$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32352e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32352e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: R4URJ08bKzOSOElwCaa/zjNdXL9pFg/jxwNL1oLdhoA= Subject key identifier: A6:19:4C:56:75:EA:87:D9:D9:FD:1F:95:28:50:02:7D:3D:55:08:7B Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 53D39EF9C9F458C92707B2AB683610DC1087ABF3 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32352e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:57 +0000 ROA not before: Sat 01 Jun 2024 07:55:57 +0000 ROA not after: Sat 31 May 2025 08:00:57 +0000 asID: 24525 IP address blocks: 203.153.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d3:9e:f9:c9:f4:58:c9:27:07:b2:ab:68:36:10:dc:10:87:ab:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:57 2024 GMT Not After : May 31 08:00:57 2025 GMT Subject: CN=A6194C5675EA87D9D9FD1F952850027D3D55087B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9c:76:d9:fc:aa:e5:33:9c:76:fb:4f:08:af: 23:17:d6:12:72:54:92:35:12:c5:70:61:4b:e2:9d: dc:aa:2b:1e:51:08:d4:b0:b1:aa:01:5d:05:3c:77: 76:b2:48:a5:5d:41:f1:a2:5d:f2:d6:11:38:e4:b9: cf:24:03:b5:56:af:22:ad:0f:5c:0d:6f:2b:b5:14: 6c:ab:f3:2e:d1:af:15:de:fe:d6:66:f4:c9:82:87: 1a:5d:b6:74:f8:7e:cb:3e:e6:d9:42:ae:2d:0b:b7: 57:e7:d5:92:8b:47:48:58:56:3c:ca:09:ed:2f:23: a7:31:c7:94:0e:e4:69:f2:87:94:50:2c:a5:a2:95: 58:ec:b3:2a:f2:52:8a:ea:d7:4b:e3:a5:07:71:ea: ce:c7:c3:48:30:d2:a0:6b:e9:75:17:71:c3:25:05: eb:00:31:f9:91:c4:76:b3:af:76:b9:f6:fd:15:00: 94:ab:7c:05:9c:0f:6c:6a:9a:a1:18:d5:cf:93:f0: 82:0a:86:9e:5c:a2:13:be:01:0a:b3:25:5a:6a:10: bf:1c:5a:b2:b8:b6:fe:70:c4:07:1b:47:c5:34:36: 18:e0:0f:f0:d1:02:d0:08:1f:53:ae:0f:ff:d2:c6: a6:b0:a6:de:03:6c:e6:6f:eb:5e:b1:83:41:f6:97: bb:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:19:4C:56:75:EA:87:D9:D9:FD:1F:95:28:50:02:7D:3D:55:08:7B X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32352e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.25.0/24 Signature Algorithm: sha256WithRSAEncryption b7:97:9c:a6:1a:b6:92:4b:3a:5c:6b:15:98:d3:0c:84:89:60: 1a:ff:3a:20:ae:72:99:13:fb:92:e7:37:7d:66:66:65:fe:77: f9:24:8f:e4:e3:38:f1:45:fc:2c:2a:45:cf:26:48:65:d5:0c: d0:51:bd:b9:fe:48:98:1e:06:53:ff:0c:53:5b:0f:02:a1:df: 09:e7:ea:34:90:1b:49:25:31:fb:05:e7:9f:3b:58:0a:fe:25: d1:e3:57:66:16:c7:f8:ee:88:f9:4e:aa:06:64:2e:13:e9:a7: 55:65:90:5c:75:9e:33:43:99:f5:b7:19:76:80:31:6e:8c:0f: 8f:52:59:14:a5:45:59:46:fc:98:82:5f:e7:03:70:04:94:12: 5d:d5:f3:81:ed:1e:e7:5d:55:b2:33:90:b3:53:21:d0:c7:ca: a2:35:68:e9:62:61:e9:db:c4:8a:77:64:7e:5c:74:e0:56:38: 54:4d:01:91:e2:10:7b:d2:ac:63:a9:13:b3:6e:e4:54:c2:e7: 4d:3a:24:30:07:a4:de:b6:67:65:5b:54:bc:25:55:14:43:79: ec:08:80:43:c2:95:52:f8:7c:75:f0:db:0b:45:28:ba:9f:02: 41:e5:3f:4e:6d:57:80:25:f9:6a:20:cc:b3:fb:53:a2:30:34: 26:c4:4d:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU9Oe+cn0WMknB7KraDYQ3BCHq/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NTdaFw0yNTA1MzEwODAwNTdaMDMxMTAvBgNV BAMTKEE2MTk0QzU2NzVFQTg3RDlEOUZEMUY5NTI4NTAwMjdEM0Q1NTA4N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClnHbZ/KrlM5x2+08IryMX1hJy VJI1EsVwYUvindyqKx5RCNSwsaoBXQU8d3aySKVdQfGiXfLWETjkuc8kA7VWryKt D1wNbyu1FGyr8y7RrxXe/tZm9MmChxpdtnT4fss+5tlCri0Lt1fn1ZKLR0hYVjzK Ce0vI6cxx5QO5Gnyh5RQLKWilVjssyryUorq10vjpQdx6s7Hw0gw0qBr6XUXccMl BesAMfmRxHazr3a59v0VAJSrfAWcD2xqmqEY1c+T8IIKhp5cohO+AQqzJVpqEL8c WrK4tv5wxAcbR8U0NhjgD/DRAtAIH1OuD//Sxqawpt4DbOZv616xg0H2l7vlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUphlMVnXqh9nZ/R+VKFACfT1VCHswHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZGTANBgkqhkiG 9w0BAQsFAAOCAQEAt5ecphq2kks6XGsVmNMMhIlgGv86IK5ymRP7kuc3fWZmZf53 +SSP5OM48UX8LCpFzyZIZdUM0FG9uf5ImB4GU/8MU1sPAqHfCefqNJAbSSUx+wXn nztYCv4l0eNXZhbH+O6I+U6qBmQuE+mnVWWQXHWeM0OZ9bcZdoAxbowPj1JZFKVF WUb8mIJf5wNwBJQSXdXzge0e511VsjOQs1Mh0MfKojVo6WJh6dvEindkflx04FY4 VE0BkeIQe9KsY6kTs27kVMLnTTokMAek3rZnZVtUvCVVFEN57AiAQ8KVUvh8dfDb C0Uoup8CQeU/Tm1XgCX5aiDMs/tTojA0JsRNVg== -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org