$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233372e302f32342d3234203d3e20313331373735.roa File: 3230322e37342e3233372e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: cpgUeqRDuD4c5Z0Mv8XyiCTz5vsSxPfvYDEilaB14cw= Subject key identifier: 47:3B:C1:AB:93:33:B9:27:D2:75:F9:08:25:5C:FE:ED:72:94:85:12 Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 618883B1E4CF163E2F9793B253AA98366E1BCA43 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233372e302f32342d3234203d3e20313331373735.roa Signing time: Mon 01 Jul 2024 01:03:47 +0000 ROA not before: Mon 01 Jul 2024 00:58:47 +0000 ROA not after: Mon 30 Jun 2025 01:03:47 +0000 asID: 131775 IP address blocks: 202.74.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:88:83:b1:e4:cf:16:3e:2f:97:93:b2:53:aa:98:36:6e:1b:ca:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jul 1 00:58:47 2024 GMT Not After : Jun 30 01:03:47 2025 GMT Subject: CN=473BC1AB9333B927D275F908255CFEED72948512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:35:e4:93:f0:48:99:7b:77:be:4a:92:b6:ff: 95:37:0d:71:1a:6c:58:9d:6a:42:a9:5d:7a:7b:2d: 01:f1:53:32:7e:d0:be:a0:f6:47:42:18:95:7a:de: 6a:2a:ec:99:45:49:bc:63:d3:69:1e:e2:b8:f1:a9: b1:bf:d0:9b:03:66:8e:e8:01:b9:97:09:70:24:c8: 9a:51:7d:ca:af:dd:a1:c0:68:22:5c:20:07:21:89: df:dd:27:1f:8b:b2:15:be:97:fe:fe:e2:4f:f4:7e: ff:57:5c:11:3e:41:0a:30:cc:15:12:07:d6:d7:e4: a0:e5:49:c2:de:d0:46:22:a6:73:1c:24:26:78:4d: 8e:86:ce:ad:5e:3a:5f:7c:d8:99:b3:d6:6f:8b:8e: 27:83:d5:5b:36:d2:f6:48:f6:1b:16:d1:8e:f9:f7: d9:78:8c:83:b1:31:f7:70:6f:2d:a3:57:0e:9f:9b: 46:ba:50:72:e2:da:e3:15:26:30:5e:3f:c9:de:84: a6:2f:71:1d:5c:e5:f0:67:8b:ad:34:f1:84:c3:2d: 50:c0:cd:48:c8:c7:3b:67:2f:06:93:3f:db:74:7a: 98:05:02:b6:7c:0f:d9:1b:a9:c0:ea:ce:5c:7a:b6: dd:f3:19:72:79:63:08:df:8d:c2:e5:31:87:4d:e0: f0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3B:C1:AB:93:33:B9:27:D2:75:F9:08:25:5C:FE:ED:72:94:85:12 X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233372e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.237.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:1a:c2:10:71:26:05:c0:11:52:11:b5:6b:33:ae:01:2d:9e: 31:04:e7:b9:90:45:d7:13:3d:0b:fa:24:2a:ff:e7:8d:71:35: 6e:d9:6c:dd:bb:14:4f:90:11:57:52:ea:8f:9a:d0:b8:78:30: ac:03:3a:23:9d:37:d4:cd:bd:18:75:f2:d0:eb:d6:c3:b4:37: 1b:3a:d6:97:73:d4:04:62:36:4e:74:fe:cd:e7:3f:2e:d8:c1: 52:3d:6a:52:00:59:c8:8e:46:54:ba:0c:63:e5:ce:2c:fa:cf: b4:35:08:9c:e9:6a:8b:2a:3c:5b:6f:2f:61:4f:95:ef:ac:59: 93:b0:a9:57:92:44:f8:48:54:3c:d9:09:d0:d2:01:4d:79:97: 6e:91:22:8e:c0:a7:d2:8c:44:e7:cc:2a:26:73:95:fd:19:0f: 92:72:f0:f6:14:d4:82:7c:a8:b0:35:f5:23:01:e8:d2:f9:7d: b1:39:e9:0e:d2:f2:f8:ed:76:a3:e6:c7:2e:05:e5:d4:2d:01: 4c:84:fd:b1:43:93:ec:3c:69:e1:95:9f:a3:60:e7:8a:5e:ac: 8a:1c:fb:f4:74:b8:97:94:8d:82:12:8d:b5:2a:ed:07:35:ae: 1f:2d:c1:38:fb:4c:4d:cd:14:b7:8b:6e:a0:6b:6d:e1:2e:71: d7:ce:86:cd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYYiDseTPFj4vl5OyU6qYNm4bykMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNDA3MDEwMDU4NDdaFw0yNTA2MzAwMTAzNDdaMDMxMTAvBgNV BAMTKDQ3M0JDMUFCOTMzM0I5MjdEMjc1RjkwODI1NUNGRUVENzI5NDg1MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmNeST8EiZe3e+SpK2/5U3DXEa bFidakKpXXp7LQHxUzJ+0L6g9kdCGJV63moq7JlFSbxj02ke4rjxqbG/0JsDZo7o AbmXCXAkyJpRfcqv3aHAaCJcIAchid/dJx+LshW+l/7+4k/0fv9XXBE+QQowzBUS B9bX5KDlScLe0EYipnMcJCZ4TY6Gzq1eOl982Jmz1m+LjieD1Vs20vZI9hsW0Y75 99l4jIOxMfdwby2jVw6fm0a6UHLi2uMVJjBeP8nehKYvcR1c5fBni6008YTDLVDA zUjIxztnLwaTP9t0epgFArZ8D9kbqcDqzlx6tt3zGXJ5YwjfjcLlMYdN4PALAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURzvBq5MzuSfSdfkIJVz+7XKUhRIwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMyMzAzMjJlMzczNDJlMzIzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykrtMA0GCSqG SIb3DQEBCwUAA4IBAQBdGsIQcSYFwBFSEbVrM64BLZ4xBOe5kEXXEz0L+iQq/+eN cTVu2WzduxRPkBFXUuqPmtC4eDCsAzojnTfUzb0YdfLQ69bDtDcbOtaXc9QEYjZO dP7N5z8u2MFSPWpSAFnIjkZUugxj5c4s+s+0NQic6WqLKjxbby9hT5XvrFmTsKlX kkT4SFQ82QnQ0gFNeZdukSKOwKfSjETnzComc5X9GQ+ScvD2FNSCfKiwNfUjAejS +X2xOekO0vL47Xaj5scuBeXULQFMhP2xQ5PsPGnhlZ+jYOeKXqyKHPv0dLiXlI2C Eo21Ku0HNa4fLcE4+0xNzRS3i26ga23hLnHXzobN -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:40 2024 by rpki-client on console-fra.rpki-client.org