$ rpki-client -vvf repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/3230332e31342e31382e302f32342d3234203d3e20313532303834.roa File: 3230332e31342e31382e302f32342d3234203d3e20313532303834.roa (raw, json) Hash identifier: k0lW1N1irYnbQFRC/axc+idc2h6EHlNAiSp4C4zr7+4= Subject key identifier: EB:0B:5E:36:C6:8C:50:63:62:FB:3D:D5:98:08:53:4B:3A:EF:C3:15 Certificate issuer: /CN=C35ED85B36F5D519D2CD1D474BE51C13F49A7E47 Certificate serial: 3CDB51CC55D67223B150FEFD569055E1951E2C96 Authority key identifier: C3:5E:D8:5B:36:F5:D5:19:D2:CD:1D:47:4B:E5:1C:13:F4:9A:7E:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/3230332e31342e31382e302f32342d3234203d3e20313532303834.roa Signing time: Sat 17 Feb 2024 10:03:29 +0000 ROA not before: Sat 17 Feb 2024 09:58:29 +0000 ROA not after: Sat 15 Feb 2025 10:03:29 +0000 asID: 152084 IP address blocks: 203.14.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.crl rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:db:51:cc:55:d6:72:23:b1:50:fe:fd:56:90:55:e1:95:1e:2c:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C35ED85B36F5D519D2CD1D474BE51C13F49A7E47 Validity Not Before: Feb 17 09:58:29 2024 GMT Not After : Feb 15 10:03:29 2025 GMT Subject: CN=EB0B5E36C68C506362FB3DD59808534B3AEFC315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e0:8a:01:ad:67:6c:d2:68:0c:83:33:83:f7: 2a:03:57:b8:d2:8d:57:a0:6c:cb:35:fb:b9:89:fb: 7d:4d:48:cb:60:90:d1:21:bf:af:74:5c:ca:78:44: c3:1d:d9:48:15:9e:0d:1b:02:6d:99:ce:d1:eb:8e: 90:0b:61:b4:85:8c:79:a8:c4:24:28:39:bb:06:c0: 52:08:be:b1:ed:04:e3:4e:90:90:2f:83:3d:72:36: 40:2f:b0:61:59:7f:9f:7d:a6:52:68:ea:4d:4d:fb: d4:7b:72:62:47:26:ca:69:1b:d9:fc:17:55:2a:80: ee:01:9c:a5:51:29:9b:1c:54:03:5d:84:9f:1c:a9: 6f:2d:09:52:81:0c:44:80:54:cf:c3:e7:3e:bb:a8: 60:e5:79:5b:27:ee:8d:a1:bd:0c:0a:ce:18:19:85: 03:b2:2b:1c:0c:e1:f6:b3:c4:1e:9d:98:ea:9b:b5: 3d:2e:07:0b:65:d0:e2:61:66:3e:14:ad:88:6c:0f: 40:d7:9a:c6:46:92:86:52:1e:d5:c0:26:00:2b:3f: 5e:ad:ea:fc:97:c1:fb:a0:2f:84:d1:d4:86:2c:38: ee:9e:f4:9a:f7:82:22:10:01:ab:ee:38:e1:42:b3: 64:d3:ba:db:e4:42:ac:fe:ea:10:d8:13:c1:55:18: 62:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0B:5E:36:C6:8C:50:63:62:FB:3D:D5:98:08:53:4B:3A:EF:C3:15 X509v3 Authority Key Identifier: keyid:C3:5E:D8:5B:36:F5:D5:19:D2:CD:1D:47:4B:E5:1C:13:F4:9A:7E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/3230332e31342e31382e302f32342d3234203d3e20313532303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.14.18.0/24 Signature Algorithm: sha256WithRSAEncryption 19:8d:d1:f5:e8:48:6e:55:18:5a:9e:32:f2:16:bf:c9:eb:b5: 72:fb:7a:41:9e:93:12:0c:09:c5:89:09:29:90:02:7b:56:59: 17:fe:a6:27:fe:64:d3:89:2f:79:ca:a6:77:d3:24:b1:c8:40: 20:f3:ac:2c:d3:b2:2f:c3:ee:b6:6c:6d:b5:19:05:02:20:3f: a7:4c:d7:b1:b8:d3:e1:9c:b9:f7:7d:31:13:7d:2f:41:8a:61: 05:94:2a:68:5e:ea:1c:5f:97:28:c0:e4:b0:b3:d1:f1:33:1a: a8:71:24:ad:13:be:49:1e:b5:fd:22:be:9d:c4:a6:1a:1a:8b: 8d:56:49:9d:45:60:a9:51:2b:98:d1:d7:83:a6:c6:44:5b:5f: b4:35:db:24:17:8f:68:cb:55:a4:f5:13:be:06:06:a1:92:3d: e4:6d:c5:00:1d:e6:ba:2e:e2:29:b1:68:2a:d1:22:7e:e3:81: 94:e7:01:28:ae:77:66:b1:de:f6:d4:7f:b9:c0:03:ef:85:33: a9:de:05:fb:0e:74:cb:60:c1:35:d7:ce:ff:2d:53:a9:48:45: 36:03:cf:79:31:05:53:8a:39:8a:8e:b6:ed:67:23:4e:c3:44: aa:f9:15:43:a1:23:2e:24:30:1d:3b:17:14:12:7b:a8:6e:94: e5:cc:a6:02 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPNtRzFXWciOxUP79VpBV4ZUeLJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzM1RUQ4NUIzNkY1RDUxOUQyQ0QxRDQ3NEJFNTFDMTNG NDlBN0U0NzAeFw0yNDAyMTcwOTU4MjlaFw0yNTAyMTUxMDAzMjlaMDMxMTAvBgNV BAMTKEVCMEI1RTM2QzY4QzUwNjM2MkZCM0RENTk4MDg1MzRCM0FFRkMzMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC14IoBrWds0mgMgzOD9yoDV7jS jVegbMs1+7mJ+31NSMtgkNEhv690XMp4RMMd2UgVng0bAm2ZztHrjpALYbSFjHmo xCQoObsGwFIIvrHtBONOkJAvgz1yNkAvsGFZf599plJo6k1N+9R7cmJHJsppG9n8 F1UqgO4BnKVRKZscVANdhJ8cqW8tCVKBDESAVM/D5z67qGDleVsn7o2hvQwKzhgZ hQOyKxwM4fazxB6dmOqbtT0uBwtl0OJhZj4UrYhsD0DXmsZGkoZSHtXAJgArP16t 6vyXwfugL4TR1IYsOO6e9Jr3giIQAavuOOFCs2TTutvkQqz+6hDYE8FVGGJjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6wteNsaMUGNi+z3VmAhTSzrvwxUwHwYDVR0j BBgwFoAUw17YWzb11RnSzR1HS+UcE/SafkcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTM2NjZlMS0xZTQxLTQyZWQtYWJiYy1hOGMwODdmM2YzMzkvMC9DMzVFRDg1QjM2 RjVENTE5RDJDRDFENDc0QkU1MUMxM0Y0OUE3RTQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzM1RUQ4NUIzNkY1RDUxOUQyQ0QxRDQ3NEJFNTFDMTNGNDlB N0U0Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1MzY2NmUxLTFlNDEtNDJlZC1h YmJjLWE4YzA4N2YzZjMzOS8wLzMyMzAzMzJlMzEzNDJlMzEzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMsOEjANBgkqhkiG 9w0BAQsFAAOCAQEAGY3R9ehIblUYWp4y8ha/yeu1cvt6QZ6TEgwJxYkJKZACe1ZZ F/6mJ/5k04kvecqmd9MkschAIPOsLNOyL8PutmxttRkFAiA/p0zXsbjT4Zy5930x E30vQYphBZQqaF7qHF+XKMDksLPR8TMaqHEkrRO+SR61/SK+ncSmGhqLjVZJnUVg qVErmNHXg6bGRFtftDXbJBePaMtVpPUTvgYGoZI95G3FAB3mui7iKbFoKtEifuOB lOcBKK53ZrHe9tR/ucAD74Uzqd4F+w50y2DBNdfO/y1TqUhFNgPPeTEFU4o5io62 7WcjTsNEqvkVQ6EjLiQwHTsXFBJ7qG6U5cymAg== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org