$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35382e302f32342d3234203d3e20313336313139.roa File: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (raw, json) Hash identifier: 7blkTXyq3RKCIws921Czw5yMKl/tVjEFOw3lq63q9I8= Subject key identifier: 39:67:03:B8:D5:44:27:69:E3:93:BA:9E:00:75:8F:CE:AD:C2:4D:3E Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 7A6D16918294464B3EF3B539AD3A8902617C1DA2 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35382e302f32342d3234203d3e20313336313139.roa Signing time: Wed 18 Sep 2024 08:00:01 +0000 ROA not before: Wed 18 Sep 2024 07:55:01 +0000 ROA not after: Wed 17 Sep 2025 08:00:01 +0000 asID: 136119 IP address blocks: 202.10.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 22:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:6d:16:91:82:94:46:4b:3e:f3:b5:39:ad:3a:89:02:61:7c:1d:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Sep 18 07:55:01 2024 GMT Not After : Sep 17 08:00:01 2025 GMT Subject: CN=396703B8D5442769E393BA9E00758FCEADC24D3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:12:ac:0f:d0:16:34:22:30:7d:94:ea:6d:e2: 95:2e:9b:9c:70:cf:02:01:4b:0b:5d:e8:36:bc:f3: f1:45:56:20:09:79:69:aa:d6:af:a6:3d:6f:11:4b: ab:6f:cb:ec:03:63:b4:67:70:e1:35:e5:20:56:c1: 74:22:87:26:8d:0e:fa:53:33:1a:96:da:5b:b3:3e: d2:35:82:33:4b:81:40:9d:de:0b:f8:e8:d5:51:12: fd:a8:11:d9:80:13:a7:8a:16:67:d5:50:b9:76:d5: 2a:07:e7:d7:15:ab:78:66:b4:df:d3:4e:5f:54:cb: 38:61:87:49:6d:dd:b2:9f:4f:ac:c5:f2:49:c6:48: 6c:6c:fb:c2:71:15:4f:3b:c9:c3:67:23:e8:b3:41: ab:1a:4a:4b:2f:d3:e7:c5:9e:d6:a6:d3:78:ce:30: 82:1c:da:85:a8:c9:ab:ff:55:7b:bb:25:24:1c:30: cf:c0:c2:8b:cb:a9:e1:64:5b:4c:05:1f:3a:f9:0d: 9f:70:b3:c7:72:fa:ea:50:53:63:16:a0:49:0d:ba: b9:47:61:09:04:f8:99:99:75:7e:ab:0a:51:1b:6e: 83:82:4e:b5:58:86:e1:95:1e:a4:14:37:cc:06:5e: 44:98:d9:54:5a:26:62:04:43:12:e5:ef:97:3b:57: 58:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:67:03:B8:D5:44:27:69:E3:93:BA:9E:00:75:8F:CE:AD:C2:4D:3E X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35382e302f32342d3234203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.58.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:bf:36:4b:51:71:4a:96:42:a3:35:04:be:87:bd:74:6c:02: 61:98:05:39:a7:0a:ff:de:d2:d8:5b:f1:ec:2a:7e:5b:cc:c3: 08:b8:15:ec:65:08:b3:e4:e9:3a:82:cd:67:dc:9a:ec:27:21: 8d:84:8f:34:4f:28:0f:b5:a0:e1:37:1d:17:cb:4c:4d:37:77: ae:73:a2:88:33:d7:55:b5:29:48:10:ea:91:ba:ba:71:66:3d: f8:1a:a3:fd:73:ca:b3:55:e6:67:bc:29:b9:a0:24:c8:67:88: d3:2b:c8:8a:07:62:34:41:cc:36:8b:d6:59:32:95:e3:5b:b3: c1:30:1d:39:36:5d:bd:57:b8:af:8c:da:90:8e:c7:47:e1:8d: b0:32:3e:af:97:b0:55:d8:d6:df:64:80:4f:ad:3a:c6:ab:a1: 07:ec:02:5a:f7:3b:d3:03:4a:88:8d:41:b0:d8:6a:51:81:d5: 7c:1d:98:3d:32:12:f8:70:ab:60:84:44:88:6e:66:20:e1:5e: f7:5d:d3:c3:5d:d8:c2:96:c3:c3:c4:e9:8e:a7:24:e6:58:b1: 3c:23:ac:44:a1:48:dc:35:1f:c7:64:2d:df:72:ff:0b:c0:79: cf:46:a4:eb:c1:72:05:68:47:73:1b:fd:33:f1:a0:e5:fa:fa: fa:da:56:e7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUem0WkYKURks+87U5rTqJAmF8HaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNDA5MTgwNzU1MDFaFw0yNTA5MTcwODAwMDFaMDMxMTAvBgNV BAMTKDM5NjcwM0I4RDU0NDI3NjlFMzkzQkE5RTAwNzU4RkNFQURDMjREM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2EqwP0BY0IjB9lOpt4pUum5xw zwIBSwtd6Da88/FFViAJeWmq1q+mPW8RS6tvy+wDY7RncOE15SBWwXQihyaNDvpT MxqW2luzPtI1gjNLgUCd3gv46NVREv2oEdmAE6eKFmfVULl21SoH59cVq3hmtN/T Tl9Uyzhhh0lt3bKfT6zF8knGSGxs+8JxFU87ycNnI+izQasaSksv0+fFntam03jO MIIc2oWoyav/VXu7JSQcMM/AwovLqeFkW0wFHzr5DZ9ws8dy+upQU2MWoEkNurlH YQkE+JmZdX6rClEbboOCTrVYhuGVHqQUN8wGXkSY2VRaJmIEQxLl75c7V1jRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOWcDuNVEJ2njk7qeAHWPzq3CTT4wHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMyMzAzMjJlMzEzMDJlMzUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKOjANBgkqhkiG 9w0BAQsFAAOCAQEAHb82S1FxSpZCozUEvoe9dGwCYZgFOacK/97S2Fvx7Cp+W8zD CLgV7GUIs+TpOoLNZ9ya7CchjYSPNE8oD7Wg4TcdF8tMTTd3rnOiiDPXVbUpSBDq kbq6cWY9+Bqj/XPKs1XmZ7wpuaAkyGeI0yvIigdiNEHMNovWWTKV41uzwTAdOTZd vVe4r4zakI7HR+GNsDI+r5ewVdjW32SAT606xquhB+wCWvc70wNKiI1BsNhqUYHV fB2YPTIS+HCrYIREiG5mIOFe913Tw13YwpbDw8Tpjqck5lixPCOsRKFI3DUfx2Qt 33L/C8B5z0ak68FyBWhHcxv9M/Gg5fr6+tpW5w== -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:20 2024 by rpki-client on console-ams.rpki-client.org