$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134312e302f32342d3234203d3e203234323036.roa File: 3230332e38342e3134312e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: 8l5eYrcFmWYoHIRslSOK/QjIOtGdM4ToITrA74vyIxo= Subject key identifier: 74:57:5A:2B:D4:CE:37:2B:6B:9C:08:53:B9:3E:D6:45:3B:C9:03:69 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 5C166282F742B7B0309F8750705DA8DDAB9F6FAA Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134312e302f32342d3234203d3e203234323036.roa Signing time: Fri 30 Aug 2024 16:00:01 +0000 ROA not before: Fri 30 Aug 2024 15:55:01 +0000 ROA not after: Fri 29 Aug 2025 16:00:01 +0000 asID: 24206 IP address blocks: 203.84.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:16:62:82:f7:42:b7:b0:30:9f:87:50:70:5d:a8:dd:ab:9f:6f:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 30 15:55:01 2024 GMT Not After : Aug 29 16:00:01 2025 GMT Subject: CN=74575A2BD4CE372B6B9C0853B93ED6453BC90369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:24:7e:e9:46:78:80:d6:2b:7f:27:85:48:35: 9f:ff:f7:a8:1a:fd:7b:34:ff:b5:af:6a:d1:71:e2: 6f:4c:6e:3c:61:f0:4f:55:7e:26:48:77:b3:2e:4f: ef:6d:57:86:e8:60:08:32:1d:20:43:d5:93:ca:8d: f8:43:cd:e7:f4:cb:6f:99:40:4b:89:53:4a:cf:27: 7f:e5:88:a3:9c:b4:b0:64:66:66:2f:4b:c2:21:bf: 1d:ed:33:da:b1:8d:86:cb:1e:1c:db:f8:b6:a4:fa: 66:a5:25:3e:c2:f9:f2:f5:02:2f:45:d6:b9:b9:9c: 77:e2:a2:40:2b:b8:17:e7:42:14:74:67:fc:d9:12: 35:7e:b8:89:f2:0c:f6:34:77:83:67:44:05:ae:80: 57:8f:cb:64:e9:32:91:73:fb:47:24:ec:d9:b6:52: d7:e4:cb:30:cf:45:f4:3b:c4:40:76:df:e1:99:94: 4c:6f:b9:9a:d6:d7:f1:a6:dd:80:cb:90:25:82:88: 0f:c9:ee:75:68:4e:ef:c8:9e:9e:ca:23:68:3f:68: b3:99:a6:c7:6c:2d:bc:56:cb:d5:af:60:d4:d7:ef: 78:4d:0f:f1:a7:89:ec:39:5a:6b:ae:2a:a6:2c:d1: d2:5c:9d:b1:68:21:4d:af:89:3e:00:b7:f5:b5:e1: dc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:57:5A:2B:D4:CE:37:2B:6B:9C:08:53:B9:3E:D6:45:3B:C9:03:69 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134312e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.141.0/24 Signature Algorithm: sha256WithRSAEncryption c0:5b:0a:c6:b8:35:df:9b:29:e4:f2:72:5d:2f:cf:63:28:cc: b4:74:f6:a0:27:5b:be:c7:54:fb:1b:77:d5:c7:22:69:20:78: c9:a9:9d:6d:3d:a4:65:ce:00:c7:5e:30:ba:67:26:8d:0e:06: 1f:e6:e5:6a:17:8c:ea:87:e8:af:df:5c:fe:ad:5f:6b:2c:e3: 0c:96:d3:d7:dd:63:2d:73:27:0d:ea:35:68:94:88:9b:f0:c2: ce:d4:6c:12:47:53:7c:06:90:28:bd:93:c2:bd:cf:27:c8:37: e9:92:2d:c9:6d:05:80:58:87:6d:76:a7:36:83:0e:61:0e:ff: 95:cb:2b:ca:2f:bc:e1:da:d2:c7:91:b0:d9:81:40:b8:d9:08: f2:d2:0e:dd:6b:8a:e3:94:29:79:fe:17:12:53:36:d0:6f:98: 2f:78:89:82:b7:8f:c8:bb:32:c3:9a:fc:39:ca:bb:3f:4b:e7: 14:f5:b3:29:ba:89:eb:51:d3:9e:16:5a:d9:3a:a6:e9:c4:5a: 4a:5a:c8:83:71:31:9d:02:98:54:64:52:8c:c7:1d:df:5a:86: 7b:40:04:2d:7a:89:c5:06:fe:a6:b3:34:18:cc:cf:6b:17:f0: 21:98:fd:68:e6:c6:b8:b4:ed:e1:cc:10:34:aa:b3:73:99:19: 06:34:c1:17 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXBZigvdCt7Awn4dQcF2o3aufb6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA4MzAxNTU1MDFaFw0yNTA4MjkxNjAwMDFaMDMxMTAvBgNV BAMTKDc0NTc1QTJCRDRDRTM3MkI2QjlDMDg1M0I5M0VENjQ1M0JDOTAzNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6JH7pRniA1it/J4VINZ//96ga /Xs0/7WvatFx4m9Mbjxh8E9VfiZId7MuT+9tV4boYAgyHSBD1ZPKjfhDzef0y2+Z QEuJU0rPJ3/liKOctLBkZmYvS8Ihvx3tM9qxjYbLHhzb+Lak+malJT7C+fL1Ai9F 1rm5nHfiokAruBfnQhR0Z/zZEjV+uInyDPY0d4NnRAWugFePy2TpMpFz+0ck7Nm2 UtfkyzDPRfQ7xEB23+GZlExvuZrW1/Gm3YDLkCWCiA/J7nVoTu/Inp7KI2g/aLOZ psdsLbxWy9WvYNTX73hND/Gniew5WmuuKqYs0dJcnbFoIU2viT4At/W14dw7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdFdaK9TONytrnAhTuT7WRTvJA2kwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtUjTANBgkqhkiG 9w0BAQsFAAOCAQEAwFsKxrg135sp5PJyXS/PYyjMtHT2oCdbvsdU+xt31cciaSB4 yamdbT2kZc4Ax14wumcmjQ4GH+blaheM6ofor99c/q1fayzjDJbT191jLXMnDeo1 aJSIm/DCztRsEkdTfAaQKL2Twr3PJ8g36ZItyW0FgFiHbXanNoMOYQ7/lcsryi+8 4drSx5Gw2YFAuNkI8tIO3WuK45Qpef4XElM20G+YL3iJgrePyLsyw5r8Ocq7P0vn FPWzKbqJ61HTnhZa2Tqm6cRaSlrIg3ExnQKYVGRSjMcd31qGe0AELXqJxQb+prM0 GMzPaxfwIZj9aObGuLTt4cwQNKqzc5kZBjTBFw== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org