$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234392e302f32342d3234203d3e20313333373938.roa File: 3230332e3132382e3234392e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: y7Ck52euZ4Y5URIT5H2H8vK8yOp7jwg7hoUeRG3JP8g= Subject key identifier: D8:D5:68:E0:79:24:5D:D0:FA:04:83:EA:55:2D:B5:CF:7E:70:91:79 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 3DB32F49B056F7D270CB34CBD0313616BCC393C6 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234392e302f32342d3234203d3e20313333373938.roa Signing time: Wed 07 Feb 2024 03:54:11 +0000 ROA not before: Wed 07 Feb 2024 03:49:11 +0000 ROA not after: Wed 05 Feb 2025 03:54:11 +0000 asID: 133798 IP address blocks: 203.128.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b3:2f:49:b0:56:f7:d2:70:cb:34:cb:d0:31:36:16:bc:c3:93:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Feb 7 03:49:11 2024 GMT Not After : Feb 5 03:54:11 2025 GMT Subject: CN=D8D568E079245DD0FA0483EA552DB5CF7E709179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0e:35:0a:8c:74:16:a4:76:5d:29:cf:8c:64: 8e:05:96:cf:53:2a:55:3c:32:2e:52:d5:c0:11:19: 28:a5:b5:47:81:98:85:57:59:00:46:14:e4:20:09: e5:1a:47:42:c2:e0:4a:7f:42:87:23:a2:a4:b8:09: 2e:24:ba:99:5c:d2:37:ac:fd:4f:19:12:9b:e8:78: 22:b6:75:5a:36:bb:3d:9f:d3:49:b6:fd:8c:53:e7: 58:5e:c0:c6:45:7b:f6:c8:83:28:49:e3:67:68:dc: e8:4c:80:52:ca:ee:0e:2f:29:c4:28:c7:09:57:31: 7d:74:e3:1f:5d:d8:36:dd:e9:3b:65:ef:ec:28:0a: 8f:18:69:84:40:c8:30:8c:fb:55:77:2a:e2:54:69: de:90:a8:05:1d:18:c0:ed:2f:ec:b2:29:97:01:59: 75:d1:f5:eb:7c:0b:c3:73:87:b0:d3:bc:c1:83:3a: 8d:a6:42:b8:74:c5:53:6f:47:c7:a4:d4:88:87:a6: 5f:ce:7d:8d:3a:32:5e:df:41:c2:36:b8:5d:87:f5: 7e:ef:65:22:43:ca:6e:51:ef:02:f2:fc:b8:fa:35: a8:f2:d1:bc:6c:f8:c7:5b:e8:55:fd:97:af:ac:dc: a5:65:ab:ab:84:4d:9b:e5:b0:60:e0:f5:b1:1b:04: ec:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D5:68:E0:79:24:5D:D0:FA:04:83:EA:55:2D:B5:CF:7E:70:91:79 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3234392e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.249.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:77:b3:a9:b0:45:81:80:d3:2f:2b:d9:f5:ec:0f:f0:2d:15: 1a:19:48:25:a1:9a:b9:03:85:63:34:08:08:bd:ad:fb:5b:dc: 68:85:72:78:cb:4a:64:f1:1d:6e:f5:b2:07:de:3f:91:db:9f: c0:6a:91:48:d6:1f:52:69:f4:91:a4:1a:0f:ae:ca:7b:93:13: 0e:b3:d5:e8:3f:92:1d:32:7b:f2:bc:28:4b:ab:39:5b:dd:97: 59:71:c7:d4:46:f7:98:a9:f7:0d:7a:97:e9:49:1b:02:a1:f9: ba:95:8a:4c:31:77:59:0c:0e:13:67:a5:2e:ec:f5:59:35:88: ce:91:37:4b:c7:1c:dc:7d:64:f9:c8:9c:c8:5a:92:0c:b6:12: d6:e3:32:bc:37:86:c6:3a:49:60:3c:75:53:40:1b:c3:fc:8d: a9:63:69:5e:1f:be:9a:17:7d:ef:6d:93:66:74:28:3a:e0:20: 5e:0a:53:8d:b0:ab:19:40:b1:a8:22:5f:da:20:64:8a:1f:48: 23:60:be:04:87:17:75:f2:6e:08:09:17:3c:7e:d3:9d:7b:67: c5:47:99:bb:e1:28:ab:3e:84:98:ae:01:98:e5:30:39:e2:53: 35:62:74:05:5b:ba:ad:d4:4a:cb:93:4b:5f:66:5d:a1:40:8b: 8f:fd:04:67 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPbMvSbBW99JwyzTL0DE2FrzDk8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNDAyMDcwMzQ5MTFaFw0yNTAyMDUwMzU0MTFaMDMxMTAvBgNV BAMTKEQ4RDU2OEUwNzkyNDVERDBGQTA0ODNFQTU1MkRCNUNGN0U3MDkxNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMDjUKjHQWpHZdKc+MZI4Fls9T KlU8Mi5S1cARGSiltUeBmIVXWQBGFOQgCeUaR0LC4Ep/QocjoqS4CS4kuplc0jes /U8ZEpvoeCK2dVo2uz2f00m2/YxT51hewMZFe/bIgyhJ42do3OhMgFLK7g4vKcQo xwlXMX104x9d2Dbd6Ttl7+woCo8YaYRAyDCM+1V3KuJUad6QqAUdGMDtL+yyKZcB WXXR9et8C8Nzh7DTvMGDOo2mQrh0xVNvR8ek1IiHpl/OfY06Ml7fQcI2uF2H9X7v ZSJDym5R7wLy/Lj6Najy0bxs+Mdb6FX9l6+s3KVlq6uETZvlsGDg9bEbBOxBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2NVo4HkkXdD6BIPqVS21z35wkXkwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzAzMzJlMzEzMjM4MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLgPkwDQYJ KoZIhvcNAQELBQADggEBAA13s6mwRYGA0y8r2fXsD/AtFRoZSCWhmrkDhWM0CAi9 rftb3GiFcnjLSmTxHW71sgfeP5Hbn8BqkUjWH1Jp9JGkGg+uynuTEw6z1eg/kh0y e/K8KEurOVvdl1lxx9RG95ip9w16l+lJGwKh+bqVikwxd1kMDhNnpS7s9Vk1iM6R N0vHHNx9ZPnInMhakgy2EtbjMrw3hsY6SWA8dVNAG8P8jaljaV4fvpoXfe9tk2Z0 KDrgIF4KU42wqxlAsagiX9ogZIofSCNgvgSHF3XybggJFzx+0517Z8VHmbvhKKs+ hJiuAZjlMDniUzVidAVbuq3USsuTS19mXaFAi4/9BGc= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org