$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133362e302f32342d3234203d3e203234323036.roa File: 3230332e38342e3133362e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: gQ15SQ+7CTm0lbNi34nU2xnDYGkiDVy2zZGBrQmJGtQ= Subject key identifier: 36:58:F8:44:C3:16:21:CD:08:83:8C:18:3F:B6:E2:3F:00:BD:A5:02 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 02B4427D8DB3B86C28F3752E65CA98F3397E729B Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133362e302f32342d3234203d3e203234323036.roa Signing time: Wed 03 Jul 2024 04:00:00 +0000 ROA not before: Wed 03 Jul 2024 03:55:00 +0000 ROA not after: Wed 02 Jul 2025 04:00:00 +0000 asID: 24206 IP address blocks: 203.84.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:b4:42:7d:8d:b3:b8:6c:28:f3:75:2e:65:ca:98:f3:39:7e:72:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jul 3 03:55:00 2024 GMT Not After : Jul 2 04:00:00 2025 GMT Subject: CN=3658F844C31621CD08838C183FB6E23F00BDA502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:94:d8:9d:1a:fb:3c:e5:69:36:cf:34:3b:41: d2:bc:00:65:8d:5e:43:d1:38:99:96:8d:02:d0:1a: 55:e2:24:18:6d:91:93:d6:f8:f6:29:a0:fd:0b:44: 99:ec:aa:44:74:16:5c:de:ac:54:9c:a9:b3:10:10: f9:84:7a:fc:a1:8e:4e:75:ed:33:63:11:49:17:63: 7d:e4:de:6f:1e:62:44:1a:8b:f9:21:46:cc:9a:b9: b3:6b:39:19:36:f9:71:18:4f:f9:ea:e6:ce:89:f2: e4:0e:46:d6:ae:4b:08:b3:b8:1a:aa:11:63:68:14: a3:eb:3c:8f:9f:59:9a:45:8f:c9:23:18:71:41:db: 08:a0:32:13:6f:b0:72:4e:43:0b:b7:e8:c9:36:5b: 75:9c:12:f9:34:15:02:6f:31:e9:2b:49:72:42:19: 9e:2b:54:72:78:2b:71:24:9e:7e:ac:0a:58:eb:4f: d9:0b:7d:38:1b:14:a3:c6:e6:6c:ee:d8:78:c3:95: 5a:c6:9e:c9:dc:48:cb:ac:75:e5:fa:08:49:8a:6e: 4b:31:db:be:e8:ba:68:6a:5e:19:e7:73:c0:f1:d0: 65:80:83:56:dd:3e:e6:5d:d7:ec:5e:47:37:04:09: 34:09:86:20:84:37:46:b4:76:bc:e1:6f:4d:97:d5: 54:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:58:F8:44:C3:16:21:CD:08:83:8C:18:3F:B6:E2:3F:00:BD:A5:02 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133362e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.136.0/24 Signature Algorithm: sha256WithRSAEncryption 10:9a:71:8d:e4:3a:0f:6b:05:0e:3e:13:6f:e5:a4:84:7f:52: 2d:de:a8:55:09:ee:99:0f:4c:52:54:a5:ba:f6:da:8b:4d:e0: de:73:52:2e:09:02:38:d1:6e:2a:8f:f2:f3:96:2c:cb:9b:ea: 3c:e2:50:b6:7b:33:be:42:fd:b9:94:1f:35:92:a0:91:2f:1f: fb:b6:04:7a:48:c6:e7:cb:d7:65:fe:67:09:5d:15:7f:95:ac: a6:24:6a:69:5b:b8:b7:1b:07:1a:08:93:47:26:65:81:00:00: 31:44:49:b1:05:a2:67:ee:b0:84:ff:cb:c5:0e:04:1a:fe:13: cd:62:89:3f:8b:c1:e4:b6:af:ef:0c:98:a8:22:14:26:ce:30: 41:b7:ec:1a:b5:09:dd:ad:fa:29:b4:ea:ca:e5:eb:38:31:bd: 0c:e6:ed:bc:07:02:46:6e:71:06:48:0c:8f:70:d6:15:72:a4: fd:41:e7:d8:da:e9:68:36:61:7c:2f:66:d8:d9:b9:3d:78:88: 1f:88:3a:22:99:9e:cc:5a:67:1f:c2:c8:c6:76:e1:a2:0c:64: af:7e:0e:1a:1a:57:3b:59:8f:60:d8:89:67:ea:87:58:39:8b: 37:21:6f:e4:d3:bb:50:0d:4b:19:75:27:ef:bd:5b:36:07:dd: f5:74:07:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUArRCfY2zuGwo83UuZcqY8zl+cpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA3MDMwMzU1MDBaFw0yNTA3MDIwNDAwMDBaMDMxMTAvBgNV BAMTKDM2NThGODQ0QzMxNjIxQ0QwODgzOEMxODNGQjZFMjNGMDBCREE1MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDulNidGvs85Wk2zzQ7QdK8AGWN XkPROJmWjQLQGlXiJBhtkZPW+PYpoP0LRJnsqkR0FlzerFScqbMQEPmEevyhjk51 7TNjEUkXY33k3m8eYkQai/khRsyaubNrORk2+XEYT/nq5s6J8uQORtauSwizuBqq EWNoFKPrPI+fWZpFj8kjGHFB2wigMhNvsHJOQwu36Mk2W3WcEvk0FQJvMekrSXJC GZ4rVHJ4K3Eknn6sCljrT9kLfTgbFKPG5mzu2HjDlVrGnsncSMusdeX6CEmKbksx 277oumhqXhnnc8Dx0GWAg1bdPuZd1+xeRzcECTQJhiCEN0a0drzhb02X1VQlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNlj4RMMWIc0Ig4wYP7biPwC9pQIwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtUiDANBgkqhkiG 9w0BAQsFAAOCAQEAEJpxjeQ6D2sFDj4Tb+WkhH9SLd6oVQnumQ9MUlSluvbai03g 3nNSLgkCONFuKo/y85Ysy5vqPOJQtnszvkL9uZQfNZKgkS8f+7YEekjG58vXZf5n CV0Vf5WspiRqaVu4txsHGgiTRyZlgQAAMURJsQWiZ+6whP/LxQ4EGv4TzWKJP4vB 5Lav7wyYqCIUJs4wQbfsGrUJ3a36KbTqyuXrODG9DObtvAcCRm5xBkgMj3DWFXKk /UHn2NrpaDZhfC9m2Nm5PXiIH4g6IpmezFpnH8LIxnbhogxkr34OGhpXO1mPYNiJ Z+qHWDmLNyFv5NO7UA1LGXUn771bNgfd9XQHRA== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org