$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/3230332e3139302e34302e302f32312d3234203d3e203435333137.roa File: 3230332e3139302e34302e302f32312d3234203d3e203435333137.roa (raw, json) Hash identifier: UntS03Fy9UKQKVa2b6UiWbhsnYfFOzEge7i2YcSkebg= Subject key identifier: 39:3B:76:E1:58:05:79:DA:A8:AF:07:C9:95:9D:C3:BA:3C:BA:2D:E6 Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 63197F616C62DD6A81567BDA2E9517B16A39177A Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/3230332e3139302e34302e302f32312d3234203d3e203435333137.roa Signing time: Mon 25 Dec 2023 14:00:00 +0000 ROA not before: Mon 25 Dec 2023 13:55:00 +0000 ROA not after: Mon 23 Dec 2024 14:00:00 +0000 asID: 45317 IP address blocks: 203.190.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 20:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:19:7f:61:6c:62:dd:6a:81:56:7b:da:2e:95:17:b1:6a:39:17:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: Dec 25 13:55:00 2023 GMT Not After : Dec 23 14:00:00 2024 GMT Subject: CN=393B76E1580579DAA8AF07C9959DC3BA3CBA2DE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:68:37:09:15:02:99:1b:ef:33:97:58:12:7c: ae:c2:47:00:27:a0:3d:93:4e:de:94:0c:cb:38:82: 8e:2a:c6:f1:d8:e6:c7:7d:21:b8:ef:44:28:76:14: 1c:2b:3d:64:23:1a:d4:a6:f4:37:96:df:b7:1b:37: 4b:64:6b:84:40:d5:07:fe:ae:7e:ed:e1:b5:d9:ab: 85:23:be:91:b6:c2:70:03:e5:50:d6:fa:c9:2e:59: ac:42:31:83:64:95:29:4d:c3:95:b7:f5:b4:9d:88: d9:62:2e:db:19:7a:36:92:95:8c:24:32:a2:c6:c5: b2:29:31:cf:8a:65:d4:a7:73:a9:62:38:85:26:d9: 85:15:c4:ea:2e:ba:39:b9:6f:07:3e:2e:13:a4:eb: 9f:0f:14:1a:26:d4:e0:f9:51:f8:d2:d3:50:5a:24: 73:9a:08:d6:e0:f4:90:c8:ed:0f:7c:4c:48:24:2f: fb:d4:75:93:d0:38:d8:14:a9:0a:63:b2:b3:f7:ce: 91:75:88:07:f2:ad:db:3e:36:af:ed:24:3e:77:6e: 7d:c6:c9:29:a3:df:20:40:22:96:67:e5:29:0d:eb: c8:ed:56:52:d5:ee:23:8b:3b:8c:2f:72:31:63:ed: ef:04:2d:80:ce:6c:42:01:11:29:86:a6:60:b9:78: ba:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3B:76:E1:58:05:79:DA:A8:AF:07:C9:95:9D:C3:BA:3C:BA:2D:E6 X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/3230332e3139302e34302e302f32312d3234203d3e203435333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.40.0/21 Signature Algorithm: sha256WithRSAEncryption 49:86:a6:9a:20:99:52:31:e8:3d:26:38:32:ac:09:0e:68:c2: 56:b1:72:cb:45:cb:c6:3a:58:37:54:6d:d2:79:c8:03:83:64: 98:1d:7e:f6:8e:18:81:75:cb:7b:78:d3:46:5b:94:f8:77:d3: a1:62:62:3a:64:62:ad:ec:b0:86:20:74:70:fa:0d:fa:64:68: c4:86:e0:62:54:04:82:5f:ea:fd:f0:f2:6f:50:73:59:aa:cc: 3e:7c:4a:be:8d:fe:a9:f4:de:f9:08:63:6a:36:03:53:eb:b8: a7:74:2a:81:e8:48:f2:18:a1:99:99:ad:5e:a5:70:88:bd:96: 3c:62:ef:2c:df:9c:6a:d1:71:48:e9:4f:50:7b:9b:62:b4:ec: 0f:8d:fd:2d:5e:99:e6:c6:4a:90:27:91:69:30:e1:8c:85:27: 8d:96:dc:32:7d:fa:53:c8:5e:88:5c:04:45:19:32:4b:bb:55: 02:48:0b:09:1b:21:9e:7e:f2:c4:79:c0:15:35:a0:d1:0c:44: 1b:b3:fa:fd:7e:81:34:97:db:fc:28:0d:06:d4:11:86:51:ad: 51:ab:f4:53:be:63:d5:86:90:49:34:d0:4e:29:71:b5:eb:a5: 60:0a:86:e0:ed:85:be:99:ff:d4:cb:1e:09:62:3a:0f:22:1b: c5:af:d0:6c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYxl/YWxi3WqBVnvaLpUXsWo5F3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yMzEyMjUxMzU1MDBaFw0yNDEyMjMxNDAwMDBaMDMxMTAvBgNV BAMTKDM5M0I3NkUxNTgwNTc5REFBOEFGMDdDOTk1OURDM0JBM0NCQTJERTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxaDcJFQKZG+8zl1gSfK7CRwAn oD2TTt6UDMs4go4qxvHY5sd9IbjvRCh2FBwrPWQjGtSm9DeW37cbN0tka4RA1Qf+ rn7t4bXZq4UjvpG2wnAD5VDW+skuWaxCMYNklSlNw5W39bSdiNliLtsZejaSlYwk MqLGxbIpMc+KZdSnc6liOIUm2YUVxOouujm5bwc+LhOk658PFBom1OD5UfjS01Ba JHOaCNbg9JDI7Q98TEgkL/vUdZPQONgUqQpjsrP3zpF1iAfyrds+Nq/tJD53bn3G ySmj3yBAIpZn5SkN68jtVlLV7iOLO4wvcjFj7e8ELYDObEIBESmGpmC5eLrhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOTt24VgFedqorwfJlZ3Dujy6LeYwHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkYWNjMzY1LWUxOTQtNGFjMC05 NTNhLTRkZjNhNTkwMGIxNC8wLzMyMzAzMzJlMzEzOTMwMmUzNDMwMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTMzMzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8u+KDANBgkqhkiG 9w0BAQsFAAOCAQEASYammiCZUjHoPSY4MqwJDmjCVrFyy0XLxjpYN1Rt0nnIA4Nk mB1+9o4YgXXLe3jTRluU+HfToWJiOmRireywhiB0cPoN+mRoxIbgYlQEgl/q/fDy b1BzWarMPnxKvo3+qfTe+QhjajYDU+u4p3QqgehI8hihmZmtXqVwiL2WPGLvLN+c atFxSOlPUHubYrTsD439LV6Z5sZKkCeRaTDhjIUnjZbcMn36U8heiFwERRkyS7tV AkgLCRshnn7yxHnAFTWg0QxEG7P6/X6BNJfb/CgNBtQRhlGtUav0U75j1YaQSTTQ TilxteulYAqG4O2Fvpn/1MseCWI6DyIbxa/QbA== -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org