$ rpki-client -vvf repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa File: 3230322e3135332e31362e302f32302d3234203d3e203233363636.roa (raw, json) Hash identifier: lIHJiBrhgAwGzmgzYvKE6r/2yrga6HsryWNAwmBg8SQ= Subject key identifier: 7E:93:27:48:46:85:33:9C:13:24:34:59:A0:02:DE:92:7C:EA:2E:A0 Certificate issuer: /CN=0BB3D1874063172B5374865233070332233FB7B3 Certificate serial: 16709CD0739AD18DD4617274DEE0C68DF26B35 Authority key identifier: 0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa Signing time: Mon 01 Jul 2024 01:05:36 +0000 ROA not before: Mon 01 Jul 2024 01:00:36 +0000 ROA not after: Mon 30 Jun 2025 01:05:36 +0000 asID: 23666 IP address blocks: 202.153.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:70:9c:d0:73:9a:d1:8d:d4:61:72:74:de:e0:c6:8d:f2:6b:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB3D1874063172B5374865233070332233FB7B3 Validity Not Before: Jul 1 01:00:36 2024 GMT Not After : Jun 30 01:05:36 2025 GMT Subject: CN=7E9327484685339C13243459A002DE927CEA2EA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3d:e2:2d:1c:f8:2b:b9:14:a4:90:a7:63:16: 80:80:a2:93:d0:61:b2:12:83:42:83:b4:b0:18:40: 45:48:af:be:1b:ab:00:c4:ed:d4:ab:2d:a0:33:a1: 18:02:89:66:36:83:05:4e:af:15:41:65:12:a5:55: dc:d9:87:99:6f:c6:45:bd:73:95:24:d0:54:9f:84: f7:5d:32:50:02:98:11:27:bd:0c:e3:ac:f3:12:aa: 27:7c:f8:8a:64:ba:72:f1:8e:bc:f6:68:a7:73:9b: 18:d8:6a:59:65:41:d4:4e:91:54:17:fa:ae:6c:c4: ce:de:9d:75:08:99:ca:ea:8b:ad:4c:05:c7:40:e9: dd:13:11:7e:a5:7f:8c:50:46:07:be:b1:5d:c0:d7: 99:e5:4c:6e:32:db:0d:d9:13:d1:da:cd:e4:cf:d0: 36:0d:9d:13:1b:86:e7:1a:d8:6d:bc:20:86:ca:9f: ed:b8:f2:fc:11:6c:94:22:4d:d1:91:6e:ef:0a:74: 30:b9:78:9d:ed:9f:b8:42:e4:3e:93:8e:d7:68:72: a4:fc:3d:41:18:2b:65:96:ef:9f:2d:7c:66:a6:06: 36:45:72:ad:11:57:a7:ea:66:a5:8d:9b:86:83:5b: 1b:75:61:4b:63:d4:84:af:98:8a:e2:aa:4c:56:79: 51:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:93:27:48:46:85:33:9C:13:24:34:59:A0:02:DE:92:7C:EA:2E:A0 X509v3 Authority Key Identifier: keyid:0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.153.16.0/20 Signature Algorithm: sha256WithRSAEncryption cc:93:83:1b:2c:87:00:6d:46:1c:0d:b1:de:72:0e:c1:93:95: 8f:20:f3:7e:40:76:87:19:a4:31:58:97:4e:4f:56:1e:c5:6f: 08:e4:a2:a0:97:48:0a:43:f9:ba:63:f3:1a:e6:a6:70:0d:93: a4:be:9a:3a:08:04:59:29:e6:82:84:9a:91:b4:c8:6c:ac:21: 93:30:2f:d3:c1:0c:c5:67:0b:fb:11:44:6b:7d:f1:95:5e:0b: b9:6f:84:83:ea:27:a5:52:40:26:bc:a4:dc:43:00:ea:7a:e7: 60:b2:19:e9:0a:be:41:13:02:6f:02:a3:6d:78:9a:54:53:ea: 56:76:57:c5:2a:69:5f:9f:e7:40:f4:df:6c:23:49:99:5c:c9: 66:01:a4:6e:9f:7f:17:44:98:ac:47:32:19:33:66:57:dc:54: c4:96:90:ea:c6:6e:a2:59:1b:9b:53:55:af:74:d7:66:21:b3: d8:9f:79:40:90:dd:4d:fb:da:d1:7a:8b:2f:7a:5e:d4:cf:d2: ab:4e:50:e3:82:52:2c:c2:82:97:d6:0b:6f:0e:fc:f8:8d:f4: 19:9d:11:01:32:75:28:f9:01:fc:ae:3f:8a:93:d0:15:22:49: 20:12:9f:34:7b:49:90:ad:83:28:3a:9c:37:76:8e:bd:f4:4a: 24:07:0e:c8 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgITFnCc0HOa0Y3UYXJ03uDGjfJrNTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygwQkIzRDE4NzQwNjMxNzJCNTM3NDg2NTIzMzA3MDMzMjIz M0ZCN0IzMB4XDTI0MDcwMTAxMDAzNloXDTI1MDYzMDAxMDUzNlowMzExMC8GA1UE AxMoN0U5MzI3NDg0Njg1MzM5QzEzMjQzNDU5QTAwMkRFOTI3Q0VBMkVBMDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALg94i0c+Cu5FKSQp2MWgICik9Bh shKDQoO0sBhARUivvhurAMTt1KstoDOhGAKJZjaDBU6vFUFlEqVV3NmHmW/GRb1z lSTQVJ+E910yUAKYESe9DOOs8xKqJ3z4imS6cvGOvPZop3ObGNhqWWVB1E6RVBf6 rmzEzt6ddQiZyuqLrUwFx0Dp3RMRfqV/jFBGB76xXcDXmeVMbjLbDdkT0drN5M/Q Ng2dExuG5xrYbbwghsqf7bjy/BFslCJN0ZFu7wp0MLl4ne2fuELkPpOO12hypPw9 QRgrZZbvny18ZqYGNkVyrRFXp+pmpY2bhoNbG3VhS2PUhK+YiuKqTFZ5UckCAwEA AaOCAjIwggIuMB0GA1UdDgQWBBR+kydIRoUznBMkNFmgAt6SfOouoDAfBgNVHSME GDAWgBQLs9GHQGMXK1N0hlIzBwMyIz+3szAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1 OTA4YjgzLTdmNDQtNDZlMC04NTM1LTZmYjg0YjU5ZDU4YS8wLzBCQjNEMTg3NDA2 MzE3MkI1Mzc0ODY1MjMzMDcwMzMyMjMzRkI3QjMuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi8wQkIzRDE4NzQwNjMxNzJCNTM3NDg2NTIzMzA3MDMzMjIzM0ZC N0IzLmNlcjCBogYIKwYBBQUHAQsEgZUwgZIwgY8GCCsGAQUFBzALhoGCcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDU5MDhiODMtN2Y0NC00NmUwLTg1 MzUtNmZiODRiNTlkNThhLzAvMzIzMDMyMmUzMTM1MzMyZTMxMzYyZTMwMmYzMjMw MmQzMjM0MjAzZDNlMjAzMjMzMzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEypkQMA0GCSqGSIb3 DQEBCwUAA4IBAQDMk4MbLIcAbUYcDbHecg7Bk5WPIPN+QHaHGaQxWJdOT1YexW8I 5KKgl0gKQ/m6Y/Ma5qZwDZOkvpo6CARZKeaChJqRtMhsrCGTMC/TwQzFZwv7EURr ffGVXgu5b4SD6ielUkAmvKTcQwDqeudgshnpCr5BEwJvAqNteJpUU+pWdlfFKmlf n+dA9N9sI0mZXMlmAaRun38XRJisRzIZM2ZX3FTElpDqxm6iWRubU1WvdNdmIbPY n3lAkN1N+9rReosvel7Uz9KrTlDjglIswoKX1gtvDvz4jfQZnREBMnUo+QH8rj+K k9AVIkkgEp80e0mQrYMoOpw3do699EokBw7I -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org