$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234382e302f32342d3234203d3e20313333373938.roa File: 3230332e3132382e3234382e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: ZH05yKaYsnHthjTbmEdpxQkI/jnSx+O6FpjlXE6KVV8= Subject key identifier: 94:94:2C:1D:A1:00:91:3D:1E:97:FD:72:F2:8F:60:91:DE:2A:7D:C3 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 551FF7E0EADE672C150A4E08D5BF404072AB9DBE Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234382e302f32342d3234203d3e20313333373938.roa Signing time: Wed 07 Feb 2024 03:53:54 +0000 ROA not before: Wed 07 Feb 2024 03:48:54 +0000 ROA not after: Wed 05 Feb 2025 03:53:54 +0000 asID: 133798 IP address blocks: 203.128.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:1f:f7:e0:ea:de:67:2c:15:0a:4e:08:d5:bf:40:40:72:ab:9d:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Feb 7 03:48:54 2024 GMT Not After : Feb 5 03:53:54 2025 GMT Subject: CN=94942C1DA100913D1E97FD72F28F6091DE2A7DC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9a:88:2f:5a:64:3f:09:66:de:29:cc:ac:e3: 60:a3:5f:3b:47:0f:14:c0:06:99:3f:c6:22:f8:33: 7a:91:c1:5b:f5:23:ec:10:77:75:fb:8e:d4:6b:83: a2:6b:7c:ba:93:75:b1:8c:aa:e2:aa:ab:72:54:d1: 0a:73:05:1b:8d:4b:bb:37:38:5b:93:a6:de:8c:e3: 44:65:9d:0f:b4:60:f5:3d:cc:19:9c:d5:a7:e2:ec: 83:8c:b7:1a:33:9d:44:83:ef:f7:bf:93:f2:d9:11: 3d:8a:11:a9:65:61:e5:dc:f4:b2:04:39:cc:4c:6d: b0:54:46:b2:4b:be:70:f0:7a:e8:94:cc:cf:24:a2: 4a:ec:8d:32:1e:c2:2b:ae:20:2e:d5:0a:68:38:78: 93:9d:59:70:80:bd:15:e8:d1:e5:ce:f2:33:c1:7f: 24:d5:b9:8b:1f:a5:31:e8:4e:01:4a:99:84:66:93: bf:fc:8a:a8:07:b5:19:f7:94:69:0f:54:d4:e4:9b: a0:17:12:d4:3f:cd:40:34:1b:a0:3a:6d:4b:e8:10: 1a:00:cf:b8:9e:41:84:f3:c9:d8:68:7a:f8:13:82: a2:12:1d:78:84:8f:7e:04:c5:5f:d7:35:d4:e2:36: 42:b9:30:04:72:03:fc:2f:b7:9e:35:dc:8c:9d:9a: fb:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:94:2C:1D:A1:00:91:3D:1E:97:FD:72:F2:8F:60:91:DE:2A:7D:C3 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234382e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.248.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:39:80:e2:6d:ad:d1:27:aa:fa:4f:ac:2d:51:29:84:f3:b7: bc:3b:52:07:c6:f2:dc:56:f6:4c:f1:0d:b7:3c:10:3c:fc:40: 58:df:93:4d:83:6e:69:7a:21:d0:4f:83:a2:d1:df:d8:7f:5c: d6:16:f4:71:4f:ce:a8:af:18:8d:49:c2:8d:05:bd:9c:9e:92: 79:93:b1:d8:15:c2:6d:90:fe:84:a4:c3:46:9d:a7:d3:47:a5: e2:c3:0a:3c:52:c1:0b:09:17:f5:a8:a0:24:35:c5:f1:18:46: 5d:cb:13:23:54:d6:e2:6d:50:0c:3d:ec:3f:e5:97:96:69:39: e1:f1:de:07:4c:54:d1:b6:67:ad:30:d8:58:d6:9a:b3:91:d2: 89:2d:9c:22:ae:4f:10:af:65:b3:cf:19:27:c0:8c:a1:02:05: 8e:a1:4d:36:44:ad:6d:52:84:99:70:12:76:59:11:17:f5:0c: a9:92:12:bd:29:77:c0:1f:e5:65:68:43:02:41:21:48:bc:9f: d6:bb:04:fc:b1:2c:69:05:26:c5:37:8f:6e:ff:83:06:a7:b8: 60:ab:e8:a3:37:7d:e7:f0:ca:34:30:1d:b9:b2:33:52:39:57: fc:a3:1e:53:99:ee:3c:68:cc:15:8a:9c:9d:21:24:fd:6f:fb: 4b:90:30:70 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVR/34OreZywVCk4I1b9AQHKrnb4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNDAyMDcwMzQ4NTRaFw0yNTAyMDUwMzUzNTRaMDMxMTAvBgNV BAMTKDk0OTQyQzFEQTEwMDkxM0QxRTk3RkQ3MkYyOEY2MDkxREUyQTdEQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChmogvWmQ/CWbeKcys42CjXztH DxTABpk/xiL4M3qRwVv1I+wQd3X7jtRrg6JrfLqTdbGMquKqq3JU0QpzBRuNS7s3 OFuTpt6M40RlnQ+0YPU9zBmc1afi7IOMtxoznUSD7/e/k/LZET2KEallYeXc9LIE OcxMbbBURrJLvnDweuiUzM8kokrsjTIewiuuIC7VCmg4eJOdWXCAvRXo0eXO8jPB fyTVuYsfpTHoTgFKmYRmk7/8iqgHtRn3lGkPVNTkm6AXEtQ/zUA0G6A6bUvoEBoA z7ieQYTzydhoevgTgqISHXiEj34ExV/XNdTiNkK5MARyA/wvt5413Iydmvu/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlJQsHaEAkT0el/1y8o9gkd4qfcMwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzAzMzJlMzEzMjM4MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLgPgwDQYJ KoZIhvcNAQELBQADggEBAE05gOJtrdEnqvpPrC1RKYTzt7w7UgfG8txW9kzxDbc8 EDz8QFjfk02Dbml6IdBPg6LR39h/XNYW9HFPzqivGI1Jwo0FvZyeknmTsdgVwm2Q /oSkw0adp9NHpeLDCjxSwQsJF/WooCQ1xfEYRl3LEyNU1uJtUAw97D/ll5ZpOeHx 3gdMVNG2Z60w2FjWmrOR0oktnCKuTxCvZbPPGSfAjKECBY6hTTZErW1ShJlwEnZZ ERf1DKmSEr0pd8Af5WVoQwJBIUi8n9a7BPyxLGkFJsU3j27/gwanuGCr6KM3fefw yjQwHbmyM1I5V/yjHlOZ7jxozBWKnJ0hJP1v+0uQMHA= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org