$ rpki-client -vvf repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa File: 3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa (raw, json) Hash identifier: JvnboqDPTnY6QyZ8I00ii7NZBebtgdLprTOOG9nDLXU= Subject key identifier: 76:5C:EB:62:30:31:BF:8D:BB:10:86:75:63:69:B9:64:93:64:1E:E3 Certificate issuer: /CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Certificate serial: 69D7D2E72ACC7A320DBEFB05CA3B34C9676D227B Authority key identifier: 3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa Signing time: Wed 13 Mar 2024 03:28:29 +0000 ROA not before: Wed 13 Mar 2024 03:23:29 +0000 ROA not after: Wed 12 Mar 2025 03:28:29 +0000 asID: 24207 IP address blocks: 203.153.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 09:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:d7:d2:e7:2a:cc:7a:32:0d:be:fb:05:ca:3b:34:c9:67:6d:22:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Validity Not Before: Mar 13 03:23:29 2024 GMT Not After : Mar 12 03:28:29 2025 GMT Subject: CN=765CEB623031BF8DBB1086756369B96493641EE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9b:cd:37:4d:4d:8d:56:e1:bf:4b:5e:74:f0: c7:91:20:0f:6d:fa:92:ad:91:ac:dd:18:8e:89:0e: 1f:bf:b7:93:b4:0e:a6:6a:5d:15:d9:81:23:d5:fd: 53:98:23:f3:15:2e:f8:60:9a:fa:56:bc:e1:7d:b2: 73:9a:0e:c7:b8:82:ca:dd:c1:7b:b8:65:6b:c3:08: f0:b1:47:c8:56:df:d9:13:4a:c8:ae:20:c5:70:e2: 86:b2:36:6e:75:fd:7b:d7:ac:7b:8f:a7:8b:8b:ad: bd:6d:7c:a8:35:bf:35:0f:7f:3b:0e:4e:39:5e:4c: 13:5a:23:33:05:88:9c:36:0d:9f:da:a4:d0:a9:2c: bf:42:6e:c6:cf:47:b9:bf:b4:3e:c2:f8:ea:a0:9d: 86:82:bd:9b:68:8e:4e:ea:e0:87:de:ee:92:49:fe: 95:e8:72:fa:ed:e7:eb:7a:80:44:eb:5c:97:04:3a: 19:3f:c3:2b:8f:e4:3f:59:0e:66:0f:1a:a3:d2:02: ef:e3:4a:10:8f:7d:ca:cf:c6:93:52:73:a0:d7:81: 09:f2:10:70:62:b7:ad:6e:c7:35:a6:ce:8f:34:be: e3:4d:5a:78:cb:d3:62:44:14:e4:0f:ea:78:16:49: d1:74:fc:09:c6:e0:9a:5d:d4:b8:49:2d:b4:d2:03: 03:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:5C:EB:62:30:31:BF:8D:BB:10:86:75:63:69:B9:64:93:64:1E:E3 X509v3 Authority Key Identifier: keyid:3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e3131322e302f32312d3234203d3e203234323037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.112.0/21 Signature Algorithm: sha256WithRSAEncryption 65:0c:17:18:9e:d6:a4:92:af:50:0c:2a:f0:0e:88:5e:4b:dd: 6f:78:c7:01:ee:a7:74:af:45:e5:d4:74:51:f4:ad:ae:78:bb: 8d:55:1d:c2:4f:a2:c4:eb:55:4e:a6:4a:31:f0:2b:f1:96:43: 36:5a:63:fc:ac:4d:a9:67:25:18:c6:11:54:56:67:8c:9b:eb: 2e:4f:3e:0b:86:a8:47:66:bb:00:dc:33:15:a9:7f:7d:8f:49: a5:66:5c:d9:52:71:19:1f:ff:1a:54:48:ae:67:70:38:ba:d8: 54:24:f4:ed:08:01:05:fb:19:ba:14:a1:56:3a:b3:3a:84:31: 80:8f:eb:9d:fb:f8:1c:33:d7:7a:18:d9:f3:69:72:3e:fe:e9: c4:d9:84:67:20:17:bc:55:40:2f:f9:56:74:44:8e:a5:57:a5: b0:31:48:c7:1a:32:2d:8f:3b:d1:f2:e3:21:e5:5d:5e:27:7a: 61:c7:45:26:e7:12:d7:3e:0b:6c:41:4a:45:6a:9b:2b:be:09: 83:23:28:dd:e4:86:99:ea:79:f4:16:be:3b:a2:3b:fb:a0:b3: 56:d1:88:f4:0c:6e:66:5a:72:7e:0e:9b:25:9b:8b:4d:c1:3b: a1:a2:13:8b:aa:85:80:81:e9:c5:d8:b9:11:3f:c6:95:24:18: ae:e2:57:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUadfS5yrMejINvvsFyjs0yWdtInswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVC RjBBRkIwRjAeFw0yNDAzMTMwMzIzMjlaFw0yNTAzMTIwMzI4MjlaMDMxMTAvBgNV BAMTKDc2NUNFQjYyMzAzMUJGOERCQjEwODY3NTYzNjlCOTY0OTM2NDFFRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDem803TU2NVuG/S1508MeRIA9t +pKtkazdGI6JDh+/t5O0DqZqXRXZgSPV/VOYI/MVLvhgmvpWvOF9snOaDse4gsrd wXu4ZWvDCPCxR8hW39kTSsiuIMVw4oayNm51/XvXrHuPp4uLrb1tfKg1vzUPfzsO TjleTBNaIzMFiJw2DZ/apNCpLL9CbsbPR7m/tD7C+OqgnYaCvZtojk7q4Ife7pJJ /pXocvrt5+t6gETrXJcEOhk/wyuP5D9ZDmYPGqPSAu/jShCPfcrPxpNSc6DXgQny EHBit61uxzWmzo80vuNNWnjL02JEFOQP6ngWSdF0/AnG4Jpd1LhJLbTSAwNLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdlzrYjAxv427EIZ1Y2m5ZJNkHuMwHwYDVR0j BBgwFoAUPHkP5KuCosFQF9JlcUsSRb8K+w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzdlODA4MS02M2FmLTQ5ZTctOTY0Ni03NmMyNWE1ZTk3Y2EvMC8zQzc5MEZFNEFC ODJBMkMxNTAxN0QyNjU3MTRCMTI0NUJGMEFGQjBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVCRjBB RkIwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjN2U4MDgxLTYzYWYtNDllNy05 NjQ2LTc2YzI1YTVlOTdjYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMxMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjM0MzIzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy5lwMA0GCSqG SIb3DQEBCwUAA4IBAQBlDBcYntakkq9QDCrwDoheS91veMcB7qd0r0Xl1HRR9K2u eLuNVR3CT6LE61VOpkox8CvxlkM2WmP8rE2pZyUYxhFUVmeMm+suTz4LhqhHZrsA 3DMVqX99j0mlZlzZUnEZH/8aVEiuZ3A4uthUJPTtCAEF+xm6FKFWOrM6hDGAj+ud +/gcM9d6GNnzaXI+/unE2YRnIBe8VUAv+VZ0RI6lV6WwMUjHGjItjzvR8uMh5V1e J3phx0Um5xLXPgtsQUpFapsrvgmDIyjd5IaZ6nn0Fr47ojv7oLNW0Yj0DG5mWnJ+ Dpslm4tNwTuhohOLqoWAgenF2LkRP8aVJBiu4leF -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org