$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230372e302f32342d3234203d3e203338313439.roa File: 3230322e3135322e3230372e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: 8tNSYHNvzh6OAD5wXV0TtFoODaHLVVE+RdSWg9z6uqc= Subject key identifier: 8D:E0:87:AA:64:DE:9E:FC:94:C9:A3:49:24:05:B0:F2:CB:B8:31:F5 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 4E454E674910214810E062542BCF49989C0700A1 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230372e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 01:07:58 +0000 ROA not before: Tue 17 Sep 2024 01:02:58 +0000 ROA not after: Tue 16 Sep 2025 01:07:58 +0000 asID: 38149 IP address blocks: 202.152.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:45:4e:67:49:10:21:48:10:e0:62:54:2b:cf:49:98:9c:07:00:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 01:02:58 2024 GMT Not After : Sep 16 01:07:58 2025 GMT Subject: CN=8DE087AA64DE9EFC94C9A3492405B0F2CBB831F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:dc:7c:1f:c2:a2:84:f9:8e:31:f0:1e:a3:4f: ba:64:14:65:4f:1a:a2:cc:6c:24:36:5a:65:9c:49: 7d:4d:93:31:1e:07:c2:e5:9b:91:35:d0:7c:37:c4: 68:8b:c5:ff:88:9f:55:0f:f7:b9:d8:8a:49:42:fc: 78:83:19:d0:25:71:45:50:94:05:fa:75:b8:09:eb: 76:06:92:4a:21:98:ba:ee:2c:b3:61:f9:82:28:02: f1:17:8f:ce:1e:b6:45:18:0e:7a:40:b0:97:a9:c1: c3:53:0f:a4:86:2f:96:dc:70:b9:b8:26:ad:0e:d4: b0:1b:86:2d:be:7b:96:17:14:1a:9a:65:b3:7d:30: ef:a4:e5:d4:61:bd:e6:58:2f:c9:e5:b7:64:9e:ca: 53:95:1a:3c:68:bc:05:41:6c:96:2f:f0:81:90:bd: f8:99:c8:98:34:7f:0b:b4:3c:76:db:c3:ae:01:ce: d4:95:00:2a:12:67:15:cf:56:1f:76:53:2e:3d:31: d6:85:87:5f:e4:a8:1d:3d:2c:0d:d0:48:ba:a9:20: 84:dc:ff:9f:32:96:40:68:65:52:15:83:d2:fc:58: d1:b4:7e:9c:16:f1:e4:d1:64:d7:57:cc:f6:6e:38: 86:00:d1:3a:ea:a3:08:c9:6d:20:5c:bf:fe:e0:8d: 66:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E0:87:AA:64:DE:9E:FC:94:C9:A3:49:24:05:B0:F2:CB:B8:31:F5 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3230372e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.152.207.0/24 Signature Algorithm: sha256WithRSAEncryption bd:92:68:c2:f3:9f:a6:55:91:ce:f4:bb:f8:3c:02:2c:d7:01: c7:ee:b0:56:d6:28:e9:95:6d:78:e6:17:82:62:83:5a:e8:dc: d0:f3:c5:ea:11:69:11:13:cb:50:e0:80:a7:69:3e:e5:a9:b8: 75:25:37:0b:69:bf:1e:42:41:f5:84:7f:41:3d:29:43:5e:4f: 10:24:53:bc:3d:27:8c:d4:08:d1:78:89:e1:09:b8:e7:ae:35: 74:cc:b1:d2:86:88:94:9b:02:6f:3a:93:84:8a:fa:e4:17:10: a3:13:ff:8f:fa:c4:8d:13:b0:8d:fe:3e:75:9b:4a:6f:b1:13: 7c:8c:bc:b8:26:96:d3:34:74:e1:20:02:7b:20:4b:81:31:6c: d3:b9:e5:76:6d:2c:83:46:c1:29:8c:b5:e8:65:b5:b0:95:65: de:f2:cb:d8:5c:ba:da:09:17:8d:3f:92:d3:85:e8:db:3c:5c: 15:0a:fe:52:ea:4f:ae:bf:a2:35:3d:d0:a7:ee:82:fa:90:2f: 84:a9:de:d6:0d:b1:29:59:94:62:70:76:c8:80:42:5f:7a:20: 03:7a:88:8d:4b:a2:73:59:f2:ea:2e:ca:84:a7:7b:23:7b:59: cf:de:dd:b9:ad:4a:16:bf:48:70:82:7f:d0:24:52:17:64:97: 0d:e8:80:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTkVOZ0kQIUgQ4GJUK89JmJwHAKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMTAyNThaFw0yNTA5MTYwMTA3NThaMDMxMTAvBgNV BAMTKDhERTA4N0FBNjRERTlFRkM5NEM5QTM0OTI0MDVCMEYyQ0JCODMxRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp3HwfwqKE+Y4x8B6jT7pkFGVP GqLMbCQ2WmWcSX1NkzEeB8Llm5E10Hw3xGiLxf+In1UP97nYiklC/HiDGdAlcUVQ lAX6dbgJ63YGkkohmLruLLNh+YIoAvEXj84etkUYDnpAsJepwcNTD6SGL5bccLm4 Jq0O1LAbhi2+e5YXFBqaZbN9MO+k5dRhveZYL8nlt2SeylOVGjxovAVBbJYv8IGQ vfiZyJg0fwu0PHbbw64BztSVACoSZxXPVh92Uy49MdaFh1/kqB09LA3QSLqpIITc /58ylkBoZVIVg9L8WNG0fpwW8eTRZNdXzPZuOIYA0TrqowjJbSBcv/7gjWZxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjeCHqmTenvyUyaNJJAWw8su4MfUwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjPMA0GCSqG SIb3DQEBCwUAA4IBAQC9kmjC85+mVZHO9Lv4PAIs1wHH7rBW1ijplW145heCYoNa 6NzQ88XqEWkRE8tQ4ICnaT7lqbh1JTcLab8eQkH1hH9BPSlDXk8QJFO8PSeM1AjR eInhCbjnrjV0zLHShoiUmwJvOpOEivrkFxCjE/+P+sSNE7CN/j51m0pvsRN8jLy4 JpbTNHThIAJ7IEuBMWzTueV2bSyDRsEpjLXoZbWwlWXe8svYXLraCReNP5LThejb PFwVCv5S6k+uv6I1PdCn7oL6kC+Eqd7WDbEpWZRicHbIgEJfeiADeoiNS6JzWfLq LsqEp3sje1nP3t25rUoWv0hwgn/QJFIXZJcN6ICc -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org