$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3230372e35362e302f32322d3232203d3e203535363939.roa File: 3230332e3230372e35362e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: Xt7X2bDgMkDTBBHqsSxamiZR8k2GuMHWvJZy4/PpiEE= Subject key identifier: 13:07:94:72:01:05:92:55:30:F7:5E:F5:66:B9:FA:01:35:17:E8:B2 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 07A62176764D2A9BE8CFC3C54CAF8F7DDFF47D8B Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3230372e35362e302f32322d3232203d3e203535363939.roa Signing time: Mon 01 Jul 2024 01:04:05 +0000 ROA not before: Mon 01 Jul 2024 00:59:05 +0000 ROA not after: Mon 30 Jun 2025 01:04:05 +0000 asID: 55699 IP address blocks: 203.207.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a6:21:76:76:4d:2a:9b:e8:cf:c3:c5:4c:af:8f:7d:df:f4:7d:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 1 00:59:05 2024 GMT Not After : Jun 30 01:04:05 2025 GMT Subject: CN=130794720105925530F75EF566B9FA013517E8B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:54:48:76:97:ec:f4:ef:0b:84:5d:02:b9:9e: 5e:ce:90:fe:03:e8:2a:73:5f:cd:98:0e:d2:1c:b0: 99:e6:0c:28:54:fa:01:0e:2f:05:bd:21:03:ed:4d: 05:7e:e4:8e:ce:28:80:3d:d4:f1:f1:d1:6b:ec:59: 94:75:85:10:35:24:a1:9d:ed:27:b9:49:aa:ec:94: 16:a8:40:ff:10:c2:d0:31:0b:3a:5a:ae:c8:f4:08: 90:07:3f:cf:b0:f3:8a:93:63:ff:43:c7:f1:49:db: 88:8e:5d:4c:aa:66:46:e0:5c:60:c6:d2:33:93:8d: ea:a0:dd:fc:4e:c9:33:79:27:b1:18:bf:b6:b4:13: e7:24:ce:fe:92:07:b4:da:ff:b5:bd:f5:cb:29:f9: be:1d:9a:bd:a5:f3:10:b9:62:95:07:60:e5:97:fc: 1c:2d:3e:09:fa:6f:72:11:c2:6e:9b:a1:63:88:2f: 7d:7a:69:f5:53:2e:54:09:d4:60:7b:93:74:50:d9: e6:8c:a6:f8:a0:28:7b:b6:ac:95:60:35:e7:8b:ca: 27:ac:75:c8:8f:17:a5:cd:ba:8b:9c:19:ac:66:e3: 1a:32:f3:02:f7:58:17:80:fa:f7:39:10:6e:25:54: 50:31:a1:8d:ca:bc:72:db:ea:d8:5a:32:8f:88:65: 9e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:07:94:72:01:05:92:55:30:F7:5E:F5:66:B9:FA:01:35:17:E8:B2 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3230372e35362e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.207.56.0/22 Signature Algorithm: sha256WithRSAEncryption e1:f4:b6:af:a7:91:d7:5a:bd:0c:e6:09:ef:27:ef:4e:37:08: df:ce:1a:86:35:06:eb:b2:6a:11:f1:16:f4:a7:c0:2a:02:d5: 14:9f:44:0d:6e:1e:1d:c4:c2:6e:cc:47:ba:43:3e:c8:da:81: 65:dd:9a:a4:fe:86:57:18:38:e5:38:6a:bc:d2:09:0c:ec:27: ad:3b:e7:af:3f:2e:a5:90:24:5b:77:32:04:40:bd:a2:13:0e: 6e:37:58:e8:35:e2:72:0e:19:db:70:23:36:8d:ae:b6:ad:8c: 50:61:66:fc:fa:a4:2a:59:15:a0:6d:f6:91:ca:f9:8f:83:1c: 09:ca:fc:e4:1e:80:79:c4:85:58:4d:53:4b:89:7e:f7:2e:51: 3d:fa:05:d1:8f:c1:ee:a4:d5:8c:cd:c0:f8:48:40:22:94:71: a8:d9:36:d8:1d:a0:97:fb:59:97:07:a8:11:63:be:e0:29:d1: b2:3b:0a:1f:82:b2:36:9a:14:ab:49:b9:c1:13:0d:39:ad:1c: 68:69:c8:59:ec:e6:33:87:d2:e9:b3:27:c9:12:a1:51:eb:84: 83:5e:ca:0c:9a:1f:f2:15:c3:66:02:f8:00:9c:17:95:b9:d6: 93:ae:29:c1:99:73:1c:2a:7a:65:45:78:e3:07:70:9e:e2:06: 82:82:c3:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB6YhdnZNKpvoz8PFTK+Pfd/0fYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDVaFw0yNTA2MzAwMTA0MDVaMDMxMTAvBgNV BAMTKDEzMDc5NDcyMDEwNTkyNTUzMEY3NUVGNTY2QjlGQTAxMzUxN0U4QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBVEh2l+z07wuEXQK5nl7OkP4D 6CpzX82YDtIcsJnmDChU+gEOLwW9IQPtTQV+5I7OKIA91PHx0WvsWZR1hRA1JKGd 7Se5SarslBaoQP8QwtAxCzparsj0CJAHP8+w84qTY/9Dx/FJ24iOXUyqZkbgXGDG 0jOTjeqg3fxOyTN5J7EYv7a0E+ckzv6SB7Ta/7W99csp+b4dmr2l8xC5YpUHYOWX /BwtPgn6b3IRwm6boWOIL316afVTLlQJ1GB7k3RQ2eaMpvigKHu2rJVgNeeLyies dciPF6XNuoucGaxm4xoy8wL3WBeA+vc5EG4lVFAxoY3KvHLb6thaMo+IZZ6BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEweUcgEFklUw9171Zrn6ATUX6LIwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMyMzAzMzJlMzIzMDM3MmUzNTM2MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsvPODANBgkqhkiG 9w0BAQsFAAOCAQEA4fS2r6eR11q9DOYJ7yfvTjcI384ahjUG67JqEfEW9KfAKgLV FJ9EDW4eHcTCbsxHukM+yNqBZd2apP6GVxg45ThqvNIJDOwnrTvnrz8upZAkW3cy BEC9ohMObjdY6DXicg4Z23AjNo2utq2MUGFm/PqkKlkVoG32kcr5j4McCcr85B6A ecSFWE1TS4l+9y5RPfoF0Y/B7qTVjM3A+EhAIpRxqNk22B2gl/tZlweoEWO+4CnR sjsKH4KyNpoUq0m5wRMNOa0caGnIWezmM4fS6bMnyRKhUeuEg17KDJof8hXDZgL4 AJwXlbnWk64pwZlzHCp6ZUV44wdwnuIGgoLDpg== -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org