$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e32382e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: 8rsGfi9epZQED4ueTmfO13qkjfjZvhme5yNVRRuRTP0= Subject key identifier: F3:D9:8A:00:13:2A:32:5F:17:DF:E7:DC:D6:62:50:D5:11:79:EA:48 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 3775E25F49F332021B40B22E46B739AC43A27CAF Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:01:01 +0000 ROA not before: Sat 01 Jun 2024 07:56:01 +0000 ROA not after: Sat 31 May 2025 08:01:01 +0000 asID: 24525 IP address blocks: 203.153.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:75:e2:5f:49:f3:32:02:1b:40:b2:2e:46:b7:39:ac:43:a2:7c:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:56:01 2024 GMT Not After : May 31 08:01:01 2025 GMT Subject: CN=F3D98A00132A325F17DFE7DCD66250D51179EA48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4b:6a:37:d9:d8:3b:10:f0:29:bf:2e:8f:fc: 37:81:8e:a8:21:3c:99:19:3d:4b:32:20:88:ab:88: 40:26:29:b0:88:97:2d:bf:c0:85:15:46:4a:f8:83: 10:ce:a7:0e:16:37:52:f6:4e:5a:31:f8:2f:17:56: 65:6f:fb:06:03:53:d3:18:a6:6f:cf:94:15:3c:c8: ca:19:04:7b:3b:cd:01:79:89:21:89:67:93:a0:56: bd:35:14:2b:8d:23:f2:ea:39:cc:84:4c:08:2d:55: a5:e2:3b:03:4a:4e:83:97:8e:48:01:a3:60:f5:f5: af:91:13:51:df:b3:8d:dd:1f:a3:4d:1b:39:43:96: e9:87:9a:15:0e:bb:7a:96:7f:a0:53:04:9b:a8:88: f3:c9:34:ec:6f:e8:38:e8:f6:c3:c7:89:19:0d:b4: dd:ab:85:4d:0a:87:83:33:3f:05:ee:1c:a8:cf:39: 0a:8c:04:13:fb:a9:4d:33:90:3c:ab:0c:94:4b:18: a8:f6:44:fb:68:7f:58:a8:85:51:20:62:cf:bc:1f: 2c:c2:28:bd:32:60:ad:81:f6:a9:8f:19:0c:e5:63: 1e:a3:49:8c:a5:ce:bc:e2:d7:48:aa:99:3d:40:ec: f1:d2:70:1e:45:79:e8:41:da:f0:38:2b:25:77:38: 49:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D9:8A:00:13:2A:32:5F:17:DF:E7:DC:D6:62:50:D5:11:79:EA:48 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e32382e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.28.0/24 Signature Algorithm: sha256WithRSAEncryption 45:39:01:0a:2a:1a:85:c8:df:40:ca:a5:b1:98:76:b7:9d:e7: ac:a3:97:7a:8f:99:a9:6a:b8:ff:e2:91:3e:f8:e7:ab:99:de: 13:46:50:94:f5:03:a9:c2:2a:fe:06:0f:5f:4c:25:a4:15:1d: ac:73:40:bf:64:b9:80:50:b6:d7:02:f9:40:90:f7:92:c5:62: c2:d9:57:68:55:99:68:0e:d5:05:e1:fa:7c:85:a1:2d:a0:d0: 6e:0e:ea:d4:b3:4a:cc:0d:b8:6f:60:0b:ff:34:02:cd:e2:89: 93:02:8a:5d:4e:5b:21:c0:de:f1:21:a0:2a:c3:0d:b1:61:ed: 91:a0:5d:a2:58:cf:6c:cb:15:8c:c9:0a:a5:fc:07:91:f5:b4: 4b:f3:89:8b:36:89:c2:d3:c7:90:62:2e:92:78:49:7c:8b:0c: 28:2c:7b:65:1b:e3:b3:46:d1:a3:0e:14:39:ea:88:52:1e:2b: fb:e3:87:4d:1d:46:72:11:7c:91:69:7c:06:46:1c:ed:fe:f0: 3a:0f:49:88:26:d9:04:db:5e:5a:dd:db:c1:54:95:5f:e1:6c: 07:71:cc:9f:1a:c3:28:ae:cd:03:81:08:12:3b:e9:c2:76:7f: cf:b8:61:30:08:e6:94:35:13:4f:39:af:7c:89:67:66:01:0d: 28:85:ad:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN3XiX0nzMgIbQLIuRrc5rEOifK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU2MDFaFw0yNTA1MzEwODAxMDFaMDMxMTAvBgNV BAMTKEYzRDk4QTAwMTMyQTMyNUYxN0RGRTdEQ0Q2NjI1MEQ1MTE3OUVBNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1S2o32dg7EPApvy6P/DeBjqgh PJkZPUsyIIiriEAmKbCIly2/wIUVRkr4gxDOpw4WN1L2Tlox+C8XVmVv+wYDU9MY pm/PlBU8yMoZBHs7zQF5iSGJZ5OgVr01FCuNI/LqOcyETAgtVaXiOwNKToOXjkgB o2D19a+RE1Hfs43dH6NNGzlDlumHmhUOu3qWf6BTBJuoiPPJNOxv6Djo9sPHiRkN tN2rhU0Kh4MzPwXuHKjPOQqMBBP7qU0zkDyrDJRLGKj2RPtof1iohVEgYs+8HyzC KL0yYK2B9qmPGQzlYx6jSYylzrzi10iqmT1A7PHScB5FeehB2vA4KyV3OEk1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU89mKABMqMl8X3+fc1mJQ1RF56kgwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZHDANBgkqhkiG 9w0BAQsFAAOCAQEARTkBCioahcjfQMqlsZh2t53nrKOXeo+ZqWq4/+KRPvjnq5ne E0ZQlPUDqcIq/gYPX0wlpBUdrHNAv2S5gFC21wL5QJD3ksViwtlXaFWZaA7VBeH6 fIWhLaDQbg7q1LNKzA24b2AL/zQCzeKJkwKKXU5bIcDe8SGgKsMNsWHtkaBdoljP bMsVjMkKpfwHkfW0S/OJizaJwtPHkGIuknhJfIsMKCx7ZRvjs0bRow4UOeqIUh4r ++OHTR1GchF8kWl8BkYc7f7wOg9JiCbZBNteWt3bwVSVX+FsB3HMnxrDKK7NA4EI EjvpwnZ/z7hhMAjmlDUTTzmvfIlnZgENKIWtYg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:17 2024 by rpki-client on console-ams.rpki-client.org