$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa File: 3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa (raw, json) Hash identifier: l4Hpwoucqog07JfbNAts5uB2DNvqXqdsL4bwZpkXcXA= Subject key identifier: FB:B5:51:B9:8B:74:8C:4F:2C:D6:20:EE:13:5C:24:EC:D6:8E:7D:5D Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 16903E7C11636C6736CB29C8313C3B1B44862D52 Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa Signing time: Fri 01 Mar 2024 06:56:43 +0000 ROA not before: Fri 01 Mar 2024 06:51:43 +0000 ROA not after: Fri 28 Feb 2025 06:56:43 +0000 asID: 139460 IP address blocks: 203.173.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:90:3e:7c:11:63:6c:67:36:cb:29:c8:31:3c:3b:1b:44:86:2d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Mar 1 06:51:43 2024 GMT Not After : Feb 28 06:56:43 2025 GMT Subject: CN=FBB551B98B748C4F2CD620EE135C24ECD68E7D5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:65:ed:be:93:44:6e:a1:0c:e4:a8:0f:23:fc: b9:5e:4d:eb:91:fc:de:c2:22:c9:cc:65:87:a5:b8: de:98:6a:8d:da:c0:54:1d:4f:34:51:85:fb:04:4d: 68:ea:cb:a9:83:9d:43:e8:8d:79:c9:89:52:30:10: 9e:30:09:8f:52:b6:1f:ab:29:d5:1d:ec:59:96:2b: 7f:54:cc:79:9a:ce:56:93:d7:62:8f:56:21:38:e9: 44:c3:9c:97:13:0f:91:c1:06:9f:b0:42:12:7e:b3: ac:e3:54:ba:11:24:1b:01:9c:0f:78:de:6b:3e:a0: 9c:f8:ea:50:9b:a2:01:c3:22:53:52:f5:07:9b:be: 12:d5:97:20:c8:f6:57:15:06:e8:60:f2:47:e1:7d: bc:b8:a7:42:8f:ba:69:76:b6:e0:5e:34:80:1b:a6: 46:e3:de:a0:09:0a:c5:98:cd:87:48:8d:69:59:fa: 16:3f:5e:7f:45:5c:e1:76:b9:14:5a:45:48:58:01: d6:e6:bf:e2:cb:83:63:18:58:fe:2e:f9:eb:43:0f: b1:8e:ca:75:f0:44:f5:da:b5:1d:aa:07:d7:69:13: 54:86:bf:b2:83:5a:c3:5a:79:03:8c:9a:0b:75:94: d3:0d:3f:c4:67:29:3b:b9:99:80:04:6d:cb:d5:e5: 29:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B5:51:B9:8B:74:8C:4F:2C:D6:20:EE:13:5C:24:EC:D6:8E:7D:5D X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/3230332e3137332e39302e302f32332d3234203d3e20313339343630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.173.90.0/23 Signature Algorithm: sha256WithRSAEncryption 58:06:7e:6a:17:7d:d9:7b:fd:2e:97:0a:ae:33:99:21:5e:78: b5:4a:af:54:24:de:e7:be:78:b7:3b:a3:5f:40:77:7d:7f:72: 09:3a:cf:73:c1:a3:7e:b0:c6:d0:19:76:22:f9:88:84:22:06: 1d:5a:f5:77:61:9d:7b:8f:1c:07:55:77:76:26:29:88:bb:be: c0:e7:b2:5d:e9:cf:03:8c:7d:72:7f:83:6a:62:01:26:d1:2a: 19:47:32:b1:9e:b3:29:1f:92:a4:6c:54:19:7f:3e:05:ba:26: c5:bd:95:5d:cf:da:48:b7:be:70:7b:cd:e3:f9:00:93:da:8f: 8f:69:4f:f5:36:25:c1:05:08:6b:87:cb:11:2b:e5:d9:f7:f6: 7f:38:1f:6d:b2:bc:2a:bd:e7:1d:de:ec:d0:1a:11:86:44:8a: 27:72:78:c1:4b:5e:2e:22:55:49:31:b3:a2:7f:5f:ef:0c:9c: 12:cf:a1:ad:a0:83:99:0b:17:ab:6b:8d:90:1d:f7:fb:d4:79: ca:8a:5a:60:dc:9f:3a:e7:25:85:33:90:7e:99:fa:9e:b9:be: 6f:eb:5d:da:4e:8f:17:d6:93:6a:6c:27:40:3b:54:0e:5a:a7: cc:65:c7:e1:3e:11:f2:43:15:9d:43:1b:ea:99:15:71:00:d8: 9b:e9:6f:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFpA+fBFjbGc2yynIMTw7G0SGLVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNDAzMDEwNjUxNDNaFw0yNTAyMjgwNjU2NDNaMDMxMTAvBgNV BAMTKEZCQjU1MUI5OEI3NDhDNEYyQ0Q2MjBFRTEzNUMyNEVDRDY4RTdENUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpZe2+k0RuoQzkqA8j/LleTeuR /N7CIsnMZYeluN6Yao3awFQdTzRRhfsETWjqy6mDnUPojXnJiVIwEJ4wCY9Sth+r KdUd7FmWK39UzHmazlaT12KPViE46UTDnJcTD5HBBp+wQhJ+s6zjVLoRJBsBnA94 3ms+oJz46lCbogHDIlNS9QebvhLVlyDI9lcVBuhg8kfhfby4p0KPuml2tuBeNIAb pkbj3qAJCsWYzYdIjWlZ+hY/Xn9FXOF2uRRaRUhYAdbmv+LLg2MYWP4u+etDD7GO ynXwRPXatR2qB9dpE1SGv7KDWsNaeQOMmgt1lNMNP8RnKTu5mYAEbcvV5SnPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+7VRuYt0jE8s1iDuE1wk7NaOfV0wHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzAzMzJlMzEzNzMzMmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy61aMA0GCSqG SIb3DQEBCwUAA4IBAQBYBn5qF33Ze/0ulwquM5khXni1Sq9UJN7nvni3O6NfQHd9 f3IJOs9zwaN+sMbQGXYi+YiEIgYdWvV3YZ17jxwHVXd2JimIu77A57Jd6c8DjH1y f4NqYgEm0SoZRzKxnrMpH5KkbFQZfz4FuibFvZVdz9pIt75we83j+QCT2o+PaU/1 NiXBBQhrh8sRK+XZ9/Z/OB9tsrwqvecd3uzQGhGGRIoncnjBS14uIlVJMbOif1/v DJwSz6GtoIOZCxera42QHff71HnKilpg3J865yWFM5B+mfqeub5v613aTo8X1pNq bCdAO1QOWqfMZcfhPhHyQxWdQxvqmRVxANib6W+f -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org