$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203338313439.roa File: 3230322e3135322e3139352e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: y2aUif7W/txDPkDXe3uJOWzIfOvdsbSbvH5QAlIWzY8= Subject key identifier: C6:AD:6E:0E:46:3F:59:23:04:E6:B4:6A:61:29:0B:9B:16:70:00:96 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 03D80EFBE7C4B215F261951714BB360673EFC135 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 00:53:21 +0000 ROA not before: Tue 17 Sep 2024 00:48:21 +0000 ROA not after: Tue 16 Sep 2025 00:53:21 +0000 asID: 38149 IP address blocks: 202.152.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:d8:0e:fb:e7:c4:b2:15:f2:61:95:17:14:bb:36:06:73:ef:c1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 00:48:21 2024 GMT Not After : Sep 16 00:53:21 2025 GMT Subject: CN=C6AD6E0E463F592304E6B46A61290B9B16700096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ba:46:34:46:89:ab:aa:75:03:60:91:a9:0f: c9:06:2a:5a:4b:57:bc:04:26:b6:55:ea:cd:f5:9a: 4c:d6:6f:7c:d3:76:e1:c6:7e:80:dc:4f:d9:4a:19: 2f:f8:1f:32:2c:ee:ee:3e:26:73:4f:8f:1e:79:0e: 44:4c:12:43:f6:9d:30:3c:6f:73:57:73:c9:8f:02: 03:33:b2:9a:f1:ee:90:57:a9:9a:c0:96:d6:9d:ee: 42:5a:25:1b:ff:22:bd:0d:ca:c7:5a:a3:d4:d2:9e: 05:68:3b:54:79:74:cb:b5:91:c1:5c:5c:c3:f2:d9: 42:6f:a2:72:5f:6a:16:8b:18:b8:3e:22:65:4a:0b: a5:75:b8:6d:e0:74:62:d8:1a:3b:f4:2e:a7:79:f9: 9e:c7:2c:f2:ed:4c:71:e2:74:e5:2e:15:89:fa:42: 18:37:16:89:45:3f:af:65:8a:fd:72:ef:33:7d:9b: 76:02:11:79:f6:a8:a3:4e:20:50:0c:b6:f8:fa:8d: 45:d8:b8:0e:94:3d:22:8b:67:84:d5:60:a3:47:38: d9:17:01:ee:1d:d3:53:8b:4f:a0:18:4f:f2:1f:e9: 02:57:29:82:c0:76:fd:dd:ca:5b:49:ee:63:48:76: bf:4c:de:bc:9e:bd:fc:47:7d:b2:ca:d3:01:2e:02: 23:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:AD:6E:0E:46:3F:59:23:04:E6:B4:6A:61:29:0B:9B:16:70:00:96 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.195.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:4d:d8:ae:e2:b8:77:3f:81:9b:71:d8:1b:a8:f0:de:ae:d9: 3d:47:d9:83:2d:db:8d:1e:fb:11:dc:3b:92:b4:01:95:e9:d0: 75:3e:94:cb:00:16:a8:0a:e3:d2:18:63:87:19:96:4d:a8:c8: 01:67:6d:4b:33:de:9a:29:30:62:4c:ce:f7:f5:a4:b6:4f:ea: 43:49:e7:f4:c5:d5:f6:0a:b6:5d:c9:06:58:d6:e6:45:a8:8d: 6f:7e:92:5c:9f:73:3c:54:4d:03:4b:25:6d:32:80:4f:7f:4d: b2:c9:29:16:2e:90:08:a3:78:ee:6e:be:60:e8:93:58:ee:7e: cb:cb:fd:6c:4a:b8:70:31:84:1e:3c:27:7d:cd:f1:19:e5:02: 31:bb:cd:6c:b5:99:59:f1:11:00:71:42:de:d9:c0:44:0d:a0: fc:36:22:b8:5e:c2:b4:79:b7:cb:7f:ea:da:ee:90:2f:f3:a0: d8:77:c4:c8:ee:62:d0:97:c9:41:65:89:25:30:00:59:97:5b: d4:66:d6:0c:e4:15:f9:a7:03:e7:0c:8e:da:49:3d:c6:d0:11: b0:81:36:d9:05:de:63:1d:a2:09:8b:a1:4c:f5:0a:f9:d4:5f: 5c:7b:32:f2:3a:17:9e:af:3f:af:6a:ac:80:ba:54:f0:17:df: 43:58:09:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA9gO++fEshXyYZUXFLs2BnPvwTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMDQ4MjFaFw0yNTA5MTYwMDUzMjFaMDMxMTAvBgNV BAMTKEM2QUQ2RTBFNDYzRjU5MjMwNEU2QjQ2QTYxMjkwQjlCMTY3MDAwOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ukY0RomrqnUDYJGpD8kGKlpL V7wEJrZV6s31mkzWb3zTduHGfoDcT9lKGS/4HzIs7u4+JnNPjx55DkRMEkP2nTA8 b3NXc8mPAgMzsprx7pBXqZrAltad7kJaJRv/Ir0Nysdao9TSngVoO1R5dMu1kcFc XMPy2UJvonJfahaLGLg+ImVKC6V1uG3gdGLYGjv0Lqd5+Z7HLPLtTHHidOUuFYn6 Qhg3FolFP69liv1y7zN9m3YCEXn2qKNOIFAMtvj6jUXYuA6UPSKLZ4TVYKNHONkX Ae4d01OLT6AYT/If6QJXKYLAdv3dyltJ7mNIdr9M3ryevfxHfbLK0wEuAiP5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxq1uDkY/WSME5rRqYSkLmxZwAJYwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjDMA0GCSqG SIb3DQEBCwUAA4IBAQANTdiu4rh3P4GbcdgbqPDertk9R9mDLduNHvsR3DuStAGV 6dB1PpTLABaoCuPSGGOHGZZNqMgBZ21LM96aKTBiTM739aS2T+pDSef0xdX2CrZd yQZY1uZFqI1vfpJcn3M8VE0DSyVtMoBPf02yySkWLpAIo3jubr5g6JNY7n7Ly/1s SrhwMYQePCd9zfEZ5QIxu81stZlZ8REAcULe2cBEDaD8NiK4XsK0ebfLf+ra7pAv 86DYd8TI7mLQl8lBZYklMABZl1vUZtYM5BX5pwPnDI7aST3G0BGwgTbZBd5jHaIJ i6FM9Qr51F9cezLyOheerz+vaqyAulTwF99DWAlW -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org