$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32302d3230203d3e203338313439.roa File: 3230322e3135322e3139322e302f32302d3230203d3e203338313439.roa (raw, json) Hash identifier: d/s4I5My4JyHmZ8JRW/lR18r08C9MXfn7yie5xY/SMU= Subject key identifier: 90:32:B7:82:AE:A1:91:48:AC:89:3B:1C:E7:C7:B8:A4:36:BD:FC:95 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 62665BD17373C90E82283A043B3C0CFE0DF4C79E Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32302d3230203d3e203338313439.roa Signing time: Thu 19 Sep 2024 14:43:56 +0000 ROA not before: Thu 19 Sep 2024 14:38:56 +0000 ROA not after: Thu 18 Sep 2025 14:43:56 +0000 asID: 38149 IP address blocks: 202.152.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:66:5b:d1:73:73:c9:0e:82:28:3a:04:3b:3c:0c:fe:0d:f4:c7:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 19 14:38:56 2024 GMT Not After : Sep 18 14:43:56 2025 GMT Subject: CN=9032B782AEA19148AC893B1CE7C7B8A436BDFC95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:92:c2:13:7e:1a:ae:25:3b:78:50:e4:2c:02: ee:eb:a0:64:47:93:43:38:16:54:dd:10:8d:c3:21: 10:2c:9c:a5:81:02:ff:fe:bc:b4:66:f1:4a:c7:ee: 0f:cb:2c:12:3c:71:1a:64:2c:16:f0:0e:b6:7e:cd: 1d:2a:e1:ff:a5:ae:87:61:6b:dd:bb:81:2b:27:09: b0:1a:89:5c:e9:d4:18:1e:51:dd:17:a4:b0:cd:dc: 11:0e:d3:e1:12:7c:77:32:bb:4f:22:cd:68:ce:cf: 94:f5:8f:8c:f8:4c:6f:7d:46:3f:0b:7b:08:68:ba: 95:8f:b8:e2:60:4d:ed:50:68:9b:5a:d9:be:f0:cb: bd:90:b6:98:14:ac:f6:14:b4:43:19:01:5c:f2:14: 34:1b:23:02:ad:7f:3a:32:10:1d:41:29:41:47:27: 97:65:a5:9b:72:20:d8:31:36:07:d7:5a:fd:92:c3: 92:32:2f:ff:f8:4e:72:fe:52:57:0e:89:39:0e:01: e4:1d:15:32:52:6d:ff:e0:44:00:d0:d6:ac:d2:1a: 6d:1f:30:57:08:b1:3d:d5:0e:02:74:98:b0:f2:3d: 58:ff:a8:af:3e:ae:a8:6c:8a:ad:a4:49:22:40:ce: dc:18:02:59:0f:8a:78:db:b4:00:84:b9:d9:98:bf: 2c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:32:B7:82:AE:A1:91:48:AC:89:3B:1C:E7:C7:B8:A4:36:BD:FC:95 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139322e302f32302d3230203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.192.0/20 Signature Algorithm: sha256WithRSAEncryption 21:a4:f4:d1:a2:ed:dd:a8:7e:f1:f2:f0:9e:84:04:2b:3d:38: 10:43:c9:15:3b:34:b8:97:50:66:24:25:89:70:85:bc:c9:40: 29:be:52:fd:b5:af:1a:54:ce:eb:82:16:d4:b7:d7:85:59:ac: d1:a1:e9:26:3c:dc:51:fa:b7:6f:41:24:0d:b7:ef:f1:78:74: 43:56:26:22:f5:32:56:bb:38:72:22:20:8a:eb:f1:1d:13:23: ae:a4:d2:3c:3e:46:16:cb:d7:3d:48:c9:9e:7e:2b:be:ea:35: a7:f5:8e:ed:e5:aa:04:c6:5a:8b:9e:03:2a:36:d3:01:1e:8a: e1:3e:5c:8f:f7:e2:53:81:51:79:56:2d:5f:56:e1:f4:96:b1: 23:5f:ac:76:21:92:81:23:68:6b:69:46:9e:7a:78:6c:46:74: 02:77:a4:d4:51:c9:b8:f8:5d:9e:28:93:01:f8:ec:54:56:60: 2d:4b:e0:66:8a:97:21:fb:c9:47:92:52:31:c4:c2:be:de:22: 59:9a:bd:21:53:df:fe:56:2c:a2:ae:24:82:18:fc:ff:04:ee: c4:63:9f:17:91:4b:c1:c6:48:8e:df:5e:88:ec:43:8f:c7:ce: 04:e4:44:5e:bd:5f:fb:c1:ec:11:3b:ef:da:28:bb:68:d9:b0: c6:7a:c3:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYmZb0XNzyQ6CKDoEOzwM/g30x54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTkxNDM4NTZaFw0yNTA5MTgxNDQzNTZaMDMxMTAvBgNV BAMTKDkwMzJCNzgyQUVBMTkxNDhBQzg5M0IxQ0U3QzdCOEE0MzZCREZDOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCksITfhquJTt4UOQsAu7roGRH k0M4FlTdEI3DIRAsnKWBAv/+vLRm8UrH7g/LLBI8cRpkLBbwDrZ+zR0q4f+lrodh a927gSsnCbAaiVzp1BgeUd0XpLDN3BEO0+ESfHcyu08izWjOz5T1j4z4TG99Rj8L ewhoupWPuOJgTe1QaJta2b7wy72QtpgUrPYUtEMZAVzyFDQbIwKtfzoyEB1BKUFH J5dlpZtyINgxNgfXWv2Sw5IyL//4TnL+UlcOiTkOAeQdFTJSbf/gRADQ1qzSGm0f MFcIsT3VDgJ0mLDyPVj/qK8+rqhsiq2kSSJAztwYAlkPinjbtACEudmYvyxdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkDK3gq6hkUisiTsc58e4pDa9/JUwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzIyZTMwMmYz MjMwMmQzMjMwMjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEypjAMA0GCSqG SIb3DQEBCwUAA4IBAQAhpPTRou3dqH7x8vCehAQrPTgQQ8kVOzS4l1BmJCWJcIW8 yUApvlL9ta8aVM7rghbUt9eFWazRoekmPNxR+rdvQSQNt+/xeHRDViYi9TJWuzhy IiCK6/EdEyOupNI8PkYWy9c9SMmefiu+6jWn9Y7t5aoExlqLngMqNtMBHorhPlyP 9+JTgVF5Vi1fVuH0lrEjX6x2IZKBI2hraUaeenhsRnQCd6TUUcm4+F2eKJMB+OxU VmAtS+Bmipch+8lHklIxxMK+3iJZmr0hU9/+ViyiriSCGPz/BO7EY58XkUvBxkiO 316I7EOPx84E5ERevV/7wewRO+/aKLto2bDGesP7 -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org