$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: DYytFMVlHukOtUZN2CqdjSn5lCAVPfdHExdeymlQUcc= Subject key identifier: 4E:DB:18:D6:43:7C:58:E7:09:69:06:4E:4A:66:4F:53:B9:6F:54:BA Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 03B886E383A4C9C7BB7EC6CF084ED4C60D17E48B Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa Signing time: Mon 01 Jul 2024 01:05:09 +0000 ROA not before: Mon 01 Jul 2024 01:00:09 +0000 ROA not after: Mon 30 Jun 2025 01:05:09 +0000 asID: 38156 IP address blocks: 203.190.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b8:86:e3:83:a4:c9:c7:bb:7e:c6:cf:08:4e:d4:c6:0d:17:e4:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 1 01:00:09 2024 GMT Not After : Jun 30 01:05:09 2025 GMT Subject: CN=4EDB18D6437C58E70969064E4A664F53B96F54BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ab:1e:4b:6f:4c:d7:6b:0d:8b:7b:1f:3e:53: 84:55:11:df:b4:f3:f8:95:4e:38:38:d7:a5:35:db: 98:e3:80:5e:0b:72:03:4f:c5:36:a6:28:b6:1e:83: 69:8e:a4:61:32:13:77:08:70:97:54:c5:eb:ea:86: d3:ff:f9:03:03:b9:bb:f3:6f:e0:8b:e1:d9:48:e1: 1a:c1:8f:96:d4:0c:34:05:87:93:7b:f8:16:7d:42: b6:96:0c:50:c5:ab:5d:e3:9a:32:0f:4d:a2:8d:ae: 58:da:eb:ca:33:42:95:84:2b:2d:37:46:f5:69:b3: 3f:82:84:57:ad:90:ed:24:15:d6:4d:55:3c:b7:3f: f2:a7:c2:ae:f1:95:fe:a8:7d:9a:a2:fb:d9:9b:f8: 53:14:a2:3b:29:28:44:2c:c3:02:57:42:03:20:9b: 8a:dd:83:27:6e:fe:af:56:3a:1e:63:bc:e1:d1:d5: a0:22:8d:0c:e4:62:0e:4c:cc:03:ff:78:b5:ef:cc: ba:82:41:a0:d5:55:4d:ba:02:10:50:74:48:33:6c: dd:66:59:15:ed:3d:32:64:87:ba:23:29:07:45:61: 2d:38:d8:d4:0e:f8:32:02:34:7b:db:7a:ae:9a:01: 48:f9:fa:26:c8:ad:fb:71:9b:eb:30:bf:51:d1:b7: 5b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DB:18:D6:43:7C:58:E7:09:69:06:4E:4A:66:4F:53:B9:6F:54:BA X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131342e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.114.0/24 Signature Algorithm: sha256WithRSAEncryption 77:89:a4:c1:ca:a2:3e:9d:e7:25:a8:e4:a8:c5:57:99:70:cc: e3:57:62:e2:1e:2f:f6:f4:0e:a4:3a:47:41:37:a9:5e:9c:70: 00:5d:02:3a:9b:a8:29:de:01:c4:29:49:49:9a:bd:e2:03:2c: a1:31:5e:67:e4:f0:74:a8:7c:80:0e:5f:e7:cf:94:58:75:b7: 45:51:74:60:c1:34:95:18:ad:73:9e:8d:aa:fc:1a:21:e4:23: 42:92:aa:7b:b3:19:40:9e:7a:9a:0d:06:d3:b0:56:0a:7f:fe: 9e:b9:f7:86:e6:3c:8f:d5:c3:cf:4c:c1:f1:02:e4:ac:a0:3e: 22:d6:cf:cd:bd:d0:5e:4e:7c:fb:b8:98:a4:a5:2e:e1:28:e7: b5:8c:d5:39:d0:f3:80:f5:29:5e:0b:d4:76:be:f1:f9:7b:df: 35:cf:ad:b2:27:4e:8f:31:32:5c:7b:39:6b:7c:de:57:34:ee: 69:2f:87:bb:9a:1d:72:1d:58:f8:d6:cd:21:ee:03:12:f4:ef: 32:36:b5:9d:00:bc:a2:4f:a6:e4:bb:05:3e:67:c4:69:fc:68: 1b:02:a5:93:52:c1:99:5f:8b:64:9a:25:1d:09:5d:7a:7c:28: c1:71:32:71:96:1d:31:9a:6d:10:00:55:ea:95:70:58:1b:7d: 16:d4:34:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA7iG44Okyce7fsbPCE7Uxg0X5IswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDA3MDEwMTAwMDlaFw0yNTA2MzAwMTA1MDlaMDMxMTAvBgNV BAMTKDRFREIxOEQ2NDM3QzU4RTcwOTY5MDY0RTRBNjY0RjUzQjk2RjU0QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnqx5Lb0zXaw2Lex8+U4RVEd+0 8/iVTjg416U125jjgF4LcgNPxTamKLYeg2mOpGEyE3cIcJdUxevqhtP/+QMDubvz b+CL4dlI4RrBj5bUDDQFh5N7+BZ9QraWDFDFq13jmjIPTaKNrlja68ozQpWEKy03 RvVpsz+ChFetkO0kFdZNVTy3P/Knwq7xlf6ofZqi+9mb+FMUojspKEQswwJXQgMg m4rdgydu/q9WOh5jvOHR1aAijQzkYg5MzAP/eLXvzLqCQaDVVU26AhBQdEgzbN1m WRXtPTJkh7ojKQdFYS042NQO+DICNHvbeq6aAUj5+ibIrftxm+swv1HRt1tFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTtsY1kN8WOcJaQZOSmZPU7lvVLowHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75yMA0GCSqG SIb3DQEBCwUAA4IBAQB3iaTByqI+neclqOSoxVeZcMzjV2LiHi/29A6kOkdBN6le nHAAXQI6m6gp3gHEKUlJmr3iAyyhMV5n5PB0qHyADl/nz5RYdbdFUXRgwTSVGK1z no2q/Boh5CNCkqp7sxlAnnqaDQbTsFYKf/6eufeG5jyP1cPPTMHxAuSsoD4i1s/N vdBeTnz7uJikpS7hKOe1jNU50POA9SleC9R2vvH5e981z62yJ06PMTJcezlrfN5X NO5pL4e7mh1yHVj41s0h7gMS9O8yNrWdALyiT6bkuwU+Z8Rp/GgbAqWTUsGZX4tk miUdCV16fCjBcTJxlh0xmm0QAFXqlXBYG30W1DT7 -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org