$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230332e39392e3133302e302f32332d3234203d3e203435323837.roa File: 3230332e39392e3133302e302f32332d3234203d3e203435323837.roa (raw, json) Hash identifier: uRRS1BI3sCqvIVYrv7xZEsjdYK2j2pu3KFfDFYmGVqg= Subject key identifier: CE:EF:5A:53:52:19:0D:75:63:2C:C4:36:24:B1:F1:7C:2A:A8:47:8B Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 64A5A49D0A79BAC84E64596B7C2BB17953601D52 Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230332e39392e3133302e302f32332d3234203d3e203435323837.roa Signing time: Mon 01 Jul 2024 01:02:25 +0000 ROA not before: Mon 01 Jul 2024 00:57:25 +0000 ROA not after: Mon 30 Jun 2025 01:02:25 +0000 asID: 45287 IP address blocks: 203.99.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 05:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:a5:a4:9d:0a:79:ba:c8:4e:64:59:6b:7c:2b:b1:79:53:60:1d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jul 1 00:57:25 2024 GMT Not After : Jun 30 01:02:25 2025 GMT Subject: CN=CEEF5A5352190D75632CC43624B1F17C2AA8478B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b9:28:5c:77:b6:87:9c:2f:5b:c2:01:83:65: 0c:8c:a4:00:0a:c6:1e:49:f1:f3:da:68:c4:03:ab: 24:07:1e:b7:da:f5:06:e7:a9:68:ad:f7:5e:50:56: 28:ca:a5:19:ec:e5:ce:9a:9a:97:f2:f8:c1:a8:a2: 53:c0:ce:8b:e0:e0:87:ae:bc:1c:ab:dc:b8:a6:29: 9a:9d:0d:40:5b:98:a4:1a:4b:a3:33:ba:51:20:78: 2d:cc:65:11:f2:de:4e:86:a3:24:f0:5f:58:26:a7: 65:9d:d5:dc:57:13:55:0f:ec:07:3f:41:5f:fd:1f: a8:6c:04:ab:6b:96:ac:4f:72:8b:2f:65:1e:7c:2b: cc:d4:1e:75:7d:a2:ef:24:20:3b:0b:e0:2e:75:d8: 73:ca:3b:98:a5:ff:18:63:dc:3d:72:32:c2:ea:51: 56:49:b8:5a:96:fe:f4:3a:1d:09:6d:57:3d:fc:ec: d5:c8:50:03:ba:93:98:b5:4d:2c:f9:e7:8c:6e:82: a7:c9:7f:2e:05:15:32:bd:e7:42:f2:61:fa:1c:8e: 23:de:92:a2:65:66:3c:12:8c:2b:34:a1:1c:1b:e9: 90:c6:bf:fd:38:27:40:d7:cf:eb:59:b2:8b:32:33: 00:f7:0d:ab:bd:b0:d1:a5:fa:60:4f:a6:45:36:28: 9f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EF:5A:53:52:19:0D:75:63:2C:C4:36:24:B1:F1:7C:2A:A8:47:8B X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230332e39392e3133302e302f32332d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.130.0/23 Signature Algorithm: sha256WithRSAEncryption 79:ef:89:bb:40:84:e8:65:14:5c:14:9a:37:e2:47:c2:f3:ce: 82:60:95:f6:64:41:13:9a:35:50:8e:c8:6a:a8:93:3a:03:81: f3:0e:39:4d:65:96:9f:6a:f4:1d:87:2b:df:41:65:80:34:e8: 6b:ce:10:8e:76:d2:a9:df:48:81:94:c8:75:da:e3:d8:10:c2: dc:b2:91:52:a5:b8:2e:5d:bc:98:1a:ee:2f:e5:f1:37:9b:7b: f5:f6:59:ed:bf:81:5e:ac:55:9e:db:97:5f:a2:c1:18:60:8e: b0:c3:ae:99:74:4a:ce:45:d1:9e:91:d7:6c:d9:d8:c6:e5:f2: c1:37:27:87:a5:02:3e:01:2f:12:f7:72:b2:c0:2a:eb:0c:f0: 8c:e1:e6:ca:ee:17:17:3f:a7:a7:74:f5:6d:33:8d:9e:7c:f1: 52:45:27:5d:2d:db:d6:87:4c:ca:15:2c:ff:55:90:b8:60:bd: 01:b1:9d:fc:46:ae:3f:28:40:79:4d:42:e4:2f:55:39:94:84: c4:8f:31:73:ca:1a:7c:b0:1b:3a:61:9d:ff:80:ef:f7:31:4d: fc:23:88:b1:b8:db:bf:fc:1d:9d:45:f5:e1:e4:bb:7d:62:1f: 2c:98:24:c8:d3:32:46:73:3a:ae:af:06:5b:ef:6c:35:2f:f8: 2e:b2:ca:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZKWknQp5ushOZFlrfCuxeVNgHVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yNDA3MDEwMDU3MjVaFw0yNTA2MzAwMTAyMjVaMDMxMTAvBgNV BAMTKENFRUY1QTUzNTIxOTBENzU2MzJDQzQzNjI0QjFGMTdDMkFBODQ3OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwuShcd7aHnC9bwgGDZQyMpAAK xh5J8fPaaMQDqyQHHrfa9QbnqWit915QVijKpRns5c6ampfy+MGoolPAzovg4Ieu vByr3LimKZqdDUBbmKQaS6MzulEgeC3MZRHy3k6GoyTwX1gmp2Wd1dxXE1UP7Ac/ QV/9H6hsBKtrlqxPcosvZR58K8zUHnV9ou8kIDsL4C512HPKO5il/xhj3D1yMsLq UVZJuFqW/vQ6HQltVz387NXIUAO6k5i1TSz554xugqfJfy4FFTK950LyYfocjiPe kqJlZjwSjCs0oRwb6ZDGv/04J0DXz+tZsosyMwD3Dau9sNGl+mBPpkU2KJ/DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzu9aU1IZDXVjLMQ2JLHxfCqoR4swHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMyMzAzMzJlMzkzOTJlMzEzMzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMyMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEActjgjANBgkqhkiG 9w0BAQsFAAOCAQEAee+Ju0CE6GUUXBSaN+JHwvPOgmCV9mRBE5o1UI7IaqiTOgOB 8w45TWWWn2r0HYcr30FlgDToa84QjnbSqd9IgZTIddrj2BDC3LKRUqW4Ll28mBru L+XxN5t79fZZ7b+BXqxVntuXX6LBGGCOsMOumXRKzkXRnpHXbNnYxuXywTcnh6UC PgEvEvdyssAq6wzwjOHmyu4XFz+np3T1bTONnnzxUkUnXS3b1odMyhUs/1WQuGC9 AbGd/EauPyhAeU1C5C9VOZSExI8xc8oafLAbOmGd/4Dv9zFN/COIsbjbv/wdnUX1 4eS7fWIfLJgkyNMyRnM6rq8GW+9sNS/4LrLKww== -----END CERTIFICATE-----Generated at Sat Nov 23 05:00:44 2024 by rpki-client on console-fra.rpki-client.org