$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e32382e302f32332d3234203d3e20313338383731.roa File: 3230322e37352e32382e302f32332d3234203d3e20313338383731.roa (raw, json) Hash identifier: vRq65LfzwGz4j+oEbqBPQ82wtT1KDumkC2L75cgO4WQ= Subject key identifier: 04:9A:5F:87:A1:40:5B:AF:E8:3A:79:EC:86:2D:0B:39:EE:EE:B5:C9 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 79DCB774B531FC8317A7EA97A70F15B480A25DC9 Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e32382e302f32332d3234203d3e20313338383731.roa Signing time: Fri 22 Nov 2024 10:03:07 +0000 ROA not before: Fri 22 Nov 2024 09:58:07 +0000 ROA not after: Fri 21 Nov 2025 10:03:07 +0000 asID: 138871 IP address blocks: 202.75.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:dc:b7:74:b5:31:fc:83:17:a7:ea:97:a7:0f:15:b4:80:a2:5d:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Nov 22 09:58:07 2024 GMT Not After : Nov 21 10:03:07 2025 GMT Subject: CN=049A5F87A1405BAFE83A79EC862D0B39EEEEB5C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9f:20:1a:1a:10:2e:92:ff:f9:dc:06:92:f7: 34:41:a2:5b:f7:2a:c1:46:7b:f5:de:90:ab:cc:03: 06:04:8a:61:96:a3:56:54:ef:85:7c:27:ca:b3:2a: a9:af:6c:d8:6a:2f:ce:e3:dc:94:8c:a5:9a:76:15: 91:61:78:cf:ea:4d:6d:c9:3c:cb:28:1a:cb:68:7a: a9:e0:47:23:3e:2b:27:56:2b:3a:ed:76:e5:98:36: 58:44:ba:a1:18:5b:2a:d0:2e:28:ee:c3:51:b3:ce: 3d:b2:17:25:8e:05:d3:b1:36:e0:b1:db:09:2c:5d: d0:ba:50:a7:a0:1e:57:54:31:0d:f2:8d:33:19:25: 16:9a:55:4c:11:56:b3:7d:59:bc:64:02:b8:2a:49: 5b:13:8d:a2:38:95:72:5d:dc:c9:0f:da:50:ec:ff: f6:bf:10:dd:e6:4c:53:ee:aa:7c:af:6d:0e:e4:01: bb:7d:f6:ff:a7:03:ff:c6:ad:33:f2:0a:c2:c3:f6: 63:6d:02:c1:41:39:5a:3d:c5:7e:82:e7:2e:b2:bb: 00:bf:03:51:86:89:b2:b2:e5:41:4a:76:da:f9:22: 97:a8:04:29:86:10:e5:16:52:89:93:99:ea:e0:76: 63:5c:02:c4:65:58:df:e8:01:cb:11:8c:e6:7c:fb: 20:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9A:5F:87:A1:40:5B:AF:E8:3A:79:EC:86:2D:0B:39:EE:EE:B5:C9 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e32382e302f32332d3234203d3e20313338383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.75.28.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:53:49:23:b2:30:8f:a5:98:87:54:de:fe:e4:98:4e:80:d2: f9:6d:75:a9:b4:b2:c0:07:1a:91:de:67:0c:9e:ee:9a:e2:21: 9b:23:26:27:f6:76:ae:cc:bb:1c:35:f6:dc:f0:25:76:56:e1: 84:27:46:70:ad:31:cd:bc:8c:a0:a7:54:e5:f7:bc:b2:ec:46: c8:f6:bc:f7:af:62:92:17:54:4b:d8:50:ad:4f:c8:aa:95:8c: 3a:05:15:9f:2d:66:ce:4e:54:21:f0:63:05:c2:6c:e1:73:41: 18:2d:8f:2b:b7:37:7c:df:73:e0:94:8c:80:9a:4c:57:37:a1: 94:ce:7e:3f:75:97:fc:38:47:c3:e9:b5:d9:2b:19:ab:6e:bd: 37:4b:e0:de:8c:47:83:ab:fb:e2:c9:26:51:c4:e0:e9:3e:76: f8:00:06:9d:a6:44:6d:4d:11:92:5c:87:dd:99:c8:1a:0d:ce: 58:b9:b2:bb:27:27:9c:b4:a4:46:99:28:22:af:b4:16:ef:42: 08:1a:7b:d3:34:1d:b1:b4:85:5b:f7:9e:9b:ff:e4:65:98:90: 59:a2:8b:ee:dd:38:88:56:dd:13:65:7a:76:de:4e:ea:ed:9e: 34:87:8f:dd:1c:8d:69:64:aa:8b:55:3a:64:73:08:c5:ae:70: 21:b4:39:46 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUedy3dLUx/IMXp+qXpw8VtICiXckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yNDExMjIwOTU4MDdaFw0yNTExMjExMDAzMDdaMDMxMTAvBgNV BAMTKDA0OUE1Rjg3QTE0MDVCQUZFODNBNzlFQzg2MkQwQjM5RUVFRUI1QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQnyAaGhAukv/53AaS9zRBolv3 KsFGe/XekKvMAwYEimGWo1ZU74V8J8qzKqmvbNhqL87j3JSMpZp2FZFheM/qTW3J PMsoGstoeqngRyM+KydWKzrtduWYNlhEuqEYWyrQLijuw1Gzzj2yFyWOBdOxNuCx 2wksXdC6UKegHldUMQ3yjTMZJRaaVUwRVrN9WbxkArgqSVsTjaI4lXJd3MkP2lDs //a/EN3mTFPuqnyvbQ7kAbt99v+nA//GrTPyCsLD9mNtAsFBOVo9xX6C5y6yuwC/ A1GGibKy5UFKdtr5IpeoBCmGEOUWUomTmergdmNcAsRlWN/oAcsRjOZ8+yAHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBJpfh6FAW6/oOnnshi0LOe7utckwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0NTQ3MTA0LTkzOWUtNDBlMy04 ZmM4LTQyNTIyNjQyMDQ0Yi8wLzMyMzAzMjJlMzczNTJlMzIzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcpLHDANBgkqhkiG 9w0BAQsFAAOCAQEAnVNJI7Iwj6WYh1Te/uSYToDS+W11qbSywAcakd5nDJ7umuIh myMmJ/Z2rsy7HDX23PAldlbhhCdGcK0xzbyMoKdU5fe8suxGyPa8969ikhdUS9hQ rU/IqpWMOgUVny1mzk5UIfBjBcJs4XNBGC2PK7c3fN9z4JSMgJpMVzehlM5+P3WX /DhHw+m12SsZq269N0vg3oxHg6v74skmUcTg6T52+AAGnaZEbU0RklyH3ZnIGg3O WLmyuycnnLSkRpkoIq+0Fu9CCBp70zQdsbSFW/eem//kZZiQWaKL7t04iFbdE2V6 dt5O6u2eNIeP3RyNaWSqi1U6ZHMIxa5wIbQ5Rg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org