$ rpki-client -vvf repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/3230322e35382e3137362e302f32312d3234203d3e203234353236.roa File: 3230322e35382e3137362e302f32312d3234203d3e203234353236.roa (raw, json) Hash identifier: hoFhirnLUQz/p84odzqMxw9tsnTuNV/GRFdBFOkjvGI= Subject key identifier: AC:7C:C4:4E:EB:DD:1E:D6:C7:99:3F:C7:85:C1:B2:CC:16:67:ED:EA Certificate issuer: /CN=E42B0752D5FFAB254C3F0E221499F67420870FEB Certificate serial: 15876C2A7ADD4ED49B86A64B7C4EE89396D06AE7 Authority key identifier: E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/3230322e35382e3137362e302f32312d3234203d3e203234353236.roa Signing time: Sat 09 Nov 2024 09:00:00 +0000 ROA not before: Sat 09 Nov 2024 08:55:00 +0000 ROA not after: Sat 08 Nov 2025 09:00:00 +0000 asID: 24526 IP address blocks: 202.58.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:87:6c:2a:7a:dd:4e:d4:9b:86:a6:4b:7c:4e:e8:93:96:d0:6a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E42B0752D5FFAB254C3F0E221499F67420870FEB Validity Not Before: Nov 9 08:55:00 2024 GMT Not After : Nov 8 09:00:00 2025 GMT Subject: CN=AC7CC44EEBDD1ED6C7993FC785C1B2CC1667EDEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:de:60:c5:85:b7:df:b3:2c:0d:0e:8f:04:12: ee:c5:70:c0:8b:72:9a:42:4c:7b:f9:20:82:9f:06: 73:4a:df:30:04:58:d9:44:8d:cc:27:64:ac:f5:43: f8:6c:86:b3:b6:13:45:0a:65:95:1c:2a:aa:1c:7a: aa:f6:f7:80:f3:15:ac:42:98:55:02:7c:44:cf:70: ef:0e:7d:87:c1:81:e9:83:c7:ed:36:95:e2:15:97: 96:ca:af:7b:e1:5d:ab:ef:17:a9:eb:dd:f9:23:00: b8:bb:23:bb:56:1e:c2:da:dc:89:d9:82:91:c6:93: e1:cb:3d:25:d4:c4:1e:ad:69:e1:4a:06:e0:41:87: d5:cb:00:d6:c0:5c:c1:24:f4:dc:b9:e1:2a:f4:6c: d5:ed:32:7c:b8:3b:d8:76:3d:69:ec:ee:5b:99:7e: 59:5b:f9:7c:e9:6c:25:cb:3e:03:34:52:c7:0d:46: cc:b1:ac:e3:ca:1c:e4:b7:bb:5a:bc:e9:35:e6:cb: 47:e4:c5:0b:ca:0a:87:2c:7a:e7:4b:77:27:ae:3e: 9d:52:ac:3a:c2:b3:df:f3:b0:7e:7f:77:67:0d:89: d2:6f:a1:d3:78:f8:d8:91:52:9c:f9:89:01:be:1b: 25:f6:ef:66:8d:85:e1:c2:e5:7a:52:ae:e9:97:ad: fa:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:7C:C4:4E:EB:DD:1E:D6:C7:99:3F:C7:85:C1:B2:CC:16:67:ED:EA X509v3 Authority Key Identifier: keyid:E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/3230322e35382e3137362e302f32312d3234203d3e203234353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.176.0/21 Signature Algorithm: sha256WithRSAEncryption 73:dc:07:e0:0a:dd:83:8e:d1:03:dd:ab:a7:68:2a:19:31:a4: d8:3f:ac:fa:3f:18:e9:5a:fc:a0:9f:ea:b6:4e:d2:1f:be:9b: 9b:c0:ca:cd:65:94:73:13:2a:32:56:9f:9e:43:40:81:9c:14: 01:4f:44:ce:ab:97:b7:6c:58:b5:04:ad:f9:d9:d6:26:0a:cc: 90:22:0e:be:a9:87:49:79:d0:47:63:e1:56:f1:0c:e7:39:50: 98:de:bb:b4:36:36:5a:12:fe:62:86:5e:83:0b:2a:b3:b8:e9: 51:3b:27:1c:ff:d0:1c:24:c2:d9:ac:fe:95:30:3d:26:c5:f7: c8:db:53:15:08:19:30:44:55:5c:c7:bd:42:5f:2c:d4:5e:ed: 07:b9:0a:2c:ad:03:4a:e4:28:a8:f1:ef:9a:7e:75:9c:4b:eb: 2d:35:34:a0:c9:82:b1:59:e0:72:d2:57:c0:23:8d:8d:3a:bb: 31:42:71:5b:05:9e:40:c9:df:99:78:7c:7b:92:ce:5b:9f:0a: 66:64:75:cf:24:75:ef:66:0e:1f:83:f0:b4:f1:28:f1:70:b7: f0:db:a3:8e:6f:c8:d9:91:92:85:d4:f5:7c:82:2c:09:45:f8: 45:a2:64:d2:b7:55:eb:e3:40:36:8f:4b:38:05:f9:7e:02:f4: c3:75:e7:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFYdsKnrdTtSbhqZLfE7ok5bQaucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQy MDg3MEZFQjAeFw0yNDExMDkwODU1MDBaFw0yNTExMDgwOTAwMDBaMDMxMTAvBgNV BAMTKEFDN0NDNDRFRUJERDFFRDZDNzk5M0ZDNzg1QzFCMkNDMTY2N0VERUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC33mDFhbffsywNDo8EEu7FcMCL cppCTHv5IIKfBnNK3zAEWNlEjcwnZKz1Q/hshrO2E0UKZZUcKqoceqr294DzFaxC mFUCfETPcO8OfYfBgemDx+02leIVl5bKr3vhXavvF6nr3fkjALi7I7tWHsLa3InZ gpHGk+HLPSXUxB6taeFKBuBBh9XLANbAXMEk9Ny54Sr0bNXtMny4O9h2PWns7luZ fllb+XzpbCXLPgM0UscNRsyxrOPKHOS3u1q86TXmy0fkxQvKCocseudLdyeuPp1S rDrCs9/zsH5/d2cNidJvodN4+NiRUpz5iQG+GyX272aNheHC5XpSrumXrfrrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrHzETuvdHtbHmT/HhcGyzBZn7eowHwYDVR0j BBgwFoAU5CsHUtX/qyVMPw4iFJn2dCCHD+swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzUxMjllNC0yMzI4LTQzZDItYTQ1OC05ZDM4Mjk2MTQ4MTUvMC9FNDJCMDc1MkQ1 RkZBQjI1NEMzRjBFMjIxNDk5RjY3NDIwODcwRkVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQyMDg3 MEZFQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNTEyOWU0LTIzMjgtNDNkMi1h NDU4LTlkMzgyOTYxNDgxNS8wLzMyMzAzMjJlMzUzODJlMzEzNzM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8o6sDANBgkqhkiG 9w0BAQsFAAOCAQEAc9wH4Ardg47RA92rp2gqGTGk2D+s+j8Y6Vr8oJ/qtk7SH76b m8DKzWWUcxMqMlafnkNAgZwUAU9EzquXt2xYtQSt+dnWJgrMkCIOvqmHSXnQR2Ph VvEM5zlQmN67tDY2WhL+YoZegwsqs7jpUTsnHP/QHCTC2az+lTA9JsX3yNtTFQgZ MERVXMe9Ql8s1F7tB7kKLK0DSuQoqPHvmn51nEvrLTU0oMmCsVngctJXwCONjTq7 MUJxWwWeQMnfmXh8e5LOW58KZmR1zyR172YOH4PwtPEo8XC38Nujjm/I2ZGShdT1 fIIsCUX4RaJk0rdV6+NANo9LOAX5fgL0w3Xn8w== -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org