$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa File: 3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa (raw, json) Hash identifier: KnuT4VJ8iLWdqrErOu2FeJ8mmwI6wwnIx48WuNVZS4g= Subject key identifier: C2:42:C4:8E:8D:73:07:60:21:E5:CD:B2:83:20:43:2D:9F:E2:37:F4 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 0152C41D2BB8E3DBA1DE3D6152FE21B68AECFBDA Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa Signing time: Wed 02 Oct 2024 02:51:30 +0000 ROA not before: Wed 02 Oct 2024 02:46:30 +0000 ROA not after: Wed 01 Oct 2025 02:51:30 +0000 asID: 138843 IP address blocks: 203.84.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:52:c4:1d:2b:b8:e3:db:a1:de:3d:61:52:fe:21:b6:8a:ec:fb:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Oct 2 02:46:30 2024 GMT Not After : Oct 1 02:51:30 2025 GMT Subject: CN=C242C48E8D73076021E5CDB28320432D9FE237F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bc:a8:c0:ae:6e:5d:c6:58:bf:c8:59:cf:13: 9c:67:4c:ff:e4:09:fc:06:f2:c2:6b:2b:a5:7c:9a: 06:2c:e4:02:1d:72:77:02:90:fd:1e:17:21:7b:a9: 38:bd:58:7b:67:c7:87:ff:11:b6:83:48:48:7b:c8: a3:9b:3f:88:34:0f:64:66:7e:22:7f:b2:35:c8:8c: 63:9e:e9:c9:99:2b:55:4c:9d:18:b2:41:91:63:bc: 88:5d:93:84:c0:ec:5a:6d:17:b8:93:e3:5b:22:a8: d3:a7:4a:67:c8:e5:f2:33:eb:be:34:d0:54:28:a9: bc:b0:d6:76:70:9a:ce:d6:ad:d4:3d:e6:46:3f:ec: 9e:04:d8:93:0d:db:2d:c4:05:ad:77:b9:e6:9c:89: a4:3b:60:dd:f5:5c:57:f0:30:3c:51:d8:18:95:31: 4d:c8:5b:04:ad:49:76:bd:4f:d0:3e:fa:9f:8c:09: 3e:62:8a:24:07:ab:cb:6c:06:5e:d9:eb:f4:73:0e: 7b:05:90:ed:15:9f:8a:24:ce:98:af:27:26:14:0f: bf:9e:41:63:88:0f:61:85:cf:06:a0:9c:68:07:7f: f7:63:e0:22:60:59:f7:cd:e8:f6:53:76:8a:9b:51: b7:cc:c7:ef:9d:84:9c:d3:59:c9:f2:cb:4d:8a:b2: 7b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:42:C4:8E:8D:73:07:60:21:E5:CD:B2:83:20:43:2D:9F:E2:37:F4 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.142.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:f7:a1:00:cb:df:84:9d:32:3d:9e:96:c2:5d:67:e7:d6:6e: bd:e1:af:7a:49:4e:0c:d9:50:b5:a7:3d:6a:70:87:c9:94:16: ef:80:82:d2:c8:f8:a9:ac:0b:79:5d:8e:b0:8b:ca:fe:7b:d8: 7b:d7:65:81:b3:0e:64:fd:dc:e5:c4:ca:df:12:8d:86:df:bd: a1:af:44:bf:de:84:44:92:dd:b6:8a:2f:78:22:32:00:ab:b4: 6d:43:aa:b4:ab:94:ba:ec:fe:f7:23:98:a6:d3:f2:bc:51:23: 0e:46:bd:3a:ee:99:bf:2a:ce:44:42:8a:67:f7:3e:11:3f:a2: 44:72:79:ec:a1:e4:79:89:02:17:c3:6d:d1:cb:75:cd:1f:cb: a0:9c:0c:3f:a4:21:d1:b9:7c:b1:61:ce:8f:7f:45:be:97:11: 29:6b:86:d6:03:d2:b2:a5:10:80:a5:ce:fd:e8:e5:99:e0:58: 29:4f:ad:7c:f8:72:cf:64:29:e8:7e:c0:2d:02:df:0e:ef:75: 52:7b:97:db:48:a5:b1:e7:84:0a:8b:3b:2d:6b:78:13:27:f4: 60:b0:dc:f3:6d:11:32:61:88:5c:da:fc:d6:a7:79:d8:e8:53: 17:90:e7:4f:49:ff:80:f8:4d:2d:c8:1d:6d:8b:a8:01:ff:da: b8:b6:09:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAVLEHSu449uh3j1hUv4htors+9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDEwMDIwMjQ2MzBaFw0yNTEwMDEwMjUxMzBaMDMxMTAvBgNV BAMTKEMyNDJDNDhFOEQ3MzA3NjAyMUU1Q0RCMjgzMjA0MzJEOUZFMjM3RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNvKjArm5dxli/yFnPE5xnTP/k CfwG8sJrK6V8mgYs5AIdcncCkP0eFyF7qTi9WHtnx4f/EbaDSEh7yKObP4g0D2Rm fiJ/sjXIjGOe6cmZK1VMnRiyQZFjvIhdk4TA7FptF7iT41siqNOnSmfI5fIz6740 0FQoqbyw1nZwms7WrdQ95kY/7J4E2JMN2y3EBa13ueaciaQ7YN31XFfwMDxR2BiV MU3IWwStSXa9T9A++p+MCT5iiiQHq8tsBl7Z6/RzDnsFkO0Vn4okzpivJyYUD7+e QWOID2GFzwagnGgHf/dj4CJgWffN6PZTdoqbUbfMx++dhJzTWcnyy02KsnuvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwkLEjo1zB2Ah5c2ygyBDLZ/iN/QwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SOMA0GCSqG SIb3DQEBCwUAA4IBAQA/96EAy9+EnTI9npbCXWfn1m694a96SU4M2VC1pz1qcIfJ lBbvgILSyPiprAt5XY6wi8r+e9h712WBsw5k/dzlxMrfEo2G372hr0S/3oREkt22 ii94IjIAq7RtQ6q0q5S67P73I5im0/K8USMORr067pm/Ks5EQopn9z4RP6JEcnns oeR5iQIXw23Ry3XNH8ugnAw/pCHRuXyxYc6Pf0W+lxEpa4bWA9KypRCApc796OWZ 4FgpT618+HLPZCnofsAtAt8O73VSe5fbSKWx54QKizsta3gTJ/RgsNzzbREyYYhc 2vzWp3nY6FMXkOdPSf+A+E0tyB1ti6gB/9q4tgl+ -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org