$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230332e33302e3233362e302f32332d3234203d3e203535363636.roa File: 3230332e33302e3233362e302f32332d3234203d3e203535363636.roa (raw, json) Hash identifier: X1M4lkdlV+Ji88HiSy4MoehizuXPUPqhQ4nsudueXzM= Subject key identifier: 1E:12:95:A7:83:EB:AE:C3:AF:18:5F:FE:89:95:8D:F4:5D:ED:6F:48 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 711C8C66F806A1154EF1E7E9559EF58951243F26 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230332e33302e3233362e302f32332d3234203d3e203535363636.roa Signing time: Mon 01 Jul 2024 01:06:12 +0000 ROA not before: Mon 01 Jul 2024 01:01:12 +0000 ROA not after: Mon 30 Jun 2025 01:06:12 +0000 asID: 55666 IP address blocks: 203.30.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:1c:8c:66:f8:06:a1:15:4e:f1:e7:e9:55:9e:f5:89:51:24:3f:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 1 01:01:12 2024 GMT Not After : Jun 30 01:06:12 2025 GMT Subject: CN=1E1295A783EBAEC3AF185FFE89958DF45DED6F48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:06:42:c7:a8:48:3c:1f:e6:f1:70:31:f1:4a: 06:4e:8c:69:4d:f9:5f:ef:c9:a9:9a:76:e2:e8:b6: 94:83:59:83:a7:fb:42:03:02:bb:ac:da:a3:4b:40: 49:55:79:c5:43:70:db:07:f8:3c:72:fb:f2:fc:0e: 80:6c:cc:a5:f5:71:38:9b:45:52:01:0a:00:90:24: 02:c4:df:48:c6:fb:3f:57:03:e7:05:f5:84:fe:9e: 31:43:92:22:3f:72:da:58:03:e3:d4:e4:7d:2c:cd: 06:b9:db:1f:24:14:5a:b2:29:4d:1e:83:a5:73:96: d0:82:b4:85:0f:b6:14:23:a0:c5:ff:54:d3:07:d7: e0:d2:a3:02:eb:f7:c6:f2:2b:cf:e7:32:26:0d:fb: 42:16:be:c1:e0:cc:c7:a4:7d:95:5b:5c:71:0a:e9: 70:93:5e:b2:21:4c:94:b8:13:03:9c:ad:eb:a7:37: fa:97:7d:9e:cc:1b:51:5b:3c:2f:a6:8e:1f:31:d3: ea:b9:78:00:98:c4:72:a1:6c:4c:c8:6a:23:b6:c2: fc:e7:f6:d6:81:60:80:6e:f9:61:67:29:f9:de:ce: 76:e4:b6:df:ea:7b:eb:c6:82:1f:69:15:17:96:20: ed:11:57:95:55:97:d4:48:96:71:76:7b:0d:84:bd: 8b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:12:95:A7:83:EB:AE:C3:AF:18:5F:FE:89:95:8D:F4:5D:ED:6F:48 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230332e33302e3233362e302f32332d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.30.236.0/23 Signature Algorithm: sha256WithRSAEncryption d3:34:1e:1f:c4:d8:16:a1:a2:a1:2c:5a:cd:b8:ae:c9:05:18: 29:82:dc:24:2b:8f:11:3a:b4:f1:3e:33:76:6b:90:2c:96:87: 13:a5:40:fe:58:d6:de:b3:97:16:92:5a:d2:9c:d7:e5:d5:f4: a6:44:45:c8:c6:2b:d7:9f:15:67:81:9a:b7:ba:10:a0:ed:41: 91:b2:a6:b1:09:36:a7:ac:12:d4:b6:57:41:f6:02:76:a8:91: 21:fa:42:3e:05:56:74:a5:83:de:40:0e:bf:8f:21:46:cb:71: ec:4f:cd:5e:9e:57:c2:2f:0b:01:18:53:90:76:ca:a7:bd:f4: d1:a3:a5:2f:c5:29:d8:8f:c2:30:ab:db:92:00:32:a3:5a:31: 22:11:8a:51:37:51:c2:4f:5e:89:28:bb:b0:9c:82:16:e6:4a: 25:e0:de:f2:63:d9:f8:1c:01:54:ed:f0:20:b4:28:34:ce:cb: fa:08:3e:6c:14:68:9d:77:51:4e:44:28:fd:cf:fb:84:35:5d: 52:99:f0:b0:09:da:20:a9:e0:c5:8d:a7:64:ca:18:41:5e:af: 32:a1:2b:94:7d:20:73:8b:f9:12:ff:a7:8f:82:e0:32:24:ac: 1a:68:7a:a5:0c:dd:70:7e:d6:36:23:47:02:45:d5:01:cc:38: ce:6b:15:f9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcRyMZvgGoRVO8efpVZ71iVEkPyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDA3MDEwMTAxMTJaFw0yNTA2MzAwMTA2MTJaMDMxMTAvBgNV BAMTKDFFMTI5NUE3ODNFQkFFQzNBRjE4NUZGRTg5OTU4REY0NURFRDZGNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXBkLHqEg8H+bxcDHxSgZOjGlN +V/vyamaduLotpSDWYOn+0IDArus2qNLQElVecVDcNsH+Dxy+/L8DoBszKX1cTib RVIBCgCQJALE30jG+z9XA+cF9YT+njFDkiI/ctpYA+PU5H0szQa52x8kFFqyKU0e g6VzltCCtIUPthQjoMX/VNMH1+DSowLr98byK8/nMiYN+0IWvsHgzMekfZVbXHEK 6XCTXrIhTJS4EwOcreunN/qXfZ7MG1FbPC+mjh8x0+q5eACYxHKhbEzIaiO2wvzn 9taBYIBu+WFnKfneznbktt/qe+vGgh9pFReWIO0RV5VVl9RIlnF2ew2EvYuhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHhKVp4PrrsOvGF/+iZWN9F3tb0gwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMyMzAzMzJlMzMzMDJlMzIzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcse7DANBgkqhkiG 9w0BAQsFAAOCAQEA0zQeH8TYFqGioSxazbiuyQUYKYLcJCuPETq08T4zdmuQLJaH E6VA/ljW3rOXFpJa0pzX5dX0pkRFyMYr158VZ4Gat7oQoO1BkbKmsQk2p6wS1LZX QfYCdqiRIfpCPgVWdKWD3kAOv48hRstx7E/NXp5Xwi8LARhTkHbKp7300aOlL8Up 2I/CMKvbkgAyo1oxIhGKUTdRwk9eiSi7sJyCFuZKJeDe8mPZ+BwBVO3wILQoNM7L +gg+bBRonXdRTkQo/c/7hDVdUpnwsAnaIKngxY2nZMoYQV6vMqErlH0gc4v5Ev+n j4LgMiSsGmh6pQzdcH7WNiNHAkXVAcw4zmsV+Q== -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:40 2024 by rpki-client on console-fra.rpki-client.org