$ rpki-client -vvf repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/3230322e35382e3233382e302f32332d3234203d3e203436303237.roa File: 3230322e35382e3233382e302f32332d3234203d3e203436303237.roa (raw, json) Hash identifier: tRQ8BcXAAHvOWAUrArBXozhkS5T6SXLbxEzuq6THVpM= Subject key identifier: EA:77:8B:AC:FC:9C:6D:12:A8:B5:7C:E2:0B:B5:C7:D8:29:BA:6A:A6 Certificate issuer: /CN=1631B9A0997CBC975099A6FF7E27DCA3FDC649BA Certificate serial: 05014529FE3E8C5FEA24B2C826FB62C1A30EED41 Authority key identifier: 16:31:B9:A0:99:7C:BC:97:50:99:A6:FF:7E:27:DC:A3:FD:C6:49:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/3230322e35382e3233382e302f32332d3234203d3e203436303237.roa Signing time: Thu 16 May 2024 02:00:01 +0000 ROA not before: Thu 16 May 2024 01:55:01 +0000 ROA not after: Thu 15 May 2025 02:00:01 +0000 asID: 46027 IP address blocks: 202.58.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.crl rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:01:45:29:fe:3e:8c:5f:ea:24:b2:c8:26:fb:62:c1:a3:0e:ed:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1631B9A0997CBC975099A6FF7E27DCA3FDC649BA Validity Not Before: May 16 01:55:01 2024 GMT Not After : May 15 02:00:01 2025 GMT Subject: CN=EA778BACFC9C6D12A8B57CE20BB5C7D829BA6AA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3f:bf:7e:a9:9b:26:1b:c2:21:e2:0e:f4:1c: c6:6c:3f:bc:eb:67:f8:b8:38:9b:90:6e:5c:be:67: 35:8f:2a:f5:f7:08:03:5c:f9:3c:ad:cd:c8:4e:07: 92:c5:67:90:22:95:e8:35:8a:e4:70:67:46:a0:e7: 24:26:c8:31:c2:5f:13:6d:91:90:66:34:2f:f1:3e: 4d:05:7c:9a:c3:91:37:e0:4e:bd:5f:0e:5d:a2:70: 4e:e9:c7:f9:ba:c5:74:98:ba:ba:46:02:c5:f5:7b: 42:4a:78:46:9f:21:93:bc:d3:9b:9e:10:cb:73:5c: ea:19:d1:2f:fb:e6:b3:dc:78:fc:4a:98:9f:eb:7e: c4:36:a1:87:1c:1b:e1:38:2a:39:7c:18:c9:dc:3f: 14:07:75:06:f2:96:4a:0b:91:d3:50:3f:06:6b:5a: 1d:54:4f:c1:b5:c2:68:17:5c:f0:b4:bd:1c:c9:8a: fe:8f:db:c3:8d:a1:78:1d:38:85:69:9e:93:4f:96: 22:bc:cb:f2:1c:f9:4a:10:da:65:70:db:b9:e5:5f: bf:d9:1e:16:56:30:e0:02:da:0a:dd:c7:27:f8:d2: be:1e:aa:a0:f4:82:5f:7d:e5:d6:b3:c3:5b:a0:ec: 90:9e:32:ff:39:e9:a0:aa:fd:67:0e:6b:e5:a7:3b: fb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:77:8B:AC:FC:9C:6D:12:A8:B5:7C:E2:0B:B5:C7:D8:29:BA:6A:A6 X509v3 Authority Key Identifier: keyid:16:31:B9:A0:99:7C:BC:97:50:99:A6:FF:7E:27:DC:A3:FD:C6:49:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1631B9A0997CBC975099A6FF7E27DCA3FDC649BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96b1ab7f-e451-40d1-9b70-3a4022a9b4ec/0/3230322e35382e3233382e302f32332d3234203d3e203436303237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.238.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:c8:d3:3c:4d:16:da:92:66:8d:ba:33:0c:b8:49:25:a4:3f: f1:6d:95:01:96:0e:f8:de:42:bd:2b:8a:a0:67:f3:ef:0b:81: df:d6:fa:32:f2:05:34:ad:7b:95:f2:a7:8d:82:dc:78:05:1a: 41:db:e5:12:68:13:d6:c0:47:66:f4:c7:91:a1:24:b1:14:ca: 0b:75:ec:18:1e:a9:a8:57:cc:bf:f6:a7:b2:1b:7f:a8:4e:2f: 8b:8b:ad:90:f6:f7:b1:a1:94:c0:93:3e:2c:e8:cd:95:b1:47: 87:13:29:89:14:1b:90:fc:2f:08:d4:05:ef:d1:5f:50:a2:83: 00:40:db:aa:d0:cd:0b:f4:76:4f:1b:5f:7d:d4:6a:78:fe:e8: 5e:58:65:9e:b9:14:d7:d9:cb:d5:77:a1:1c:b5:30:65:e8:b8: ca:3b:ba:8b:1b:2c:b8:24:4c:a0:5b:2d:19:a8:24:f5:26:bd: ca:8f:0c:01:98:74:da:5f:85:1d:8a:cf:9d:fd:a9:22:b5:fa: 37:ed:44:50:fd:76:f5:dd:dc:be:43:52:a4:06:51:24:dd:94: 2c:28:1c:16:f3:16:48:b3:ba:6a:cc:1c:83:b9:96:a1:dc:9f: aa:b7:13:25:2f:47:1b:2b:1b:55:3a:b1:50:13:27:c5:41:40: cf:eb:9c:52 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBQFFKf4+jF/qJLLIJvtiwaMO7UEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTYzMUI5QTA5OTdDQkM5NzUwOTlBNkZGN0UyN0RDQTNG REM2NDlCQTAeFw0yNDA1MTYwMTU1MDFaFw0yNTA1MTUwMjAwMDFaMDMxMTAvBgNV BAMTKEVBNzc4QkFDRkM5QzZEMTJBOEI1N0NFMjBCQjVDN0Q4MjlCQTZBQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrP79+qZsmG8Ih4g70HMZsP7zr Z/i4OJuQbly+ZzWPKvX3CANc+TytzchOB5LFZ5Aileg1iuRwZ0ag5yQmyDHCXxNt kZBmNC/xPk0FfJrDkTfgTr1fDl2icE7px/m6xXSYurpGAsX1e0JKeEafIZO805ue EMtzXOoZ0S/75rPcePxKmJ/rfsQ2oYccG+E4Kjl8GMncPxQHdQbylkoLkdNQPwZr Wh1UT8G1wmgXXPC0vRzJiv6P28ONoXgdOIVpnpNPliK8y/Ic+UoQ2mVw27nlX7/Z HhZWMOAC2grdxyf40r4eqqD0gl995dazw1ug7JCeMv856aCq/WcOa+WnO/vdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6neLrPycbRKotXziC7XH2Cm6aqYwHwYDVR0j BBgwFoAUFjG5oJl8vJdQmab/fifco/3GSbowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmIxYWI3Zi1lNDUxLTQwZDEtOWI3MC0zYTQwMjJhOWI0ZWMvMC8xNjMxQjlBMDk5 N0NCQzk3NTA5OUE2RkY3RTI3RENBM0ZEQzY0OUJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTYzMUI5QTA5OTdDQkM5NzUwOTlBNkZGN0UyN0RDQTNGREM2 NDlCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2YjFhYjdmLWU0NTEtNDBkMS05 YjcwLTNhNDAyMmE5YjRlYy8wLzMyMzAzMjJlMzUzODJlMzIzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco67jANBgkqhkiG 9w0BAQsFAAOCAQEAHMjTPE0W2pJmjbozDLhJJaQ/8W2VAZYO+N5CvSuKoGfz7wuB 39b6MvIFNK17lfKnjYLceAUaQdvlEmgT1sBHZvTHkaEksRTKC3XsGB6pqFfMv/an sht/qE4vi4utkPb3saGUwJM+LOjNlbFHhxMpiRQbkPwvCNQF79FfUKKDAEDbqtDN C/R2TxtffdRqeP7oXlhlnrkU19nL1XehHLUwZei4yju6ixssuCRMoFstGagk9Sa9 yo8MAZh02l+FHYrPnf2pIrX6N+1EUP129d3cvkNSpAZRJN2ULCgcFvMWSLO6aswc g7mWodyfqrcTJS9HGysbVTqxUBMnxUFAz+ucUg== -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org