$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32342e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: 7k2hndr5dl79GAZYWUgIirjZg0qb6AGl9KlnvMRD9zs= Subject key identifier: 72:1E:0F:EF:3F:67:14:F2:0F:62:7C:4A:F1:8D:49:3E:5B:95:E3:00 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 155BF242E453EB6846D0035CF9C0E1CAFCDA2AC6 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:58 +0000 ROA not before: Sat 01 Jun 2024 07:55:58 +0000 ROA not after: Sat 31 May 2025 08:00:58 +0000 asID: 24525 IP address blocks: 203.153.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:5b:f2:42:e4:53:eb:68:46:d0:03:5c:f9:c0:e1:ca:fc:da:2a:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:58 2024 GMT Not After : May 31 08:00:58 2025 GMT Subject: CN=721E0FEF3F6714F20F627C4AF18D493E5B95E300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1b:5a:d2:9f:f6:5f:49:fb:9e:f6:2b:64:e4: 6a:e6:1b:5b:72:74:06:71:35:4c:7a:b7:c0:19:de: 0e:16:35:20:fd:f8:7d:61:d6:fa:81:c4:69:20:09: 17:66:3d:fb:d6:98:f4:bb:2e:a7:b8:3f:52:40:66: 96:1c:ae:b5:34:f1:c2:dc:a3:04:c1:73:d2:c0:3c: ea:41:37:7d:42:a8:db:78:e9:05:9b:7f:f2:3d:ef: 52:d2:1d:a0:52:d9:14:ec:ad:e6:57:8e:cd:ed:43: df:b4:3b:a0:01:8e:6f:39:bf:46:69:5d:56:12:ac: c6:1a:ac:d6:32:08:54:e4:45:5c:e9:14:96:2b:54: ef:4d:1a:03:a1:7f:27:4b:cf:65:56:4a:5e:73:4a: 76:be:9b:12:e5:cc:1c:92:ad:2a:53:66:01:ba:e0: 41:07:42:06:72:36:ca:05:a2:6b:78:df:ab:9f:fc: 72:89:05:49:c0:2e:8c:ba:8a:fd:72:ad:e2:fd:35: 70:64:ba:98:21:0c:a9:8b:cf:35:7b:3d:3b:bc:d7: 77:01:d0:ed:88:54:6b:2f:3a:4d:46:be:38:a7:c1: 67:54:a8:f8:93:61:b5:bb:89:82:fb:7f:0e:5f:32: 95:3a:f9:17:6e:e3:d4:50:19:f1:02:9c:53:fb:dc: 3e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1E:0F:EF:3F:67:14:F2:0F:62:7C:4A:F1:8D:49:3E:5B:95:E3:00 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32342e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.24.0/24 Signature Algorithm: sha256WithRSAEncryption 53:a1:ac:3e:28:02:39:5a:80:2e:81:7b:62:ca:aa:a3:17:1f: c1:f2:b4:ce:06:5c:3c:5e:8a:24:5b:9d:3b:5f:93:f7:31:1d: 6f:51:10:ba:ab:51:f2:1a:94:62:43:0c:34:d9:9d:39:c6:49: 1e:cf:3e:34:87:59:ad:fd:91:01:15:20:9f:ea:01:a5:b3:fc: 6a:8e:80:0b:c2:90:af:e0:45:0f:3a:ee:1e:b3:b6:b9:d9:3d: 2c:e5:ab:77:17:72:07:9a:f9:4f:0b:55:f5:c8:37:5f:c5:45: 0f:7a:29:be:8b:2a:fb:9a:5b:c4:89:b5:5c:3c:70:93:c2:4c: bd:cf:64:77:37:31:a1:1b:b1:7b:5d:7b:5d:4c:1e:55:d8:64: 68:52:a4:6b:77:eb:67:30:88:c1:90:cb:4e:2e:20:ed:87:88: 7c:57:52:f8:58:fe:9b:51:a3:49:8a:7b:69:3d:77:d0:12:27: 28:fd:3c:3d:f9:a6:ab:1c:07:d8:68:bf:ce:b8:7a:1c:68:60: 6e:e6:f4:31:b4:8a:4d:a5:c7:8f:d6:ef:fb:bf:41:32:41:3e: 82:08:9a:70:0e:7b:9a:36:dd:3d:7d:1d:95:27:38:de:17:36: d0:fb:11:26:22:68:c9:d3:37:ff:6f:76:cc:49:31:8f:7c:96: 8a:20:25:96 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFVvyQuRT62hG0ANc+cDhyvzaKsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NThaFw0yNTA1MzEwODAwNThaMDMxMTAvBgNV BAMTKDcyMUUwRkVGM0Y2NzE0RjIwRjYyN0M0QUYxOEQ0OTNFNUI5NUUzMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9G1rSn/ZfSfue9itk5GrmG1ty dAZxNUx6t8AZ3g4WNSD9+H1h1vqBxGkgCRdmPfvWmPS7Lqe4P1JAZpYcrrU08cLc owTBc9LAPOpBN31CqNt46QWbf/I971LSHaBS2RTsreZXjs3tQ9+0O6ABjm85v0Zp XVYSrMYarNYyCFTkRVzpFJYrVO9NGgOhfydLz2VWSl5zSna+mxLlzBySrSpTZgG6 4EEHQgZyNsoFomt436uf/HKJBUnALoy6iv1yreL9NXBkupghDKmLzzV7PTu813cB 0O2IVGsvOk1GvjinwWdUqPiTYbW7iYL7fw5fMpU6+Rdu49RQGfECnFP73D71AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUch4P7z9nFPIPYnxK8Y1JPluV4wAwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZGDANBgkqhkiG 9w0BAQsFAAOCAQEAU6GsPigCOVqALoF7YsqqoxcfwfK0zgZcPF6KJFudO1+T9zEd b1EQuqtR8hqUYkMMNNmdOcZJHs8+NIdZrf2RARUgn+oBpbP8ao6AC8KQr+BFDzru HrO2udk9LOWrdxdyB5r5TwtV9cg3X8VFD3opvosq+5pbxIm1XDxwk8JMvc9kdzcx oRuxe117XUweVdhkaFKka3frZzCIwZDLTi4g7YeIfFdS+Fj+m1GjSYp7aT130BIn KP08PfmmqxwH2Gi/zrh6HGhgbub0MbSKTaXHj9bv+79BMkE+ggiacA57mjbdPX0d lSc43hc20PsRJiJoydM3/292zEkxj3yWiiAllg== -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org