$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233372e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233372e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: RpvdAAhRcDwLWam/AirdoWZAIUpemNG+pct19OZa8NE= Subject key identifier: 3C:23:E6:8F:A3:3E:14:55:57:B9:04:3E:A5:3D:27:D5:A7:78:28:19 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 7BFFEEF7EA1FC14E1EB36E61095B5B4D6493D15F Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233372e302f32342d3234203d3e203138303539.roa Signing time: Fri 25 Oct 2024 05:00:02 +0000 ROA not before: Fri 25 Oct 2024 04:55:02 +0000 ROA not after: Fri 24 Oct 2025 05:00:02 +0000 asID: 18059 IP address blocks: 203.134.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 12:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ff:ee:f7:ea:1f:c1:4e:1e:b3:6e:61:09:5b:5b:4d:64:93:d1:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Oct 25 04:55:02 2024 GMT Not After : Oct 24 05:00:02 2025 GMT Subject: CN=3C23E68FA33E145557B9043EA53D27D5A7782819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:fc:5d:71:c0:3e:d3:e4:45:83:a1:1e:ee:bc: 73:e8:d0:39:31:db:56:17:f2:24:d5:7f:0f:d7:92: ec:39:06:21:be:ca:e5:e7:38:ad:c1:72:82:e3:6c: f3:51:cf:19:37:cb:64:9a:62:46:5d:9e:4a:fd:0f: 10:27:7f:4c:4a:70:d7:8a:5c:1a:57:54:e0:a4:ef: 50:0a:f9:54:b3:c1:33:dd:26:ef:6b:ea:dd:2f:cc: bc:fc:4d:66:76:e5:27:85:25:17:25:02:5b:c4:11: 0c:c6:66:e8:f6:4d:0c:49:24:be:8d:c2:92:25:ce: cf:63:bc:60:12:42:ff:e4:43:a0:1f:04:60:14:f1: b2:3a:3d:5f:00:59:8b:e4:5c:c6:16:61:e2:76:f8: a0:80:dd:41:85:95:a1:d3:b0:de:c8:c2:8f:b1:89: f2:91:ae:8a:f6:b7:4a:7d:48:dc:cf:bf:59:69:07: ff:17:56:2c:31:08:75:99:de:f7:43:e0:6b:db:ad: 5b:f3:da:1e:a2:64:46:1b:49:be:9d:ae:b0:e2:12: f1:9d:c9:6e:7a:a0:64:1e:fc:15:06:bc:2d:ec:ae: d7:2b:42:9a:7e:b8:21:6f:15:99:45:12:8a:41:72: d9:af:81:a1:a5:3f:49:99:f7:3c:d1:16:43:80:26: 5f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:23:E6:8F:A3:3E:14:55:57:B9:04:3E:A5:3D:27:D5:A7:78:28:19 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233372e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.237.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:0c:38:56:0b:78:70:3e:89:c5:2c:66:83:a2:d7:c7:34:2a: 98:c2:ed:34:7e:ce:e8:8f:bd:f8:0b:9e:80:3c:16:1d:05:07: 71:76:9d:7e:61:95:32:a6:f5:7c:82:8f:f2:cf:06:77:20:dc: 4e:27:4b:8d:94:d2:ea:b1:41:02:4b:3d:c0:b9:93:1a:06:13: ea:63:e7:86:d4:e2:9e:f5:b5:2b:31:ce:54:52:b5:32:a8:5d: c2:26:e0:4b:c9:05:a0:c2:de:35:2a:06:1d:83:8e:ce:b0:a9: 2a:85:79:f5:8d:dd:bc:56:e2:c3:35:dd:f4:a6:a0:34:0c:16: b8:53:29:f0:3f:9a:de:d2:c7:43:c3:c9:7d:85:cb:17:f4:fe: 50:24:21:72:71:b3:02:ff:14:99:3f:04:a5:09:90:78:14:d6: 13:f4:a7:7b:f9:cd:37:ba:aa:7f:e6:2b:de:e1:23:25:63:3c: 3e:33:26:05:de:46:87:06:19:cc:86:3f:ce:d0:0f:d4:9c:11: 04:6b:9b:a0:9f:0e:2b:c6:4e:98:93:f5:96:6d:af:40:29:a0: 21:63:8f:5f:f9:a5:8c:53:f7:92:62:17:54:da:26:81:f2:48: 35:ee:d3:ea:87:ce:72:1f:14:58:b9:d8:64:00:60:7f:6e:53: 08:1c:2b:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUe//u9+ofwU4es25hCVtbTWST0V8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDEwMjUwNDU1MDJaFw0yNTEwMjQwNTAwMDJaMDMxMTAvBgNV BAMTKDNDMjNFNjhGQTMzRTE0NTU1N0I5MDQzRUE1M0QyN0Q1QTc3ODI4MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq/F1xwD7T5EWDoR7uvHPo0Dkx 21YX8iTVfw/Xkuw5BiG+yuXnOK3BcoLjbPNRzxk3y2SaYkZdnkr9DxAnf0xKcNeK XBpXVOCk71AK+VSzwTPdJu9r6t0vzLz8TWZ25SeFJRclAlvEEQzGZuj2TQxJJL6N wpIlzs9jvGASQv/kQ6AfBGAU8bI6PV8AWYvkXMYWYeJ2+KCA3UGFlaHTsN7Iwo+x ifKRror2t0p9SNzPv1lpB/8XViwxCHWZ3vdD4GvbrVvz2h6iZEYbSb6drrDiEvGd yW56oGQe/BUGvC3srtcrQpp+uCFvFZlFEopBctmvgaGlP0mZ9zzRFkOAJl+7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPCPmj6M+FFVXuQQ+pT0n1ad4KBkwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4btMA0GCSqG SIb3DQEBCwUAA4IBAQCbDDhWC3hwPonFLGaDotfHNCqYwu00fs7oj734C56APBYd BQdxdp1+YZUypvV8go/yzwZ3INxOJ0uNlNLqsUECSz3AuZMaBhPqY+eG1OKe9bUr Mc5UUrUyqF3CJuBLyQWgwt41KgYdg47OsKkqhXn1jd28VuLDNd30pqA0DBa4Uynw P5re0sdDw8l9hcsX9P5QJCFycbMC/xSZPwSlCZB4FNYT9Kd7+c03uqp/5ive4SMl Yzw+MyYF3kaHBhnMhj/O0A/UnBEEa5ugnw4rxk6Yk/WWba9AKaAhY49f+aWMU/eS YhdU2iaB8kg17tPqh85yHxRYudhkAGB/blMIHCtv -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:47 2025 by rpki-client