$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa File: 3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa (raw, json) Hash identifier: e3oSAdRMgOXXxhA6I/kQXLafsImIBuivGpBHTCOFn98= Subject key identifier: 91:3E:54:13:B5:3F:9A:37:CE:4F:2A:B6:A8:FE:09:D3:EE:1E:7F:30 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 7A50D6FDB4768DD9AB90A0E3E015CE22B0CDEA89 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa Signing time: Thu 01 Aug 2024 09:00:02 +0000 ROA not before: Thu 01 Aug 2024 08:55:02 +0000 ROA not after: Thu 31 Jul 2025 09:00:02 +0000 asID: 38156 IP address blocks: 203.190.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:50:d6:fd:b4:76:8d:d9:ab:90:a0:e3:e0:15:ce:22:b0:cd:ea:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Aug 1 08:55:02 2024 GMT Not After : Jul 31 09:00:02 2025 GMT Subject: CN=913E5413B53F9A37CE4F2AB6A8FE09D3EE1E7F30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e8:e7:05:d6:5d:74:72:2c:37:a6:a5:c6:ea: 25:67:fe:76:ab:0e:fb:61:83:1b:95:36:49:13:c5: 34:24:d1:d7:bc:e0:2b:56:12:4f:78:69:bd:c4:06: b0:0e:43:ae:f4:16:b8:c5:4c:ef:9b:7c:8b:8d:d8: bd:a4:03:e1:63:4e:24:47:b0:c6:ce:6f:cc:17:1f: 72:b5:6d:12:f7:bb:e4:5b:6a:3c:22:1e:77:e7:0e: 4f:2f:ff:af:9f:ee:16:ec:9a:ff:62:ef:e5:72:66: ec:c4:a7:d2:dc:e6:b6:a3:95:a0:79:29:cc:b4:ec: a6:4e:bb:98:f6:28:9b:27:4e:9a:e3:3e:fb:1f:d0: c2:49:cb:e6:58:69:34:5a:0d:f2:7d:c6:80:43:df: 5e:9d:72:bc:4e:cd:d2:21:9a:91:6c:21:37:c2:2a: ff:fc:1e:14:f2:fb:51:90:f7:b7:f7:2c:89:3c:d4: 60:8a:44:af:fe:e0:c9:ce:6e:98:be:48:28:83:22: 04:9d:72:d6:21:42:47:76:de:64:9b:18:94:2f:7b: 09:22:69:75:0f:20:51:bd:12:6c:f5:37:3e:ab:f0: 04:18:7e:52:1b:42:7d:ba:68:f9:20:5c:72:08:f4: 48:7b:1d:ff:72:3e:97:96:44:0a:17:ff:09:55:6f: d0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3E:54:13:B5:3F:9A:37:CE:4F:2A:B6:A8:FE:09:D3:EE:1E:7F:30 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.112.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:68:a3:91:b4:bb:52:40:46:ac:2a:3a:8e:f3:b0:a0:9b:03: e4:3c:32:60:f1:20:6e:2a:7d:c1:24:64:3f:00:b4:2d:ab:d1: 56:76:a5:3f:22:7f:d0:8c:74:5e:77:c4:bf:b2:ad:ae:c0:29: 9f:60:f6:67:60:d1:d9:93:01:9b:f7:15:1b:00:80:2e:16:be: fd:cf:14:27:81:27:57:0e:80:be:99:16:04:50:ef:0a:7c:2f: cc:e3:ae:ac:bf:a1:8c:1e:3b:5b:42:20:a0:da:16:97:a5:74: dc:ec:3e:5a:58:80:b5:a8:d8:7c:c7:4a:b3:23:5a:96:97:d2: a2:83:de:9f:1d:f1:47:86:56:07:7c:84:e5:fe:16:5d:1f:f8: 68:21:e8:a2:ec:37:4e:53:db:c6:6a:09:e0:56:c2:59:b5:29: d8:b1:cc:7e:31:75:0f:f2:91:25:e3:f6:06:da:eb:64:c8:c0: 42:68:e6:50:96:2f:01:25:c1:db:84:56:21:c6:b3:3f:40:a9: fd:a7:b6:6d:04:c7:75:a0:84:dd:ad:7e:b0:5b:c1:52:ba:3f: 55:a6:98:1e:cf:df:b2:37:92:2a:13:0e:99:d3:a3:75:03:fa: 03:3c:a4:f2:2c:06:1a:bd:32:94:e8:25:84:33:9f:50:ae:90: e4:37:70:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUelDW/bR2jdmrkKDj4BXOIrDN6okwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDA4MDEwODU1MDJaFw0yNTA3MzEwOTAwMDJaMDMxMTAvBgNV BAMTKDkxM0U1NDEzQjUzRjlBMzdDRTRGMkFCNkE4RkUwOUQzRUUxRTdGMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC66OcF1l10ciw3pqXG6iVn/nar DvthgxuVNkkTxTQk0de84CtWEk94ab3EBrAOQ670FrjFTO+bfIuN2L2kA+FjTiRH sMbOb8wXH3K1bRL3u+RbajwiHnfnDk8v/6+f7hbsmv9i7+VyZuzEp9Lc5rajlaB5 Kcy07KZOu5j2KJsnTprjPvsf0MJJy+ZYaTRaDfJ9xoBD316dcrxOzdIhmpFsITfC Kv/8HhTy+1GQ97f3LIk81GCKRK/+4MnObpi+SCiDIgSdctYhQkd23mSbGJQvewki aXUPIFG9Emz1Nz6r8AQYflIbQn26aPkgXHII9Eh7Hf9yPpeWRAoX/wlVb9BRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkT5UE7U/mjfOTyq2qP4J0+4efzAwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzIyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy75wMA0GCSqG SIb3DQEBCwUAA4IBAQAeaKORtLtSQEasKjqO87CgmwPkPDJg8SBuKn3BJGQ/ALQt q9FWdqU/In/QjHRed8S/sq2uwCmfYPZnYNHZkwGb9xUbAIAuFr79zxQngSdXDoC+ mRYEUO8KfC/M466sv6GMHjtbQiCg2haXpXTc7D5aWIC1qNh8x0qzI1qWl9Kig96f HfFHhlYHfITl/hZdH/hoIeii7DdOU9vGagngVsJZtSnYscx+MXUP8pEl4/YG2utk yMBCaOZQli8BJcHbhFYhxrM/QKn9p7ZtBMd1oITdrX6wW8FSuj9Vppgez9+yN5Iq Ew6Z06N1A/oDPKTyLAYavTKU6CWEM59QrpDkN3A1 -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org