$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230352e302f32342d3234203d3e203338313439.roa File: 3230322e3135322e3230352e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: fExX5W0yY5FSIjap2VCUKN2UuGuByjcTmrMkc8QfRxM= Subject key identifier: 2F:1F:E5:A4:99:2E:92:F6:3D:76:20:8D:91:EF:50:21:0A:E4:DC:80 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 0F2531634A25F3709BE68DE687FA816C9E8DE31F Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230352e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 01:02:18 +0000 ROA not before: Tue 17 Sep 2024 00:57:18 +0000 ROA not after: Tue 16 Sep 2025 01:02:18 +0000 asID: 38149 IP address blocks: 202.152.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:25:31:63:4a:25:f3:70:9b:e6:8d:e6:87:fa:81:6c:9e:8d:e3:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 00:57:18 2024 GMT Not After : Sep 16 01:02:18 2025 GMT Subject: CN=2F1FE5A4992E92F63D76208D91EF50210AE4DC80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:81:ac:79:d5:64:88:00:3e:a2:b3:0e:61:dc: d2:d6:b8:72:bd:21:2b:90:f2:37:90:5f:67:42:27: c9:0d:64:80:e9:9b:64:77:e4:80:6c:04:d3:1e:91: 78:19:d0:1e:a6:24:e5:6f:0c:18:25:b7:82:37:7a: 8f:20:f6:20:61:38:8f:6c:62:c8:26:81:20:7a:cd: 57:20:da:5e:ca:ca:5b:ec:39:dd:f4:ef:d8:71:a9: a2:f5:e3:2b:cb:56:82:b7:56:ce:70:65:cf:f0:fb: b4:6d:4b:83:bb:e9:11:35:88:c7:f1:f5:5f:66:46: 16:f2:3d:e4:07:21:09:f2:8e:81:7d:89:28:45:fb: a0:1e:76:7e:ec:ad:86:af:a9:df:78:4a:e3:94:d1: 52:b7:32:af:99:75:16:e5:66:ce:1b:27:d9:9e:64: ee:ff:68:d7:86:a0:a3:f5:0c:df:74:85:ac:58:40: b9:ea:26:55:80:0d:be:7e:91:e3:cb:45:1b:cf:1f: 97:d0:d3:ed:3d:e6:55:03:c1:ad:a8:16:62:19:3e: 0f:a5:bc:f1:0f:39:54:b5:d4:f1:a3:24:45:7c:41: d8:8f:32:6e:94:59:dc:a7:a1:b2:ee:24:05:fa:57: 10:46:83:2a:fd:9f:4d:0f:4e:ef:4c:cd:fa:98:f6: 15:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1F:E5:A4:99:2E:92:F6:3D:76:20:8D:91:EF:50:21:0A:E4:DC:80 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230352e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.205.0/24 Signature Algorithm: sha256WithRSAEncryption 21:f4:12:8f:12:37:fd:c7:3d:0c:17:5b:c5:9e:ad:6c:7e:4a: 94:0c:c2:f3:5a:a8:b8:19:b1:4e:f1:f9:78:6a:3d:20:30:c6: 6b:7d:9f:fa:43:d0:20:97:14:f3:ba:e6:58:4a:66:13:95:f0: 24:08:e5:03:21:40:5c:1f:6a:e8:9a:b7:fe:29:47:d5:b6:3e: 69:d6:07:0c:d1:10:c0:c6:71:3d:09:a1:0b:e8:40:c1:ce:a3: ab:c8:9d:49:40:e5:f4:fe:d8:89:51:f0:22:5e:bf:45:1f:35: 2e:bd:54:97:b3:79:22:28:65:fd:34:ba:46:6c:12:9f:b5:68: 4a:67:a9:8a:01:41:e0:a8:0f:10:e1:03:6c:35:23:91:81:17: 39:37:40:dc:8f:4e:6d:da:1f:cc:4c:61:e8:35:c4:5d:48:85: 63:fc:a5:03:e1:ef:54:1e:dc:29:e3:1b:56:fa:89:ee:79:45: 00:85:be:a9:90:6b:1a:45:e7:1d:db:dd:64:6e:07:29:a0:24: 27:68:de:fc:f8:10:ee:70:65:4e:e5:78:e9:51:70:b0:d3:c5: 09:a3:f2:ff:6f:de:dd:d6:b0:98:87:3a:3e:4f:76:23:a4:8f: d7:43:d7:a5:0f:ed:42:83:bd:9a:b2:b3:69:5d:a9:8a:cc:31: 02:28:f0:2b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDyUxY0ol83Cb5o3mh/qBbJ6N4x8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMDU3MThaFw0yNTA5MTYwMTAyMThaMDMxMTAvBgNV BAMTKDJGMUZFNUE0OTkyRTkyRjYzRDc2MjA4RDkxRUY1MDIxMEFFNERDODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCigax51WSIAD6isw5h3NLWuHK9 ISuQ8jeQX2dCJ8kNZIDpm2R35IBsBNMekXgZ0B6mJOVvDBglt4I3eo8g9iBhOI9s YsgmgSB6zVcg2l7KylvsOd3079hxqaL14yvLVoK3Vs5wZc/w+7RtS4O76RE1iMfx 9V9mRhbyPeQHIQnyjoF9iShF+6Aedn7srYavqd94SuOU0VK3Mq+ZdRblZs4bJ9me ZO7/aNeGoKP1DN90haxYQLnqJlWADb5+kePLRRvPH5fQ0+095lUDwa2oFmIZPg+l vPEPOVS11PGjJEV8QdiPMm6UWdynobLuJAX6VxBGgyr9n00PTu9MzfqY9hUNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULx/lpJkukvY9diCNke9QIQrk3IAwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjNMA0GCSqG SIb3DQEBCwUAA4IBAQAh9BKPEjf9xz0MF1vFnq1sfkqUDMLzWqi4GbFO8fl4aj0g MMZrfZ/6Q9AglxTzuuZYSmYTlfAkCOUDIUBcH2romrf+KUfVtj5p1gcM0RDAxnE9 CaEL6EDBzqOryJ1JQOX0/tiJUfAiXr9FHzUuvVSXs3kiKGX9NLpGbBKftWhKZ6mK AUHgqA8Q4QNsNSORgRc5N0Dcj05t2h/MTGHoNcRdSIVj/KUD4e9UHtwp4xtW+onu eUUAhb6pkGsaRecd291kbgcpoCQnaN78+BDucGVO5XjpUXCw08UJo/L/b97d1rCY hzo+T3YjpI/XQ9elD+1Cg72asrNpXamKzDECKPAr -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org