$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa File: 3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: E3Hwgk+WDOBggw5DXTuanMD7N+9GDg2Ihdu2LPOfxvw= Subject key identifier: CA:C6:A2:CC:1D:45:61:35:0A:90:19:85:0C:F8:06:10:C4:C9:53:82 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 417C3064318A9DC4DAE528B2A2395DD636995560 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa Signing time: Wed 07 Feb 2024 03:54:35 +0000 ROA not before: Wed 07 Feb 2024 03:49:35 +0000 ROA not after: Wed 05 Feb 2025 03:54:35 +0000 asID: 133798 IP address blocks: 203.128.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7c:30:64:31:8a:9d:c4:da:e5:28:b2:a2:39:5d:d6:36:99:55:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Feb 7 03:49:35 2024 GMT Not After : Feb 5 03:54:35 2025 GMT Subject: CN=CAC6A2CC1D4561350A9019850CF80610C4C95382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2b:a0:54:a9:68:0a:01:74:5e:e1:66:5e:eb: b3:c7:9a:37:76:38:d0:b3:60:70:78:18:f0:20:86: a6:12:48:ea:de:ba:7e:c7:dd:75:d9:53:a2:91:b0: fe:7e:cf:a9:ee:2a:29:93:75:83:f0:5a:21:fe:8a: d8:5c:71:d6:24:cc:4f:c9:4a:54:f9:62:f8:96:72: 87:e3:fe:34:c0:b3:6c:a9:4d:c5:57:65:1e:53:10: bd:c6:29:1d:90:9b:92:9c:dc:eb:bf:cf:3a:a8:a4: e7:f9:bf:5d:29:2d:44:c5:6c:46:ff:d5:f2:1a:23: 2a:67:66:2f:14:3a:fa:79:7b:f9:91:cd:50:04:fe: f2:d1:3a:79:47:dc:8b:4a:8a:2b:29:fe:87:f5:26: 59:dc:a0:96:f2:2b:4f:bc:92:87:f3:b5:bd:00:63: d4:64:77:b6:7d:14:77:87:ef:a2:e0:0c:8c:96:25: 6f:b1:16:20:7b:ff:41:77:c2:05:a6:0c:5b:ad:42: 85:82:4e:61:84:c2:4b:f7:1b:d5:60:4c:d2:45:66: c7:84:63:93:cf:2a:5f:c2:58:56:c9:cd:42:b1:0b: 28:b2:1d:63:40:e9:b1:5a:1f:48:58:24:a0:af:08: 4e:5a:83:90:a9:66:18:51:42:69:eb:3d:97:c1:0e: 74:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C6:A2:CC:1D:45:61:35:0A:90:19:85:0C:F8:06:10:C4:C9:53:82 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.250.0/24 Signature Algorithm: sha256WithRSAEncryption b4:03:94:0e:b3:f0:b9:c2:01:8e:35:7d:80:58:d7:af:55:4b: 31:56:21:44:bd:b2:a4:45:13:d8:50:09:8f:99:53:51:2d:e5: 68:53:e6:18:bd:67:42:cf:76:fe:9a:93:10:4e:67:c0:39:81: 07:36:6e:a3:5d:f5:b5:cf:43:3c:0e:06:d6:34:0a:8f:66:93: 6b:eb:47:02:94:b8:84:ed:2a:4c:12:99:82:54:9c:0a:c8:63: 99:88:bb:8f:7a:81:3c:00:c6:70:a1:57:b0:8f:48:6f:66:ea: d3:24:f5:b8:44:32:be:5d:8c:f7:f9:f9:09:5e:7f:09:77:23: 72:0b:61:b1:ae:2e:41:e5:b2:cc:84:1f:31:07:61:e9:ae:36: aa:2c:f1:c2:70:3d:24:0e:6c:69:b0:95:51:ba:40:0e:c5:11: fe:40:f7:7f:ab:3b:92:6c:c0:c3:39:7d:5f:34:ee:93:04:62: 8f:34:b1:78:3d:a7:e3:20:9c:62:04:96:95:ff:bb:87:b1:3d: 99:02:20:1f:88:21:7c:d0:e6:14:ab:38:89:12:68:2f:df:c3: 72:57:8d:cc:c5:12:bf:7e:ae:a9:6b:2c:0d:73:de:fe:4c:4b: 73:23:f9:89:2d:bf:6f:66:8d:3c:47:1a:83:0e:36:dc:3d:32: 72:e1:60:78 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQXwwZDGKncTa5Siyojld1jaZVWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNDAyMDcwMzQ5MzVaFw0yNTAyMDUwMzU0MzVaMDMxMTAvBgNV BAMTKENBQzZBMkNDMUQ0NTYxMzUwQTkwMTk4NTBDRjgwNjEwQzRDOTUzODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfK6BUqWgKAXRe4WZe67PHmjd2 ONCzYHB4GPAghqYSSOreun7H3XXZU6KRsP5+z6nuKimTdYPwWiH+ithccdYkzE/J SlT5YviWcofj/jTAs2ypTcVXZR5TEL3GKR2Qm5Kc3Ou/zzqopOf5v10pLUTFbEb/ 1fIaIypnZi8UOvp5e/mRzVAE/vLROnlH3ItKiisp/of1JlncoJbyK0+8kofztb0A Y9Rkd7Z9FHeH76LgDIyWJW+xFiB7/0F3wgWmDFutQoWCTmGEwkv3G9VgTNJFZseE Y5PPKl/CWFbJzUKxCyiyHWNA6bFaH0hYJKCvCE5ag5CpZhhRQmnrPZfBDnSzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUysaizB1FYTUKkBmFDPgGEMTJU4IwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzAzMzJlMzEzMjM4MmUzMjM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLgPowDQYJ KoZIhvcNAQELBQADggEBALQDlA6z8LnCAY41fYBY169VSzFWIUS9sqRFE9hQCY+Z U1Et5WhT5hi9Z0LPdv6akxBOZ8A5gQc2bqNd9bXPQzwOBtY0Co9mk2vrRwKUuITt KkwSmYJUnArIY5mIu496gTwAxnChV7CPSG9m6tMk9bhEMr5djPf5+Qlefwl3I3IL YbGuLkHlssyEHzEHYemuNqos8cJwPSQObGmwlVG6QA7FEf5A93+rO5JswMM5fV80 7pMEYo80sXg9p+MgnGIElpX/u4exPZkCIB+IIXzQ5hSrOIkSaC/fw3JXjczFEr9+ rqlrLA1z3v5MS3Mj+Yktv29mjTxHGoMONtw9MnLhYHg= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org