$ rpki-client -vvf repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e35332e3232342e302f31392d3234203d3e2039333430.roa File: 3230322e35332e3232342e302f31392d3234203d3e2039333430.roa (raw, json) Hash identifier: kXCvCzaDL/hdgTXJccqR4IANnu2tlgd1i2XPfsNVTeM= Subject key identifier: 2B:F2:92:C1:5E:0C:DC:97:D8:7D:C7:AF:D6:D1:04:A0:41:3B:59:99 Certificate issuer: /CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Certificate serial: 5B20E9114AC247A42255AB464E9B9257A2B69471 Authority key identifier: B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e35332e3232342e302f31392d3234203d3e2039333430.roa Signing time: Wed 17 Apr 2024 11:00:00 +0000 ROA not before: Wed 17 Apr 2024 10:55:00 +0000 ROA not after: Wed 16 Apr 2025 11:00:00 +0000 asID: 9340 IP address blocks: 202.53.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:20:e9:11:4a:c2:47:a4:22:55:ab:46:4e:9b:92:57:a2:b6:94:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Validity Not Before: Apr 17 10:55:00 2024 GMT Not After : Apr 16 11:00:00 2025 GMT Subject: CN=2BF292C15E0CDC97D87DC7AFD6D104A0413B5999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1f:99:48:ab:b3:85:21:93:82:a4:ea:ee:2c: a5:79:dd:2d:91:6a:5e:78:41:5b:6d:00:0e:c9:5c: 76:84:d6:13:6f:2d:3a:13:eb:0e:41:fb:d7:25:d9: 7c:df:1a:d3:6a:f8:e2:b4:46:27:ed:59:bc:31:e7: 73:1f:4d:29:0d:31:c4:d3:85:a8:cc:59:5d:5b:5f: 6f:4b:7c:7d:ff:78:e1:4e:6f:2c:26:8e:dc:b6:a6: 68:2c:d0:01:31:a8:3e:06:74:93:c9:b2:d0:10:f1: 45:d9:b3:35:cf:7e:5e:9e:d9:02:60:50:2c:b5:f3: de:01:c4:ea:bc:f4:4f:72:5f:3a:18:42:da:38:0e: f4:a1:8a:b7:07:97:f7:71:a9:a6:00:be:e4:ce:79: 15:04:bc:bf:7c:da:c4:9a:df:64:c5:9b:03:06:04: d6:9a:a4:0a:c8:0d:4e:3b:89:56:be:47:e3:07:fe: e4:c8:23:30:d0:58:74:6e:c4:50:de:e6:47:de:7d: c7:3f:e6:74:94:b2:57:6a:55:33:ec:e3:dc:d1:57: 14:a5:b1:ae:6c:73:53:a7:be:56:59:b1:fc:00:48: c0:c7:41:ed:56:66:69:2d:49:a8:fd:fc:06:84:87: 83:93:f2:d9:3f:03:dd:68:82:d7:e1:b0:b6:4b:1b: ad:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F2:92:C1:5E:0C:DC:97:D8:7D:C7:AF:D6:D1:04:A0:41:3B:59:99 X509v3 Authority Key Identifier: keyid:B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e35332e3232342e302f31392d3234203d3e2039333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.53.224.0/19 Signature Algorithm: sha256WithRSAEncryption 57:b7:0d:70:ab:c9:ba:bc:ff:d9:91:d9:81:6d:c4:c8:4c:ab: e1:f2:05:3e:a5:1e:e7:fc:aa:9b:ec:4d:a4:fb:f4:23:27:34: 9b:15:68:89:29:c3:2f:bc:88:81:92:c5:0d:af:97:75:ef:64: d0:87:57:f6:5b:27:06:e8:21:f8:2e:44:c0:4f:29:ec:7e:95: 61:65:3a:d0:ba:59:a4:8a:a7:56:7b:80:ae:85:c8:0f:1a:9d: 0c:72:e5:11:60:12:31:6d:1f:44:08:0b:d5:dc:3b:4d:02:75: 03:fa:2c:21:0f:f8:f5:21:86:0d:0c:5a:99:27:2f:47:29:37: fc:8f:f0:e3:99:a5:9c:01:2b:0b:6f:76:90:79:5a:f5:e5:2a: 9b:41:b5:04:e5:6f:5e:87:46:f5:63:4c:e7:94:0d:4d:ea:21: 52:09:27:c6:9c:ae:c0:40:61:f4:53:67:8d:55:35:68:a8:8b: 41:4b:dd:ea:2c:59:5f:9c:df:46:41:d7:89:5a:26:18:38:04: c6:25:f0:8e:5c:b9:86:b9:7e:56:11:af:83:b6:62:8c:ec:d0: 11:a1:1c:6b:47:53:a3:25:cd:8b:e4:e0:b6:e6:fe:35:18:5f: 46:6c:40:dd:e4:4a:84:4e:bb:a8:bd:94:bf:3f:c9:54:dd:ba: 90:83:04:68 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWyDpEUrCR6QiVatGTpuSV6K2lHEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0 RDRGODMwODAeFw0yNDA0MTcxMDU1MDBaFw0yNTA0MTYxMTAwMDBaMDMxMTAvBgNV BAMTKDJCRjI5MkMxNUUwQ0RDOTdEODdEQzdBRkQ2RDEwNEEwNDEzQjU5OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdH5lIq7OFIZOCpOruLKV53S2R al54QVttAA7JXHaE1hNvLToT6w5B+9cl2XzfGtNq+OK0RiftWbwx53MfTSkNMcTT hajMWV1bX29LfH3/eOFObywmjty2pmgs0AExqD4GdJPJstAQ8UXZszXPfl6e2QJg UCy1894BxOq89E9yXzoYQto4DvShircHl/dxqaYAvuTOeRUEvL982sSa32TFmwMG BNaapArIDU47iVa+R+MH/uTIIzDQWHRuxFDe5kfefcc/5nSUsldqVTPs49zRVxSl sa5sc1OnvlZZsfwASMDHQe1WZmktSaj9/AaEh4OT8tk/A91ogtfhsLZLG60/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUK/KSwV4M3JfYfcev1tEEoEE7WZkwHwYDVR0j BBgwFoAUuMKisbIRZK+OruOHx9ml2U1PgwgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NWIxZTU3ZS1hMGYxLTQ2N2YtYTQ2Zi01NWEzMTU3YjBkNjUvMC9COEMyQTJCMUIy MTE2NEFGOEVBRUUzODdDN0Q5QTVEOTRENEY4MzA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0RDRG ODMwOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1YjFlNTdlLWEwZjEtNDY3Zi1h NDZmLTU1YTMxNTdiMGQ2NS8wLzMyMzAzMjJlMzUzMzJlMzIzMjM0MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzkzMzM0MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXKNeAwDQYJKoZIhvcN AQELBQADggEBAFe3DXCrybq8/9mR2YFtxMhMq+HyBT6lHuf8qpvsTaT79CMnNJsV aIkpwy+8iIGSxQ2vl3XvZNCHV/ZbJwboIfguRMBPKex+lWFlOtC6WaSKp1Z7gK6F yA8anQxy5RFgEjFtH0QIC9XcO00CdQP6LCEP+PUhhg0MWpknL0cpN/yP8OOZpZwB KwtvdpB5WvXlKptBtQTlb16HRvVjTOeUDU3qIVIJJ8acrsBAYfRTZ41VNWioi0FL 3eosWV+c30ZB14laJhg4BMYl8I5cuYa5flYRr4O2Yozs0BGhHGtHU6MlzYvk4Lbm /jUYX0ZsQN3kSoROu6i9lL8/yVTdupCDBGg= -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:11 2024 by rpki-client on console-fra.rpki-client.org