$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139382e302f32342d3234203d3e203338313439.roa File: 3230322e3135322e3139382e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: jfx7HIchKr+S5PweJv1udZUaLIVNde5ITLvB5b5VnYg= Subject key identifier: 28:D5:CA:1A:BA:2C:62:17:B9:C3:36:3A:EB:D1:25:8A:2C:73:71:59 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 4C9D4D62F442928D62B8B26D7FB619FA19D68D95 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139382e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 00:54:11 +0000 ROA not before: Tue 17 Sep 2024 00:49:11 +0000 ROA not after: Tue 16 Sep 2025 00:54:11 +0000 asID: 38149 IP address blocks: 202.152.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:9d:4d:62:f4:42:92:8d:62:b8:b2:6d:7f:b6:19:fa:19:d6:8d:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 00:49:11 2024 GMT Not After : Sep 16 00:54:11 2025 GMT Subject: CN=28D5CA1ABA2C6217B9C3363AEBD1258A2C737159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d3:a1:f6:1b:64:5e:99:6d:ce:1b:bf:18:d5: 43:c2:b8:b1:37:f1:5a:a2:5e:bc:44:e2:cd:bd:ae: c5:2b:73:ff:e2:2f:77:64:ca:af:a6:ca:10:b9:05: 4a:a1:52:4f:13:84:a9:2a:41:e0:9f:6f:e3:f8:28: 6f:d9:71:65:ef:f0:28:51:ce:b6:ce:e6:29:e6:5d: 6b:66:96:29:f7:8a:eb:ef:33:d7:d9:8e:92:69:0d: e0:da:a5:90:70:c9:c0:d1:94:2b:9f:ae:c4:b7:1c: 3d:79:13:40:fa:70:f6:b9:a3:d3:38:46:cd:2f:77: c4:87:b7:c1:8c:e6:83:e8:47:5b:26:1f:cc:33:02: e9:8e:5c:cb:9c:70:cd:ef:a1:5a:5a:5b:c3:04:ca: 29:57:53:bf:6d:a6:92:fa:89:c1:6f:57:f1:6e:63: 10:3f:c1:34:4b:bb:67:68:62:50:bc:93:b2:9d:5c: 28:19:6d:83:94:0d:2a:e2:e2:f8:a4:f6:72:e3:1e: 0b:5a:b1:55:b1:11:9f:0c:5e:70:c4:81:d4:80:1f: b0:ff:c2:8e:a2:28:14:09:d7:c4:91:f3:7b:24:f9: 7a:22:5c:c6:cd:f9:fa:85:7d:62:d3:88:84:2a:d5: 4b:dd:78:55:67:79:cb:0e:37:06:d7:11:88:95:67: 85:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D5:CA:1A:BA:2C:62:17:B9:C3:36:3A:EB:D1:25:8A:2C:73:71:59 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139382e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.198.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:83:f1:c5:d2:85:f9:77:d0:0d:24:09:a7:4e:97:08:81:3f: d7:29:4c:c4:d3:24:89:6d:1b:ca:7f:e8:15:de:85:82:cd:f5: cd:3e:d4:28:34:76:bf:2e:5d:51:0a:ab:57:19:40:2b:9e:68: ed:ee:4d:16:ba:e7:68:ce:97:d2:af:f0:b5:45:df:02:2a:ae: 22:66:b4:59:f4:e9:47:d2:0e:87:17:2c:44:1c:6b:26:6c:fa: bf:54:2a:11:40:8b:8a:96:05:37:e6:dc:95:f2:74:0b:e6:e7: 38:8a:44:50:2f:55:82:be:f2:c5:ce:5d:82:5a:c8:d4:a9:59: a9:f4:ef:03:9d:d4:3f:00:68:1e:f7:b7:42:7d:54:c4:60:c5: 65:4c:3a:e3:46:d4:04:d7:24:5e:2e:a5:65:09:8f:74:70:dc: e7:cd:27:9d:16:61:98:bc:9a:34:5c:4e:cf:0a:f2:a0:62:fd: 12:e1:a9:98:89:4c:f4:c9:fc:b1:f0:c3:70:a1:32:6a:12:e5: 1d:9e:e4:eb:59:2d:60:71:c2:44:ee:32:e9:90:a7:a0:dc:1c: ba:a6:1d:8f:eb:1a:7a:87:d3:8f:05:dc:15:86:20:8b:bd:69: 9f:34:9d:6a:92:4c:c8:1a:c0:6a:8a:b0:6f:52:2c:c2:c7:ba: 62:28:72:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTJ1NYvRCko1iuLJtf7YZ+hnWjZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMDQ5MTFaFw0yNTA5MTYwMDU0MTFaMDMxMTAvBgNV BAMTKDI4RDVDQTFBQkEyQzYyMTdCOUMzMzYzQUVCRDEyNThBMkM3MzcxNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn06H2G2RemW3OG78Y1UPCuLE3 8VqiXrxE4s29rsUrc//iL3dkyq+myhC5BUqhUk8ThKkqQeCfb+P4KG/ZcWXv8ChR zrbO5inmXWtmlin3iuvvM9fZjpJpDeDapZBwycDRlCufrsS3HD15E0D6cPa5o9M4 Rs0vd8SHt8GM5oPoR1smH8wzAumOXMuccM3voVpaW8MEyilXU79tppL6icFvV/Fu YxA/wTRLu2doYlC8k7KdXCgZbYOUDSri4vik9nLjHgtasVWxEZ8MXnDEgdSAH7D/ wo6iKBQJ18SR83sk+XoiXMbN+fqFfWLTiIQq1UvdeFVnecsONwbXEYiVZ4VlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKNXKGrosYhe5wzY669EliixzcVkwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjGMA0GCSqG SIb3DQEBCwUAA4IBAQCdg/HF0oX5d9ANJAmnTpcIgT/XKUzE0ySJbRvKf+gV3oWC zfXNPtQoNHa/Ll1RCqtXGUArnmjt7k0WuudozpfSr/C1Rd8CKq4iZrRZ9OlH0g6H FyxEHGsmbPq/VCoRQIuKlgU35tyV8nQL5uc4ikRQL1WCvvLFzl2CWsjUqVmp9O8D ndQ/AGge97dCfVTEYMVlTDrjRtQE1yReLqVlCY90cNznzSedFmGYvJo0XE7PCvKg Yv0S4amYiUz0yfyx8MNwoTJqEuUdnuTrWS1gccJE7jLpkKeg3By6ph2P6xp6h9OP BdwVhiCLvWmfNJ1qkkzIGsBqirBvUizCx7piKHIR -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org