$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3230322e392e38352e302f32342d3234203d3e203436303532.roa File: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (raw, json) Hash identifier: Y2PTe5fMMDYclXsLhLsiwjVncBgzuq5ROa1U1eOC/Wc= Subject key identifier: E9:88:AD:60:6F:0B:F7:B2:AC:8C:57:08:CE:F1:CB:AF:28:E5:04:66 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 770D7B8574B1B61E5303B35FA3A576B1B490920C Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3230322e392e38352e302f32342d3234203d3e203436303532.roa Signing time: Thu 26 Sep 2024 06:00:00 +0000 ROA not before: Thu 26 Sep 2024 05:55:00 +0000 ROA not after: Thu 25 Sep 2025 06:00:00 +0000 asID: 46052 IP address blocks: 202.9.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:0d:7b:85:74:b1:b6:1e:53:03:b3:5f:a3:a5:76:b1:b4:90:92:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Sep 26 05:55:00 2024 GMT Not After : Sep 25 06:00:00 2025 GMT Subject: CN=E988AD606F0BF7B2AC8C5708CEF1CBAF28E50466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c9:53:35:2d:86:4e:86:7f:fa:fa:ff:c0:cf: c0:ad:7c:d8:5c:87:75:9a:c2:8e:3c:c8:0b:2f:ae: c8:fb:0d:10:6d:eb:7b:03:e8:db:1b:d1:1f:50:b1: fc:a8:55:38:88:6b:31:60:ce:7e:34:ad:bf:33:f6: 26:7e:24:c2:49:66:7f:29:5a:88:29:26:2d:d7:54: 42:b4:4c:38:8e:e1:dd:73:ed:a0:b2:1a:4a:4f:80: 7d:f1:3a:18:86:ac:af:55:27:f7:85:bd:c8:2d:90: 68:67:4d:b8:0f:2a:ea:0d:db:59:0a:d0:4c:24:d4: 5e:ce:fd:60:3e:db:15:8b:06:18:f1:5b:8d:a6:1f: c5:e0:fb:40:0f:22:4e:ef:58:1a:84:23:86:ba:c8: c3:c2:94:fa:7c:85:3d:d8:3c:18:10:11:ed:46:b9: 86:0a:ee:7a:cb:88:38:55:b8:85:98:f1:63:07:d2: 02:15:03:c5:c1:88:89:49:ff:3a:36:ea:88:ec:17: 82:fd:0b:c6:c9:fd:7e:f8:d5:eb:7e:df:bb:ae:3f: c3:e5:ca:b1:fc:ab:05:b5:33:f6:81:fd:5c:bc:be: 71:d2:9c:4c:b4:7f:80:6f:70:e1:8c:39:05:60:08: 62:10:fc:f8:28:69:f6:9b:40:dd:de:7a:8f:0d:0d: cb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:88:AD:60:6F:0B:F7:B2:AC:8C:57:08:CE:F1:CB:AF:28:E5:04:66 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3230322e392e38352e302f32342d3234203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.9.85.0/24 Signature Algorithm: sha256WithRSAEncryption 18:ed:c5:31:72:bc:fb:fb:4e:d4:71:38:2b:d6:52:72:af:f7: fa:9f:13:dd:46:88:0a:43:1a:b0:eb:72:aa:ab:cb:b8:18:cd: 65:2d:6d:4c:40:77:ef:52:0a:d8:68:06:ef:a9:bb:df:78:fe: b1:71:1f:e9:c4:d8:b4:64:38:42:10:5b:00:aa:32:62:4c:6b: d7:de:2f:f8:66:f3:47:90:71:c0:fa:a8:9f:d6:56:80:93:22: e6:b6:e8:60:0b:a3:c9:9f:c3:8e:a9:33:d2:bc:95:ed:98:21: 9b:96:44:b2:fb:9c:86:81:33:6f:62:55:8f:ee:a7:65:3c:84: a5:e7:e4:b0:d4:8f:6b:e1:56:bd:1c:fd:8c:93:98:c4:ea:c5: 3e:60:39:83:91:a4:44:06:b5:6e:b6:9d:e2:f6:45:80:f0:4f: 2c:71:39:33:05:3f:b8:5a:d3:83:3a:94:5d:eb:59:ee:57:37: 02:3f:41:e8:01:f8:3d:28:64:24:a2:91:d7:60:9d:a8:8d:dc: 7a:25:e6:bc:80:69:e8:9e:9b:8e:ef:55:d5:df:a9:f0:e3:2e: 4c:72:d3:66:a2:6b:48:bc:e7:47:37:f6:ee:68:50:46:ed:53: fd:b7:a8:22:47:08:ce:45:8a:37:ed:f9:97:c1:39:12:48:08: c2:92:cc:42 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUdw17hXSxth5TA7Nfo6V2sbSQkgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNDA5MjYwNTU1MDBaFw0yNTA5MjUwNjAwMDBaMDMxMTAvBgNV BAMTKEU5ODhBRDYwNkYwQkY3QjJBQzhDNTcwOENFRjFDQkFGMjhFNTA0NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDByVM1LYZOhn/6+v/Az8CtfNhc h3Wawo48yAsvrsj7DRBt63sD6Nsb0R9QsfyoVTiIazFgzn40rb8z9iZ+JMJJZn8p WogpJi3XVEK0TDiO4d1z7aCyGkpPgH3xOhiGrK9VJ/eFvcgtkGhnTbgPKuoN21kK 0Ewk1F7O/WA+2xWLBhjxW42mH8Xg+0APIk7vWBqEI4a6yMPClPp8hT3YPBgQEe1G uYYK7nrLiDhVuIWY8WMH0gIVA8XBiIlJ/zo26ojsF4L9C8bJ/X741et+37uuP8Pl yrH8qwW1M/aB/Vy8vnHSnEy0f4BvcOGMOQVgCGIQ/PgoafabQN3eeo8NDcv7AgMB AAGjggItMIICKTAdBgNVHQ4EFgQU6YitYG8L97KsjFcIzvHLryjlBGYwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvMzIzMDMyMmUzOTJlMzgzNTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCVUwDQYJKoZIhvcNAQEL BQADggEBABjtxTFyvPv7TtRxOCvWUnKv9/qfE91GiApDGrDrcqqry7gYzWUtbUxA d+9SCthoBu+pu994/rFxH+nE2LRkOEIQWwCqMmJMa9feL/hm80eQccD6qJ/WVoCT Iua26GALo8mfw46pM9K8le2YIZuWRLL7nIaBM29iVY/up2U8hKXn5LDUj2vhVr0c /YyTmMTqxT5gOYORpEQGtW62neL2RYDwTyxxOTMFP7ha04M6lF3rWe5XNwI/QegB +D0oZCSikddgnaiN3Hol5ryAaeiem47vVdXfqfDjLkxy02aia0i850c39u5oUEbt U/23qCJHCM5Fijft+ZfBORJICMKSzEI= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org