$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232332e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232332e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 3vwPxAmck6iylnNEJpRY4UCSBBQicOMAVnvNBVFjOI8= Subject key identifier: BD:90:DA:E3:C0:72:04:80:2F:1F:70:65:F1:CA:39:4F:5E:BD:7C:21 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 4AD64A5F0BA721AB7518B99F6E79EC80C6C3CDDF Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232332e302f32342d3234203d3e203137363731.roa Signing time: Sat 15 Jun 2024 12:01:53 +0000 ROA not before: Sat 15 Jun 2024 11:56:53 +0000 ROA not after: Sat 14 Jun 2025 12:01:53 +0000 asID: 17671 IP address blocks: 202.58.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d6:4a:5f:0b:a7:21:ab:75:18:b9:9f:6e:79:ec:80:c6:c3:cd:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 15 11:56:53 2024 GMT Not After : Jun 14 12:01:53 2025 GMT Subject: CN=BD90DAE3C07204802F1F7065F1CA394F5EBD7C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:60:43:44:71:21:16:a3:26:b0:fd:e3:21:23: 01:6f:8b:86:62:6f:d5:7b:40:d6:39:86:93:c9:59: 1b:af:8b:01:2c:c6:b4:cf:4d:f7:bd:15:1e:1f:e8: fc:b6:86:44:f2:0c:16:98:31:ff:7c:8c:d1:27:f9: 65:0d:08:3d:80:92:a0:48:13:39:e6:17:2d:f9:48: 89:00:8a:f7:6b:d9:c4:5d:89:1c:96:2a:49:31:43: 60:a8:b1:2b:9c:f4:92:68:d0:0d:82:fc:77:1a:d0: 0d:46:74:7b:67:db:c7:9c:37:65:12:21:c9:21:61: bb:07:27:a2:9b:e1:35:d7:c5:0d:68:45:8e:8f:e9: 03:02:a5:9d:76:52:c4:10:3f:5b:c0:a3:c0:39:a1: e8:a1:c6:da:af:b3:cd:2c:69:ad:79:7f:2c:21:ec: 7e:ff:89:85:e4:a8:8e:c2:b9:23:d5:ed:79:c1:95: c2:8b:81:91:7a:f6:cd:0b:85:d8:f7:cd:7d:61:41: 13:ac:60:10:45:30:cf:de:2a:73:89:f9:63:b9:2c: 9d:df:74:9a:69:c8:8d:9d:4a:60:27:c9:3a:f7:30: c2:6e:89:95:c8:f7:55:c9:f7:0e:b2:e3:75:8f:5c: cd:0d:2f:10:0b:86:60:0f:1e:c5:78:20:cd:7a:e8: 60:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:90:DA:E3:C0:72:04:80:2F:1F:70:65:F1:CA:39:4F:5E:BD:7C:21 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232332e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.223.0/24 Signature Algorithm: sha256WithRSAEncryption 77:a9:e3:31:85:58:bc:70:a8:3f:59:c2:a9:e6:d9:3e:4f:73: 76:87:9b:54:e1:06:97:6b:a3:a1:88:a5:a7:e7:48:47:55:36: 39:5c:be:4b:eb:a5:66:0b:dc:49:cd:2a:c9:9e:89:36:e5:b4: 03:97:ab:22:5e:2d:b8:fe:89:9b:6a:2b:67:54:2e:65:d9:7a: e4:d2:e7:70:8b:b8:d5:30:87:ae:f5:72:1a:33:88:4a:47:80: 27:3f:27:26:6b:6e:b7:25:0a:07:25:7e:96:55:2a:cb:97:6c: 7c:d2:1b:a4:f1:31:9e:9d:e2:2c:ec:e7:a7:db:41:fa:d8:11: 74:bf:00:56:0f:b5:7c:f0:f9:62:8c:c2:77:26:99:ff:d6:ee: 8d:98:7e:b6:7c:8e:63:32:71:cb:c9:61:dc:e5:7e:4d:e4:30: 63:da:e1:0d:96:ff:b6:1a:1d:67:f8:d1:fd:1a:72:1c:ce:33: b4:6d:d9:8a:12:d5:b7:34:d8:a3:49:2c:68:6c:dc:01:bc:38: df:02:b5:65:e6:b4:a7:8c:6b:61:92:87:fa:f4:6f:3d:dd:69: b3:b4:a5:b3:57:84:2c:24:21:12:21:5f:a1:2e:25:3d:76:39: 94:8e:ed:e4:d3:e2:a6:b7:07:7c:1c:de:23:bc:a3:2d:b8:98: 91:58:ae:a7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUStZKXwunIat1GLmfbnnsgMbDzd8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTUxMTU2NTNaFw0yNTA2MTQxMjAxNTNaMDMxMTAvBgNV BAMTKEJEOTBEQUUzQzA3MjA0ODAyRjFGNzA2NUYxQ0EzOTRGNUVCRDdDMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWYENEcSEWoyaw/eMhIwFvi4Zi b9V7QNY5hpPJWRuviwEsxrTPTfe9FR4f6Py2hkTyDBaYMf98jNEn+WUNCD2AkqBI EznmFy35SIkAivdr2cRdiRyWKkkxQ2CosSuc9JJo0A2C/Hca0A1GdHtn28ecN2US IckhYbsHJ6Kb4TXXxQ1oRY6P6QMCpZ12UsQQP1vAo8A5oeihxtqvs80saa15fywh 7H7/iYXkqI7CuSPV7XnBlcKLgZF69s0Lhdj3zX1hQROsYBBFMM/eKnOJ+WO5LJ3f dJppyI2dSmAnyTr3MMJuiZXI91XJ9w6y43WPXM0NLxALhmAPHsV4IM166GBlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvZDa48ByBIAvH3Bl8co5T169fCEwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63zANBgkqhkiG 9w0BAQsFAAOCAQEAd6njMYVYvHCoP1nCqebZPk9zdoebVOEGl2ujoYilp+dIR1U2 OVy+S+ulZgvcSc0qyZ6JNuW0A5erIl4tuP6Jm2orZ1QuZdl65NLncIu41TCHrvVy GjOISkeAJz8nJmtutyUKByV+llUqy5dsfNIbpPExnp3iLOznp9tB+tgRdL8AVg+1 fPD5YozCdyaZ/9bujZh+tnyOYzJxy8lh3OV+TeQwY9rhDZb/thodZ/jR/RpyHM4z tG3ZihLVtzTYo0ksaGzcAbw43wK1Zea0p4xrYZKH+vRvPd1ps7Sls1eELCQhEiFf oS4lPXY5lI7t5NPiprcHfBzeI7yjLbiYkViupw== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org