$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e33312e302f32342d3234203d3e203234353235.roa File: 3230332e3135332e33312e302f32342d3234203d3e203234353235.roa (raw, json) Hash identifier: /O3RyJSnJgCXf5Xf+Bc8i0WGpfmPHvCHF3AhtubjrTo= Subject key identifier: 61:9C:69:A5:79:2B:FD:13:3F:15:AA:CB:0C:92:8F:9D:0A:98:85:D2 Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Certificate serial: 126B92F237283C3E17F80CD9C0F8681F58A4C162 Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e33312e302f32342d3234203d3e203234353235.roa Signing time: Sat 01 Jun 2024 08:00:59 +0000 ROA not before: Sat 01 Jun 2024 07:55:59 +0000 ROA not after: Sat 31 May 2025 08:00:59 +0000 asID: 24525 IP address blocks: 203.153.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:6b:92:f2:37:28:3c:3e:17:f8:0c:d9:c0:f8:68:1f:58:a4:c1:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702 Validity Not Before: Jun 1 07:55:59 2024 GMT Not After : May 31 08:00:59 2025 GMT Subject: CN=619C69A5792BFD133F15AACB0C928F9D0A9885D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:91:96:17:22:48:b4:68:92:3d:2b:2f:23:4e: 76:bb:85:7d:e1:40:c4:55:fa:dc:e4:b6:ad:0a:64: d2:cd:f7:6b:79:b9:9a:6f:79:30:1d:1c:3c:ab:db: 1c:a5:07:05:36:54:43:0b:69:47:18:08:2e:d5:b2: 40:4e:a2:76:bd:14:27:9e:af:66:b6:a8:97:0d:02: 95:4d:13:56:d5:a5:70:7e:5b:c9:57:67:86:b9:3e: 23:6b:40:bd:26:49:39:b9:42:a3:71:4b:1a:12:8a: 07:da:1d:ae:cd:82:30:ed:b2:87:d3:0f:f0:65:61: 6d:23:f7:42:b6:df:16:63:fa:13:fb:b1:d0:94:1f: 59:a9:90:98:2e:8a:26:b7:f1:6a:45:95:d0:63:54: 46:de:09:56:41:56:ca:55:43:12:a7:9d:07:5a:a5: 5c:8d:24:4d:be:ac:18:a6:5e:87:e6:7a:ec:d2:ba: 8b:a2:ef:68:9e:57:12:78:5d:20:c1:6b:4b:47:21: a0:65:6b:da:a1:ec:36:05:3c:08:d4:eb:17:4d:e8: 70:7b:82:67:54:90:ec:59:c2:9e:e3:76:ae:a7:20: fe:ec:9c:35:bf:51:61:45:ad:87:b1:f3:6e:80:f9: 45:5b:5c:68:4a:84:ec:c3:dd:b6:11:90:68:0a:75: 4d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9C:69:A5:79:2B:FD:13:3F:15:AA:CB:0C:92:8F:9D:0A:98:85:D2 X509v3 Authority Key Identifier: keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e33312e302f32342d3234203d3e203234353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.31.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:c6:26:10:e6:b1:a6:77:16:63:c7:c9:43:70:07:0a:4b:6a: ab:71:06:ef:4a:88:0c:cb:6b:b3:29:ef:47:c8:a9:bb:8a:2f: 67:9f:19:e2:17:f8:f7:86:8f:91:63:04:df:e8:ec:49:20:1b: b8:8d:2f:72:b6:c9:2a:3d:d4:85:df:fd:eb:8e:0c:ed:4e:5b: 98:52:f1:b8:13:dd:e6:87:49:2d:29:0d:c7:78:1b:74:8e:41: 84:f7:eb:ad:9c:a5:d7:34:6d:57:18:ff:a2:a2:7e:99:32:9d: 7e:cf:0b:a4:86:11:3c:a2:02:a7:be:53:35:0a:a6:3a:74:d5: 78:ff:7e:8c:ab:20:a3:f0:de:8f:a1:62:f9:f3:94:f6:3d:5f: b8:3c:0d:70:e7:00:c8:21:0a:8e:97:c2:53:a6:31:80:13:18: 6d:00:d4:28:78:19:11:d3:af:0c:d1:97:08:5d:36:c9:a5:42: 9b:68:90:da:ef:11:31:18:9d:9c:72:8f:0f:5f:b1:77:ac:e7: b5:01:4a:37:0f:63:f1:08:54:ac:f5:b7:9b:6d:e9:22:f1:e8: 13:ef:2b:24:72:85:c0:45:a8:f3:d7:90:c6:14:69:63:c3:02: 07:8f:74:94:0e:2a:7c:e6:49:0b:54:7f:28:dd:04:96:e8:06: aa:99:f1:c6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEmuS8jcoPD4X+AzZwPhoH1ikwWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0 NkE4MzcwMjAeFw0yNDA2MDEwNzU1NTlaFw0yNTA1MzEwODAwNTlaMDMxMTAvBgNV BAMTKDYxOUM2OUE1NzkyQkZEMTMzRjE1QUFDQjBDOTI4RjlEMEE5ODg1RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFkZYXIki0aJI9Ky8jTna7hX3h QMRV+tzktq0KZNLN92t5uZpveTAdHDyr2xylBwU2VEMLaUcYCC7VskBOona9FCee r2a2qJcNApVNE1bVpXB+W8lXZ4a5PiNrQL0mSTm5QqNxSxoSigfaHa7NgjDtsofT D/BlYW0j90K23xZj+hP7sdCUH1mpkJguiia38WpFldBjVEbeCVZBVspVQxKnnQda pVyNJE2+rBimXofmeuzSuoui72ieVxJ4XSDBa0tHIaBla9qh7DYFPAjU6xdN6HB7 gmdUkOxZwp7jdq6nIP7snDW/UWFFrYex826A+UVbXGhKhOzD3bYRkGgKdU3bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYZxppXkr/RM/FarLDJKPnQqYhdIwHwYDVR0j BBgwFoAUrcufnfVukLObU0QRgZQQT0aoNwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MWY0ZmQzOC03ODI2LTQyMDEtOWY5Yi0xZDdjNzZhYTI0ZGQvMC9BRENCOUY5REY1 NkU5MEIzOUI1MzQ0MTE4MTk0MTA0RjQ2QTgzNzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQURDQjlGOURGNTZFOTBCMzlCNTM0NDExODE5NDEwNEY0NkE4 MzcwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxZjRmZDM4LTc4MjYtNDIwMS05 ZjliLTFkN2M3NmFhMjRkZC8wLzMyMzAzMzJlMzEzNTMzMmUzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuZHzANBgkqhkiG 9w0BAQsFAAOCAQEALsYmEOaxpncWY8fJQ3AHCktqq3EG70qIDMtrsynvR8ipu4ov Z58Z4hf494aPkWME3+jsSSAbuI0vcrbJKj3Uhd/9644M7U5bmFLxuBPd5odJLSkN x3gbdI5BhPfrrZyl1zRtVxj/oqJ+mTKdfs8LpIYRPKICp75TNQqmOnTVeP9+jKsg o/Dej6Fi+fOU9j1fuDwNcOcAyCEKjpfCU6YxgBMYbQDUKHgZEdOvDNGXCF02yaVC m2iQ2u8RMRidnHKPD1+xd6zntQFKNw9j8QhUrPW3m23pIvHoE+8rJHKFwEWo89eQ xhRpY8MCB490lA4qfOZJC1R/KN0ElugGqpnxxg== -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org