bb:b3:cc:8e:3d:92:ea:3d:3c:90:47: 4c:6f:4f:cb:5b:73:bb:a4:49:a6:c3:4f:8c:75:6e:80:aa:41: 2e:c7:d2:ad:57:51:25:1a:8f:85:a4:81:cd:77:8f:2f:73:69: 2b:9b:ed:73:c8:ca:96:0b:bf:01:93:89:36:5c:0b:cf:09:f5: 1c:fe:96:80:6d:20:61:8f:55:1f:70:de:75:a8:a1:e0:50:66: f4:dd:e0:85:7e:4e:fd:3e:05:cf:92:45:b0:4c:fa:d4:f1:fb: 85:1f:91:2e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeWlaZz2lK4Iqf5uu+u4nNWI4CUswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTRaFw0yNTA2MTQxMjAxNTRaMDMxMTAvBgNV BAMTKDJDNDU2RDMwMjhBM0MwQzRDRDZCREZFNjdEMDNEN0M5NzRBNkZERTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu3paYGl/fXanbYipZx0S7+mBM vgaDQa8pytnSu/XjR3/l2dUVa/OVkU1PsCRWLvvy5jvdn3XOmAI26tVvzjSs9ljc jVkhIwbcZ53YvnZbXxyZI2TiuqpsjPb7vm0rXmQUPEvbJvGu1EY0VS55xmEXgWQG ww1pFwaUVDgb4VskxX9zBrgl3gvsa8HvacW3vT6y/LG9eUmay6i0M5uPqzOc40Z9 vlY8ZD9aa6V50SuGNBugVPLs8R0qKqq3rQ9HJbwKRGq8/dccDIAFf+afkTZU7PIc Zk53ER7QKJLYdxsNF+eoQX5tZTwsAC1GJBARcsFmdpLg1OoJN3KJvpgsG3UpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULEVtMCijwMTNa9/mfQPXyXSm/eIwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63TANBgkqhkiG 9w0BAQsFAAOCAQEAL355HY38wAkuOKQpURw5h9+eE+AI+UhGKZYRTt2h+MubgrcM vN4uNh1Yg5jHzsorv0rcZIUSNDD9ieFAB7ze/fDDU3iRVzNWMe8i/uzwko4aoAZN NzyIihIkXEQ436kyPtuds20Ig5wLzcPGR9vHN+CH9lenj0YtX72L8pXneDfFl4zV YXthQ/clcdaO+q9iuLF1z30fX7uzzI49kuo9PJBHTG9Py1tzu6RJpsNPjHVugKpB LsfSrVdRJRqPhaSBzXePL3NpK5vtc8jKlgu/AZOJNlwLzwn1HP6WgG0gYY9VH3De daih4FBm9N3ghX5O/T4Fz5JFsEz61PH7hR+RLg== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org