$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31302e302f32342d3234203d3e203338373539.roa File: 3230322e3138302e31302e302f32342d3234203d3e203338373539.roa (raw, json) Hash identifier: fHTsVCG7K78xsYdQYrXe0iF193572ZNYm2zJxFOLSIo= Subject key identifier: 53:F4:E5:55:F9:24:B5:1C:4C:EA:E4:B0:23:D9:4A:10:A7:37:46:FB Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 3BA057B137C49466E26E9ACB590D9C914E90794E Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31302e302f32342d3234203d3e203338373539.roa Signing time: Tue 16 Jul 2024 14:00:00 +0000 ROA not before: Tue 16 Jul 2024 13:55:00 +0000 ROA not after: Tue 15 Jul 2025 14:00:00 +0000 asID: 38759 IP address blocks: 202.180.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a0:57:b1:37:c4:94:66:e2:6e:9a:cb:59:0d:9c:91:4e:90:79:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jul 16 13:55:00 2024 GMT Not After : Jul 15 14:00:00 2025 GMT Subject: CN=53F4E555F924B51C4CEAE4B023D94A10A73746FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b2:ff:80:3e:b2:89:40:b4:0a:00:22:f9:a1: 17:f1:1d:55:2b:c3:16:8f:fe:23:2b:9f:23:ba:9d: a2:b8:3b:aa:b2:9b:68:e4:ef:40:fc:28:51:ea:a7: 17:b0:4d:b1:4b:b9:c7:01:f5:3b:b9:04:0b:72:db: c4:65:4a:f6:a0:35:78:4d:3d:e2:6a:b1:9e:b9:31: bf:3c:f7:02:4f:af:e8:0e:b1:7c:42:26:18:dd:df: d2:96:f2:20:1a:cf:bb:8f:01:56:cd:44:a7:f6:9b: 7f:ea:ab:94:8b:16:bf:a5:9c:11:ab:5b:75:c9:ee: 4a:6d:74:c3:ac:a9:09:75:48:3a:73:9d:e4:79:79: 13:86:20:9f:6e:82:08:8b:2c:66:7d:bd:b1:ca:cc: 23:83:55:de:3a:32:44:fc:ea:73:86:34:ee:15:82: 3a:f5:d6:61:bf:76:33:46:bc:8b:4f:c9:f9:78:43: 70:ef:f9:09:3f:d8:07:bd:69:c5:79:ca:61:d8:b7: 5d:9e:bb:c3:3e:48:65:80:f9:c2:4b:00:95:37:fc: aa:b9:85:c6:c2:e7:1f:cf:a4:f1:ea:ba:25:7e:bc: 50:98:e9:18:18:4f:ab:4a:c8:da:d9:a4:9a:cb:dd: 85:88:86:8a:4b:80:de:3e:5c:f5:24:78:88:95:a2: 70:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:F4:E5:55:F9:24:B5:1C:4C:EA:E4:B0:23:D9:4A:10:A7:37:46:FB X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31302e302f32342d3234203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.10.0/24 Signature Algorithm: sha256WithRSAEncryption 42:53:ba:06:76:e2:6c:c0:09:ae:b3:79:5a:f2:ea:a7:c0:e6: 7d:2f:4f:d5:34:e0:6f:0c:97:ad:7e:79:dd:99:3e:ea:30:b1: 8d:a8:b0:8d:ec:6b:89:ba:71:fb:59:53:d0:87:9b:11:49:df: 49:52:83:12:88:b5:68:a6:26:62:49:4f:95:58:a5:fb:45:6f: 0f:21:33:2b:eb:24:00:de:26:59:fc:4a:2c:7b:82:5f:90:65: d4:cf:31:64:94:c2:7c:74:9c:95:bb:95:b3:ac:16:33:af:c1: 6b:53:ee:00:bd:b4:15:57:a1:a8:89:b5:32:00:49:3e:09:5a: 55:63:3e:5f:95:70:43:e4:d6:bc:1f:0b:31:e5:24:44:f7:78: 86:08:82:06:49:70:7b:16:b5:a9:c9:f1:61:7d:30:2b:c0:b3: 2b:64:06:1b:86:db:e6:ba:6e:a8:7e:54:58:fc:76:48:8d:66: 76:62:f5:d8:43:58:e8:46:7c:3c:40:d1:80:fd:9b:a8:d5:74: 66:95:97:11:21:32:2a:e3:e5:b7:8c:95:66:7d:a8:75:20:76: cd:93:35:bb:55:2b:f3:81:e3:68:99:ac:93:cb:94:ac:19:c5: 5e:f0:9c:ea:73:0b:ca:b2:8c:69:a3:ad:7d:a1:78:8a:e8:fe: a7:9e:c6:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO6BXsTfElGbibprLWQ2ckU6QeU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNDA3MTYxMzU1MDBaFw0yNTA3MTUxNDAwMDBaMDMxMTAvBgNV BAMTKDUzRjRFNTU1RjkyNEI1MUM0Q0VBRTRCMDIzRDk0QTEwQTczNzQ2RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXsv+APrKJQLQKACL5oRfxHVUr wxaP/iMrnyO6naK4O6qym2jk70D8KFHqpxewTbFLuccB9Tu5BAty28RlSvagNXhN PeJqsZ65Mb889wJPr+gOsXxCJhjd39KW8iAaz7uPAVbNRKf2m3/qq5SLFr+lnBGr W3XJ7kptdMOsqQl1SDpzneR5eROGIJ9uggiLLGZ9vbHKzCODVd46MkT86nOGNO4V gjr11mG/djNGvItPyfl4Q3Dv+Qk/2Ae9acV5ymHYt12eu8M+SGWA+cJLAJU3/Kq5 hcbC5x/PpPHquiV+vFCY6RgYT6tKyNrZpJrL3YWIhopLgN4+XPUkeIiVonBxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUU/TlVfkktRxM6uSwI9lKEKc3RvswHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMjJlMzEzODMwMmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0CjANBgkqhkiG 9w0BAQsFAAOCAQEAQlO6BnbibMAJrrN5WvLqp8DmfS9P1TTgbwyXrX553Zk+6jCx jaiwjexribpx+1lT0IebEUnfSVKDEoi1aKYmYklPlVil+0VvDyEzK+skAN4mWfxK LHuCX5Bl1M8xZJTCfHSclbuVs6wWM6/Ba1PuAL20FVehqIm1MgBJPglaVWM+X5Vw Q+TWvB8LMeUkRPd4hgiCBklwexa1qcnxYX0wK8CzK2QGG4bb5rpuqH5UWPx2SI1m dmL12ENY6EZ8PEDRgP2bqNV0ZpWXESEyKuPlt4yVZn2odSB2zZM1u1Ur84HjaJms k8uUrBnFXvCc6nMLyrKMaaOtfaF4iuj+p57G2Q== -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org