$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36332e302f32342d3234203d3e203338373535.roa File: 3230332e3132332e36332e302f32342d3234203d3e203338373535.roa (raw, json) Hash identifier: odz+XvlU6wUZHmxANYcPfjvU3FxzONeuGBAElE5SFM8= Subject key identifier: 22:93:DB:1F:16:C4:B9:2B:D2:74:E8:74:F3:3C:B9:41:E9:E2:25:B4 Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Certificate serial: 03BDBA298115E37C64AF839EC1A415E43BD0A9AA Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36332e302f32342d3234203d3e203338373535.roa Signing time: Thu 01 Aug 2024 11:23:26 +0000 ROA not before: Thu 01 Aug 2024 11:18:26 +0000 ROA not after: Thu 31 Jul 2025 11:23:26 +0000 asID: 38755 IP address blocks: 203.123.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:bd:ba:29:81:15:e3:7c:64:af:83:9e:c1:a4:15:e4:3b:d0:a9:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Validity Not Before: Aug 1 11:18:26 2024 GMT Not After : Jul 31 11:23:26 2025 GMT Subject: CN=2293DB1F16C4B92BD274E874F33CB941E9E225B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:2e:a7:d6:ab:b1:12:ef:41:20:1d:ac:1c:40: 31:08:84:5b:6b:88:1b:eb:70:f7:97:16:0c:81:b8: 04:48:95:d8:68:e4:34:3a:e7:1b:ff:f7:22:d2:a8: 0e:7e:c4:71:83:4c:16:de:e9:33:ff:dc:8b:ca:e3: 5e:60:b2:3d:05:41:66:a3:2f:6b:06:64:b6:c4:60: 45:01:d5:df:41:ea:26:44:54:51:26:82:58:67:97: 6e:74:e0:40:44:fd:ff:cb:e7:5c:27:fc:26:54:c6: 6d:07:04:7c:c5:73:d8:fd:71:a7:de:d6:24:a1:d7: 2f:1d:a0:79:e1:5f:a6:a6:82:b7:f6:5c:a9:23:2e: 6a:8d:72:40:9a:7d:25:90:f9:9f:55:d9:4c:df:9c: bc:26:09:18:d8:a2:31:ff:93:24:8d:e9:50:a8:8b: 10:58:a2:27:6e:22:da:91:f7:e3:76:15:8d:1f:77: e0:4a:a0:d5:35:91:79:da:91:83:99:7a:81:a1:c0: 0a:4c:b3:65:ba:d0:9f:71:61:ba:1e:64:61:a8:14: b7:b2:d8:37:cf:c4:57:86:dc:8b:c9:97:d5:66:3e: 1e:c5:50:38:dc:d7:7e:e1:65:fe:58:f1:61:02:1d: 7d:10:13:59:4f:e9:6a:b3:87:ef:d2:06:30:9e:41: 7f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:93:DB:1F:16:C4:B9:2B:D2:74:E8:74:F3:3C:B9:41:E9:E2:25:B4 X509v3 Authority Key Identifier: keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36332e302f32342d3234203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.123.63.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:68:0b:12:86:db:06:c0:ba:0e:ce:df:e9:98:a0:82:23:65: f9:f5:d4:8c:8b:40:b6:95:a9:c7:6b:63:64:ae:94:81:3a:6e: 8d:b8:fd:06:be:a8:98:87:7f:f2:95:dd:b9:1c:03:07:81:0a: 71:35:fe:5c:ae:7a:84:49:15:b3:00:a3:52:39:f8:1e:76:13: 4a:06:d6:af:e2:8a:4e:63:66:dd:9e:aa:99:cb:15:9e:13:06: a1:97:ad:77:15:63:7f:15:1b:c0:9c:60:97:c9:e9:f2:a9:df: 0b:ab:91:8f:98:50:e0:43:92:ee:d1:b3:22:ba:31:51:0a:8d: 22:d2:7e:53:b5:11:cf:18:fd:59:b3:0f:f8:5e:c5:c6:6a:9b: e1:ef:8f:e5:0b:90:6d:33:d9:21:67:c3:63:34:f7:18:79:79: 44:6f:68:5e:e5:6c:4c:6c:fb:b2:38:87:77:bc:c7:b1:3f:d7: 4f:1d:3d:0e:7f:4a:ad:df:a4:65:77:b4:3e:63:51:2a:b0:ea: a3:d8:75:fb:9d:c0:3b:db:77:42:93:8f:ae:17:ab:e8:50:d5: 47:ba:e2:87:38:88:95:ed:c5:f2:57:1a:2b:66:3f:89:b5:53: 0e:65:cb:83:cc:9c:15:bb:34:67:f6:d4:7d:d4:37:de:46:ee: 2d:19:73:4d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA726KYEV43xkr4OewaQV5DvQqaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlE MDFCMTVDNzAeFw0yNDA4MDExMTE4MjZaFw0yNTA3MzExMTIzMjZaMDMxMTAvBgNV BAMTKDIyOTNEQjFGMTZDNEI5MkJEMjc0RTg3NEYzM0NCOTQxRTlFMjI1QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2LqfWq7ES70EgHawcQDEIhFtr iBvrcPeXFgyBuARIldho5DQ65xv/9yLSqA5+xHGDTBbe6TP/3IvK415gsj0FQWaj L2sGZLbEYEUB1d9B6iZEVFEmglhnl2504EBE/f/L51wn/CZUxm0HBHzFc9j9cafe 1iSh1y8doHnhX6amgrf2XKkjLmqNckCafSWQ+Z9V2UzfnLwmCRjYojH/kySN6VCo ixBYoiduItqR9+N2FY0fd+BKoNU1kXnakYOZeoGhwApMs2W60J9xYboeZGGoFLey 2DfPxFeG3IvJl9VmPh7FUDjc137hZf5Y8WECHX0QE1lP6Wqzh+/SBjCeQX9DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIpPbHxbEuSvSdOh08zy5QeniJbQwHwYDVR0j BBgwFoAUn2GZAYO40QSM3+YulhbDqdAbFccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWIzOTAyYi03NDU5LTQ4NTQtYTVmNS0wOWYxNWQ4Yzg3ZDMvMC85RjYxOTkwMTgz QjhEMTA0OENERkU2MkU5NjE2QzNBOUQwMUIxNUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlEMDFC MTVDNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhYjM5MDJiLTc0NTktNDg1NC1h NWY1LTA5ZjE1ZDhjODdkMy8wLzMyMzAzMzJlMzEzMjMzMmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMt7PzANBgkqhkiG 9w0BAQsFAAOCAQEAa2gLEobbBsC6Ds7f6ZiggiNl+fXUjItAtpWpx2tjZK6UgTpu jbj9Br6omId/8pXduRwDB4EKcTX+XK56hEkVswCjUjn4HnYTSgbWr+KKTmNm3Z6q mcsVnhMGoZetdxVjfxUbwJxgl8np8qnfC6uRj5hQ4EOS7tGzIroxUQqNItJ+U7UR zxj9WbMP+F7Fxmqb4e+P5QuQbTPZIWfDYzT3GHl5RG9oXuVsTGz7sjiHd7zHsT/X Tx09Dn9Krd+kZXe0PmNRKrDqo9h1+53AO9t3QpOPrher6FDVR7rihziIle3F8lca K2Y/ibVTDmXLg8ycFbs0Z/bUfdQ33kbuLRlzTQ== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org