$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e38382e302f32342d3234203d3e20313339343630.roa File: 3230332e3137332e38382e302f32342d3234203d3e20313339343630.roa (raw, json) Hash identifier: fIWHy9l+N/QO+tBo3ilMztWSdGR1eW6EpWyFJ98Yeww= Subject key identifier: F9:88:C8:8C:CF:9D:6B:D6:BC:06:9E:9C:09:63:01:2A:9B:0A:8A:C5 Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 624008E9673D42BD20250923B381D6FE4230FFD9 Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e38382e302f32342d3234203d3e20313339343630.roa Signing time: Wed 10 Apr 2024 04:00:00 +0000 ROA not before: Wed 10 Apr 2024 03:55:00 +0000 ROA not after: Wed 09 Apr 2025 04:00:00 +0000 asID: 139460 IP address blocks: 203.173.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:40:08:e9:67:3d:42:bd:20:25:09:23:b3:81:d6:fe:42:30:ff:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Apr 10 03:55:00 2024 GMT Not After : Apr 9 04:00:00 2025 GMT Subject: CN=F988C88CCF9D6BD6BC069E9C0963012A9B0A8AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:1e:e6:d1:ea:d7:fd:fa:51:33:ca:88:01: 2a:73:80:0a:f7:8a:05:75:9f:8c:b2:77:05:05:5e: 71:ec:5c:df:31:10:53:bd:5b:4f:c7:7e:65:35:78: e2:de:00:72:33:0d:4c:d5:09:fd:88:fb:30:84:ec: 09:8e:88:b2:91:91:17:00:ac:35:cd:77:23:20:56: fa:48:66:a8:8c:5f:b9:e8:9d:0a:44:e2:78:59:92: ba:82:84:3c:f8:48:a5:b7:c5:d0:f7:ea:50:e9:18: 00:1f:28:bf:81:ba:55:c4:59:64:eb:f7:63:5a:75: e9:da:f8:96:21:50:52:bd:03:ef:79:41:dd:2c:0f: 95:ea:d7:b6:35:ef:be:b7:70:38:5e:6d:c3:5e:28: eb:dc:32:7a:a9:70:47:87:d3:ef:b1:07:83:e2:81: ad:5a:53:71:2c:1d:2a:8b:d4:b7:61:ca:9d:78:44: 32:ca:48:4f:6c:bd:d7:50:15:ee:ce:84:8f:e4:f8: 39:14:0c:77:20:70:c1:0c:3d:93:45:06:ef:96:c1: f0:58:50:ac:fd:18:8e:a3:d2:fc:d0:08:92:60:8a: a7:9b:6c:7d:5e:eb:9d:7f:ae:58:25:b7:c4:d3:c4: 75:8e:60:c0:70:82:2c:e0:1f:9b:58:a4:c2:69:88: a8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:88:C8:8C:CF:9D:6B:D6:BC:06:9E:9C:09:63:01:2A:9B:0A:8A:C5 X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e38382e302f32342d3234203d3e20313339343630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.173.88.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:bd:c5:cd:88:ed:6e:c3:85:74:78:27:3b:22:45:4a:74:1e: 56:8a:9c:09:9c:13:68:0a:31:92:c8:4f:92:55:1b:99:c0:d6: 9a:d9:0c:cd:a9:f0:7f:30:4e:bb:8b:89:65:19:4f:c6:5e:e6: 5f:9e:96:5b:7c:2a:bc:42:3a:7f:ea:e5:58:b5:ba:32:b0:91: c4:2f:64:79:77:63:84:c2:98:d4:c6:96:48:b8:01:6f:38:42: 88:10:9b:cc:80:81:d7:3b:8d:cf:fc:e4:2a:c7:69:83:96:03: 20:70:8d:cc:cd:61:64:30:f6:1c:33:e0:fa:dd:44:9d:aa:a5: 7b:f2:58:f9:93:74:cc:f5:84:a6:d6:72:13:78:fa:f8:fb:56: 03:61:81:35:89:e1:aa:b4:9a:ac:a5:ea:82:3e:be:b5:be:d6: 77:b5:a7:b4:af:26:74:81:a3:c0:b2:66:70:34:10:88:36:d7: 5c:4b:d4:9a:d1:3c:87:52:52:8c:a9:46:05:7f:e9:91:21:a1: 31:ad:f9:74:8a:69:46:66:f7:1d:f6:dd:4e:ab:9b:dd:c7:36: b0:86:35:cd:68:e0:42:a4:b5:82:03:7e:4d:84:d2:da:6e:29: e3:97:bc:26:1e:08:b0:d1:df:34:4a:70:ad:4f:d9:f8:07:39: 0c:aa:27:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYkAI6Wc9Qr0gJQkjs4HW/kIw/9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNDA0MTAwMzU1MDBaFw0yNTA0MDkwNDAwMDBaMDMxMTAvBgNV BAMTKEY5ODhDODhDQ0Y5RDZCRDZCQzA2OUU5QzA5NjMwMTJBOUIwQThBQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8XR7m0erX/fpRM8qIASpzgAr3 igV1n4yydwUFXnHsXN8xEFO9W0/HfmU1eOLeAHIzDUzVCf2I+zCE7AmOiLKRkRcA rDXNdyMgVvpIZqiMX7nonQpE4nhZkrqChDz4SKW3xdD36lDpGAAfKL+BulXEWWTr 92Nadena+JYhUFK9A+95Qd0sD5Xq17Y17763cDhebcNeKOvcMnqpcEeH0++xB4Pi ga1aU3EsHSqL1Ldhyp14RDLKSE9svddQFe7OhI/k+DkUDHcgcMEMPZNFBu+WwfBY UKz9GI6j0vzQCJJgiqebbH1e651/rlglt8TTxHWOYMBwgizgH5tYpMJpiKh7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+YjIjM+da9a8Bp6cCWMBKpsKisUwHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzAzMzJlMzEzNzMzMmUzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy61YMA0GCSqG SIb3DQEBCwUAA4IBAQBcvcXNiO1uw4V0eCc7IkVKdB5WipwJnBNoCjGSyE+SVRuZ wNaa2QzNqfB/ME67i4llGU/GXuZfnpZbfCq8Qjp/6uVYtboysJHEL2R5d2OEwpjU xpZIuAFvOEKIEJvMgIHXO43P/OQqx2mDlgMgcI3MzWFkMPYcM+D63USdqqV78lj5 k3TM9YSm1nITePr4+1YDYYE1ieGqtJqspeqCPr61vtZ3tae0ryZ0gaPAsmZwNBCI NtdcS9Sa0TyHUlKMqUYFf+mRIaExrfl0imlGZvcd9t1Oq5vdxzawhjXNaOBCpLWC A35NhNLabinjl7wmHgiw0d80SnCtT9n4BzkMqidq -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org