$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: FoZ2NO11kGtT1RANP84jTtisdpKQ3tFWKnlwKuUfz14= Subject key identifier: EB:A5:90:24:FB:0B:3A:33:8C:13:3C:1E:1A:F6:05:26:CA:BA:EC:E2 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 01F7F8190FBB04BB015F00B83F68805AAD6CA3 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa Signing time: Mon 01 Jul 2024 01:05:08 +0000 ROA not before: Mon 01 Jul 2024 01:00:08 +0000 ROA not after: Mon 30 Jun 2025 01:05:08 +0000 asID: 38156 IP address blocks: 203.190.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f7:f8:19:0f:bb:04:bb:01:5f:00:b8:3f:68:80:5a:ad:6c:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 1 01:00:08 2024 GMT Not After : Jun 30 01:05:08 2025 GMT Subject: CN=EBA59024FB0B3A338C133C1E1AF60526CABAECE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:d0:da:4a:f2:1d:85:5a:a7:86:d2:9d:f1: 80:68:21:47:70:b5:04:62:f0:05:81:eb:aa:06:97: e5:ce:89:5f:f9:de:a0:de:c8:1f:4e:fd:a4:fc:64: fd:69:53:b4:cc:f3:af:1b:ec:ce:09:ab:2e:b5:b9: ad:71:36:2f:15:4d:31:be:9e:81:fb:82:8e:a3:57: 1e:7f:9c:c0:90:da:ca:13:aa:b3:52:84:0c:5c:77: 41:c9:1c:2f:e7:d0:f5:b2:9e:56:9c:0f:06:a6:c8: a1:47:16:2e:b3:69:42:d1:50:5f:c8:76:e9:d0:3a: b5:66:2a:19:fa:11:05:48:ae:81:45:02:83:a3:d4: 9b:28:ee:5a:8c:2d:cf:7b:eb:68:09:b0:c2:5f:e1: 5a:5c:1c:63:35:58:d6:2d:05:75:2a:81:c2:0d:ef: bf:ae:9e:8f:ce:29:9c:3e:20:aa:cd:e8:2b:63:46: c7:79:7e:c7:b1:a3:58:02:07:ae:8b:42:69:95:f2: 94:af:b1:5e:57:66:32:2a:ee:35:77:4b:52:e9:d1: 53:6b:ad:68:95:85:d3:b6:ce:73:1d:d6:40:83:27: 1a:cb:89:57:e0:c3:b3:21:57:56:e8:82:36:88:2d: 71:54:6b:19:2e:56:79:73:27:ea:3f:3a:9f:51:a1: 67:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A5:90:24:FB:0B:3A:33:8C:13:3C:1E:1A:F6:05:26:CA:BA:EC:E2 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131382e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.118.0/24 Signature Algorithm: sha256WithRSAEncryption 81:81:99:55:7f:92:0d:1c:77:5c:87:f9:32:90:48:60:56:b4: f8:c3:1d:a7:d3:06:72:5c:66:0e:d3:d6:b1:9e:8b:4b:b2:41: 23:00:85:81:0f:10:a8:f9:e1:c8:24:b8:98:0d:44:58:0c:bc: 96:12:9a:bd:43:c0:3f:ef:31:6b:30:1b:0f:80:a0:03:4b:72: 6c:e1:cc:4e:98:0a:9a:23:79:71:7c:40:9d:6a:04:f5:89:67: a9:84:c2:af:7f:ad:04:f5:3d:08:a4:a1:3b:9d:22:82:38:d3: d4:2a:1e:14:4e:4f:cb:08:66:8e:8c:28:52:d2:34:a4:5d:73: 3f:3b:2a:39:2e:81:b7:33:c9:b4:94:b2:a7:4f:59:97:59:65: 92:63:fd:96:3b:55:2c:dc:02:23:15:a7:5e:22:84:52:b4:89: b6:b4:ce:81:8e:56:2c:0f:d3:1f:96:df:a2:ff:ed:18:0a:26: fc:0e:b1:1d:16:df:31:88:6c:39:f8:b1:64:27:36:62:5e:5d: b7:60:93:0a:23:46:83:b0:b6:1d:2b:e1:b9:0a:bc:f1:ab:50: 81:2e:f4:41:04:f7:67:d6:8c:7d:be:bc:81:96:ba:46:28:09: e8:9e:85:60:e5:e4:0d:19:db:c9:c9:46:da:e8:04:08:b6:69: 25:d8:2a:0f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgITAff4GQ+7BLsBXwC4P2iAWq1sozANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg1QkQwRkQwMEVCOEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZB NEQ1OEM0MB4XDTI0MDcwMTAxMDAwOFoXDTI1MDYzMDAxMDUwOFowMzExMC8GA1UE AxMoRUJBNTkwMjRGQjBCM0EzMzhDMTMzQzFFMUFGNjA1MjZDQUJBRUNFMjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALqi0NpK8h2FWqeG0p3xgGghR3C1 BGLwBYHrqgaX5c6JX/neoN7IH079pPxk/WlTtMzzrxvszgmrLrW5rXE2LxVNMb6e gfuCjqNXHn+cwJDayhOqs1KEDFx3QckcL+fQ9bKeVpwPBqbIoUcWLrNpQtFQX8h2 6dA6tWYqGfoRBUiugUUCg6PUmyjuWowtz3vraAmwwl/hWlwcYzVY1i0FdSqBwg3v v66ej84pnD4gqs3oK2NGx3l+x7GjWAIHrotCaZXylK+xXldmMiruNXdLUunRU2ut aJWF07bOcx3WQIMnGsuJV+DDsyFXVuiCNogtcVRrGS5WeXMn6j86n1GhZ4cCAwEA AaOCAjQwggIwMB0GA1UdDgQWBBTrpZAk+ws6M4wTPB4a9gUmyrrs4jAfBgNVHSME GDAWgBRb0P0A64rM9Qkp9rD1bHUAak1YxDAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1 ZDNkMjJhLTMzOGItNDMwMi05M2Y0LWMwMjFlYTZhZDU0OC8wLzVCRDBGRDAwRUI4 QUNDRjUwOTI5RjZCMEY1NkM3NTAwNkE0RDU4QzQuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi81QkQwRkQwMEVCOEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1 OEM0LmNlcjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUFBzALhoGEcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzVkM2QyMmEtMzM4Yi00MzAyLTkz ZjQtYzAyMWVhNmFkNTQ4LzAvMzIzMDMzMmUzMTM5MzAyZTMxMzEzODJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLvnYwDQYJKoZI hvcNAQELBQADggEBAIGBmVV/kg0cd1yH+TKQSGBWtPjDHafTBnJcZg7T1rGei0uy QSMAhYEPEKj54cgkuJgNRFgMvJYSmr1DwD/vMWswGw+AoANLcmzhzE6YCpojeXF8 QJ1qBPWJZ6mEwq9/rQT1PQikoTudIoI409QqHhROT8sIZo6MKFLSNKRdcz87Kjku gbczybSUsqdPWZdZZZJj/ZY7VSzcAiMVp14ihFK0iba0zoGOViwP0x+W36L/7RgK JvwOsR0W3zGIbDn4sWQnNmJeXbdgkwojRoOwth0r4bkKvPGrUIEu9EEE92fWjH2+ vIGWukYoCeiehWDl5A0Z28nJRtroBAi2aSXYKg8= -----END CERTIFICATE-----Generated at Mon Nov 25 07:13:31 2024 by rpki-client on console-fra.rpki-client.org