$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230302e302f32342d3234203d3e203338313439.roa File: 3230322e3135322e3230302e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: gIThMsO3f8TVQOwaLecQ1rVACKiiaWWu4pMnWCaC4lI= Subject key identifier: 09:BB:39:18:C7:0F:D1:45:24:51:97:FF:44:D0:C7:03:80:DA:47:A0 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 13CB88FC8A77ED89FF789997A3CE88A972AEB307 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230302e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 00:55:08 +0000 ROA not before: Tue 17 Sep 2024 00:50:08 +0000 ROA not after: Tue 16 Sep 2025 00:55:08 +0000 asID: 38149 IP address blocks: 202.152.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:cb:88:fc:8a:77:ed:89:ff:78:99:97:a3:ce:88:a9:72:ae:b3:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 00:50:08 2024 GMT Not After : Sep 16 00:55:08 2025 GMT Subject: CN=09BB3918C70FD145245197FF44D0C70380DA47A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e2:81:9c:ec:62:08:70:5a:65:f6:63:77:22: eb:89:aa:0f:12:a6:bc:51:31:37:14:3c:6e:1e:fd: 32:a5:18:5a:1a:46:55:40:8a:70:76:99:06:1e:77: 2f:49:bc:02:17:92:d0:2b:8f:3f:a8:7f:02:5e:3f: 3f:23:a9:4c:98:08:0c:cc:6e:03:7d:93:81:ec:14: 13:5c:eb:c0:43:b3:19:2b:66:ed:be:c8:e0:09:8a: 44:90:2e:20:e2:33:3f:53:04:fa:82:bf:72:a9:94: 5e:41:5a:7e:fe:25:1e:6f:36:89:82:ee:4e:d4:4c: a1:5c:e1:d9:71:74:e4:ed:2d:ee:eb:49:5e:7b:3f: 75:ee:1c:2a:41:77:a2:22:cb:3b:a5:dc:18:35:50: 3b:50:ec:db:5f:74:b8:e7:20:4d:de:e5:f8:e9:8d: 34:d7:5b:5f:07:8f:19:21:d2:c8:fe:07:ed:da:19: fe:09:8e:ae:69:1b:4d:d9:48:af:f2:35:78:47:ba: d1:81:4f:d1:74:21:9c:da:98:ef:d7:e0:8b:7f:0d: 41:62:15:b6:3b:6b:20:a2:ac:64:37:ed:38:8f:3b: 6d:34:b6:3b:f0:b0:67:ac:f9:44:87:00:34:13:b3: 79:36:ec:a7:5b:3d:9c:a6:68:bb:17:08:d3:e5:0a: 33:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:BB:39:18:C7:0F:D1:45:24:51:97:FF:44:D0:C7:03:80:DA:47:A0 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230302e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.200.0/24 Signature Algorithm: sha256WithRSAEncryption 46:89:56:6a:90:e8:60:4e:a9:2b:46:5d:ca:11:d2:34:39:a5: 55:3d:24:57:11:e5:a1:48:c4:44:fd:05:95:22:33:5b:2f:e4: 55:96:a4:8b:a2:37:33:b8:dc:84:c0:23:16:16:dc:bf:dd:43: 56:16:5d:ad:a8:1c:f4:af:53:15:3c:1b:cf:25:7d:d1:4f:4d: 46:03:39:eb:56:fa:93:d7:b2:3c:55:72:77:fa:a7:3f:00:01: ff:79:5b:43:23:11:50:db:2c:16:e8:16:fc:23:e6:d1:79:bf: e4:ea:ff:ae:cb:3e:bc:fd:2c:8e:2f:37:81:6c:63:27:a0:e1: 1b:19:48:6f:9c:5d:75:0b:3c:b5:58:f9:88:21:cf:3d:33:c3: c7:9f:35:83:94:5e:08:5d:fc:d7:0c:cd:4d:6e:80:22:8b:fa: c5:03:4d:a2:b1:e3:ce:23:c0:c2:45:04:f6:e5:e5:1a:d5:33: a8:24:3d:e3:2f:d5:e2:d0:8d:37:27:ca:25:d1:dd:34:4d:8b: f8:e1:e9:22:62:67:90:67:a3:7d:80:bf:c8:29:2d:73:a2:ab: 24:12:07:07:64:5e:f3:86:1f:d0:72:e1:bc:a4:cc:04:d3:db: 42:2b:91:c3:13:31:53:ba:fc:3c:97:24:b4:b6:fb:ec:a1:5c: e4:05:36:80 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE8uI/Ip37Yn/eJmXo86IqXKuswcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMDUwMDhaFw0yNTA5MTYwMDU1MDhaMDMxMTAvBgNV BAMTKDA5QkIzOTE4QzcwRkQxNDUyNDUxOTdGRjQ0RDBDNzAzODBEQTQ3QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu4oGc7GIIcFpl9mN3IuuJqg8S prxRMTcUPG4e/TKlGFoaRlVAinB2mQYedy9JvAIXktArjz+ofwJePz8jqUyYCAzM bgN9k4HsFBNc68BDsxkrZu2+yOAJikSQLiDiMz9TBPqCv3KplF5BWn7+JR5vNomC 7k7UTKFc4dlxdOTtLe7rSV57P3XuHCpBd6Iiyzul3Bg1UDtQ7NtfdLjnIE3e5fjp jTTXW18Hjxkh0sj+B+3aGf4Jjq5pG03ZSK/yNXhHutGBT9F0IZzamO/X4It/DUFi FbY7ayCirGQ37TiPO200tjvwsGes+USHADQTs3k27KdbPZymaLsXCNPlCjOzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCbs5GMcP0UUkUZf/RNDHA4DaR6AwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjIMA0GCSqG SIb3DQEBCwUAA4IBAQBGiVZqkOhgTqkrRl3KEdI0OaVVPSRXEeWhSMRE/QWVIjNb L+RVlqSLojczuNyEwCMWFty/3UNWFl2tqBz0r1MVPBvPJX3RT01GAznrVvqT17I8 VXJ3+qc/AAH/eVtDIxFQ2ywW6Bb8I+bReb/k6v+uyz68/SyOLzeBbGMnoOEbGUhv nF11Czy1WPmIIc89M8PHnzWDlF4IXfzXDM1NboAii/rFA02isePOI8DCRQT25eUa 1TOoJD3jL9Xi0I03J8ol0d00TYv44ekiYmeQZ6N9gL/IKS1zoqskEgcHZF7zhh/Q cuG8pMwE09tCK5HDEzFTuvw8lyS0tvvsoVzkBTaA -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org