$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139362e302f32342d3234203d3e203338313439.roa File: 3230322e3135322e3139362e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: A6luK2JpUpYIfrUUhr3gsMTwGVaXk36/OgKXwHifWh8= Subject key identifier: 37:87:CF:EA:9E:AC:4F:29:B4:AC:7F:53:29:3A:9D:18:70:E0:B2:F7 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 2025D26D4363EEA8D4EE7CC57EA5A9E0AD318AD7 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139362e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 00:53:48 +0000 ROA not before: Tue 17 Sep 2024 00:48:48 +0000 ROA not after: Tue 16 Sep 2025 00:53:48 +0000 asID: 38149 IP address blocks: 202.152.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:25:d2:6d:43:63:ee:a8:d4:ee:7c:c5:7e:a5:a9:e0:ad:31:8a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 00:48:48 2024 GMT Not After : Sep 16 00:53:48 2025 GMT Subject: CN=3787CFEA9EAC4F29B4AC7F53293A9D1870E0B2F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:42:16:87:38:6b:11:68:aa:43:58:57:10:19: 3c:47:d3:e9:52:61:f1:84:dc:0a:7e:f7:a2:c4:f1: c5:2b:50:a8:68:01:c1:81:b1:71:8d:27:26:f0:1a: d1:8d:3e:e3:57:91:1a:5a:fd:8c:05:8d:2b:a7:47: 9f:cc:50:f0:8b:25:5e:64:b4:ed:d1:1f:f9:ba:59: 0d:a9:52:29:85:70:54:3e:1e:22:ef:9c:2c:ee:a4: 50:4a:f7:67:be:41:01:f0:d3:9a:3a:52:91:1c:cf: 85:c8:01:54:b7:cc:7f:61:93:d3:fb:0c:f6:16:2a: 35:ef:d4:72:3f:ab:ca:4d:87:fe:0f:3a:94:70:24: 7d:b1:df:97:f9:e7:1b:eb:1f:6b:70:1d:10:bf:3e: b6:3a:89:b4:19:73:71:33:47:5a:39:07:bc:7a:e9: 01:bb:32:8d:fa:bb:71:b4:e4:01:2c:7c:3a:11:52: 78:68:8d:6d:29:c3:71:d3:53:7a:00:b7:f7:33:bf: d3:ed:b7:66:43:6f:a0:24:ef:07:48:53:69:8d:0c: 42:80:04:5f:6c:2d:cc:03:1f:bf:4f:e6:5f:ee:04: 5a:32:46:dc:d2:cd:4f:8e:8f:69:b3:33:d7:e1:bd: 52:d4:7f:92:78:f2:37:a2:af:92:57:89:a5:c9:c5: a9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:87:CF:EA:9E:AC:4F:29:B4:AC:7F:53:29:3A:9D:18:70:E0:B2:F7 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139362e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.196.0/24 Signature Algorithm: sha256WithRSAEncryption 41:70:6c:58:7a:5b:f1:52:c5:51:6b:9e:78:f8:82:9a:df:c8: 32:b2:7b:e7:6a:d7:3d:cd:da:92:ec:df:32:0e:51:d4:a7:d6: e7:0b:e3:be:f8:c6:1a:55:9d:9f:7b:7e:c2:d0:d0:9b:39:9e: b6:89:a2:12:bb:cd:2d:38:8a:8f:6f:93:92:11:b9:b6:b5:e9: 2f:29:e6:e2:f0:6b:b1:2e:c2:b9:89:47:2f:52:94:ab:7c:ec: 4b:4b:d3:88:7b:d5:0b:c5:db:7a:b2:70:44:f3:1e:fa:7c:05: 2f:e2:16:8f:94:04:30:ef:fc:e4:eb:75:2d:bd:58:9a:01:49: 66:58:1d:45:99:9d:f7:b9:e3:dc:71:4a:a0:3f:e7:7c:67:66: c2:48:77:5e:fe:28:9c:08:bb:32:67:09:24:8d:f4:6a:4d:ba: 73:1e:6a:74:32:3e:44:16:92:a2:a5:d9:d2:91:68:f7:98:47: 51:7f:b6:de:c0:71:f1:89:9d:49:90:f5:83:6f:66:a5:2c:0e: 8b:85:6c:28:73:e0:a3:76:a3:d0:09:81:7f:01:eb:48:bc:9a: 43:7f:62:74:08:7c:ba:4f:6a:36:08:dc:cc:61:59:bf:48:08: e9:62:e0:61:36:db:08:30:91:ae:ca:7e:cf:cc:e3:22:d0:f5: 24:e9:33:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUICXSbUNj7qjU7nzFfqWp4K0xitcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMDQ4NDhaFw0yNTA5MTYwMDUzNDhaMDMxMTAvBgNV BAMTKDM3ODdDRkVBOUVBQzRGMjlCNEFDN0Y1MzI5M0E5RDE4NzBFMEIyRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDQhaHOGsRaKpDWFcQGTxH0+lS YfGE3Ap+96LE8cUrUKhoAcGBsXGNJybwGtGNPuNXkRpa/YwFjSunR5/MUPCLJV5k tO3RH/m6WQ2pUimFcFQ+HiLvnCzupFBK92e+QQHw05o6UpEcz4XIAVS3zH9hk9P7 DPYWKjXv1HI/q8pNh/4POpRwJH2x35f55xvrH2twHRC/PrY6ibQZc3EzR1o5B7x6 6QG7Mo36u3G05AEsfDoRUnhojW0pw3HTU3oAt/czv9Ptt2ZDb6Ak7wdIU2mNDEKA BF9sLcwDH79P5l/uBFoyRtzSzU+Oj2mzM9fhvVLUf5J48jeir5JXiaXJxanjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN4fP6p6sTym0rH9TKTqdGHDgsvcwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjEMA0GCSqG SIb3DQEBCwUAA4IBAQBBcGxYelvxUsVRa554+IKa38gysnvnatc9zdqS7N8yDlHU p9bnC+O++MYaVZ2fe37C0NCbOZ62iaISu80tOIqPb5OSEbm2tekvKebi8GuxLsK5 iUcvUpSrfOxLS9OIe9ULxdt6snBE8x76fAUv4haPlAQw7/zk63UtvViaAUlmWB1F mZ33uePccUqgP+d8Z2bCSHde/iicCLsyZwkkjfRqTbpzHmp0Mj5EFpKipdnSkWj3 mEdRf7bewHHxiZ1JkPWDb2alLA6LhWwoc+CjdqPQCYF/AetIvJpDf2J0CHy6T2o2 CNzMYVm/SAjpYuBhNtsIMJGuyn7PzOMi0PUk6TPX -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org