$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36312e302f32342d3234203d3e203338373535.roa File: 3230332e3132332e36312e302f32342d3234203d3e203338373535.roa (raw, json) Hash identifier: xk8tVxqn5heNhUDrnWm94cOrNBZG78jygDDr9I5XxcA= Subject key identifier: 26:A4:4C:61:0B:89:B1:F3:7D:CE:30:6E:D2:05:55:81:80:81:FF:FB Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Certificate serial: 377C919A45A743D0FB7F756487E86A41C9267CDF Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36312e302f32342d3234203d3e203338373535.roa Signing time: Thu 01 Aug 2024 11:20:45 +0000 ROA not before: Thu 01 Aug 2024 11:15:45 +0000 ROA not after: Thu 31 Jul 2025 11:20:45 +0000 asID: 38755 IP address blocks: 203.123.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:7c:91:9a:45:a7:43:d0:fb:7f:75:64:87:e8:6a:41:c9:26:7c:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Validity Not Before: Aug 1 11:15:45 2024 GMT Not After : Jul 31 11:20:45 2025 GMT Subject: CN=26A44C610B89B1F37DCE306ED20555818081FFFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2d:3f:52:e9:8d:ab:b9:9a:50:5c:16:8a:43: 06:4c:3b:db:86:fc:99:4f:d4:67:de:ee:b1:ab:0f: 90:08:3f:6d:f8:be:25:fb:46:5c:d4:66:05:f5:d2: 76:21:84:0b:dc:2f:06:2f:fc:e5:78:92:1a:fd:51: 34:42:f8:12:6d:8e:1b:49:62:7c:17:9c:95:18:20: ad:50:e3:3a:ec:f9:ba:00:6f:fd:46:94:00:ce:39: a4:a1:20:0d:60:16:33:ec:a4:96:87:cd:46:44:9b: 5d:98:b2:a9:3d:81:8e:1b:38:f5:f8:70:28:4c:31: 99:4b:76:fa:07:35:99:ab:cc:64:a3:40:93:f3:f7: 04:76:3d:c1:44:68:20:8b:3a:54:76:b4:1b:70:54: cf:78:e9:a7:c4:b4:05:07:a9:69:0c:64:28:a4:7e: 0d:7f:e1:81:3b:24:57:12:d4:db:d4:b6:b2:a7:f3: 70:60:2a:84:6c:ec:e9:90:3c:f7:5f:1d:30:33:45: 1a:ae:a6:7c:8f:b4:cc:60:08:a0:71:5f:a0:a7:12: d7:4f:14:ff:a8:5d:b8:38:25:3e:9f:bc:b8:07:cb: 8d:cd:a7:3e:e3:b6:31:38:21:0e:97:f3:f6:c3:ab: 80:00:09:aa:3f:81:90:b1:2b:4b:fa:1a:ca:b8:8c: 07:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A4:4C:61:0B:89:B1:F3:7D:CE:30:6E:D2:05:55:81:80:81:FF:FB X509v3 Authority Key Identifier: keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36312e302f32342d3234203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.123.61.0/24 Signature Algorithm: sha256WithRSAEncryption 79:31:07:bd:08:01:bb:02:05:07:a9:30:b6:3a:d2:e2:99:d8: d8:cf:55:92:3f:16:7b:85:85:a3:3a:20:8e:40:ca:e1:c8:63: 54:8b:39:a5:f1:0a:b8:84:2b:de:f7:83:8f:33:bd:04:a9:98: 8a:29:08:33:93:4c:c5:12:cc:98:76:67:b3:ba:8e:3e:ce:3a: 52:e5:09:7c:36:af:df:cd:d3:7b:66:05:b1:15:16:ae:80:5d: ef:fe:19:c5:f2:b6:6e:ac:b3:a2:b6:33:34:25:69:4d:7f:82: 7a:5c:58:a0:27:65:f5:95:96:1c:2d:62:05:43:56:26:bf:13: 21:23:90:74:3b:36:d9:a5:bd:a3:f8:6d:be:8f:0c:e5:ec:c6: 41:4d:3a:91:8c:cb:3c:45:06:dd:7e:ad:02:69:bb:ee:ae:fe: 28:4a:6d:09:01:b8:08:67:37:10:c3:15:0e:39:ef:76:17:aa: 94:d0:49:f9:ab:b5:a3:31:39:ad:8e:b6:19:00:be:85:ca:a8: c2:62:13:03:65:f7:d8:cb:42:31:39:a5:36:74:5c:dd:26:d9: cf:24:5d:d6:09:dc:bb:b9:28:dc:6b:ef:39:f6:28:03:95:51: 8e:a8:04:b7:d7:9c:dd:e3:80:a6:94:0f:1e:ac:f3:c3:d5:36: dc:23:b4:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN3yRmkWnQ9D7f3Vkh+hqQckmfN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlE MDFCMTVDNzAeFw0yNDA4MDExMTE1NDVaFw0yNTA3MzExMTIwNDVaMDMxMTAvBgNV BAMTKDI2QTQ0QzYxMEI4OUIxRjM3RENFMzA2RUQyMDU1NTgxODA4MUZGRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/LT9S6Y2ruZpQXBaKQwZMO9uG /JlP1Gfe7rGrD5AIP234viX7RlzUZgX10nYhhAvcLwYv/OV4khr9UTRC+BJtjhtJ YnwXnJUYIK1Q4zrs+boAb/1GlADOOaShIA1gFjPspJaHzUZEm12Ysqk9gY4bOPX4 cChMMZlLdvoHNZmrzGSjQJPz9wR2PcFEaCCLOlR2tBtwVM946afEtAUHqWkMZCik fg1/4YE7JFcS1NvUtrKn83BgKoRs7OmQPPdfHTAzRRqupnyPtMxgCKBxX6CnEtdP FP+oXbg4JT6fvLgHy43Npz7jtjE4IQ6X8/bDq4AACao/gZCxK0v6Gsq4jAdBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJqRMYQuJsfN9zjBu0gVVgYCB//swHwYDVR0j BBgwFoAUn2GZAYO40QSM3+YulhbDqdAbFccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWIzOTAyYi03NDU5LTQ4NTQtYTVmNS0wOWYxNWQ4Yzg3ZDMvMC85RjYxOTkwMTgz QjhEMTA0OENERkU2MkU5NjE2QzNBOUQwMUIxNUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlEMDFC MTVDNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhYjM5MDJiLTc0NTktNDg1NC1h NWY1LTA5ZjE1ZDhjODdkMy8wLzMyMzAzMzJlMzEzMjMzMmUzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMt7PTANBgkqhkiG 9w0BAQsFAAOCAQEAeTEHvQgBuwIFB6kwtjrS4pnY2M9Vkj8We4WFozogjkDK4chj VIs5pfEKuIQr3veDjzO9BKmYiikIM5NMxRLMmHZns7qOPs46UuUJfDav383Te2YF sRUWroBd7/4ZxfK2bqyzorYzNCVpTX+CelxYoCdl9ZWWHC1iBUNWJr8TISOQdDs2 2aW9o/htvo8M5ezGQU06kYzLPEUG3X6tAmm77q7+KEptCQG4CGc3EMMVDjnvdheq lNBJ+au1ozE5rY62GQC+hcqowmITA2X32MtCMTmlNnRc3SbZzyRd1gncu7ko3Gvv OfYoA5VRjqgEt9ec3eOAppQPHqzzw9U23CO0kw== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org