$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134332e302f32342d3234203d3e20313530393732.roa File: 3230332e38342e3134332e302f32342d3234203d3e20313530393732.roa (raw, json) Hash identifier: 0PFfSypPWNkUeezO3p2ch7NKNyPePX3Q2s2UePk6yNM= Subject key identifier: C0:62:AE:F5:EB:30:2B:0C:12:F2:8A:8A:A5:5F:53:78:73:CB:96:6E Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 14308BA120CD6F0234A197FC2ABC3C7504051CEA Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134332e302f32342d3234203d3e20313530393732.roa Signing time: Tue 02 Apr 2024 13:00:00 +0000 ROA not before: Tue 02 Apr 2024 12:55:00 +0000 ROA not after: Tue 01 Apr 2025 13:00:00 +0000 asID: 150972 IP address blocks: 203.84.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:30:8b:a1:20:cd:6f:02:34:a1:97:fc:2a:bc:3c:75:04:05:1c:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Apr 2 12:55:00 2024 GMT Not After : Apr 1 13:00:00 2025 GMT Subject: CN=C062AEF5EB302B0C12F28A8AA55F537873CB966E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:14:ab:55:91:51:33:f1:64:ec:41:e9:90:97: a6:58:b5:48:79:4c:ec:21:60:01:87:60:4d:40:fa: 43:0f:51:d8:ce:24:ca:a9:02:fb:e2:8b:9d:8c:1d: 3b:b3:16:3e:38:06:18:de:f7:4c:89:6e:6c:20:f2: 19:5d:c6:d4:52:c4:da:a1:78:4f:75:3c:09:fb:d2: b5:58:42:38:d2:61:92:23:a7:95:17:c2:eb:52:a6: 95:37:ba:21:e0:f1:de:ef:1e:db:d3:9c:01:ba:af: 0a:1f:e2:ef:89:a9:47:c8:49:35:5c:64:1e:b4:ae: e8:08:14:7b:91:c7:27:2f:2a:64:3e:e0:7a:72:bd: 4a:d4:83:26:75:37:c1:39:87:c8:e2:c5:f5:35:9b: 2d:48:d4:c3:a9:57:a8:11:46:2c:dc:60:e9:62:f3: 67:48:7e:b4:d0:3b:fa:18:a3:8a:86:c3:f6:19:a4: 53:22:a1:4f:aa:57:bb:83:b7:ef:8c:3a:ec:d2:92: f8:7a:b4:60:46:10:a3:1b:ce:a8:b6:5d:ac:6d:b5: a8:43:20:85:eb:f7:4b:76:be:e2:72:b5:48:57:8b: e4:6b:89:b0:e9:58:d2:c3:03:29:1d:04:62:4a:92: 82:b4:94:94:d3:7a:06:2f:2d:7b:a5:3a:9f:09:66: f2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:62:AE:F5:EB:30:2B:0C:12:F2:8A:8A:A5:5F:53:78:73:CB:96:6E X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134332e302f32342d3234203d3e20313530393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.143.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:0f:ba:ff:f6:fa:1a:c3:6d:60:da:be:07:15:28:4b:34:67: 81:3e:65:6b:dd:f9:dd:0b:d2:45:a5:db:93:c0:e9:98:2e:a6: 5e:93:c2:3e:9f:86:14:a2:b9:b1:5b:e5:1b:20:69:7b:48:0d: fa:b6:2d:c4:fa:9a:45:ac:bb:7d:14:69:cb:d0:a2:93:af:8e: ab:b9:e3:2e:00:05:10:36:4a:21:f5:c4:85:23:a6:75:5d:a6: 0d:5e:fa:bf:28:2a:3e:c2:92:90:22:d4:39:0a:82:c6:cc:7e: cc:1f:d7:17:18:e6:97:db:d3:c6:e3:1b:0e:e2:19:12:bb:28: 81:a1:7a:7a:01:29:6f:51:c1:1c:89:9e:6c:3d:7a:52:ca:ad: fc:2f:fe:d0:d2:86:67:9d:d8:ae:63:e2:52:aa:a6:e6:52:b6: ab:83:16:f1:0e:09:b9:a2:93:47:1b:a0:4e:e8:c6:82:91:33: c5:ca:a1:48:55:76:95:a7:d9:21:3e:46:fd:f3:11:11:6d:5f: 59:42:21:1a:8e:08:da:05:3a:16:f1:11:d0:c7:fd:16:51:93: 2a:4a:0a:7c:62:0e:4b:1f:a2:c0:83:28:24:d7:ed:dc:42:0d: 0b:3b:66:90:bd:fd:74:27:5c:aa:24:88:22:8a:ac:80:ab:29: aa:c6:5a:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFDCLoSDNbwI0oZf8Krw8dQQFHOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA0MDIxMjU1MDBaFw0yNTA0MDExMzAwMDBaMDMxMTAvBgNV BAMTKEMwNjJBRUY1RUIzMDJCMEMxMkYyOEE4QUE1NUY1Mzc4NzNDQjk2NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZFKtVkVEz8WTsQemQl6ZYtUh5 TOwhYAGHYE1A+kMPUdjOJMqpAvvii52MHTuzFj44Bhje90yJbmwg8hldxtRSxNqh eE91PAn70rVYQjjSYZIjp5UXwutSppU3uiHg8d7vHtvTnAG6rwof4u+JqUfISTVc ZB60rugIFHuRxycvKmQ+4HpyvUrUgyZ1N8E5h8jixfU1my1I1MOpV6gRRizcYOli 82dIfrTQO/oYo4qGw/YZpFMioU+qV7uDt++MOuzSkvh6tGBGEKMbzqi2XaxttahD IIXr90t2vuJytUhXi+RribDpWNLDAykdBGJKkoK0lJTTegYvLXulOp8JZvK3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwGKu9eswKwwS8oqKpV9TeHPLlm4wHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy1SPMA0GCSqG SIb3DQEBCwUAA4IBAQBfD7r/9voaw21g2r4HFShLNGeBPmVr3fndC9JFpduTwOmY LqZek8I+n4YUormxW+UbIGl7SA36ti3E+ppFrLt9FGnL0KKTr46rueMuAAUQNkoh 9cSFI6Z1XaYNXvq/KCo+wpKQItQ5CoLGzH7MH9cXGOaX29PG4xsO4hkSuyiBoXp6 ASlvUcEciZ5sPXpSyq38L/7Q0oZnndiuY+JSqqbmUrargxbxDgm5opNHG6BO6MaC kTPFyqFIVXaVp9khPkb98xERbV9ZQiEajgjaBToW8RHQx/0WUZMqSgp8Yg5LH6LA gygk1+3cQg0LO2aQvf10J1yqJIgiiqyAqymqxloN -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org