$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36322e302f32332d3234203d3e203338373535.roa File: 3230332e3132332e36322e302f32332d3234203d3e203338373535.roa (raw, json) Hash identifier: rCl3Wuft1WIRGE3tw3SxP242bdORGtg1GIBI8B19PUM= Subject key identifier: 81:6B:2A:01:14:B4:F7:0E:50:35:86:9C:BD:99:95:95:F7:C9:D4:18 Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Certificate serial: 2203CF3527066813306B6F4C60760431C3259B02 Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36322e302f32332d3234203d3e203338373535.roa Signing time: Thu 01 Aug 2024 11:24:44 +0000 ROA not before: Thu 01 Aug 2024 11:19:44 +0000 ROA not after: Thu 31 Jul 2025 11:24:44 +0000 asID: 38755 IP address blocks: 203.123.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:03:cf:35:27:06:68:13:30:6b:6f:4c:60:76:04:31:c3:25:9b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Validity Not Before: Aug 1 11:19:44 2024 GMT Not After : Jul 31 11:24:44 2025 GMT Subject: CN=816B2A0114B4F70E5035869CBD999595F7C9D418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:46:87:2d:d5:b2:8b:b1:c3:41:4f:db:6f:a4: 2c:e4:c8:85:59:e8:40:05:d8:c5:04:5b:f4:5b:d7: 92:57:b7:9b:5d:14:0f:30:06:26:9b:ac:c9:f6:ed: 16:98:17:36:a2:e2:1a:b9:a3:4d:9b:e8:ee:1f:01: ff:85:03:bd:47:b2:39:f8:a2:10:87:95:1d:23:9c: db:11:de:68:1a:5d:91:a4:57:b2:24:83:1d:cf:d3: bc:6d:16:ac:92:47:46:a8:15:71:d9:2c:20:bf:12: 21:a0:6b:3f:e9:f4:31:14:6b:60:d2:b2:10:a0:56: 2d:7d:71:20:c4:4e:13:3a:5c:0b:0e:2e:c4:1d:c3: 44:75:f4:cd:07:14:69:30:23:8a:71:7a:fd:1b:53: 82:aa:19:34:3b:5e:b1:a2:a9:e9:99:3b:e3:b5:38: 71:06:d9:d7:cd:b6:fb:1e:60:35:32:3a:73:ff:26: f4:45:1c:2e:e5:43:06:53:e6:4a:03:a7:61:c8:43: 35:7f:dc:1d:a5:5d:8f:7c:07:68:44:c5:d2:be:ce: ba:ca:c3:38:8d:ce:ea:5d:2a:c4:e5:85:47:41:8d: ab:71:ed:4e:d4:6e:4d:06:fd:29:db:fd:70:26:91: a9:83:eb:bc:a5:7a:82:f7:c5:fa:1b:d1:49:5a:f7: d1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:6B:2A:01:14:B4:F7:0E:50:35:86:9C:BD:99:95:95:F7:C9:D4:18 X509v3 Authority Key Identifier: keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36322e302f32332d3234203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.123.62.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:3d:a1:44:9f:29:f0:f6:2b:2b:4d:c7:6f:dd:26:75:74:1a: 52:18:a4:8d:6d:a7:fd:a2:a7:3d:37:7e:0e:35:35:9d:09:93: 46:7b:c8:4d:42:bd:73:98:75:30:9d:34:14:b5:35:6f:2c:7e: e4:45:50:01:83:f2:ee:e9:1a:a4:e9:c9:00:9d:d1:96:bc:97: f6:ae:1a:9d:46:48:36:c8:dd:ac:bc:5f:8e:a6:94:aa:4d:2a: 95:4a:81:3a:e4:2a:a1:bb:38:b4:82:90:45:c7:f2:d2:b0:8a: 12:12:88:78:06:bc:03:59:56:ec:ef:bc:d9:e6:06:f9:8a:ed: 89:50:4f:af:27:5d:ec:04:29:16:b2:e9:ad:5c:63:3e:58:70: 4c:0e:d8:91:a0:8e:de:34:16:e1:d6:0f:29:cd:28:d3:2f:90: ef:8c:2a:7e:36:7a:38:a1:c7:dc:76:f6:51:b2:a5:70:fb:38: 79:f5:e2:1a:08:3c:06:6a:3a:02:0c:e0:ae:4b:e0:f1:b8:f2: 9c:24:1a:57:1d:cb:59:e3:29:83:7f:a8:45:83:80:54:60:14: 96:97:1b:12:35:67:e9:e0:cf:2d:65:3e:42:bb:0f:22:d4:5f: 8c:18:df:0a:b1:dd:45:6f:e8:87:15:a5:0d:58:18:45:e3:d7: 2d:39:48:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIgPPNScGaBMwa29MYHYEMcMlmwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlE MDFCMTVDNzAeFw0yNDA4MDExMTE5NDRaFw0yNTA3MzExMTI0NDRaMDMxMTAvBgNV BAMTKDgxNkIyQTAxMTRCNEY3MEU1MDM1ODY5Q0JEOTk5NTk1RjdDOUQ0MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnRoct1bKLscNBT9tvpCzkyIVZ 6EAF2MUEW/Rb15JXt5tdFA8wBiabrMn27RaYFzai4hq5o02b6O4fAf+FA71Hsjn4 ohCHlR0jnNsR3mgaXZGkV7Ikgx3P07xtFqySR0aoFXHZLCC/EiGgaz/p9DEUa2DS shCgVi19cSDEThM6XAsOLsQdw0R19M0HFGkwI4pxev0bU4KqGTQ7XrGiqemZO+O1 OHEG2dfNtvseYDUyOnP/JvRFHC7lQwZT5koDp2HIQzV/3B2lXY98B2hExdK+zrrK wziNzupdKsTlhUdBjatx7U7Ubk0G/Snb/XAmkamD67yleoL3xfob0Ula99GRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgWsqARS09w5QNYacvZmVlffJ1BgwHwYDVR0j BBgwFoAUn2GZAYO40QSM3+YulhbDqdAbFccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWIzOTAyYi03NDU5LTQ4NTQtYTVmNS0wOWYxNWQ4Yzg3ZDMvMC85RjYxOTkwMTgz QjhEMTA0OENERkU2MkU5NjE2QzNBOUQwMUIxNUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlEMDFC MTVDNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhYjM5MDJiLTc0NTktNDg1NC1h NWY1LTA5ZjE1ZDhjODdkMy8wLzMyMzAzMzJlMzEzMjMzMmUzNjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAct7PjANBgkqhkiG 9w0BAQsFAAOCAQEAmj2hRJ8p8PYrK03Hb90mdXQaUhikjW2n/aKnPTd+DjU1nQmT RnvITUK9c5h1MJ00FLU1byx+5EVQAYPy7ukapOnJAJ3RlryX9q4anUZINsjdrLxf jqaUqk0qlUqBOuQqobs4tIKQRcfy0rCKEhKIeAa8A1lW7O+82eYG+YrtiVBPrydd 7AQpFrLprVxjPlhwTA7YkaCO3jQW4dYPKc0o0y+Q74wqfjZ6OKHH3Hb2UbKlcPs4 efXiGgg8Bmo6Agzgrkvg8bjynCQaVx3LWeMpg3+oRYOAVGAUlpcbEjVn6eDPLWU+ QrsPItRfjBjfCrHdRW/ohxWlDVgYRePXLTlIXw== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org