$ rpki-client -vvf repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3230322e38372e3234382e302f32312d3234203d3e203234323031.roa File: 3230322e38372e3234382e302f32312d3234203d3e203234323031.roa (raw, json) Hash identifier: ZpaZ1h8xeKIsIrV76hElUTMZqZsH2rY4dhMeG3R7GRU= Subject key identifier: 33:26:20:FC:DE:29:27:30:7C:96:60:67:9D:71:F9:8E:42:DE:F0:3D Certificate issuer: /CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F Certificate serial: 7FE6262F4EDC07EB6A81DCB5F5018D9B4011FE8F Authority key identifier: 8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3230322e38372e3234382e302f32312d3234203d3e203234323031.roa Signing time: Sat 20 Apr 2024 08:00:01 +0000 ROA not before: Sat 20 Apr 2024 07:55:01 +0000 ROA not after: Sat 19 Apr 2025 08:00:01 +0000 asID: 24201 IP address blocks: 202.87.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.crl rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:e6:26:2f:4e:dc:07:eb:6a:81:dc:b5:f5:01:8d:9b:40:11:fe:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F Validity Not Before: Apr 20 07:55:01 2024 GMT Not After : Apr 19 08:00:01 2025 GMT Subject: CN=332620FCDE2927307C9660679D71F98E42DEF03D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:47:1b:a9:46:02:01:a9:1f:f5:1a:13:ee:f1: 70:c8:ac:2f:d9:69:06:23:a8:5f:25:fc:da:4c:9f: 83:44:94:1b:93:11:2e:d0:f2:ff:f7:d0:76:b1:75: dd:1f:ec:ad:f8:82:28:bc:50:0c:09:0f:b3:01:6b: be:f5:bf:f0:f6:25:86:10:ef:24:43:37:09:d9:f3: a1:4e:d1:d1:db:df:a1:d2:64:fb:da:a7:1a:77:3b: 21:68:82:64:d1:4f:28:e0:66:82:7e:cf:f2:bc:e6: 85:d7:f1:cb:f6:8d:b7:52:1b:55:44:6b:ec:ad:ad: 5e:6e:b5:36:df:38:75:20:ba:7e:56:f0:f6:e7:47: 3a:d8:59:38:60:00:97:8a:ef:6c:cf:4c:65:ef:61: 8b:e0:29:f5:15:51:a6:bf:3b:7f:a9:f2:75:93:78: ff:7e:eb:06:57:71:d3:cd:65:66:d8:04:04:2c:03: f3:92:ff:74:50:92:fb:ea:a0:83:6d:72:b1:08:46: 8d:57:c6:7f:c7:7f:1d:6c:7e:08:21:02:d4:98:59: 8b:7f:35:81:d5:1f:8b:90:3f:25:9e:ff:01:e0:3c: 0d:f3:d9:d1:97:85:3c:70:f7:20:2d:01:e4:96:bb: 5b:cb:cd:1c:5c:64:73:43:49:63:d1:55:60:87:2f: a4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:26:20:FC:DE:29:27:30:7C:96:60:67:9D:71:F9:8E:42:DE:F0:3D X509v3 Authority Key Identifier: keyid:8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/3230322e38372e3234382e302f32312d3234203d3e203234323031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.87.248.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:63:91:53:42:38:1f:42:51:70:9c:bf:41:79:eb:fb:1e:77: ea:8a:60:13:48:fe:b6:35:97:74:3e:87:ca:27:a1:56:f3:ea: 41:19:28:d9:34:35:bd:78:86:a1:da:0a:91:07:f7:b2:8d:6a: 0c:c3:34:75:3b:b4:75:81:8c:7f:87:e8:a0:ce:e5:d4:02:1c: 4b:ec:ea:c2:d6:cf:6c:ad:90:c6:f1:1d:17:6d:1c:f1:3f:2c: a3:3a:0c:ec:10:7f:27:4c:b2:e4:06:22:04:a8:df:f8:04:70: 07:e2:c9:d1:0f:0b:37:53:f7:f0:7a:7b:68:88:70:33:da:93: 4f:e1:9a:c5:63:eb:04:1b:b8:d3:47:17:73:28:54:b6:d3:32: ae:ac:3c:51:dd:be:01:e1:e2:31:c5:99:d2:19:84:7a:f3:b3: 0a:cc:bf:41:66:e8:49:00:34:fb:f5:b3:da:2f:76:1b:51:8c: 92:f8:dc:6b:6a:58:28:ce:b6:18:e9:be:3c:48:1c:2b:8b:13: 7d:cd:18:6a:fc:ca:24:48:64:2d:cb:b0:5f:16:8e:ef:f1:5a: 0b:db:23:8d:e3:79:64:99:13:d9:37:79:4a:bd:33:8d:7a:e1: fd:4a:1f:89:fe:32:59:60:b8:5c:f4:85:3c:dc:b8:33:d2:19: b2:14:7d:1c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf+YmL07cB+tqgdy19QGNm0AR/o8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1 Q0Y0OEY5RjAeFw0yNDA0MjAwNzU1MDFaFw0yNTA0MTkwODAwMDFaMDMxMTAvBgNV BAMTKDMzMjYyMEZDREUyOTI3MzA3Qzk2NjA2NzlENzFGOThFNDJERUYwM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3RxupRgIBqR/1GhPu8XDIrC/Z aQYjqF8l/NpMn4NElBuTES7Q8v/30Haxdd0f7K34gii8UAwJD7MBa771v/D2JYYQ 7yRDNwnZ86FO0dHb36HSZPvapxp3OyFogmTRTyjgZoJ+z/K85oXX8cv2jbdSG1VE a+ytrV5utTbfOHUgun5W8PbnRzrYWThgAJeK72zPTGXvYYvgKfUVUaa/O3+p8nWT eP9+6wZXcdPNZWbYBAQsA/OS/3RQkvvqoINtcrEIRo1Xxn/Hfx1sfgghAtSYWYt/ NYHVH4uQPyWe/wHgPA3z2dGXhTxw9yAtAeSWu1vLzRxcZHNDSWPRVWCHL6TNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMyYg/N4pJzB8lmBnnXH5jkLe8D0wHwYDVR0j BBgwFoAUig92Wb5skWcCmU8bZTymM1z0j58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MGE5MjljNi0xZTI1LTQ5NGEtYjBmOS01NWZjNGZjOTRmYmMvMC84QTBGNzY1OUJF NkM5MTY3MDI5OTRGMUI2NTNDQTYzMzVDRjQ4RjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1Q0Y0 OEY5Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwYTkyOWM2LTFlMjUtNDk0YS1i MGY5LTU1ZmM0ZmM5NGZiYy8wLzMyMzAzMjJlMzgzNzJlMzIzNDM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8pX+DANBgkqhkiG 9w0BAQsFAAOCAQEAS2ORU0I4H0JRcJy/QXnr+x536opgE0j+tjWXdD6HyiehVvPq QRko2TQ1vXiGodoKkQf3so1qDMM0dTu0dYGMf4fooM7l1AIcS+zqwtbPbK2QxvEd F20c8T8sozoM7BB/J0yy5AYiBKjf+ARwB+LJ0Q8LN1P38Hp7aIhwM9qTT+GaxWPr BBu400cXcyhUttMyrqw8Ud2+AeHiMcWZ0hmEevOzCsy/QWboSQA0+/Wz2i92G1GM kvjca2pYKM62GOm+PEgcK4sTfc0YavzKJEhkLcuwXxaO7/FaC9sjjeN5ZJkT2Td5 Sr0zjXrh/Uofif4yWWC4XPSFPNy4M9IZshR9HA== -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:34 2024 by rpki-client on console-ams.rpki-client.org