$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3132382e36342e302f31392d3234203d3e203138313033.roa File: 3230332e3132382e36342e302f31392d3234203d3e203138313033.roa (raw, json) Hash identifier: cImzaCQgH/xKELxeX3ckgK5atsohpplgUl+3u43iFdY= Subject key identifier: C8:F5:9C:89:3E:81:D5:BB:B9:4B:6D:90:73:30:E1:9A:9D:41:98:7C Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 58D7B60D6166D3FA086C248F0814EB4167BCDEFE Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3132382e36342e302f31392d3234203d3e203138313033.roa Signing time: Wed 21 Aug 2024 12:00:41 +0000 ROA not before: Wed 21 Aug 2024 11:55:41 +0000 ROA not after: Wed 20 Aug 2025 12:00:41 +0000 asID: 18103 IP address blocks: 203.128.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d7:b6:0d:61:66:d3:fa:08:6c:24:8f:08:14:eb:41:67:bc:de:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Aug 21 11:55:41 2024 GMT Not After : Aug 20 12:00:41 2025 GMT Subject: CN=C8F59C893E81D5BBB94B6D907330E19A9D41987C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b1:04:45:41:9c:42:a3:9e:ea:36:3d:84:3d: d4:ea:f0:e6:2f:05:51:c8:e2:ac:28:c0:34:69:7d: 85:93:44:a4:c8:33:f1:ac:3b:21:d8:81:18:f2:58: 13:bc:d8:d0:e5:d6:4a:03:37:a3:db:54:de:17:d4: 32:cf:77:39:27:e3:38:53:c6:72:ae:ba:e0:15:6c: 24:c8:4c:6b:9d:ba:fa:35:aa:dc:f8:6e:38:e1:6b: c8:d3:60:ab:8e:6e:ef:6e:fb:ab:d1:0c:d7:01:40: 73:10:ee:8e:87:f0:5b:e1:ef:5d:ab:81:48:25:81: 8d:0a:4d:9b:ec:4f:65:4f:ae:cd:17:1d:7f:89:86: a1:20:75:9b:d5:3d:1e:ef:5b:ba:9e:f3:23:33:af: 02:73:8b:5e:57:7b:b1:00:4c:81:38:82:0e:2a:b5: b8:68:1f:df:bb:32:6e:e1:5b:db:b2:c2:2a:4e:ff: 5c:95:e9:2c:fe:ec:d7:68:db:ef:44:42:f6:f9:94: 72:36:61:a2:fe:cb:57:70:9a:6b:01:29:40:82:b5: a6:d8:87:60:6b:04:ea:ca:69:9d:dd:d3:61:06:08: ea:45:20:86:71:da:a7:91:f2:15:65:bd:d8:35:b0: aa:70:67:e1:49:6f:8c:cd:75:9d:46:dd:90:77:af: 72:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F5:9C:89:3E:81:D5:BB:B9:4B:6D:90:73:30:E1:9A:9D:41:98:7C X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3132382e36342e302f31392d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.64.0/19 Signature Algorithm: sha256WithRSAEncryption 66:1e:31:21:d2:6e:25:d4:e0:16:55:ac:1f:1a:e3:d7:6f:f0: 1a:42:b8:d7:af:6f:fe:64:93:b0:7a:2d:7d:66:2b:dd:d4:66: a6:82:55:32:06:0e:0d:e4:4d:7f:9e:28:f4:ce:7f:d9:04:b4: 08:9a:14:19:d8:e2:b6:a6:c1:0f:0e:86:88:86:fe:24:d6:fd: 9b:ec:6b:9e:95:36:c8:18:35:52:62:ae:55:da:ad:b4:ed:ff: 4b:d4:a2:2f:97:99:36:86:d4:d7:7c:cd:43:12:f3:a4:d2:04: 28:9c:a6:85:7c:a1:7e:c8:a4:79:9a:21:74:44:cc:a6:f7:1d: 69:cc:83:cc:5b:86:f9:bf:38:58:e5:25:b4:41:4a:d2:5a:21: d6:9c:62:dd:30:03:fd:59:78:6b:62:30:c4:53:39:a1:4e:dd: a1:5f:58:e5:b5:c5:a2:9e:f5:b7:f7:30:ca:cd:8b:ad:b3:33: 2f:3a:bd:52:df:90:37:b2:3a:49:88:ad:c3:9e:c6:c2:b4:b7: 26:f6:d5:c0:5e:bb:34:0c:d7:cd:88:07:b9:86:5e:8a:46:2c: 33:b3:be:32:5b:1b:55:15:1a:61:24:88:a2:b9:0c:46:9d:30: f7:8c:86:93:36:9d:7c:f0:08:68:ff:db:16:3a:b1:75:ba:5e: d1:26:e9:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWNe2DWFm0/oIbCSPCBTrQWe83v4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yNDA4MjExMTU1NDFaFw0yNTA4MjAxMjAwNDFaMDMxMTAvBgNV BAMTKEM4RjU5Qzg5M0U4MUQ1QkJCOTRCNkQ5MDczMzBFMTlBOUQ0MTk4N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnsQRFQZxCo57qNj2EPdTq8OYv BVHI4qwowDRpfYWTRKTIM/GsOyHYgRjyWBO82NDl1koDN6PbVN4X1DLPdzkn4zhT xnKuuuAVbCTITGuduvo1qtz4bjjha8jTYKuObu9u+6vRDNcBQHMQ7o6H8Fvh712r gUglgY0KTZvsT2VPrs0XHX+JhqEgdZvVPR7vW7qe8yMzrwJzi15Xe7EATIE4gg4q tbhoH9+7Mm7hW9uywipO/1yV6Sz+7Ndo2+9EQvb5lHI2YaL+y1dwmmsBKUCCtabY h2BrBOrKaZ3d02EGCOpFIIZx2qeR8hVlvdg1sKpwZ+FJb4zNdZ1G3ZB3r3J1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyPWciT6B1bu5S22QczDhmp1BmHwwHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMyMzAzMzJlMzEzMjM4MmUzNjM0MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzEzODMxMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcuAQDANBgkqhkiG 9w0BAQsFAAOCAQEAZh4xIdJuJdTgFlWsHxrj12/wGkK4169v/mSTsHotfWYr3dRm poJVMgYODeRNf54o9M5/2QS0CJoUGdjitqbBDw6GiIb+JNb9m+xrnpU2yBg1UmKu VdqttO3/S9SiL5eZNobU13zNQxLzpNIEKJymhXyhfsikeZohdETMpvcdacyDzFuG +b84WOUltEFK0loh1pxi3TAD/Vl4a2IwxFM5oU7doV9Y5bXFop71t/cwys2LrbMz Lzq9Ut+QN7I6SYitw57GwrS3JvbVwF67NAzXzYgHuYZeikYsM7O+MlsbVRUaYSSI orkMRp0w94yGkzadfPAIaP/bFjqxdbpe0SbpVg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org