$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: JWuf4G+2lo/f/4iII8LeIdYNr07rC2+QONP52BOK3XA= Subject key identifier: AE:19:E6:FA:C3:21:11:07:7D:9A:56:87:F0:86:7E:B0:E2:03:7C:80 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 4CA1AEFF8B041EBAD45432145B1C8BA726389297 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa Signing time: Mon 01 Jul 2024 01:05:08 +0000 ROA not before: Mon 01 Jul 2024 01:00:08 +0000 ROA not after: Mon 30 Jun 2025 01:05:08 +0000 asID: 38156 IP address blocks: 203.190.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:a1:ae:ff:8b:04:1e:ba:d4:54:32:14:5b:1c:8b:a7:26:38:92:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 1 01:00:08 2024 GMT Not After : Jun 30 01:05:08 2025 GMT Subject: CN=AE19E6FAC32111077D9A5687F0867EB0E2037C80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8a:99:d1:10:00:de:e7:3e:bd:5a:5a:1b:94: 19:fc:4e:7b:32:2a:ef:10:c1:e4:1f:59:2a:24:af: 0b:cb:9e:f9:6b:30:31:e8:9b:2f:30:52:9e:39:8b: 69:39:65:fb:6e:fb:a7:ab:35:55:98:e5:6f:d4:d6: 14:58:8c:c6:dd:2f:a7:1e:ac:91:9e:05:99:ce:7d: ae:f1:a1:83:39:97:a4:96:5f:91:df:7d:43:dc:e0: 69:12:a5:71:9f:13:53:b7:8c:c1:2f:e7:3b:c3:9a: bf:e1:32:2a:44:ff:33:84:c6:53:20:67:25:fd:65: 86:29:0a:04:d4:7b:a2:08:61:d7:bf:b0:ef:30:68: eb:9d:7d:de:4c:0c:ac:e7:6a:7b:c6:ba:14:04:11: 9e:18:4a:49:f2:41:41:69:87:0e:60:15:f1:2e:10: 7a:4d:94:a3:6d:98:46:5c:d0:8d:6f:5d:ff:f6:67: 3b:5c:6b:81:13:4b:8c:16:fc:b3:33:6c:50:b4:04: 89:bb:f8:6d:56:8d:85:08:62:f0:37:5a:d8:37:80: da:40:3e:d1:90:db:f2:6d:d6:63:d8:f7:fa:7b:36: 61:fa:8c:06:2e:23:8f:59:54:ea:50:b2:63:aa:03: fc:1e:16:3f:bd:11:8c:9b:27:c7:2d:37:75:c2:a2: 91:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:19:E6:FA:C3:21:11:07:7D:9A:56:87:F0:86:7E:B0:E2:03:7C:80 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.112.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:7e:9b:31:15:e7:3d:76:94:0d:ee:6d:c5:0b:f4:04:a5:a8: 9a:65:cc:8e:07:a1:15:72:7a:18:ce:eb:78:8b:fb:fc:4f:6b: ae:45:53:37:02:a0:e3:23:0b:35:b8:87:90:a7:f2:6d:b5:dd: 55:0a:f6:94:2e:c6:37:06:92:43:e8:85:19:78:4f:ef:22:99: c4:ce:81:1b:51:bc:16:84:cf:e8:32:99:b6:9f:80:1c:de:f9: dc:40:8a:20:be:57:d6:6a:ad:2f:4d:94:91:a7:1a:37:6d:1d: b7:dc:d9:69:44:e9:c6:aa:24:65:97:31:06:5b:c2:58:c8:f8: 66:f4:32:3a:da:8e:cc:fa:7b:74:0b:29:d7:3b:b1:1f:4c:25: 77:8a:6f:9d:12:18:6d:da:0f:43:a7:3a:dd:94:ee:49:ba:9e: fa:bd:c6:48:cd:53:ac:78:e3:dc:d2:a0:33:4a:75:e6:f7:28: 9c:f2:71:9e:01:a2:68:01:59:e4:94:f3:ad:e1:18:fc:93:54: 35:f1:5a:41:84:ad:23:fb:21:1f:2f:a8:88:44:c1:c6:bb:02: 3b:32:79:73:f2:6e:29:2e:68:96:f2:8b:4f:9d:a6:09:89:52: c0:78:3a:fb:56:c5:3a:4f:b3:92:73:3a:b9:49:83:ce:ce:60: e0:fb:82:df -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTKGu/4sEHrrUVDIUWxyLpyY4kpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDA3MDEwMTAwMDhaFw0yNTA2MzAwMTA1MDhaMDMxMTAvBgNV BAMTKEFFMTlFNkZBQzMyMTExMDc3RDlBNTY4N0YwODY3RUIwRTIwMzdDODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ipnREADe5z69WloblBn8Tnsy Ku8QweQfWSokrwvLnvlrMDHomy8wUp45i2k5Zftu+6erNVWY5W/U1hRYjMbdL6ce rJGeBZnOfa7xoYM5l6SWX5HffUPc4GkSpXGfE1O3jMEv5zvDmr/hMipE/zOExlMg ZyX9ZYYpCgTUe6IIYde/sO8waOudfd5MDKznanvGuhQEEZ4YSknyQUFphw5gFfEu EHpNlKNtmEZc0I1vXf/2Zztca4ETS4wW/LMzbFC0BIm7+G1WjYUIYvA3Wtg3gNpA PtGQ2/Jt1mPY9/p7NmH6jAYuI49ZVOpQsmOqA/weFj+9EYybJ8ctN3XCopFjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrhnm+sMhEQd9mlaH8IZ+sOIDfIAwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75wMA0GCSqG SIb3DQEBCwUAA4IBAQALfpsxFec9dpQN7m3FC/QEpaiaZcyOB6EVcnoYzut4i/v8 T2uuRVM3AqDjIws1uIeQp/Jttd1VCvaULsY3BpJD6IUZeE/vIpnEzoEbUbwWhM/o Mpm2n4Ac3vncQIogvlfWaq0vTZSRpxo3bR233NlpROnGqiRllzEGW8JYyPhm9DI6 2o7M+nt0CynXO7EfTCV3im+dEhht2g9DpzrdlO5Jup76vcZIzVOseOPc0qAzSnXm 9yic8nGeAaJoAVnklPOt4Rj8k1Q18VpBhK0j+yEfL6iIRMHGuwI7Mnlz8m4pLmiW 8otPnaYJiVLAeDr7VsU6T7OSczq5SYPOzmDg+4Lf -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org