$ rpki-client -vvf repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3139382e302f32342d3234203d3e203130323230.roa File: 3230322e35312e3139382e302f32342d3234203d3e203130323230.roa (raw, json) Hash identifier: E2BwWAg97KsRT1fRMxJbFZgljPAT+b9xgUo78GpD2t8= Subject key identifier: CA:3A:1F:3D:F8:46:02:CD:4E:1C:02:E4:36:96:83:58:DC:A0:11:8C Certificate issuer: /CN=A781200DA8EA5D34C742642B1E502D67A5B2279E Certificate serial: 4ACC5C5978CE1108C535F530D4F3A1519A221842 Authority key identifier: A7:81:20:0D:A8:EA:5D:34:C7:42:64:2B:1E:50:2D:67:A5:B2:27:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3139382e302f32342d3234203d3e203130323230.roa Signing time: Fri 16 Aug 2024 05:00:46 +0000 ROA not before: Fri 16 Aug 2024 04:55:46 +0000 ROA not after: Fri 15 Aug 2025 05:00:46 +0000 asID: 10220 IP address blocks: 202.51.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.crl rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 20:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:cc:5c:59:78:ce:11:08:c5:35:f5:30:d4:f3:a1:51:9a:22:18:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A781200DA8EA5D34C742642B1E502D67A5B2279E Validity Not Before: Aug 16 04:55:46 2024 GMT Not After : Aug 15 05:00:46 2025 GMT Subject: CN=CA3A1F3DF84602CD4E1C02E436968358DCA0118C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:27:79:df:d1:b2:9f:6e:db:3a:a7:67:f1:0d: b8:a2:74:54:e9:12:c8:2e:fb:fd:7e:88:cb:08:bb: bb:7a:aa:29:97:cf:c1:37:40:11:81:e4:2d:3c:f3: 8f:b8:73:8f:a3:e6:7a:9c:c3:f4:6b:09:17:03:cf: 4b:48:75:57:a2:ae:45:5a:a2:bc:b9:ef:f0:ce:41: 9f:9d:80:26:ec:eb:f7:35:76:05:79:01:55:bf:67: bc:63:95:c7:5c:b5:9b:1b:80:b3:5f:d4:d2:63:b9: d3:cd:ef:98:f4:c9:9f:1f:f1:10:47:83:64:20:3e: c4:7d:3a:e2:35:39:91:94:5c:a8:e9:f2:fc:7d:da: ad:6f:b2:a8:ab:cc:d6:ca:18:89:39:38:2a:75:30: 1a:e5:8b:ce:32:c3:21:34:0f:c5:ed:56:af:1c:1d: 48:1c:8b:22:dc:54:39:28:98:eb:74:09:c6:61:3f: 54:a2:12:89:90:03:af:9f:ac:20:b7:b9:50:c8:ab: fb:26:76:9b:00:95:cf:ed:3d:51:8c:33:04:7e:bf: 9f:43:fa:28:a2:ae:16:c2:14:1b:96:3e:e5:b2:5a: f8:ed:ee:5e:25:64:2d:ed:99:c4:3b:ff:3a:ae:d7: 7f:67:a4:ec:92:95:9e:08:c0:d7:a9:59:8b:b4:86: 4e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3A:1F:3D:F8:46:02:CD:4E:1C:02:E4:36:96:83:58:DC:A0:11:8C X509v3 Authority Key Identifier: keyid:A7:81:20:0D:A8:EA:5D:34:C7:42:64:2B:1E:50:2D:67:A5:B2:27:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/A781200DA8EA5D34C742642B1E502D67A5B2279E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A781200DA8EA5D34C742642B1E502D67A5B2279E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3139382e302f32342d3234203d3e203130323230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.198.0/24 Signature Algorithm: sha256WithRSAEncryption b2:38:ca:46:7f:01:0f:5a:70:3f:92:4a:b5:0c:c6:bd:5d:e1: 4a:b6:0b:51:05:9c:68:df:df:fc:0c:51:39:90:f2:38:70:ce: cd:01:a8:ed:ce:2e:6f:cc:48:6c:26:5a:f8:25:f2:6d:e1:eb: 21:93:1b:72:f6:d3:ab:31:ae:87:75:27:a5:9a:1f:d5:47:16: de:74:2c:48:96:f6:c0:6a:3e:be:25:74:16:e3:43:20:a5:f2: 53:d4:c1:e2:fc:c6:96:5c:74:75:dd:2d:27:24:05:55:91:85: ad:b5:35:a6:7d:9b:f0:1e:69:b0:dc:c5:08:c3:4a:18:8d:6d: 01:4b:45:97:67:b7:6c:08:4d:77:45:51:9b:73:9b:fb:26:1b: b4:af:51:92:4f:b7:ec:7a:61:0c:db:89:ca:f9:a3:12:c0:1e: 95:a4:91:84:00:5c:d1:a8:df:e8:ec:b5:ba:19:ca:6d:c9:9e: c8:20:f6:6e:b2:2f:8f:48:aa:fc:8c:f2:63:81:c5:d5:22:8c: 35:88:ea:79:4d:8f:f6:03:79:a7:85:9a:e3:ed:98:bd:3c:15: a3:69:a4:7c:eb:1b:e5:55:77:ef:77:34:ef:59:9d:91:04:ef: 17:5a:ea:8d:7c:b0:37:66:2b:75:e6:1f:4e:d0:f4:ff:f0:12: 41:0f:cf:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSsxcWXjOEQjFNfUw1POhUZoiGEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc4MTIwMERBOEVBNUQzNEM3NDI2NDJCMUU1MDJENjdB NUIyMjc5RTAeFw0yNDA4MTYwNDU1NDZaFw0yNTA4MTUwNTAwNDZaMDMxMTAvBgNV BAMTKENBM0ExRjNERjg0NjAyQ0Q0RTFDMDJFNDM2OTY4MzU4RENBMDExOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcJ3nf0bKfbts6p2fxDbiidFTp Esgu+/1+iMsIu7t6qimXz8E3QBGB5C0884+4c4+j5nqcw/RrCRcDz0tIdVeirkVa ory57/DOQZ+dgCbs6/c1dgV5AVW/Z7xjlcdctZsbgLNf1NJjudPN75j0yZ8f8RBH g2QgPsR9OuI1OZGUXKjp8vx92q1vsqirzNbKGIk5OCp1MBrli84ywyE0D8XtVq8c HUgciyLcVDkomOt0CcZhP1SiEomQA6+frCC3uVDIq/smdpsAlc/tPVGMMwR+v59D +iiirhbCFBuWPuWyWvjt7l4lZC3tmcQ7/zqu139npOySlZ4IwNepWYu0hk6RAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyjofPfhGAs1OHALkNpaDWNygEYwwHwYDVR0j BBgwFoAUp4EgDajqXTTHQmQrHlAtZ6WyJ54wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDcwY2MzNy0xZmE2LTRmYTAtYTg4Yy00MDhhZWQyOGQ5YWEvMC9BNzgxMjAwREE4 RUE1RDM0Qzc0MjY0MkIxRTUwMkQ2N0E1QjIyNzlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc4MTIwMERBOEVBNUQzNEM3NDI2NDJCMUU1MDJENjdBNUIy Mjc5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkNzBjYzM3LTFmYTYtNGZhMC1h ODhjLTQwOGFlZDI4ZDlhYS8wLzMyMzAzMjJlMzUzMTJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMyMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozxjANBgkqhkiG 9w0BAQsFAAOCAQEAsjjKRn8BD1pwP5JKtQzGvV3hSrYLUQWcaN/f/AxROZDyOHDO zQGo7c4ub8xIbCZa+CXybeHrIZMbcvbTqzGuh3UnpZof1UcW3nQsSJb2wGo+viV0 FuNDIKXyU9TB4vzGllx0dd0tJyQFVZGFrbU1pn2b8B5psNzFCMNKGI1tAUtFl2e3 bAhNd0VRm3Ob+yYbtK9Rkk+37HphDNuJyvmjEsAelaSRhABc0ajf6Oy1uhnKbcme yCD2brIvj0iq/IzyY4HF1SKMNYjqeU2P9gN5p4Wa4+2YvTwVo2mkfOsb5VV373c0 71mdkQTvF1rqjXywN2YrdeYfTtD0//ASQQ/Pyg== -----END CERTIFICATE-----Generated at Thu Nov 28 18:50:07 2024 by rpki-client on console-ams.rpki-client.org