$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3230332e32392e32362e302f32342d3234203d3e20313335343737.roa File: 3230332e32392e32362e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: 5sdbY3VZICg/l4Thx0k/TS0lWX+ToDYtenymMHLejE4= Subject key identifier: 8F:D8:C0:BB:DD:93:96:E2:4E:C6:BC:36:7D:EB:8F:6F:C4:B1:29:E4 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 28F50202180D8E88088E580374454D28F208B57B Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3230332e32392e32362e302f32342d3234203d3e20313335343737.roa Signing time: Mon 27 May 2024 23:00:01 +0000 ROA not before: Mon 27 May 2024 22:55:01 +0000 ROA not after: Mon 26 May 2025 23:00:01 +0000 asID: 135477 IP address blocks: 203.29.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:f5:02:02:18:0d:8e:88:08:8e:58:03:74:45:4d:28:f2:08:b5:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: May 27 22:55:01 2024 GMT Not After : May 26 23:00:01 2025 GMT Subject: CN=8FD8C0BBDD9396E24EC6BC367DEB8F6FC4B129E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6f:46:7b:a6:cb:ec:1f:ba:17:d7:28:37:ed: 2c:56:a0:44:04:af:04:66:86:0c:fe:d3:cf:84:8c: 99:f6:d8:58:6c:74:41:ed:58:3d:32:ac:9d:01:8e: 46:bd:06:54:33:c0:0a:22:8e:bc:b9:a6:ec:33:61: f4:69:8c:6b:a7:41:a1:c3:76:3c:1c:dc:f2:90:e2: 83:b7:b6:7e:f6:91:bf:65:00:d5:3e:7e:74:1f:40: e3:f8:66:83:cf:ba:2c:98:e7:e7:43:0d:3f:62:cb: 5b:a7:b8:8b:94:37:89:fc:7e:af:59:58:aa:05:70: b1:25:b4:cf:38:16:f4:5b:69:db:f7:40:cf:de:11: 11:c3:16:24:99:ff:34:45:52:6c:06:b3:3a:c1:ff: f8:16:45:2c:cb:20:89:01:07:79:27:37:b0:ed:02: b9:48:1a:33:c0:9e:be:99:20:47:e6:be:06:82:0e: 5f:79:4e:43:14:9d:70:c7:27:80:3e:02:c5:b2:a3: 65:4a:b6:fe:f1:8b:65:0f:4e:ed:8e:52:ce:c6:f3: 87:f4:73:19:0e:ee:db:c7:d8:b4:ab:2b:9a:68:4d: a1:af:e8:54:f7:9e:15:fa:94:04:59:f9:66:f3:1a: 7f:08:5d:5a:e1:11:91:06:e4:8d:45:d7:b3:2a:33: 32:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D8:C0:BB:DD:93:96:E2:4E:C6:BC:36:7D:EB:8F:6F:C4:B1:29:E4 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3230332e32392e32362e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.29.26.0/24 Signature Algorithm: sha256WithRSAEncryption 33:21:c9:3b:bb:20:24:1c:ee:f1:cf:12:a1:09:41:0d:f9:ea: 70:1b:c2:70:e1:ba:a7:5e:c9:8b:cb:fa:c8:56:b8:88:20:d0: f3:a6:a2:a7:ef:2c:c0:6a:e9:a1:ba:35:6a:89:61:9d:1f:ff: 9c:d2:9e:68:9b:95:65:73:d3:b1:31:69:c5:cb:2a:31:d6:5e: d2:b0:97:7d:4d:6e:e2:14:c8:38:22:cd:66:2e:12:c7:2c:59: 0a:7e:f1:c9:23:f7:28:36:4d:7f:91:13:e0:3e:38:d3:a9:3d: 25:c9:ad:1f:26:0c:9f:82:a6:27:df:b3:bf:a3:95:0a:33:62: 63:9d:09:15:b1:b4:2a:89:53:57:55:5d:e7:86:9e:e5:04:b8: 16:57:df:e2:81:df:ba:c3:19:2a:7a:47:33:9b:8f:53:3a:8a: 4e:22:88:91:8b:53:3c:18:da:67:43:94:8c:79:c3:36:fb:c5: 18:2c:62:60:4c:31:c6:98:26:0e:61:5b:bb:2b:9a:0d:69:ab: d8:04:55:6e:8e:0d:53:60:26:fd:d8:7f:29:b1:26:b3:12:3f: f8:44:5e:42:c1:91:2c:b0:c5:59:b2:fe:ab:1e:8a:ee:db:44: 20:f2:d6:48:26:dc:81:ca:88:b4:c5:0d:97:0f:e6:6a:d4:b8: b9:e0:d8:15 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKPUCAhgNjogIjlgDdEVNKPIItXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNDA1MjcyMjU1MDFaFw0yNTA1MjYyMzAwMDFaMDMxMTAvBgNV BAMTKDhGRDhDMEJCREQ5Mzk2RTI0RUM2QkMzNjdERUI4RjZGQzRCMTI5RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2b0Z7psvsH7oX1yg37SxWoEQE rwRmhgz+08+EjJn22FhsdEHtWD0yrJ0Bjka9BlQzwAoijry5puwzYfRpjGunQaHD djwc3PKQ4oO3tn72kb9lANU+fnQfQOP4ZoPPuiyY5+dDDT9iy1unuIuUN4n8fq9Z WKoFcLEltM84FvRbadv3QM/eERHDFiSZ/zRFUmwGszrB//gWRSzLIIkBB3knN7Dt ArlIGjPAnr6ZIEfmvgaCDl95TkMUnXDHJ4A+AsWyo2VKtv7xi2UPTu2OUs7G84f0 cxkO7tvH2LSrK5poTaGv6FT3nhX6lARZ+WbzGn8IXVrhEZEG5I1F17MqMzIHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj9jAu92TluJOxrw2feuPb8SxKeQwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMyMzAzMzJlMzIzOTJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMsdGjANBgkqhkiG 9w0BAQsFAAOCAQEAMyHJO7sgJBzu8c8SoQlBDfnqcBvCcOG6p17Ji8v6yFa4iCDQ 86aip+8swGrpobo1aolhnR//nNKeaJuVZXPTsTFpxcsqMdZe0rCXfU1u4hTIOCLN Zi4SxyxZCn7xySP3KDZNf5ET4D4406k9JcmtHyYMn4KmJ9+zv6OVCjNiY50JFbG0 KolTV1Vd54ae5QS4Flff4oHfusMZKnpHM5uPUzqKTiKIkYtTPBjaZ0OUjHnDNvvF GCxiYEwxxpgmDmFbuyuaDWmr2ARVbo4NU2Am/dh/KbEmsxI/+EReQsGRLLDFWbL+ qx6K7ttEIPLWSCbcgcqItMUNlw/matS4ueDYFQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:43 2024 by rpki-client on console-ams.rpki-client.org