$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e38392e302f32342d3234203d3e203338333230.roa File: 3230332e3137332e38392e302f32342d3234203d3e203338333230.roa (raw, json) Hash identifier: yqoedDDDQIAci7XqlS8NU6W3CjenELOyvFKZcERvyqk= Subject key identifier: 80:81:18:CC:6A:8B:21:1A:43:EE:D5:E4:1F:B1:61:42:3F:EF:08:8B Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 6776FD7C8029346206AE75FAE779B9B0398B51B0 Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e38392e302f32342d3234203d3e203338333230.roa Signing time: Wed 10 Apr 2024 04:00:00 +0000 ROA not before: Wed 10 Apr 2024 03:55:00 +0000 ROA not after: Wed 09 Apr 2025 04:00:00 +0000 asID: 38320 IP address blocks: 203.173.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:76:fd:7c:80:29:34:62:06:ae:75:fa:e7:79:b9:b0:39:8b:51:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Apr 10 03:55:00 2024 GMT Not After : Apr 9 04:00:00 2025 GMT Subject: CN=808118CC6A8B211A43EED5E41FB161423FEF088B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:12:25:89:b9:8d:de:17:48:8b:21:94:d0:08: 45:7d:f3:7e:16:d5:ad:83:64:d5:81:75:1f:c0:bf: dc:5a:94:07:2f:7a:50:8b:51:9e:0a:12:83:e6:c4: a7:fe:55:64:f5:53:41:d7:b1:de:f2:32:d8:3f:57: 84:f5:4e:97:9e:8e:30:ba:14:24:a3:c0:f1:3b:df: 7b:a1:5c:db:e1:fd:01:10:ba:e7:a9:64:6d:c4:1f: ae:6f:04:be:7d:05:d5:a7:b1:e3:42:d5:87:d0:61: e3:89:6d:98:7b:ea:51:6d:5e:2b:56:09:e6:07:2a: 47:a4:4b:ce:19:00:9d:70:73:06:a9:7e:81:d7:b8: 88:ec:00:50:51:fc:10:ad:ca:12:42:53:7e:0d:52: a7:c4:95:e6:90:e6:44:aa:b4:63:38:5e:6a:ab:ef: 8d:d5:f0:52:b1:14:f0:e7:51:3e:77:04:1c:10:74: 9a:a4:3f:ae:b2:18:4c:db:e7:0a:ad:f3:8b:fa:6f: 01:2d:38:6b:1c:55:fc:fe:0a:be:9e:ae:b8:14:e3: a3:52:48:76:fe:64:68:99:8c:05:1c:f3:c0:99:26: b3:5f:f4:23:fe:e4:02:f1:17:18:e1:80:e1:ab:0e: 07:d3:5e:8f:ff:27:ef:fc:66:97:e2:82:c4:a4:0d: 07:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:81:18:CC:6A:8B:21:1A:43:EE:D5:E4:1F:B1:61:42:3F:EF:08:8B X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e38392e302f32342d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.173.89.0/24 Signature Algorithm: sha256WithRSAEncryption 79:80:0c:50:de:23:45:57:63:89:83:71:97:c2:9c:7b:e7:6f: 0c:61:ae:92:3c:19:9e:f9:84:d2:2c:b2:b0:de:c8:2a:0a:19: 35:a1:91:06:e6:cc:17:aa:f0:c4:4c:9f:c9:01:d6:1e:03:5f: ad:90:e8:30:67:9a:65:aa:b9:84:1c:b2:fb:99:03:a2:40:26: b9:d7:92:3f:dc:19:60:ee:c9:8b:ee:dc:00:f3:d2:fc:8f:9b: 5b:ca:0a:81:fc:71:d1:0b:e5:c5:f0:c0:a9:d8:5a:88:8c:da: 04:10:16:9c:b1:ab:ef:1c:56:06:f7:93:66:e5:f0:71:34:65: ab:f0:79:90:ff:9d:f9:f9:7b:a2:a7:75:e0:d6:8d:7d:f1:15: a5:f2:dd:d1:9e:ac:6d:0c:54:09:d6:bc:e8:0e:5a:58:e8:3d: 00:cf:a0:bb:07:08:9c:fb:3b:fb:a4:a6:60:81:2b:9f:98:3c: d3:59:dc:74:c2:c3:b1:ec:a9:11:27:3d:43:63:f5:27:6e:2b: 8b:15:6e:03:1c:35:52:43:a2:a3:e9:d1:fe:1a:77:9f:72:e8: 99:13:9e:26:2b:3d:ac:c6:90:af:07:73:52:b5:e1:1f:fb:8e: 4a:77:b9:85:9e:2b:69:fd:54:6f:dc:11:9c:dd:41:7b:60:cf: 8d:cc:fd:ad -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZ3b9fIApNGIGrnX653m5sDmLUbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNDA0MTAwMzU1MDBaFw0yNTA0MDkwNDAwMDBaMDMxMTAvBgNV BAMTKDgwODExOENDNkE4QjIxMUE0M0VFRDVFNDFGQjE2MTQyM0ZFRjA4OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfEiWJuY3eF0iLIZTQCEV9834W 1a2DZNWBdR/Av9xalAcvelCLUZ4KEoPmxKf+VWT1U0HXsd7yMtg/V4T1TpeejjC6 FCSjwPE733uhXNvh/QEQuuepZG3EH65vBL59BdWnseNC1YfQYeOJbZh76lFtXitW CeYHKkekS84ZAJ1wcwapfoHXuIjsAFBR/BCtyhJCU34NUqfEleaQ5kSqtGM4Xmqr 743V8FKxFPDnUT53BBwQdJqkP66yGEzb5wqt84v6bwEtOGscVfz+Cr6errgU46NS SHb+ZGiZjAUc88CZJrNf9CP+5ALxFxjhgOGrDgfTXo//J+/8ZpfigsSkDQeRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgIEYzGqLIRpD7tXkH7FhQj/vCIswHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzAzMzJlMzEzNzMzMmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMzMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMutWTANBgkqhkiG 9w0BAQsFAAOCAQEAeYAMUN4jRVdjiYNxl8Kce+dvDGGukjwZnvmE0iyysN7IKgoZ NaGRBubMF6rwxEyfyQHWHgNfrZDoMGeaZaq5hByy+5kDokAmudeSP9wZYO7Ji+7c APPS/I+bW8oKgfxx0QvlxfDAqdhaiIzaBBAWnLGr7xxWBveTZuXwcTRlq/B5kP+d +fl7oqd14NaNffEVpfLd0Z6sbQxUCda86A5aWOg9AM+guwcInPs7+6SmYIErn5g8 01ncdMLDseypESc9Q2P1J24rixVuAxw1UkOio+nR/hp3n3LomROeJis9rMaQrwdz UrXhH/uOSne5hZ4raf1Ub9wRnN1Be2DPjcz9rQ== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org