$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa File: 3230332e3231302e38342e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: S14Z6UvQgxm3zvnB7IqJQnjifft19IGaxbuliv63HPA= Subject key identifier: 2C:C9:EC:9F:E2:39:7B:94:EE:56:29:F3:FE:0C:C2:12:40:36:49:C4 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 3DCF0366C74F642F437912C3A138E21364228D6D Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa Signing time: Mon 01 Jul 2024 01:04:04 +0000 ROA not before: Mon 01 Jul 2024 00:59:04 +0000 ROA not after: Mon 30 Jun 2025 01:04:04 +0000 asID: 55699 IP address blocks: 203.210.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:cf:03:66:c7:4f:64:2f:43:79:12:c3:a1:38:e2:13:64:22:8d:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 1 00:59:04 2024 GMT Not After : Jun 30 01:04:04 2025 GMT Subject: CN=2CC9EC9FE2397B94EE5629F3FE0CC212403649C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:20:35:86:b8:f0:18:0c:5f:fd:52:f3:f3:b1: 84:8b:8d:4a:cc:87:33:1a:76:b8:d5:0c:43:93:75: 07:8a:18:f7:2b:9e:34:c1:79:aa:40:30:03:4b:c6: 6d:03:b6:55:70:f6:a3:30:91:b9:6f:07:67:0c:8e: f6:de:b6:df:ba:12:51:af:9b:68:c9:e0:a6:46:a2: b5:fa:f8:17:7c:a3:ab:dc:3b:ad:9a:d1:ec:e8:a8: 14:b4:92:8c:db:d4:2b:50:a2:d2:1c:17:2e:af:e6: cb:64:ee:66:0e:eb:a3:0a:48:48:23:33:20:a2:a3: 0a:f6:8e:99:b8:ff:23:66:4c:79:f2:99:5b:42:43: 18:d3:b1:94:db:6d:be:e7:69:e3:38:d2:c2:cf:14: 3e:65:85:f9:ec:06:49:91:a3:5b:fc:d6:6e:b3:e2: c0:39:4f:42:54:12:13:4e:ae:6c:2b:02:99:ea:fd: fa:87:39:3f:fe:f0:d0:2d:a5:68:e4:93:c6:c2:7b: 32:20:06:98:10:ed:83:85:a7:bc:4e:15:61:1d:b2: 84:92:22:54:09:83:cc:f3:86:ea:f9:f2:f8:d1:fa: e6:a6:58:e4:57:af:dc:1d:9b:bf:9e:29:8d:fe:79: 66:64:2d:29:39:84:0d:64:57:0d:a4:7d:15:85:97: 71:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C9:EC:9F:E2:39:7B:94:EE:56:29:F3:FE:0C:C2:12:40:36:49:C4 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.210.84.0/22 Signature Algorithm: sha256WithRSAEncryption a1:c5:fb:2a:e8:ed:19:f2:0b:a6:a1:2d:66:68:fd:d1:59:4e: 36:9f:da:4a:c6:be:89:7c:e0:76:eb:7a:e4:6a:ba:b7:85:ab: 3c:8d:e4:5c:d1:ea:68:05:ef:02:65:75:8d:98:5f:d5:ca:f7: df:bf:ae:64:26:20:07:27:eb:44:6d:ad:1b:9e:f7:ec:6e:b0: 19:16:30:c6:82:33:ae:61:e5:d5:5b:20:14:95:47:07:03:a5: ea:9a:52:b2:0b:d7:0f:02:b5:b2:95:79:dc:8a:bd:28:88:dd: 04:a3:ee:87:23:14:08:13:63:2e:97:be:26:40:9d:48:3f:6b: a9:15:76:3f:e9:35:e9:28:37:61:9f:64:06:d5:a8:ab:1f:21: 31:cf:27:2c:31:22:b8:b1:4a:e7:fd:9a:05:b5:81:8c:3f:11: d0:28:03:66:5f:94:ce:d9:5a:e7:aa:fb:06:92:9a:a6:90:96: de:60:81:f8:ed:27:c2:33:45:c2:9b:22:cd:eb:26:61:30:91: d6:7e:0d:97:e0:85:88:b6:7b:50:ea:80:b2:99:e3:85:da:e6: 09:89:df:c4:46:f8:17:21:fd:a6:be:6c:1c:33:24:f2:ad:cb: bc:c3:a1:2a:d4:4d:75:75:6b:c2:5c:bd:a9:00:90:39:83:e4: 17:4c:01:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPc8DZsdPZC9DeRLDoTjiE2QijW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDRaFw0yNTA2MzAwMTA0MDRaMDMxMTAvBgNV BAMTKDJDQzlFQzlGRTIzOTdCOTRFRTU2MjlGM0ZFMENDMjEyNDAzNjQ5QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTIDWGuPAYDF/9UvPzsYSLjUrM hzMadrjVDEOTdQeKGPcrnjTBeapAMANLxm0DtlVw9qMwkblvB2cMjvbett+6ElGv m2jJ4KZGorX6+Bd8o6vcO62a0ezoqBS0kozb1CtQotIcFy6v5stk7mYO66MKSEgj MyCiowr2jpm4/yNmTHnymVtCQxjTsZTbbb7naeM40sLPFD5lhfnsBkmRo1v81m6z 4sA5T0JUEhNOrmwrApnq/fqHOT/+8NAtpWjkk8bCezIgBpgQ7YOFp7xOFWEdsoSS IlQJg8zzhur58vjR+uamWORXr9wdm7+eKY3+eWZkLSk5hA1kVw2kfRWFl3FnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULMnsn+I5e5TuVinz/gzCEkA2ScQwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMyMzAzMzJlMzIzMTMwMmUzODM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsvSVDANBgkqhkiG 9w0BAQsFAAOCAQEAocX7KujtGfILpqEtZmj90VlONp/aSsa+iXzgdut65Gq6t4Wr PI3kXNHqaAXvAmV1jZhf1cr337+uZCYgByfrRG2tG5737G6wGRYwxoIzrmHl1Vsg FJVHBwOl6ppSsgvXDwK1spV53Iq9KIjdBKPuhyMUCBNjLpe+JkCdSD9rqRV2P+k1 6Sg3YZ9kBtWoqx8hMc8nLDEiuLFK5/2aBbWBjD8R0CgDZl+Uztla56r7BpKappCW 3mCB+O0nwjNFwpsizesmYTCR1n4Nl+CFiLZ7UOqAspnjhdrmCYnfxEb4FyH9pr5s HDMk8q3LvMOhKtRNdXVrwly9qQCQOYPkF0wBtQ== -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org