$ rpki-client -vvf repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e39362e302f31392d3234203d3e2039333430.roa File: 3230322e3135392e39362e302f31392d3234203d3e2039333430.roa (raw, json) Hash identifier: CPSBoYXX+UCutxM6w1+iefY4+XSZmrwTNAn3/CwEKWY= Subject key identifier: 51:5E:D7:3E:DE:C6:D6:8D:4B:60:3F:AF:EB:92:85:51:D2:68:CA:F3 Certificate issuer: /CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Certificate serial: 026B0E7551C89054F78C0B7C3F913282F9E4C723 Authority key identifier: B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e39362e302f31392d3234203d3e2039333430.roa Signing time: Mon 12 Feb 2024 09:01:59 +0000 ROA not before: Mon 12 Feb 2024 08:56:59 +0000 ROA not after: Mon 10 Feb 2025 09:01:59 +0000 asID: 9340 IP address blocks: 202.159.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:6b:0e:75:51:c8:90:54:f7:8c:0b:7c:3f:91:32:82:f9:e4:c7:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Validity Not Before: Feb 12 08:56:59 2024 GMT Not After : Feb 10 09:01:59 2025 GMT Subject: CN=515ED73EDEC6D68D4B603FAFEB928551D268CAF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b4:d9:9e:aa:13:fa:a7:fd:c2:26:fd:73:18: 91:e6:9b:c6:24:17:36:77:88:f7:4b:c1:4d:fd:aa: 1d:a6:80:cb:31:3d:dc:a5:34:fb:04:47:2a:e9:98: 3c:a1:18:69:b2:de:a1:e3:1d:da:ed:d9:83:39:1a: c4:d7:91:7d:a7:c2:81:b6:37:82:2e:78:43:f0:b3: 7c:70:d0:34:11:17:b7:7a:cb:4d:1d:bb:24:a8:65: 62:04:ef:83:ea:82:d9:47:af:4d:e0:23:81:69:52: 6a:9d:d4:98:e1:f8:c6:51:65:bd:bc:9d:cf:a8:97: 23:2d:97:df:c1:c9:13:68:f0:a2:f2:3e:f5:57:1e: 5b:37:a2:df:da:b7:66:fe:c1:94:11:f4:a7:b8:31: f7:79:5c:61:f6:b6:9a:f1:62:a3:f0:ae:23:f9:8a: 3b:17:1b:35:4b:57:dc:7c:5e:14:45:a7:be:75:be: b0:80:42:2f:a1:44:85:47:e7:78:a9:f2:9c:d5:58: 99:be:87:a6:84:54:6d:7b:3e:5c:b7:ae:b3:c9:3c: d8:01:5f:45:5e:45:bd:7f:b4:cb:c5:ec:25:fd:1d: 2d:2e:57:16:1d:3c:3f:0d:d2:10:99:e8:89:df:bd: e9:ae:32:19:29:50:82:63:28:d5:b1:40:fd:8f:43: c6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:5E:D7:3E:DE:C6:D6:8D:4B:60:3F:AF:EB:92:85:51:D2:68:CA:F3 X509v3 Authority Key Identifier: keyid:B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e39362e302f31392d3234203d3e2039333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.159.96.0/19 Signature Algorithm: sha256WithRSAEncryption 6a:43:ae:6e:fe:45:8b:e3:e9:0a:44:c2:b9:cc:0f:13:77:f4: 7b:f8:78:11:74:45:55:74:7b:d3:90:77:85:77:7e:25:fc:fb: 65:e7:6e:9b:13:92:c6:c1:f7:28:72:48:87:4e:7c:76:9e:07: d7:37:ad:33:0b:28:f2:b6:c1:83:ef:f2:39:a5:62:6b:e9:f6: e2:e6:af:c7:7e:70:19:64:29:05:ad:6e:86:02:21:f5:80:6e: 7f:dc:56:ab:94:3b:8a:7a:c2:e0:75:2e:7c:da:9c:a4:9d:fe: 36:e5:ac:a9:eb:37:58:5d:18:08:48:4c:64:5d:19:2b:e8:0b: d3:2e:3c:10:3c:97:d5:0c:8d:16:3e:03:c9:3d:e8:84:38:b8: a8:73:6e:50:71:05:5f:9b:2f:14:55:ed:f2:09:75:df:27:42: 96:56:6a:81:de:2e:e2:36:03:97:e2:c1:5e:8b:66:b4:24:1f: 88:af:f6:5a:be:19:d8:fe:d6:34:19:58:39:01:b1:35:49:ac: 7f:f8:7b:ca:b8:b1:e5:5e:5d:f7:a5:e9:d3:dc:47:ce:a2:dc: c1:66:d7:fb:49:dd:57:68:f0:f8:10:3d:c3:dd:6f:91:d1:8b: 12:2d:97:31:ae:d9:0f:ad:eb:8f:12:d7:01:6b:2f:3e:fa:3d: 44:61:9b:e9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAmsOdVHIkFT3jAt8P5EygvnkxyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0 RDRGODMwODAeFw0yNDAyMTIwODU2NTlaFw0yNTAyMTAwOTAxNTlaMDMxMTAvBgNV BAMTKDUxNUVENzNFREVDNkQ2OEQ0QjYwM0ZBRkVCOTI4NTUxRDI2OENBRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/tNmeqhP6p/3CJv1zGJHmm8Yk FzZ3iPdLwU39qh2mgMsxPdylNPsERyrpmDyhGGmy3qHjHdrt2YM5GsTXkX2nwoG2 N4IueEPws3xw0DQRF7d6y00duySoZWIE74PqgtlHr03gI4FpUmqd1Jjh+MZRZb28 nc+olyMtl9/ByRNo8KLyPvVXHls3ot/at2b+wZQR9Ke4Mfd5XGH2tprxYqPwriP5 ijsXGzVLV9x8XhRFp751vrCAQi+hRIVH53ip8pzVWJm+h6aEVG17Ply3rrPJPNgB X0VeRb1/tMvF7CX9HS0uVxYdPD8N0hCZ6InfvemuMhkpUIJjKNWxQP2PQ8avAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUUV7XPt7G1o1LYD+v65KFUdJoyvMwHwYDVR0j BBgwFoAUuMKisbIRZK+OruOHx9ml2U1PgwgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NWIxZTU3ZS1hMGYxLTQ2N2YtYTQ2Zi01NWEzMTU3YjBkNjUvMC9COEMyQTJCMUIy MTE2NEFGOEVBRUUzODdDN0Q5QTVEOTRENEY4MzA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0RDRG ODMwOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1YjFlNTdlLWEwZjEtNDY3Zi1h NDZmLTU1YTMxNTdiMGQ2NS8wLzMyMzAzMjJlMzEzNTM5MmUzOTM2MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzkzMzM0MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXKn2AwDQYJKoZIhvcN AQELBQADggEBAGpDrm7+RYvj6QpEwrnMDxN39Hv4eBF0RVV0e9OQd4V3fiX8+2Xn bpsTksbB9yhySIdOfHaeB9c3rTMLKPK2wYPv8jmlYmvp9uLmr8d+cBlkKQWtboYC IfWAbn/cVquUO4p6wuB1LnzanKSd/jblrKnrN1hdGAhITGRdGSvoC9MuPBA8l9UM jRY+A8k96IQ4uKhzblBxBV+bLxRV7fIJdd8nQpZWaoHeLuI2A5fiwV6LZrQkH4iv 9lq+Gdj+1jQZWDkBsTVJrH/4e8q4seVeXfel6dPcR86i3MFm1/tJ3Vdo8PgQPcPd b5HRixItlzGu2Q+t648S1wFrLz76PURhm+k= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:55 2024 by rpki-client on console-ams.rpki-client.org