$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa File: 3230332e3135332e32382e302f32322d3232203d3e203234353235.roa (raw, json) Hash identifier: zhH8mUB2TPo2/3PY27EAUZGNznlarIdp0G8VGGagkWw= Subject key identifier: 65:09:05:A7:03:C3:E7:8F:DE:A1:39:42:C8:51:49:59:AB:36:4D:03 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 7412E8A5FE252E473F72B6B0B0F0B87D21F4CA6E Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa Signing time: Tue 21 May 2024 08:02:41 +0000 ROA not before: Tue 21 May 2024 07:57:41 +0000 ROA not after: Tue 20 May 2025 08:02:41 +0000 asID: 24525 IP address blocks: 203.153.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:12:e8:a5:fe:25:2e:47:3f:72:b6:b0:b0:f0:b8:7d:21:f4:ca:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: May 21 07:57:41 2024 GMT Not After : May 20 08:02:41 2025 GMT Subject: CN=650905A703C3E78FDEA13942C8514959AB364D03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:86:5b:da:94:6f:eb:b5:10:33:6f:80:bd:4b: a1:cf:fa:de:33:38:bc:ba:9f:57:98:9c:ef:03:54: 88:e8:18:14:e9:ec:16:2a:0c:a5:dc:bd:e9:17:a7: fb:a1:16:b2:08:b9:94:0e:fb:ce:b6:ee:16:45:b0: 49:b2:b5:da:fd:6b:c4:81:6a:38:cd:8f:b3:6f:48: 72:fb:af:0e:57:ed:54:33:6d:44:05:0f:66:5a:c7: a5:3d:29:d5:53:ba:20:33:14:7b:f6:f2:cb:64:ef: c4:26:9d:3f:0f:19:50:37:d8:08:77:3d:2d:28:5a: 45:2c:ca:b4:76:91:4f:87:53:35:ad:f2:d9:9c:3a: 79:d1:68:d0:d4:28:cb:4b:70:6e:e2:cc:5c:26:e6: 5a:d4:14:9d:d6:72:e9:d7:44:7b:d7:d3:7c:0b:86: 14:03:0e:fa:00:99:3a:bc:7b:b2:89:54:69:a9:d2: 23:b0:62:f7:93:da:f6:c8:0a:3b:aa:68:37:2c:bc: e6:b7:7d:cb:1e:6c:e7:9e:a1:9b:71:4b:24:3b:87: 4a:ad:13:a2:e2:76:b8:27:85:3c:c3:2c:ee:6f:48: 03:15:d4:0a:be:a3:41:a0:fb:2c:fb:a7:46:f5:0d: e8:d2:45:0c:04:27:35:ea:8e:74:1a:6f:b2:b7:4d: da:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:09:05:A7:03:C3:E7:8F:DE:A1:39:42:C8:51:49:59:AB:36:4D:03 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32322d3232203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.28.0/22 Signature Algorithm: sha256WithRSAEncryption 19:6d:c4:d1:4e:ee:cd:71:f8:ea:0a:d5:6c:91:84:5b:ef:3c: d5:5a:12:bd:9c:6d:fb:75:f9:5b:ad:04:e1:b1:eb:bc:b4:53: 77:44:72:d6:69:1b:3f:b5:1b:f8:6a:4e:24:67:fa:a7:d9:51: c3:dd:30:af:63:31:64:47:32:1a:9d:a8:4b:b5:99:da:da:1e: 48:88:58:4d:e4:ef:54:1b:e2:25:e6:c1:bb:cf:0a:f4:0c:0e: 9f:64:94:4c:74:d1:ea:bd:f1:04:9e:80:6d:e1:b5:77:7e:a2: 69:3e:46:66:d2:04:0c:3c:26:a2:ac:2d:97:c9:0f:50:65:19: 69:d8:f1:93:35:33:c7:b5:c8:27:1d:43:8d:32:2f:e5:4b:a6: 65:44:7c:e2:d7:44:26:89:87:f9:9f:e9:4d:d8:08:1a:62:07: 7c:3f:03:a0:4a:32:ab:fc:e4:10:66:22:40:89:6f:e8:ae:bf: 18:49:8a:24:37:1f:0d:34:62:26:a5:6a:5b:4d:37:0f:dd:1a: aa:2b:d2:08:88:b1:be:38:ac:28:88:53:a7:ad:3c:de:2a:8a: 47:d8:47:b0:65:c0:4d:10:fe:fa:77:c2:43:d6:f4:49:00:89: d3:e5:3d:37:9a:e6:05:6f:81:a7:d8:28:be:ed:f7:8a:7b:8a: 47:2a:b1:a3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdBLopf4lLkc/crawsPC4fSH0ym4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA1MjEwNzU3NDFaFw0yNTA1MjAwODAyNDFaMDMxMTAvBgNV BAMTKDY1MDkwNUE3MDNDM0U3OEZERUExMzk0MkM4NTE0OTU5QUIzNjREMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5hlvalG/rtRAzb4C9S6HP+t4z OLy6n1eYnO8DVIjoGBTp7BYqDKXcvekXp/uhFrIIuZQO+8627hZFsEmytdr9a8SB ajjNj7NvSHL7rw5X7VQzbUQFD2Zax6U9KdVTuiAzFHv28stk78QmnT8PGVA32Ah3 PS0oWkUsyrR2kU+HUzWt8tmcOnnRaNDUKMtLcG7izFwm5lrUFJ3WcunXRHvX03wL hhQDDvoAmTq8e7KJVGmp0iOwYveT2vbICjuqaDcsvOa3fcsebOeeoZtxSyQ7h0qt E6LidrgnhTzDLO5vSAMV1Aq+o0Gg+yz7p0b1DejSRQwEJzXqjnQab7K3TdoZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZQkFpwPD54/eoTlCyFFJWas2TQMwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM4MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsuZHDANBgkqhkiG 9w0BAQsFAAOCAQEAGW3E0U7uzXH46grVbJGEW+881VoSvZxt+3X5W60E4bHrvLRT d0Ry1mkbP7Ub+GpOJGf6p9lRw90wr2MxZEcyGp2oS7WZ2toeSIhYTeTvVBviJebB u88K9AwOn2SUTHTR6r3xBJ6AbeG1d36iaT5GZtIEDDwmoqwtl8kPUGUZadjxkzUz x7XIJx1DjTIv5UumZUR84tdEJomH+Z/pTdgIGmIHfD8DoEoyq/zkEGYiQIlv6K6/ GEmKJDcfDTRiJqVqW003D90aqivSCIixvjisKIhTp6083iqKR9hHsGXATRD++nfC Q9b0SQCJ0+U9N5rmBW+Bp9govu33inuKRyqxow== -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org