$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3230312e35302e302f32332d3234203d3e203138313033.roa File: 3230332e3230312e35302e302f32332d3234203d3e203138313033.roa (raw, json) Hash identifier: BaobXEBDNKVOXPWnASBzuf34gx57Iel2oiiy9v7fdcA= Subject key identifier: BD:EB:55:B9:FE:27:4D:B4:92:B5:6B:51:A3:A5:7C:7D:25:0F:CB:BE Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 2919DF5476A3709D29522477D681A7223492E387 Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3230312e35302e302f32332d3234203d3e203138313033.roa Signing time: Wed 21 Aug 2024 12:00:41 +0000 ROA not before: Wed 21 Aug 2024 11:55:41 +0000 ROA not after: Wed 20 Aug 2025 12:00:41 +0000 asID: 18103 IP address blocks: 203.201.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:19:df:54:76:a3:70:9d:29:52:24:77:d6:81:a7:22:34:92:e3:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Aug 21 11:55:41 2024 GMT Not After : Aug 20 12:00:41 2025 GMT Subject: CN=BDEB55B9FE274DB492B56B51A3A57C7D250FCBBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:65:46:a4:1e:f6:b4:1f:28:a5:94:86:49: b6:3b:51:77:71:46:cf:09:8e:e1:ad:da:96:cc:db: b2:af:79:33:6a:bf:b8:47:97:cd:0a:99:02:00:fe: 58:23:79:4f:28:6b:48:bd:d2:ae:e5:83:8a:f7:cb: 64:9e:1d:dc:70:4d:f6:88:66:13:e3:4f:11:db:9d: be:2e:e0:1e:ef:e9:bd:1f:a1:51:62:1d:ca:ce:2c: 44:8d:46:07:ba:cc:da:50:20:13:d0:08:f0:68:a3: c7:d1:7f:c3:c1:c3:a1:fb:7f:65:e6:19:aa:07:3f: 22:21:38:77:61:af:8f:f1:43:ff:6d:b2:4c:23:14: a3:a8:43:45:21:b1:46:ec:15:ed:7b:51:2e:6c:40: e0:4f:78:8b:d9:8e:78:2d:36:9a:33:74:fa:05:37: 72:d7:60:05:11:8e:eb:ca:f9:e4:3e:f3:09:89:2b: d8:53:d1:20:cd:25:bc:0d:b7:d1:98:4b:ef:d4:3e: 43:57:28:6e:b0:cc:3e:dc:f6:b3:b0:3f:2d:0b:7a: 2d:8f:d8:ce:8f:da:3b:5c:ce:94:58:84:a1:04:b9: 6d:0f:db:8e:c4:3e:fc:3f:68:a9:57:80:c5:05:e7: b0:97:7b:66:f2:aa:37:e4:0b:38:5f:0d:d1:7d:f6: ef:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:EB:55:B9:FE:27:4D:B4:92:B5:6B:51:A3:A5:7C:7D:25:0F:CB:BE X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3230312e35302e302f32332d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.50.0/23 Signature Algorithm: sha256WithRSAEncryption 92:14:65:ad:e0:a6:e8:f0:38:46:e9:e4:e1:11:c4:ed:f7:d5: 4c:54:7f:ac:80:70:60:44:5c:48:60:ea:00:4e:e1:25:06:1f: bd:83:12:81:ca:a1:ae:51:88:5e:35:13:14:17:e2:ea:68:e7: 1f:d1:f7:27:1a:0c:b8:fa:74:ec:2e:da:6b:c7:04:75:14:49: 49:57:ab:4e:76:e5:08:75:6b:ca:c1:a2:14:25:bb:bd:c8:6f: 70:52:62:c7:39:9f:26:c4:17:22:d8:99:63:52:12:a7:16:29: fd:96:cf:0e:5f:37:ff:7b:01:92:b6:43:22:9e:63:3e:31:fd: 05:42:d3:0b:87:f9:a5:05:dc:a7:41:a4:5a:9c:bd:37:d1:64: 10:d5:25:bf:de:aa:a0:61:b6:a6:e8:db:94:16:6e:da:7d:5f: a0:7b:dd:e2:35:c0:ee:7e:d9:3c:ab:6a:b7:35:70:dd:9c:59: 0f:c2:6f:22:45:be:f4:59:c6:d3:15:9b:c9:9e:f5:7a:1b:3b: fd:92:b2:81:0c:ef:2e:a2:70:0d:0b:5f:25:92:cd:bb:78:a6: 25:8c:92:ab:d1:b2:ca:36:8d:9d:67:0f:c8:a7:51:e2:c0:fa: 29:51:c2:d0:0d:76:f8:40:c1:11:48:2d:57:76:96:73:e5:56: 31:99:4d:dd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKRnfVHajcJ0pUiR31oGnIjSS44cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yNDA4MjExMTU1NDFaFw0yNTA4MjAxMjAwNDFaMDMxMTAvBgNV BAMTKEJERUI1NUI5RkUyNzREQjQ5MkI1NkI1MUEzQTU3QzdEMjUwRkNCQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/T2VGpB72tB8opZSGSbY7UXdx Rs8JjuGt2pbM27KveTNqv7hHl80KmQIA/lgjeU8oa0i90q7lg4r3y2SeHdxwTfaI ZhPjTxHbnb4u4B7v6b0foVFiHcrOLESNRge6zNpQIBPQCPBoo8fRf8PBw6H7f2Xm GaoHPyIhOHdhr4/xQ/9tskwjFKOoQ0UhsUbsFe17US5sQOBPeIvZjngtNpozdPoF N3LXYAURjuvK+eQ+8wmJK9hT0SDNJbwNt9GYS+/UPkNXKG6wzD7c9rOwPy0Lei2P 2M6P2jtczpRYhKEEuW0P247EPvw/aKlXgMUF57CXe2byqjfkCzhfDdF99u8rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvetVuf4nTbSStWtRo6V8fSUPy74wHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMyMzAzMzJlMzIzMDMxMmUzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzODMxMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcvJMjANBgkqhkiG 9w0BAQsFAAOCAQEAkhRlreCm6PA4Runk4RHE7ffVTFR/rIBwYERcSGDqAE7hJQYf vYMSgcqhrlGIXjUTFBfi6mjnH9H3JxoMuPp07C7aa8cEdRRJSVerTnblCHVrysGi FCW7vchvcFJixzmfJsQXItiZY1ISpxYp/ZbPDl83/3sBkrZDIp5jPjH9BULTC4f5 pQXcp0GkWpy9N9FkENUlv96qoGG2pujblBZu2n1foHvd4jXA7n7ZPKtqtzVw3ZxZ D8JvIkW+9FnG0xWbyZ71ehs7/ZKygQzvLqJwDQtfJZLNu3imJYySq9GyyjaNnWcP yKdR4sD6KVHC0A12+EDBEUgtV3aWc+VWMZlN3Q== -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org