$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: +tgDaz+fJ/r+9gqEaKdzoCfWV4S4IGpkTq3CasjB7Aw= Subject key identifier: 56:D1:5B:40:24:4D:23:43:F7:BE:65:3D:4A:D4:58:4C:29:CD:F7:46 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 319A5765A1F1B3A573C34EA3E9C144A83B27F8C5 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa Signing time: Mon 01 Jul 2024 01:05:08 +0000 ROA not before: Mon 01 Jul 2024 01:00:08 +0000 ROA not after: Mon 30 Jun 2025 01:05:08 +0000 asID: 38156 IP address blocks: 203.190.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9a:57:65:a1:f1:b3:a5:73:c3:4e:a3:e9:c1:44:a8:3b:27:f8:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 1 01:00:08 2024 GMT Not After : Jun 30 01:05:08 2025 GMT Subject: CN=56D15B40244D2343F7BE653D4AD4584C29CDF746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d1:c7:9e:92:99:6c:46:70:52:24:50:ed:30: fc:72:ec:1b:2b:e8:c2:75:f6:ed:fb:52:07:b1:19: 9d:38:03:4c:6e:f1:df:f7:24:ef:a0:75:8b:c3:65: e2:3c:61:2e:40:cc:1c:5d:d4:48:5f:af:3b:62:aa: cc:84:80:39:05:68:31:af:b2:fd:3a:be:c5:d3:f1: 8e:7c:15:b6:6f:0e:8f:80:39:52:51:be:18:95:8a: db:fc:ac:7f:90:f8:a7:a8:42:c9:39:06:4b:15:5c: b9:6e:cc:fd:fd:96:dc:83:9c:74:60:e7:db:c8:9e: 57:f7:9d:43:a8:9f:a4:00:08:15:99:40:f4:30:96: 95:e7:d6:ff:92:27:da:c0:fc:6d:5e:7b:4b:b7:b5: 01:93:72:bc:ce:fd:22:6c:f4:25:28:c6:10:85:3f: d6:20:9e:5c:2a:ec:91:dc:54:b6:db:c4:67:be:59: 76:f6:7f:9e:f3:b8:63:25:12:b2:8f:7c:5f:5a:42: 09:0c:4f:35:cb:f6:2a:3a:d4:d0:42:8a:ad:eb:b5: 7d:54:88:a5:ff:a6:5c:cf:01:54:a8:b9:c2:4c:b0: 0d:9c:4e:d8:64:bc:6d:63:3c:3e:ad:34:ea:04:c6: 4a:17:94:f1:7d:0b:2d:85:aa:b2:97:33:15:d9:85: 80:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D1:5B:40:24:4D:23:43:F7:BE:65:3D:4A:D4:58:4C:29:CD:F7:46 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.113.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:b4:0f:61:ab:c9:13:92:5f:21:2b:74:2c:8a:cf:82:b2:81: 43:ec:4f:69:4f:0c:30:61:b9:7f:7c:1d:df:3a:53:9b:20:d8: b6:57:06:e4:a3:cd:f1:fd:b8:f8:de:3e:2c:96:f5:69:ea:f8: 3b:aa:03:bc:59:68:75:39:56:55:25:c1:79:d9:07:c0:15:53: a8:ae:3a:ca:7f:29:d8:0e:f8:a5:0d:c0:00:03:14:9a:ec:d9: 49:05:e3:46:18:f3:66:88:60:7a:55:ae:dc:56:d9:67:cb:e2: 75:11:9f:3e:ef:f9:98:37:b4:93:4d:e2:7a:6c:0a:b8:38:f1: bf:22:1a:aa:6e:ab:66:2b:78:99:20:6f:0e:3a:22:76:07:0a: d1:28:2c:86:74:e4:5b:dc:a1:b0:59:6e:b3:1a:24:4d:a9:c6: e8:e3:e2:76:fe:23:2f:c0:cd:d6:42:e3:49:4b:82:5e:12:5b: 08:63:95:76:8f:5c:dc:41:38:e8:e8:1a:f2:96:ea:b6:2b:c8: ce:2b:97:c9:16:34:cb:c5:bf:dd:2c:25:60:7d:cc:f7:38:49: 82:77:f9:e7:35:9c:7c:24:5f:60:c6:e2:6d:f8:fe:16:ef:07: 2e:78:17:6b:42:78:34:6b:01:cb:75:1a:c1:7b:d5:2c:2d:81: 72:8f:20:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMZpXZaHxs6Vzw06j6cFEqDsn+MUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDA3MDEwMTAwMDhaFw0yNTA2MzAwMTA1MDhaMDMxMTAvBgNV BAMTKDU2RDE1QjQwMjQ0RDIzNDNGN0JFNjUzRDRBRDQ1ODRDMjlDREY3NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI0ceekplsRnBSJFDtMPxy7Bsr 6MJ19u37UgexGZ04A0xu8d/3JO+gdYvDZeI8YS5AzBxd1EhfrztiqsyEgDkFaDGv sv06vsXT8Y58FbZvDo+AOVJRvhiVitv8rH+Q+KeoQsk5BksVXLluzP39ltyDnHRg 59vInlf3nUOon6QACBWZQPQwlpXn1v+SJ9rA/G1ee0u3tQGTcrzO/SJs9CUoxhCF P9Ygnlwq7JHcVLbbxGe+WXb2f57zuGMlErKPfF9aQgkMTzXL9io61NBCiq3rtX1U iKX/plzPAVSoucJMsA2cTthkvG1jPD6tNOoExkoXlPF9Cy2FqrKXMxXZhYCzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVtFbQCRNI0P3vmU9StRYTCnN90YwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75xMA0GCSqG SIb3DQEBCwUAA4IBAQB+tA9hq8kTkl8hK3Qsis+CsoFD7E9pTwwwYbl/fB3fOlOb INi2Vwbko83x/bj43j4slvVp6vg7qgO8WWh1OVZVJcF52QfAFVOorjrKfynYDvil DcAAAxSa7NlJBeNGGPNmiGB6Va7cVtlny+J1EZ8+7/mYN7STTeJ6bAq4OPG/Ihqq bqtmK3iZIG8OOiJ2BwrRKCyGdORb3KGwWW6zGiRNqcbo4+J2/iMvwM3WQuNJS4Je ElsIY5V2j1zcQTjo6Bryluq2K8jOK5fJFjTLxb/dLCVgfcz3OEmCd/nnNZx8JF9g xuJt+P4W7wcueBdrQng0awHLdRrBe9UsLYFyjyDX -----END CERTIFICATE-----Generated at Mon Nov 25 07:13:31 2024 by rpki-client on console-fra.rpki-client.org