$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa File: 3230322e3135382e302e302f31372d3234203d3e2034373837.roa (raw, json) Hash identifier: p280zmCEiJc2CEWyy/Nv8OcRDzCQrCDBOrLwXFfDaPg= Subject key identifier: 15:77:B0:BC:80:A0:41:B4:9A:6E:6A:C7:D5:BF:B4:7D:00:D4:96:66 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 15CE66B4F5560AB60AF3E707EFC8DC78A920812A Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa Signing time: Mon 22 Jul 2024 16:35:43 +0000 ROA not before: Mon 22 Jul 2024 16:30:43 +0000 ROA not after: Mon 21 Jul 2025 16:35:43 +0000 asID: 4787 IP address blocks: 202.158.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ce:66:b4:f5:56:0a:b6:0a:f3:e7:07:ef:c8:dc:78:a9:20:81:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 22 16:30:43 2024 GMT Not After : Jul 21 16:35:43 2025 GMT Subject: CN=1577B0BC80A041B49A6E6AC7D5BFB47D00D49666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:20:0d:94:c3:ad:97:a2:19:dc:2b:9e:0a:32: 6e:ae:4f:b9:a0:f1:db:f8:80:7a:62:9d:91:dd:73: 2e:5d:e8:f3:45:91:11:df:37:3f:4e:72:c6:e5:4a: 27:2b:39:0d:98:1e:f4:36:91:b1:11:2a:a4:6e:d5: f2:e1:4b:e0:b1:2d:4e:b8:8e:91:d2:9c:5f:16:52: ff:73:51:35:2c:57:40:1c:d7:6f:27:9d:55:47:b9: 66:ad:4f:28:1d:89:9c:7b:69:36:01:99:be:d1:58: 03:de:2f:c3:25:3e:b9:03:ff:2c:44:2c:c5:a6:06: 75:3e:ce:9e:9d:78:ad:ba:0f:c3:fd:a1:f4:75:d4: 2c:93:67:ba:70:33:9f:69:cf:da:f3:5b:a9:9f:fd: f1:f7:79:a9:7c:8b:ed:08:e1:b1:b6:e3:81:26:23: 1a:ef:6e:b7:7c:55:78:05:41:57:0c:06:d5:9d:9b: 69:a2:40:b0:e2:71:dc:c3:f5:8f:86:85:c3:04:bc: 60:19:bb:3e:62:c1:b4:6f:3a:aa:59:7e:cc:20:e6: 64:20:ad:0a:87:23:44:bb:9d:c7:8d:07:44:3a:03: 83:31:af:95:fe:5e:c2:99:a7:66:dc:3f:f1:3f:ba: e3:c0:57:47:ed:89:c4:52:49:85:a0:e9:dd:ad:8b: 9d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:77:B0:BC:80:A0:41:B4:9A:6E:6A:C7:D5:BF:B4:7D:00:D4:96:66 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.158.0.0/17 Signature Algorithm: sha256WithRSAEncryption 04:08:33:7a:fb:32:62:7d:de:fc:25:19:04:84:f5:82:a2:72: cd:4c:53:1f:1c:da:c5:53:c4:12:46:9b:fd:99:d1:50:80:f7: c9:c0:5f:05:30:47:a4:93:6c:62:fc:42:bf:70:68:b0:cb:88: 38:8c:e2:63:a6:80:a5:00:cd:8a:58:4a:5c:7a:68:e6:71:20: 0c:36:24:75:9c:0f:38:2b:20:f6:28:bc:d5:0e:dd:bc:43:53: 7f:b8:18:e5:c1:ba:76:81:82:f6:71:cb:b0:b6:af:59:4b:52: f1:dc:f2:ed:bc:2b:7c:70:f0:9c:33:34:10:16:25:c7:f4:9d: 8e:01:a7:58:6f:fd:83:e0:d0:a5:c4:68:40:e2:da:c4:64:90: f5:8e:ee:2d:d3:57:2d:63:c5:c3:b5:bc:cb:33:e2:1a:6b:ba: ba:1b:2d:b9:2f:80:37:37:4f:97:28:9b:ee:88:22:80:b6:fc: 9b:c9:58:cc:ef:19:37:78:23:f1:a1:3d:bd:ac:a3:e8:f7:e3: 97:30:66:81:6e:9c:b5:57:e5:26:0c:b7:22:66:83:f9:1d:83: 96:fe:89:ea:75:16:4b:3e:bf:c2:2e:e1:d6:0d:1f:a0:4e:7c: b2:06:14:43:3e:70:c4:5c:85:48:30:43:2f:28:6f:0b:d6:eb: 49:f7:f5:d6 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUFc5mtPVWCrYK8+cH78jceKkggSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNDA3MjIxNjMwNDNaFw0yNTA3MjExNjM1NDNaMDMxMTAvBgNV BAMTKDE1NzdCMEJDODBBMDQxQjQ5QTZFNkFDN0Q1QkZCNDdEMDBENDk2NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnIA2Uw62XohncK54KMm6uT7mg 8dv4gHpinZHdcy5d6PNFkRHfNz9OcsblSicrOQ2YHvQ2kbERKqRu1fLhS+CxLU64 jpHSnF8WUv9zUTUsV0Ac128nnVVHuWatTygdiZx7aTYBmb7RWAPeL8MlPrkD/yxE LMWmBnU+zp6deK26D8P9ofR11CyTZ7pwM59pz9rzW6mf/fH3eal8i+0I4bG244Em Ixrvbrd8VXgFQVcMBtWdm2miQLDicdzD9Y+GhcMEvGAZuz5iwbRvOqpZfswg5mQg rQqHI0S7nceNB0Q6A4Mxr5X+XsKZp2bcP/E/uuPAV0fticRSSYWg6d2ti50PAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUFXewvICgQbSabmrH1b+0fQDUlmYwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWE3MDI3MjYtYjJjNi00NmZjLTgy OTctMmRiZGVjNmQ2ZDVkLzAvMzIzMDMyMmUzMTM1MzgyZTMwMmUzMDJmMzEzNzJk MzIzNDIwM2QzZTIwMzQzNzM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfKngAwDQYJKoZIhvcNAQEL BQADggEBAAQIM3r7MmJ93vwlGQSE9YKics1MUx8c2sVTxBJGm/2Z0VCA98nAXwUw R6STbGL8Qr9waLDLiDiM4mOmgKUAzYpYSlx6aOZxIAw2JHWcDzgrIPYovNUO3bxD U3+4GOXBunaBgvZxy7C2r1lLUvHc8u28K3xw8JwzNBAWJcf0nY4Bp1hv/YPg0KXE aEDi2sRkkPWO7i3TVy1jxcO1vMsz4hprurobLbkvgDc3T5com+6IIoC2/JvJWMzv GTd4I/GhPb2so+j345cwZoFunLVX5SYMtyJmg/kdg5b+iep1Fks+v8Iu4dYNH6BO fLIGFEM+cMRchUgwQy8obwvW60n39dY= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org