$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: qcxuZZYrhY5Boze3uLV7W72q3nAyxz/qdmBOVWYz8Ac= Subject key identifier: 37:5E:9A:97:7A:54:1A:1A:A3:1E:53:D0:24:55:A3:0D:FD:A1:24:F8 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 4B90E5A931EBEC5D1687E96EC997F513592054D6 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa Signing time: Mon 01 Jul 2024 01:05:09 +0000 ROA not before: Mon 01 Jul 2024 01:00:09 +0000 ROA not after: Mon 30 Jun 2025 01:05:09 +0000 asID: 38156 IP address blocks: 203.190.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:90:e5:a9:31:eb:ec:5d:16:87:e9:6e:c9:97:f5:13:59:20:54:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 1 01:00:09 2024 GMT Not After : Jun 30 01:05:09 2025 GMT Subject: CN=375E9A977A541A1AA31E53D02455A30DFDA124F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fd:70:f5:e7:69:69:29:df:03:0c:94:fb:c5: 6a:ca:8e:f6:7b:37:f2:28:51:f9:5e:9a:bd:66:2a: 26:a3:b3:71:bc:74:b7:56:ed:c9:18:fb:bc:11:49: 3d:0e:f6:84:d7:e0:5d:ca:60:a3:3e:12:f5:72:76: cc:e6:38:76:0d:8e:db:ee:0a:ee:83:a0:b4:0e:89: 99:0c:cb:a3:ac:ec:c7:3a:75:d1:48:55:88:e9:1d: 5e:94:b5:de:35:31:00:ef:bb:94:e0:7b:f7:f2:36: e4:fc:d2:4b:2c:3f:8e:fd:7b:7a:37:ab:ce:1e:d7: 4b:6a:6b:63:33:75:22:57:4b:2c:2e:0e:ff:e2:87: 99:56:23:4c:45:59:b3:6f:2e:b2:59:b2:3a:bf:cc: 81:75:8b:7d:ec:70:25:96:c7:93:c8:78:d0:02:03: 81:db:da:5e:6a:a6:ff:d2:32:d3:2b:60:3e:b2:ed: a4:85:f4:89:67:ec:55:fc:bf:45:75:39:3c:23:0f: 47:0d:9a:8d:f8:71:c4:7e:80:cf:77:93:9e:66:0f: 12:f1:ae:5e:2b:3d:25:1a:7e:8f:97:11:21:b9:50: 7c:82:e9:f2:1d:c3:14:32:dc:8f:a4:d4:eb:3d:f3: 0b:c9:93:6b:b4:db:b9:fc:c3:47:c9:9c:9e:5b:0d: 31:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:5E:9A:97:7A:54:1A:1A:A3:1E:53:D0:24:55:A3:0D:FD:A1:24:F8 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.119.0/24 Signature Algorithm: sha256WithRSAEncryption 15:8a:ea:67:4f:97:8a:a5:61:9e:d6:c9:ba:af:d0:9e:f1:21: 3b:fc:39:05:34:45:47:f2:78:71:6f:67:08:a7:ed:08:9a:91: d9:d5:4a:f8:69:71:66:18:0e:47:54:44:c4:df:d2:f4:58:45: 09:bc:db:1f:c4:fd:57:8a:11:f9:aa:a3:bc:a3:08:01:13:79: 98:9b:24:66:b4:a6:34:e9:56:91:31:92:c6:1c:cc:32:7b:3c: 63:01:bc:ba:bc:55:bf:92:d4:52:1f:a9:fc:ae:46:79:ed:99: 61:af:be:28:7d:16:91:bb:dc:f1:fa:8d:8f:93:b6:5d:3b:44: bb:02:8f:8f:69:a2:21:37:69:32:e6:c3:ea:db:f6:6e:48:b4: 42:85:c2:81:23:e6:41:0b:de:bf:ec:9f:14:57:db:1b:9f:51: 88:28:d8:22:d1:7a:cf:97:f0:42:7f:5e:44:71:30:2a:52:4e: 57:9c:ee:23:e7:36:03:fc:e2:bd:24:72:c5:1b:16:26:da:ed: c7:98:86:5a:a4:3f:77:0d:e6:88:cb:6b:40:57:4a:d6:c2:c6: 45:c0:1a:ea:30:24:7f:af:73:dc:7a:e8:02:9f:d0:a5:e6:78: 00:06:c1:5e:2c:f4:92:27:cd:7c:d7:32:3d:80:8f:ed:f6:c9: 6d:15:9c:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS5DlqTHr7F0Wh+luyZf1E1kgVNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDA3MDEwMTAwMDlaFw0yNTA2MzAwMTA1MDlaMDMxMTAvBgNV BAMTKDM3NUU5QTk3N0E1NDFBMUFBMzFFNTNEMDI0NTVBMzBERkRBMTI0RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB/XD152lpKd8DDJT7xWrKjvZ7 N/IoUflemr1mKiajs3G8dLdW7ckY+7wRST0O9oTX4F3KYKM+EvVydszmOHYNjtvu Cu6DoLQOiZkMy6Os7Mc6ddFIVYjpHV6Utd41MQDvu5Tge/fyNuT80kssP479e3o3 q84e10tqa2MzdSJXSywuDv/ih5lWI0xFWbNvLrJZsjq/zIF1i33scCWWx5PIeNAC A4Hb2l5qpv/SMtMrYD6y7aSF9Iln7FX8v0V1OTwjD0cNmo34ccR+gM93k55mDxLx rl4rPSUafo+XESG5UHyC6fIdwxQy3I+k1Os98wvJk2u027n8w0fJnJ5bDTHZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN16al3pUGhqjHlPQJFWjDf2hJPgwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy753MA0GCSqG SIb3DQEBCwUAA4IBAQAViupnT5eKpWGe1sm6r9Ce8SE7/DkFNEVH8nhxb2cIp+0I mpHZ1Ur4aXFmGA5HVETE39L0WEUJvNsfxP1XihH5qqO8owgBE3mYmyRmtKY06VaR MZLGHMwyezxjAby6vFW/ktRSH6n8rkZ57Zlhr74ofRaRu9zx+o2Pk7ZdO0S7Ao+P aaIhN2ky5sPq2/ZuSLRChcKBI+ZBC96/7J8UV9sbn1GIKNgi0XrPl/BCf15EcTAq Uk5XnO4j5zYD/OK9JHLFGxYm2u3HmIZapD93DeaIy2tAV0rWwsZFwBrqMCR/r3Pc eugCn9Cl5ngABsFeLPSSJ8181zI9gI/t9sltFZx3 -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org