$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232322e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232322e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 04mWc8+cjyb3aC7mx/6eeV5EXZV2BAzG/ew2qW91EDQ= Subject key identifier: 99:39:26:06:DB:D4:7F:DB:0B:8D:25:81:78:B7:07:4F:12:0A:C5:A7 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 04309AC808DC404A11BB9FE977AD3E06437D315E Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232322e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:52 +0000 ROA not before: Sat 15 Jun 2024 11:56:52 +0000 ROA not after: Sat 14 Jun 2025 12:01:52 +0000 asID: 17671 IP address blocks: 202.58.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:30:9a:c8:08:dc:40:4a:11:bb:9f:e9:77:ad:3e:06:43:7d:31:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:52 2024 GMT Not After : Jun 14 12:01:52 2025 GMT Subject: CN=99392606DBD47FDB0B8D258178B7074F120AC5A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:5a:59:35:27:dc:fb:b7:12:d8:20:c0:aa:ed: 6d:22:a4:06:6c:48:2e:83:ee:75:79:bf:40:8c:62: 31:39:86:67:f6:2c:c0:2e:85:18:66:b3:35:41:3c: 6d:0b:3f:20:28:8a:3c:9c:34:4e:24:9f:88:ff:e9: 3d:46:86:ce:ae:06:5f:15:14:5c:88:13:dc:cc:2f: 5b:0d:03:2e:1c:d9:19:53:3d:82:04:d3:82:3a:dd: fc:6a:a0:6b:53:21:b6:7b:6d:01:c6:53:dc:2d:a8: ba:ef:fa:27:28:fb:2e:aa:af:f5:57:0f:be:c6:57: b6:b5:de:60:8f:bb:c0:18:0f:f2:54:58:0b:68:cf: ef:91:78:22:a4:b9:46:e6:c3:e3:93:f3:66:df:15: e1:7f:8a:98:5f:0d:4a:55:0b:25:bd:91:04:0a:cf: b7:f3:38:13:b2:74:73:5b:22:2f:cf:70:4b:27:74: bd:62:00:a1:42:3b:89:d6:46:1f:30:6f:bc:e3:39: f4:3c:39:70:df:56:e4:9b:2a:e1:a9:81:f6:cc:2a: a4:e5:62:fa:cb:96:21:58:7b:eb:3a:ed:54:6c:35: de:1e:8b:34:ff:83:40:92:84:62:44:fb:9c:7e:e2: e5:45:5c:b2:ad:d0:ca:57:d6:e1:8e:17:23:bc:a1: 7f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:39:26:06:DB:D4:7F:DB:0B:8D:25:81:78:B7:07:4F:12:0A:C5:A7 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232322e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.222.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:0f:62:8a:41:43:ff:98:e9:ec:38:47:54:ab:61:7a:a4:3b: d2:18:ce:2c:6f:13:cb:52:28:69:1e:0a:71:6d:de:f5:94:34: 3b:43:9a:02:b0:e4:9d:43:40:8c:77:bf:cd:0b:50:0d:ff:6f: d0:ab:00:5c:f8:16:f4:94:59:39:82:ba:62:21:d7:30:26:70: 87:bb:80:77:d5:88:86:94:14:ab:a6:a5:d7:1a:f9:f5:16:4d: 95:16:ab:88:76:3b:8f:4e:0f:08:0c:72:61:a0:be:06:a2:74: 8b:56:0f:d5:11:e4:4f:cf:4f:8a:7d:ca:d4:9b:b8:d7:7f:4f: 21:73:b4:af:8e:89:49:7c:ce:65:ad:5e:ad:52:c2:bc:3a:93: f9:e4:04:f9:5d:9b:5c:d8:25:c6:f4:6a:a5:97:ac:01:45:fa: 4a:9d:62:15:bd:02:0d:f8:7b:bc:ed:ba:3e:f6:ae:74:67:51: 72:1f:47:ed:4e:d5:f2:cd:ac:05:51:d9:13:98:f0:c8:81:67: 27:87:4d:26:cf:8b:3d:1b:6a:ca:85:38:3a:d3:53:13:e8:6e: a3:da:a5:3d:32:41:a2:cd:7f:3a:70:fd:93:33:8e:b9:4e:19: 16:ed:6b:fa:38:9e:3c:8b:65:92:ec:02:14:4e:71:55:75:c8: b1:7d:34:ba -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBDCayAjcQEoRu5/pd60+BkN9MV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTJaFw0yNTA2MTQxMjAxNTJaMDMxMTAvBgNV BAMTKDk5MzkyNjA2REJENDdGREIwQjhEMjU4MTc4QjcwNzRGMTIwQUM1QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtWlk1J9z7txLYIMCq7W0ipAZs SC6D7nV5v0CMYjE5hmf2LMAuhRhmszVBPG0LPyAoijycNE4kn4j/6T1Ghs6uBl8V FFyIE9zML1sNAy4c2RlTPYIE04I63fxqoGtTIbZ7bQHGU9wtqLrv+ico+y6qr/VX D77GV7a13mCPu8AYD/JUWAtoz++ReCKkuUbmw+OT82bfFeF/iphfDUpVCyW9kQQK z7fzOBOydHNbIi/PcEsndL1iAKFCO4nWRh8wb7zjOfQ8OXDfVuSbKuGpgfbMKqTl YvrLliFYe+s67VRsNd4eizT/g0CShGJE+5x+4uVFXLKt0MpX1uGOFyO8oX+TAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmTkmBtvUf9sLjSWBeLcHTxIKxacwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63jANBgkqhkiG 9w0BAQsFAAOCAQEAXA9iikFD/5jp7DhHVKtheqQ70hjOLG8Ty1IoaR4KcW3e9ZQ0 O0OaArDknUNAjHe/zQtQDf9v0KsAXPgW9JRZOYK6YiHXMCZwh7uAd9WIhpQUq6al 1xr59RZNlRariHY7j04PCAxyYaC+BqJ0i1YP1RHkT89Pin3K1Ju4139PIXO0r46J SXzOZa1erVLCvDqT+eQE+V2bXNglxvRqpZesAUX6Sp1iFb0CDfh7vO26PvaudGdR ch9H7U7V8s2sBVHZE5jwyIFnJ4dNJs+LPRtqyoU4OtNTE+huo9qlPTJBos1/OnD9 kzOOuU4ZFu1r+jiePItlkuwCFE5xVXXIsX00ug== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org