$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa File: 3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: BF2kNGqqMGuXEf5s5bpL5k8ADzYxq1Gxw3hsda3hiqk= Subject key identifier: 05:FF:A9:05:B8:C3:16:83:49:EC:CD:DD:D9:70:31:AF:EB:31:CB:4C Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 1A8D77824A9D0D0642F24FEC7A0BD7869FA769F9 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa Signing time: Mon 01 Jul 2024 01:03:46 +0000 ROA not before: Mon 01 Jul 2024 00:58:46 +0000 ROA not after: Mon 30 Jun 2025 01:03:46 +0000 asID: 131775 IP address blocks: 202.74.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:8d:77:82:4a:9d:0d:06:42:f2:4f:ec:7a:0b:d7:86:9f:a7:69:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jul 1 00:58:46 2024 GMT Not After : Jun 30 01:03:46 2025 GMT Subject: CN=05FFA905B8C3168349ECCDDDD97031AFEB31CB4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:94:cf:2f:eb:dc:be:9c:fd:a4:59:a5:34:e9: 08:13:79:f5:0e:50:0e:d5:5e:71:56:15:f2:c6:0e: 71:07:42:8f:96:b9:2e:f0:e5:a4:85:c9:13:8e:b0: 03:4d:c1:cb:15:1c:0a:41:a8:15:20:53:ed:af:2c: bd:2d:42:ab:49:8f:52:73:7c:0b:ab:bb:8d:c2:8f: a6:ce:bd:55:fa:15:83:32:c6:7f:95:df:f0:1d:88: f9:44:94:55:da:29:3d:fa:e1:17:2c:11:07:b4:1e: 72:06:03:68:46:52:10:98:9d:b4:8b:03:1b:03:7c: 3a:75:46:e6:00:73:85:9e:60:a8:c6:53:86:01:2d: 1d:e5:b1:42:9a:3b:e1:49:8f:7c:27:fb:10:4f:57: d2:38:1f:14:42:00:17:31:0e:72:cd:c2:33:78:30: 0a:3a:14:cb:73:2f:59:cf:ec:a0:ed:64:ef:19:54: be:06:2d:47:d8:ac:05:8f:46:04:8d:dc:3b:d4:20: 64:17:a5:5b:81:1f:2b:3d:11:e3:ff:38:9d:57:77: 87:06:9f:9f:0b:06:6a:a5:70:b3:aa:ee:e2:39:00: bd:86:44:f4:dd:76:fe:7b:48:d2:60:12:a3:55:3c: e5:ac:44:7c:72:f5:a7:20:13:fa:dc:d3:3d:a0:aa: 5d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FF:A9:05:B8:C3:16:83:49:EC:CD:DD:D9:70:31:AF:EB:31:CB:4C X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.239.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:31:ca:04:8f:f1:63:04:a8:5f:a3:ee:5b:70:ca:18:f1:84: 94:81:39:e0:2b:00:61:d6:1d:1b:2b:7e:7d:c7:8d:be:a4:ec: a1:35:69:92:ad:4a:fc:9a:ea:f7:69:2a:d6:dd:9a:25:cd:50: af:1d:2a:c0:a4:75:81:5e:22:24:91:c3:82:84:38:63:db:b1: d3:96:ee:15:f5:78:7c:cc:b1:4f:33:be:17:da:b3:95:07:31: 2d:fd:21:35:c4:d7:d7:11:e9:53:cc:bc:84:17:31:74:5b:89: e1:07:db:02:7f:a0:58:ee:12:24:8a:e1:1c:45:1e:29:8c:93: 7c:13:8d:07:e4:99:8e:bc:26:3e:88:8a:db:01:1e:ec:f2:a8: 9f:5d:db:c0:d6:36:bd:86:95:11:20:73:56:ac:d1:53:ce:52: 65:29:90:4c:44:79:43:71:4c:07:2a:09:ad:c0:af:74:75:bd: 73:e4:e2:ea:fe:c7:ce:fd:14:f7:96:00:fb:d3:0c:3b:1d:43: 59:71:04:fa:35:3a:e3:8f:7e:74:3d:b7:da:38:93:c9:72:f3: be:57:57:f5:ae:e6:e4:8c:1b:81:0c:68:81:e5:fa:e4:94:b6: d9:54:73:c7:39:0e:49:cb:82:89:8b:e9:7f:55:45:d5:e5:3e: 30:7b:a2:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGo13gkqdDQZC8k/segvXhp+nafkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNDA3MDEwMDU4NDZaFw0yNTA2MzAwMTAzNDZaMDMxMTAvBgNV BAMTKDA1RkZBOTA1QjhDMzE2ODM0OUVDQ0REREQ5NzAzMUFGRUIzMUNCNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSlM8v69y+nP2kWaU06QgTefUO UA7VXnFWFfLGDnEHQo+WuS7w5aSFyROOsANNwcsVHApBqBUgU+2vLL0tQqtJj1Jz fAuru43Cj6bOvVX6FYMyxn+V3/AdiPlElFXaKT364RcsEQe0HnIGA2hGUhCYnbSL AxsDfDp1RuYAc4WeYKjGU4YBLR3lsUKaO+FJj3wn+xBPV9I4HxRCABcxDnLNwjN4 MAo6FMtzL1nP7KDtZO8ZVL4GLUfYrAWPRgSN3DvUIGQXpVuBHys9EeP/OJ1Xd4cG n58LBmqlcLOq7uI5AL2GRPTddv57SNJgEqNVPOWsRHxy9acgE/rc0z2gql2pAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBf+pBbjDFoNJ7M3d2XAxr+sxy0wwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMyMzAzMjJlMzczNDJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykrvMA0GCSqG SIb3DQEBCwUAA4IBAQB/McoEj/FjBKhfo+5bcMoY8YSUgTngKwBh1h0bK359x42+ pOyhNWmSrUr8mur3aSrW3ZolzVCvHSrApHWBXiIkkcOChDhj27HTlu4V9Xh8zLFP M74X2rOVBzEt/SE1xNfXEelTzLyEFzF0W4nhB9sCf6BY7hIkiuEcRR4pjJN8E40H 5JmOvCY+iIrbAR7s8qifXdvA1ja9hpURIHNWrNFTzlJlKZBMRHlDcUwHKgmtwK90 db1z5OLq/sfO/RT3lgD70ww7HUNZcQT6NTrjj350PbfaOJPJcvO+V1f1rubkjBuB DGiB5frklLbZVHPHOQ5Jy4KJi+l/VUXV5T4we6Kj -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:40 2024 by rpki-client on console-fra.rpki-client.org