$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32312d3231203d3e203234353235.roa File: 3230332e3135332e32342e302f32312d3231203d3e203234353235.roa (raw, json) Hash identifier: zhW9zMcNgBjVRnFdA0PZVo7Zp/WwGqvzJikco1CwIu0= Subject key identifier: 1E:2F:95:87:E8:09:9B:A1:92:35:5E:27:5F:69:F3:C5:59:60:F0:BC Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 043F23BF8E768A871B17E215D6B7BA0AA8D0CEC2 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32312d3231203d3e203234353235.roa Signing time: Tue 21 May 2024 08:02:41 +0000 ROA not before: Tue 21 May 2024 07:57:41 +0000 ROA not after: Tue 20 May 2025 08:02:41 +0000 asID: 24525 IP address blocks: 203.153.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:3f:23:bf:8e:76:8a:87:1b:17:e2:15:d6:b7:ba:0a:a8:d0:ce:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 07:57:41 2024 GMT Not After : May 20 08:02:41 2025 GMT Subject: CN=1E2F9587E8099BA192355E275F69F3C55960F0BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:27:7c:d2:24:c2:10:cf:95:13:23:e0:95:8d: b5:2d:d9:4c:b2:f8:4b:28:6c:f6:eb:b0:7d:4f:c0: 43:b5:66:82:45:64:bf:58:30:ff:7c:14:6e:e2:77: 96:59:7a:64:3e:05:1f:92:77:15:d6:26:c3:f8:c8: c9:3c:b4:4a:9f:29:18:f3:00:a1:be:40:ad:86:30: 20:47:28:3e:93:b3:50:e6:ad:52:c4:6c:1b:cf:a4: c1:f2:66:87:43:e7:d9:b1:00:8c:1a:b8:56:25:82: 49:61:f5:f4:2c:29:ba:d8:2a:54:91:8d:e0:a2:81: d2:26:a5:e6:d4:26:dc:46:0d:b9:51:8f:30:6c:40: e7:c1:41:f9:0c:6e:f2:4a:50:83:a8:77:a5:a4:9e: 73:c0:7c:6d:b2:53:cb:79:fc:90:3a:2f:d8:b9:3a: eb:8d:ae:1a:38:8a:a7:13:13:66:4e:2b:14:6a:4e: d4:bd:66:de:9d:b5:79:08:1b:22:92:ee:08:70:47: c2:cc:71:21:bb:3d:d3:21:f1:76:43:52:c8:31:7b: da:63:b2:a7:89:b4:21:08:c2:fc:38:83:34:1f:f5: 2b:cc:4d:55:a4:69:b5:6d:4c:76:11:3b:26:d0:2e: 11:45:35:85:10:6d:98:ab:01:f2:fd:47:f7:ad:2d: 30:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2F:95:87:E8:09:9B:A1:92:35:5E:27:5F:69:F3:C5:59:60:F0:BC X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32312d3231203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.24.0/21 Signature Algorithm: sha256WithRSAEncryption a7:c0:79:56:a1:00:ef:61:22:e9:ff:5e:cb:68:8d:0b:9b:0b: 4d:67:0c:f0:d4:e5:c9:3a:77:94:ae:b6:fa:cb:8b:dd:21:44: df:ed:0f:7b:a3:93:e3:c6:18:f4:9a:65:b3:08:6c:07:6c:af: a2:5f:94:28:2e:75:17:e6:ce:14:94:15:d3:f1:ec:53:97:26: 55:ba:62:c0:af:9c:a2:fc:71:db:8b:ca:70:52:1b:e7:44:92: b0:49:0f:3e:be:87:48:ae:92:5a:da:e0:96:af:72:37:a0:1f: 66:c0:6d:29:54:5f:32:ba:1e:23:bc:76:bf:db:6f:70:f0:8e: b0:7c:14:a1:27:7a:c3:4f:02:c4:c4:7c:26:87:78:0b:a9:fa: a6:8b:ba:c6:b1:bb:ee:47:6e:20:87:c5:4e:0e:ba:8f:f4:4e: b5:7e:91:59:33:c4:bb:3c:aa:4e:f4:ef:94:a2:ba:cd:17:e8: e0:49:b3:74:70:e8:74:87:05:f4:0e:b6:b0:c8:64:91:56:da: be:01:94:ed:46:14:46:42:b1:c8:82:93:0b:70:7e:19:c8:7b: 71:e6:6c:7a:8e:f5:9c:81:70:9a:26:c5:30:41:13:c1:3f:fc: 24:86:0e:cf:9f:2d:20:42:ca:fd:66:1e:c9:47:54:ac:c8:ac: a5:aa:04:72 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBD8jv452iocbF+IV1re6CqjQzsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNzU3NDFaFw0yNTA1MjAwODAyNDFaMDMxMTAvBgNV BAMTKDFFMkY5NTg3RTgwOTlCQTE5MjM1NUUyNzVGNjlGM0M1NTk2MEYwQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyJ3zSJMIQz5UTI+CVjbUt2Uyy +EsobPbrsH1PwEO1ZoJFZL9YMP98FG7id5ZZemQ+BR+SdxXWJsP4yMk8tEqfKRjz AKG+QK2GMCBHKD6Ts1DmrVLEbBvPpMHyZodD59mxAIwauFYlgklh9fQsKbrYKlSR jeCigdImpebUJtxGDblRjzBsQOfBQfkMbvJKUIOod6WknnPAfG2yU8t5/JA6L9i5 OuuNrho4iqcTE2ZOKxRqTtS9Zt6dtXkIGyKS7ghwR8LMcSG7PdMh8XZDUsgxe9pj sqeJtCEIwvw4gzQf9SvMTVWkabVtTHYROybQLhFFNYUQbZirAfL9R/etLTDnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHi+Vh+gJm6GSNV4nX2nzxVlg8LwwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM0MmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8uZGDANBgkqhkiG 9w0BAQsFAAOCAQEAp8B5VqEA72Ei6f9ey2iNC5sLTWcM8NTlyTp3lK62+suL3SFE 3+0Pe6OT48YY9JplswhsB2yvol+UKC51F+bOFJQV0/HsU5cmVbpiwK+covxx24vK cFIb50SSsEkPPr6HSK6SWtrglq9yN6AfZsBtKVRfMroeI7x2v9tvcPCOsHwUoSd6 w08CxMR8Jod4C6n6pou6xrG77kduIIfFTg66j/ROtX6RWTPEuzyqTvTvlKK6zRfo 4EmzdHDodIcF9A62sMhkkVbavgGU7UYURkKxyIKTC3B+Gch7ceZseo71nIFwmibF MEETwT/8JIYOz58tIELK/WYeyUdUrMispaoEcg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:17 2024 by rpki-client on console-ams.rpki-client.org