$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20393834.roa File: 3230332e38342e3133382e302f32342d3234203d3e20393834.roa (raw, json) Hash identifier: OvL2f4eV/dIS/ISoFQJ5cS+0xjddfINmJd9dof7YWKE= Subject key identifier: 21:0B:9D:29:B4:80:12:A5:BF:68:98:BC:40:20:03:B3:92:39:42:E1 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 2DA56DA721EFDF7A7895791A156BC84ED5C024A4 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20393834.roa Signing time: Mon 30 Sep 2024 08:54:59 +0000 ROA not before: Mon 30 Sep 2024 08:49:59 +0000 ROA not after: Mon 29 Sep 2025 08:54:59 +0000 asID: 984 IP address blocks: 203.84.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:a5:6d:a7:21:ef:df:7a:78:95:79:1a:15:6b:c8:4e:d5:c0:24:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Sep 30 08:49:59 2024 GMT Not After : Sep 29 08:54:59 2025 GMT Subject: CN=210B9D29B48012A5BF6898BC402003B3923942E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:18:31:a8:54:22:bd:7a:e1:5b:e1:02:54:ed: 9d:28:9b:5e:32:4a:a1:6e:fc:1f:de:10:84:00:a1: ab:70:62:8a:58:53:89:b0:93:04:24:3b:6b:3d:6c: 0c:91:da:b5:46:b6:6b:b1:cc:bc:37:02:71:02:24: 12:e7:94:0a:26:5e:04:a1:3f:e1:36:c7:0a:c3:c5: f8:f5:80:3d:e2:59:e8:a8:a4:22:61:8d:df:eb:df: 08:45:2c:81:46:23:c4:04:39:b1:78:e4:81:7e:cc: 98:e2:da:be:46:16:08:11:d5:3b:7b:31:3c:21:45: d5:e2:e9:e4:ee:ed:2c:7f:4f:78:6c:b4:10:d4:e4: 40:a0:c4:bf:62:a0:ec:83:e7:90:74:6d:1d:a8:e0: d3:be:06:7b:36:ea:3c:47:56:73:29:02:a2:83:dc: 4e:5d:44:c4:9e:8c:0b:38:22:f6:5d:2c:a3:0a:75: 6d:41:ae:d4:b4:45:cb:89:2b:80:8c:89:16:9b:5a: d2:5a:a6:ed:85:29:91:f3:ab:8d:67:43:85:35:69: 23:a7:48:26:a6:23:f0:3e:d4:1d:54:e3:14:0f:77: 9c:5d:ba:ee:95:3c:44:b8:12:a8:27:94:02:6a:c6: 18:26:d4:7e:1a:75:fc:b3:f8:29:2b:71:85:6d:07: 12:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0B:9D:29:B4:80:12:A5:BF:68:98:BC:40:20:03:B3:92:39:42:E1 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e20393834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.138.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:7f:9e:9d:1a:72:b6:96:bb:eb:67:91:cd:ca:03:0b:77:8b: 19:d3:ab:8f:08:72:39:67:46:c9:7f:40:69:7e:d9:68:bb:b6: 22:26:e1:a4:4c:63:d7:b5:64:c5:de:f8:b9:29:44:d5:39:b9: a5:3f:cc:d1:28:e1:b6:8a:44:85:8c:c5:16:8e:ad:8c:81:d7: c4:9a:cb:f9:dd:be:b7:6d:3d:a0:a6:9b:78:16:2d:2f:03:f3: 5b:c9:0f:0d:b9:4f:b2:21:0e:5e:48:60:5b:78:2a:0c:14:0e: d8:45:93:c7:41:68:c0:ad:c0:dd:1e:df:60:84:8e:25:9f:10: 0c:f2:84:f4:1e:f2:3e:f8:88:5c:3a:95:60:fc:d4:2b:74:30: cc:c1:ad:94:a4:51:5b:59:b2:e5:6e:6e:91:8e:63:d7:aa:99: 2e:fa:c0:6d:ef:aa:41:4d:98:46:26:c1:28:e6:e8:5e:fb:71: 89:ca:5a:f1:9a:a9:2a:ef:e0:8a:4e:bf:55:d6:1e:6f:f0:05: 5a:6d:64:af:8f:72:f2:57:24:ac:c9:df:c2:b5:63:87:25:d8: 8d:d8:d8:9d:dd:a8:d9:f8:6d:a5:94:e6:71:0f:a2:97:c6:92: e3:04:a2:d7:25:2a:cc:bd:9b:01:e5:85:3e:62:28:2a:f6:62: 6c:d4:e1:04 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIULaVtpyHv33p4lXkaFWvITtXAJKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA5MzAwODQ5NTlaFw0yNTA5MjkwODU0NTlaMDMxMTAvBgNV BAMTKDIxMEI5RDI5QjQ4MDEyQTVCRjY4OThCQzQwMjAwM0IzOTIzOTQyRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwGDGoVCK9euFb4QJU7Z0om14y SqFu/B/eEIQAoatwYopYU4mwkwQkO2s9bAyR2rVGtmuxzLw3AnECJBLnlAomXgSh P+E2xwrDxfj1gD3iWeiopCJhjd/r3whFLIFGI8QEObF45IF+zJji2r5GFggR1Tt7 MTwhRdXi6eTu7Sx/T3hstBDU5ECgxL9ioOyD55B0bR2o4NO+Bns26jxHVnMpAqKD 3E5dRMSejAs4IvZdLKMKdW1BrtS0RcuJK4CMiRabWtJapu2FKZHzq41nQ4U1aSOn SCamI/A+1B1U4xQPd5xduu6VPES4EqgnlAJqxhgm1H4adfyz+CkrcYVtBxLBAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUIQudKbSAEqW/aJi8QCADs5I5QuEwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTc5MjJmODktM2U5Yi00YjIxLTkx ODYtYTY0OGMyZGEzZjdiLzAvMzIzMDMzMmUzODM0MmUzMTMzMzgyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzOTM4MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLVIowDQYJKoZIhvcNAQEL BQADggEBAB9/np0acraWu+tnkc3KAwt3ixnTq48IcjlnRsl/QGl+2Wi7tiIm4aRM Y9e1ZMXe+LkpRNU5uaU/zNEo4baKRIWMxRaOrYyB18Say/ndvrdtPaCmm3gWLS8D 81vJDw25T7IhDl5IYFt4KgwUDthFk8dBaMCtwN0e32CEjiWfEAzyhPQe8j74iFw6 lWD81Ct0MMzBrZSkUVtZsuVubpGOY9eqmS76wG3vqkFNmEYmwSjm6F77cYnKWvGa qSrv4IpOv1XWHm/wBVptZK+PcvJXJKzJ38K1Y4cl2I3Y2J3dqNn4baWU5nEPopfG kuMEotclKsy9mwHlhT5iKCr2YmzU4QQ= -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org