$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31312e302f32342d3234203d3e203338373539.roa File: 3230322e3138302e31312e302f32342d3234203d3e203338373539.roa (raw, json) Hash identifier: GC2XCJMI5v5mCoLtw49+VhrJ6pQtmY4PlIeJRLvKDDg= Subject key identifier: 80:E9:5C:6E:2C:A5:5B:7A:CA:C8:4B:36:E2:40:6A:5A:CA:22:3D:21 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 1EB6526A32711A249B34B433729096DBE3FE8092 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31312e302f32342d3234203d3e203338373539.roa Signing time: Tue 16 Jul 2024 14:00:00 +0000 ROA not before: Tue 16 Jul 2024 13:55:00 +0000 ROA not after: Tue 15 Jul 2025 14:00:00 +0000 asID: 38759 IP address blocks: 202.180.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:b6:52:6a:32:71:1a:24:9b:34:b4:33:72:90:96:db:e3:fe:80:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jul 16 13:55:00 2024 GMT Not After : Jul 15 14:00:00 2025 GMT Subject: CN=80E95C6E2CA55B7ACAC84B36E2406A5ACA223D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cf:5d:e1:70:03:93:f9:26:66:92:07:eb:52: 95:33:40:54:38:1a:50:4c:89:7d:ad:29:69:43:2c: 2d:f1:4d:bd:97:3b:91:a1:fc:06:bd:fa:42:ae:73: f1:54:c1:42:c8:ab:db:63:68:66:68:43:73:65:e7: 7b:f2:3c:5c:19:c9:ab:a4:87:97:cc:43:66:13:c6: c7:0c:1d:76:a5:0a:3a:bb:57:ed:5c:6f:97:fc:6d: 35:fb:55:49:6f:83:94:c8:97:0a:08:b2:2f:f1:3c: c2:28:e5:44:18:bd:91:c6:42:de:fa:32:15:20:b7: 53:36:74:9e:26:87:d2:05:68:49:7f:02:ef:21:80: 93:8c:90:0e:53:9e:5c:d5:5d:e8:d5:dd:e7:19:8d: 2e:bc:50:49:8f:25:e7:83:6f:b2:96:5c:05:4c:e8: 76:99:7f:fe:46:27:f1:3f:aa:6f:23:76:09:24:a1: a4:41:a6:cf:f6:b8:f3:b6:67:4d:52:ab:e0:19:68: e4:ba:40:ba:a8:b8:e5:f6:34:e1:9c:d9:13:fd:a1: 51:18:3d:1d:ff:8d:57:9a:99:d9:9a:99:98:05:b4: 68:23:47:25:6c:b1:7b:19:6d:2f:24:f9:a4:df:8b: 9c:5f:04:08:b6:1d:34:73:e5:a6:6e:99:26:7f:31: ad:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E9:5C:6E:2C:A5:5B:7A:CA:C8:4B:36:E2:40:6A:5A:CA:22:3D:21 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31312e302f32342d3234203d3e203338373539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.11.0/24 Signature Algorithm: sha256WithRSAEncryption 96:7a:c9:c0:96:5e:03:4f:e5:5e:62:31:57:6a:72:3a:1a:84: ea:cd:31:06:a0:20:71:c0:79:55:12:60:84:39:67:4b:dd:30: a4:e0:ec:9d:7e:d2:6a:3e:6c:07:94:1d:de:73:4d:17:13:05: 20:44:65:d6:75:9d:fb:e9:ed:fc:e2:e8:73:a2:f7:5b:f5:ce: e4:0c:5e:9a:e3:a5:a0:37:e7:55:23:a1:91:e8:72:e7:53:e7: d8:1e:d9:d4:8a:3b:28:3b:21:5e:ab:67:16:d0:a5:69:bd:f7: d1:ae:ec:c2:ed:43:1f:e9:47:ea:31:17:a2:00:2d:25:b5:f5: 5d:59:c3:51:f9:35:6d:9f:47:ef:8a:7e:07:e6:ff:61:27:fd: e1:bb:0e:a5:23:9d:77:22:44:de:e2:b1:37:f0:e1:f8:61:95: 8a:bb:48:07:51:bd:45:83:99:e5:86:83:2d:c5:9c:7a:12:a1: 01:e5:37:0f:b8:4e:18:58:73:2f:77:4d:c5:12:0b:37:eb:90: 29:ff:1f:c6:fa:9b:d4:49:e8:75:35:24:43:44:b8:64:8a:94: 86:b2:98:50:b3:3a:70:52:d9:7c:27:46:26:1b:d7:c5:3d:00: 04:28:27:e6:c4:a0:aa:5d:25:cd:c9:be:5d:f7:28:92:83:af: f8:26:e3:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHrZSajJxGiSbNLQzcpCW2+P+gJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNDA3MTYxMzU1MDBaFw0yNTA3MTUxNDAwMDBaMDMxMTAvBgNV BAMTKDgwRTk1QzZFMkNBNTVCN0FDQUM4NEIzNkUyNDA2QTVBQ0EyMjNEMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkz13hcAOT+SZmkgfrUpUzQFQ4 GlBMiX2tKWlDLC3xTb2XO5Gh/Aa9+kKuc/FUwULIq9tjaGZoQ3Nl53vyPFwZyauk h5fMQ2YTxscMHXalCjq7V+1cb5f8bTX7VUlvg5TIlwoIsi/xPMIo5UQYvZHGQt76 MhUgt1M2dJ4mh9IFaEl/Au8hgJOMkA5TnlzVXejV3ecZjS68UEmPJeeDb7KWXAVM 6HaZf/5GJ/E/qm8jdgkkoaRBps/2uPO2Z01Sq+AZaOS6QLqouOX2NOGc2RP9oVEY PR3/jVeamdmamZgFtGgjRyVssXsZbS8k+aTfi5xfBAi2HTRz5aZumSZ/Ma05AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgOlcbiylW3rKyEs24kBqWsoiPSEwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMjJlMzEzODMwMmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0CzANBgkqhkiG 9w0BAQsFAAOCAQEAlnrJwJZeA0/lXmIxV2pyOhqE6s0xBqAgccB5VRJghDlnS90w pODsnX7Saj5sB5Qd3nNNFxMFIERl1nWd++nt/OLoc6L3W/XO5AxemuOloDfnVSOh kehy51Pn2B7Z1Io7KDshXqtnFtClab330a7swu1DH+lH6jEXogAtJbX1XVnDUfk1 bZ9H74p+B+b/YSf94bsOpSOddyJE3uKxN/Dh+GGVirtIB1G9RYOZ5YaDLcWcehKh AeU3D7hOGFhzL3dNxRILN+uQKf8fxvqb1EnodTUkQ0S4ZIqUhrKYULM6cFLZfCdG JhvXxT0ABCgn5sSgql0lzcm+XfcokoOv+CbjHg== -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org