$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20313338303737.roa File: 3230332e38342e3133382e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: BYrXc+PLZ/j21jMX4S/tR9RU/3h3VFerg2jw36ACe00= Subject key identifier: 0D:15:75:92:C1:DF:C4:B0:A0:59:C1:2A:9C:A5:56:21:40:00:5A:00 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 49D2FBD0AC20501D94EF65C61A1D056B19421B89 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20313338303737.roa Signing time: Fri 18 Oct 2024 06:25:04 +0000 ROA not before: Fri 18 Oct 2024 06:20:04 +0000 ROA not after: Fri 17 Oct 2025 06:25:04 +0000 asID: 138077 IP address blocks: 203.84.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d2:fb:d0:ac:20:50:1d:94:ef:65:c6:1a:1d:05:6b:19:42:1b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Oct 18 06:20:04 2024 GMT Not After : Oct 17 06:25:04 2025 GMT Subject: CN=0D157592C1DFC4B0A059C12A9CA5562140005A00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7c:b4:e3:75:d7:52:86:95:d9:a3:f6:2b:92: a9:48:58:1d:3f:c6:63:7f:dd:a0:50:7d:98:86:e0: a0:b3:c1:bc:f2:6b:d8:97:58:f8:be:a8:27:83:56: 86:4b:82:cc:eb:7d:ea:2f:c0:51:46:f7:36:e8:ec: 10:1a:d2:6c:a4:1b:5f:1c:e9:d6:32:ae:d3:b2:2d: 72:f4:7e:67:f5:08:cd:6e:6c:f5:40:68:a7:82:db: f8:69:b9:5e:32:7a:46:61:c5:af:71:ec:58:7f:42: 84:8c:cd:6b:32:3a:44:0f:40:c2:d4:ac:f2:75:7b: 81:11:0b:15:1d:c4:c1:5f:d7:da:7b:a9:5a:b2:0c: f9:f4:bb:98:08:14:c4:b6:8b:2f:66:2c:22:be:28: 03:3f:cd:57:af:15:65:59:98:23:47:73:a9:7c:ef: f4:eb:5f:90:1b:20:af:f6:3b:f4:d3:6d:d9:7d:d2: ce:8b:98:43:a8:4d:3c:c2:8e:88:bc:86:5f:85:aa: cd:94:53:83:ed:f5:4e:ec:36:89:83:3f:66:ae:f9: c2:e6:12:cf:fd:80:87:58:53:63:79:ee:57:7e:ef: 74:13:8d:ea:7f:33:dc:a8:02:4a:38:38:ef:5d:ba: ef:50:ef:6b:1d:01:2a:f8:80:d3:5d:e9:a5:b6:aa: 0b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:15:75:92:C1:DF:C4:B0:A0:59:C1:2A:9C:A5:56:21:40:00:5A:00 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.138.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:c9:a5:1d:11:f6:08:b4:db:13:49:3c:bd:86:77:c0:7b:ff: 75:36:b9:d4:e6:59:23:f1:55:60:13:36:20:77:12:d5:96:6e: 99:1c:42:73:c1:49:ae:d1:6e:39:41:84:a7:7d:db:38:dd:65: ca:c5:85:19:44:a8:3e:71:67:23:af:68:17:57:db:94:39:78: e1:c4:a4:e3:f6:ed:13:20:cb:cd:0b:3f:cd:b9:f1:ab:1c:2e: 72:b9:ee:17:04:88:38:43:3f:5c:53:31:be:31:2e:c5:eb:06: 3a:8b:6d:ed:65:d2:00:7a:17:42:84:e9:2a:ae:ab:3b:83:9f: 7e:5a:ce:4a:fa:9a:be:76:d6:fa:f5:98:55:12:cb:84:62:fa: 2c:46:c3:27:8a:84:30:7d:ac:a8:63:ee:41:9a:a3:14:d4:f0: d3:0d:42:30:39:b5:f8:4f:15:f0:b7:e1:31:6f:9b:6d:6e:c8: de:a7:8c:87:ea:c8:52:4b:31:c6:9e:bd:fc:7d:f5:5d:99:31: ef:68:df:81:88:03:ba:b5:ee:49:07:67:be:15:54:d2:74:87: ac:1b:ac:e5:be:dc:6a:de:69:9a:43:b3:6b:7c:ce:92:5c:df: 71:e5:28:84:bf:e0:32:52:b2:be:b4:14:08:be:00:a3:8e:dc: 53:75:3b:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSdL70KwgUB2U72XGGh0FaxlCG4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDEwMTgwNjIwMDRaFw0yNTEwMTcwNjI1MDRaMDMxMTAvBgNV BAMTKDBEMTU3NTkyQzFERkM0QjBBMDU5QzEyQTlDQTU1NjIxNDAwMDVBMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtfLTjdddShpXZo/YrkqlIWB0/ xmN/3aBQfZiG4KCzwbzya9iXWPi+qCeDVoZLgszrfeovwFFG9zbo7BAa0mykG18c 6dYyrtOyLXL0fmf1CM1ubPVAaKeC2/hpuV4yekZhxa9x7Fh/QoSMzWsyOkQPQMLU rPJ1e4ERCxUdxMFf19p7qVqyDPn0u5gIFMS2iy9mLCK+KAM/zVevFWVZmCNHc6l8 7/TrX5AbIK/2O/TTbdl90s6LmEOoTTzCjoi8hl+Fqs2UU4Pt9U7sNomDP2au+cLm Es/9gIdYU2N57ld+73QTjep/M9yoAko4OO9duu9Q72sdASr4gNNd6aW2qgsJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDRV1ksHfxLCgWcEqnKVWIUAAWgAwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SKMA0GCSqG SIb3DQEBCwUAA4IBAQBKyaUdEfYItNsTSTy9hnfAe/91NrnU5lkj8VVgEzYgdxLV lm6ZHEJzwUmu0W45QYSnfds43WXKxYUZRKg+cWcjr2gXV9uUOXjhxKTj9u0TIMvN Cz/NufGrHC5yue4XBIg4Qz9cUzG+MS7F6wY6i23tZdIAehdChOkqrqs7g59+Ws5K +pq+dtb69ZhVEsuEYvosRsMnioQwfayoY+5BmqMU1PDTDUIwObX4TxXwt+Exb5tt bsjep4yH6shSSzHGnr38ffVdmTHvaN+BiAO6te5JB2e+FVTSdIesG6zlvtxq3mma Q7NrfM6SXN9x5SiEv+AyUrK+tBQIvgCjjtxTdTvt -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org