$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230362e302f32342d3234203d3e203338313439.roa File: 3230322e3135322e3230362e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: qCBq+VV2rMVUWbSmRhWwCc6xq6hUCZcFZx8/9aVp2Cc= Subject key identifier: A4:DB:FD:30:F4:27:BE:B2:3C:D5:F3:1D:11:DF:1E:26:9E:7E:42:CB Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 0279C482DEC46940B2BF88BF2F3613C2998FE519 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230362e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 01:07:47 +0000 ROA not before: Tue 17 Sep 2024 01:02:47 +0000 ROA not after: Tue 16 Sep 2025 01:07:47 +0000 asID: 38149 IP address blocks: 202.152.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:79:c4:82:de:c4:69:40:b2:bf:88:bf:2f:36:13:c2:99:8f:e5:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 01:02:47 2024 GMT Not After : Sep 16 01:07:47 2025 GMT Subject: CN=A4DBFD30F427BEB23CD5F31D11DF1E269E7E42CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:06:f9:b2:8d:cb:61:26:78:1a:e2:d5:f4:e4: e3:6a:e6:d1:e8:f8:ca:d0:48:db:f9:37:56:77:d8: 58:f4:e6:d1:5d:f1:ee:e4:4a:92:35:22:21:25:c6: 28:46:3d:2d:4b:82:91:d7:18:bf:22:d4:df:08:e0: 31:cb:f0:51:18:01:e5:10:0a:c3:14:f8:c6:cd:15: 64:37:6d:31:52:96:df:7e:e8:74:c9:7a:5a:b3:83: aa:8c:77:75:f0:ed:42:46:6b:4b:bd:1f:22:c0:22: e9:c6:c5:00:18:8c:ad:6e:1c:98:eb:12:19:5f:0c: 06:38:8a:42:4d:fa:11:68:c6:d9:36:45:27:44:a4: 46:ee:f4:23:21:c4:5b:7a:9d:90:c7:dd:28:64:3e: 51:f3:49:c0:0a:61:23:3d:3d:a4:48:57:97:54:76: 09:30:27:3f:e5:09:b3:79:a3:75:90:25:4c:31:20: 77:6c:0f:c2:40:29:9d:d3:04:0f:95:a6:8f:c8:58: 0b:aa:66:e1:ae:c6:0f:07:4d:f4:33:47:6c:0c:91: a8:3c:66:31:34:2e:b4:23:fa:55:dd:6f:9c:39:0e: a3:8e:30:c1:ff:6a:e0:f5:f7:83:f1:a1:7d:21:a2: 81:4a:3e:aa:e0:71:df:c4:f2:a5:2a:a3:f3:11:16: 10:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:DB:FD:30:F4:27:BE:B2:3C:D5:F3:1D:11:DF:1E:26:9E:7E:42:CB X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230362e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.206.0/24 Signature Algorithm: sha256WithRSAEncryption 16:17:7e:55:1f:45:55:ae:88:85:66:2b:a9:83:8b:af:5c:5e: 38:3f:9b:ca:fa:3c:8a:3b:62:aa:6d:fd:1c:69:4e:0d:be:70: 8b:bf:60:69:e5:dc:88:9f:8c:79:ee:fa:27:7f:70:fb:bf:48: 4e:a1:09:f3:dc:fc:b8:8c:20:2a:5e:9c:d2:82:f9:a6:f2:a1: b0:32:45:1b:69:67:05:be:d8:d6:77:21:7a:67:37:90:ee:d9: 12:6a:f2:6f:96:ae:6c:b2:90:14:d3:82:88:8a:42:90:4d:06: 1a:e9:dd:33:61:46:d8:8b:fb:9a:c3:c5:02:7f:a5:77:b4:ac: 14:ba:ce:76:49:4a:47:c3:0e:55:dd:52:a5:8e:c8:37:0f:a1: 6e:af:7a:0a:b3:13:6d:fd:e2:94:60:d7:2a:c3:fd:03:62:44: e9:e7:c0:20:38:db:be:4d:18:9f:da:4f:57:b2:bf:9e:a9:34: 60:da:bb:93:98:43:88:22:90:4e:60:9c:97:fb:66:ea:cb:9b: 6b:90:39:b1:b1:f7:67:a3:71:f1:4f:fd:4c:84:93:6f:43:92: 4b:83:6d:99:fe:3b:35:e3:21:c7:e8:ec:67:93:10:2e:84:13: 18:76:59:01:e8:0f:da:0b:fa:45:bf:89:c0:06:26:29:24:69: 23:33:4b:4b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAnnEgt7EaUCyv4i/LzYTwpmP5RkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMTAyNDdaFw0yNTA5MTYwMTA3NDdaMDMxMTAvBgNV BAMTKEE0REJGRDMwRjQyN0JFQjIzQ0Q1RjMxRDExREYxRTI2OUU3RTQyQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfBvmyjcthJnga4tX05ONq5tHo +MrQSNv5N1Z32Fj05tFd8e7kSpI1IiElxihGPS1LgpHXGL8i1N8I4DHL8FEYAeUQ CsMU+MbNFWQ3bTFSlt9+6HTJelqzg6qMd3Xw7UJGa0u9HyLAIunGxQAYjK1uHJjr EhlfDAY4ikJN+hFoxtk2RSdEpEbu9CMhxFt6nZDH3ShkPlHzScAKYSM9PaRIV5dU dgkwJz/lCbN5o3WQJUwxIHdsD8JAKZ3TBA+Vpo/IWAuqZuGuxg8HTfQzR2wMkag8 ZjE0LrQj+lXdb5w5DqOOMMH/auD194PxoX0hooFKPqrgcd/E8qUqo/MRFhDtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpNv9MPQnvrI81fMdEd8eJp5+QsswHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjOMA0GCSqG SIb3DQEBCwUAA4IBAQAWF35VH0VVroiFZiupg4uvXF44P5vK+jyKO2Kqbf0caU4N vnCLv2Bp5dyIn4x57vonf3D7v0hOoQnz3Py4jCAqXpzSgvmm8qGwMkUbaWcFvtjW dyF6ZzeQ7tkSavJvlq5sspAU04KIikKQTQYa6d0zYUbYi/uaw8UCf6V3tKwUus52 SUpHww5V3VKljsg3D6Fur3oKsxNt/eKUYNcqw/0DYkTp58AgONu+TRif2k9Xsr+e qTRg2ruTmEOIIpBOYJyX+2bqy5trkDmxsfdno3HxT/1MhJNvQ5JLg22Z/js14yHH 6OxnkxAuhBMYdlkB6A/aC/pFv4nABiYpJGkjM0tL -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org