$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230322e3135312e31322e302f32322d3232203d3e203535363939.roa File: 3230322e3135312e31322e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: acQbJQpWqGWIfvq9W6fl9QpMJKA8AlxG/taJBCqg2AI= Subject key identifier: E9:FC:81:39:5E:7D:E4:91:65:55:27:CF:B2:0E:4F:0A:14:6D:B5:84 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 398108C68E1CA8C98347FC113BEF999CC027F69C Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230322e3135312e31322e302f32322d3232203d3e203535363939.roa Signing time: Mon 01 Jul 2024 01:04:04 +0000 ROA not before: Mon 01 Jul 2024 00:59:04 +0000 ROA not after: Mon 30 Jun 2025 01:04:04 +0000 asID: 55699 IP address blocks: 202.151.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:81:08:c6:8e:1c:a8:c9:83:47:fc:11:3b:ef:99:9c:c0:27:f6:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 1 00:59:04 2024 GMT Not After : Jun 30 01:04:04 2025 GMT Subject: CN=E9FC81395E7DE491655527CFB20E4F0A146DB584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e8:97:a8:22:5e:99:8b:6a:1e:65:16:f9:69: 96:9e:63:0a:ae:31:07:1e:ba:6b:7c:67:eb:f8:94: f5:7b:ac:d4:8a:09:cc:e7:0d:52:7d:bb:5c:10:29: c0:26:69:53:be:f4:0b:2f:95:ee:e2:62:66:5a:30: 71:2d:d2:90:43:0e:fc:3f:c4:b8:af:ab:5f:6e:b7: ce:89:19:e7:37:1d:d2:ad:65:e0:f1:a1:b7:01:9e: 8b:1d:b4:cb:85:a1:18:1b:b4:64:4d:f5:d7:25:f0: bf:6c:49:36:4a:e7:4b:0a:ab:7a:ff:9a:ff:e1:d1: cf:23:1f:ed:45:9c:bf:e0:85:71:d9:df:a5:31:21: 3e:a9:a3:78:be:b6:52:36:74:18:4d:1f:c1:69:80: 12:05:b0:e2:1a:7a:06:07:51:58:45:0b:dc:b8:5c: 41:b0:af:3f:4a:01:23:f7:8c:ef:35:3c:9f:96:c4: 38:1b:e0:33:0e:e4:13:84:f8:8f:78:ea:21:91:ea: 48:4e:26:c8:66:bb:16:7a:60:4a:46:9c:44:fb:e6: f0:6d:4a:52:ca:f3:18:cb:9e:0e:2d:19:be:bf:80: 4a:e0:a6:ad:28:7e:89:cc:90:a3:6d:af:dc:f9:c0: c4:12:b5:d3:85:d4:e5:c8:79:86:c3:ca:25:66:87: 9b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FC:81:39:5E:7D:E4:91:65:55:27:CF:B2:0E:4F:0A:14:6D:B5:84 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230322e3135312e31322e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.151.12.0/22 Signature Algorithm: sha256WithRSAEncryption e6:ee:22:3a:e5:77:c0:c6:ac:79:c3:f7:2d:57:b7:0f:18:0e: ba:f6:a3:c5:5d:71:86:51:f0:4d:30:c1:d2:66:07:8f:96:42: 6d:63:58:57:46:2b:33:0b:28:eb:03:24:48:d5:ad:4a:dd:32: e1:b9:9a:2c:0f:6e:df:6b:ba:1f:6d:0d:f8:43:d9:ee:61:0f: 23:c2:ea:c9:9a:3e:4e:a8:14:3b:a9:ab:e0:3c:47:25:3c:03: 93:0e:75:88:dd:40:d3:48:ec:ab:ca:88:05:bb:28:b1:16:bf: dd:d7:44:d6:3b:67:fd:de:18:89:36:5a:5b:da:6d:b4:d4:3b: 2b:ca:19:58:0d:5d:3e:86:32:2c:cd:58:7f:be:0c:35:27:d3: 90:52:8c:d8:4b:b8:27:03:75:0a:ee:b3:6d:71:58:2e:f1:db: 71:e4:63:0b:22:62:b4:fb:04:2f:d3:3a:dd:e2:c4:13:d7:db: 6c:50:39:d1:9b:ae:97:72:91:e4:a3:08:cf:65:59:90:5f:77: fa:b8:c7:74:be:0b:ce:ca:44:08:54:6f:55:10:a0:60:0a:3c: b0:ea:36:af:33:f3:6e:71:1b:16:91:c9:80:34:f6:bd:b5:ca: 02:ed:7c:c6:43:06:34:e4:e0:dc:b9:55:96:b5:d4:ec:42:3f: c6:32:83:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOYEIxo4cqMmDR/wRO++ZnMAn9pwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDRaFw0yNTA2MzAwMTA0MDRaMDMxMTAvBgNV BAMTKEU5RkM4MTM5NUU3REU0OTE2NTU1MjdDRkIyMEU0RjBBMTQ2REI1ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ6JeoIl6Zi2oeZRb5aZaeYwqu MQceumt8Z+v4lPV7rNSKCcznDVJ9u1wQKcAmaVO+9Asvle7iYmZaMHEt0pBDDvw/ xLivq19ut86JGec3HdKtZeDxobcBnosdtMuFoRgbtGRN9dcl8L9sSTZK50sKq3r/ mv/h0c8jH+1FnL/ghXHZ36UxIT6po3i+tlI2dBhNH8FpgBIFsOIaegYHUVhFC9y4 XEGwrz9KASP3jO81PJ+WxDgb4DMO5BOE+I946iGR6khOJshmuxZ6YEpGnET75vBt SlLK8xjLng4tGb6/gErgpq0ofonMkKNtr9z5wMQStdOF1OXIeYbDyiVmh5tFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6fyBOV595JFlVSfPsg5PChRttYQwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMyMzAzMjJlMzEzNTMxMmUzMTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsqXDDANBgkqhkiG 9w0BAQsFAAOCAQEA5u4iOuV3wMasecP3LVe3DxgOuvajxV1xhlHwTTDB0mYHj5ZC bWNYV0YrMwso6wMkSNWtSt0y4bmaLA9u32u6H20N+EPZ7mEPI8LqyZo+TqgUO6mr 4DxHJTwDkw51iN1A00jsq8qIBbsosRa/3ddE1jtn/d4YiTZaW9pttNQ7K8oZWA1d PoYyLM1Yf74MNSfTkFKM2Eu4JwN1Cu6zbXFYLvHbceRjCyJitPsEL9M63eLEE9fb bFA50Zuul3KR5KMIz2VZkF93+rjHdL4LzspECFRvVRCgYAo8sOo2rzPzbnEbFpHJ gDT2vbXKAu18xkMGNOTg3LlVlrXU7EI/xjKDVw== -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org