$ rpki-client -vvf repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e39362e302f32302d3234203d3e203234323037.roa File: 3230332e3135332e39362e302f32302d3234203d3e203234323037.roa (raw, json) Hash identifier: Ch9kb0gfgSph6mketqEn1fzFFFRNc5Wq+2hb3B5I9EY= Subject key identifier: C7:84:07:71:29:AD:88:F5:7E:E9:88:A5:E3:F3:A1:CA:2B:A7:0E:49 Certificate issuer: /CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Certificate serial: 1F592DEF1CDB8F3C32666742ECC47C3634FB3E83 Authority key identifier: 3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e39362e302f32302d3234203d3e203234323037.roa Signing time: Wed 13 Mar 2024 03:28:00 +0000 ROA not before: Wed 13 Mar 2024 03:23:00 +0000 ROA not after: Wed 12 Mar 2025 03:28:00 +0000 asID: 24207 IP address blocks: 203.153.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 09:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:59:2d:ef:1c:db:8f:3c:32:66:67:42:ec:c4:7c:36:34:fb:3e:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Validity Not Before: Mar 13 03:23:00 2024 GMT Not After : Mar 12 03:28:00 2025 GMT Subject: CN=C784077129AD88F57EE988A5E3F3A1CA2BA70E49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:22:bd:bb:64:9e:38:8b:f0:69:1f:2f:ad:8d: 28:d5:8e:a5:74:db:c0:8a:b7:fb:56:70:84:81:d8: cb:0f:ec:10:1e:8f:e0:1c:25:30:aa:fd:bc:1f:77: 73:ac:d7:1f:50:a7:9c:57:cc:ca:a9:fb:31:5c:15: 26:2a:ab:3c:c8:8e:49:12:13:e1:09:5f:79:8c:29: 84:fd:7a:bf:63:19:0f:8d:82:ce:07:2e:4e:fa:ac: ae:44:74:b5:18:df:50:32:5f:5b:ce:e0:ae:16:4e: 0c:8d:a5:7a:ad:d9:78:4c:25:7f:b3:a2:b4:af:a4: 1e:9b:b3:c3:4f:96:a4:94:41:36:50:57:f0:7d:48: a7:0c:b4:8e:4d:2e:44:b3:9b:8e:62:f5:c3:e0:93: f9:1c:72:b1:99:b5:b6:d4:f4:17:a8:be:97:65:f7: 42:35:10:82:6d:0f:06:1f:04:48:9c:a8:ba:eb:5c: 7a:a8:a6:c2:30:c8:76:39:b8:dc:7b:2c:35:15:82: 06:55:3a:17:69:72:70:d0:2d:c9:c2:c8:b1:cc:0b: 51:4f:1d:81:0d:d0:46:61:1b:24:fe:69:94:8b:c7: 73:20:4e:18:6f:38:27:e6:45:53:2c:b0:d7:06:f8: d2:2b:f5:2e:e2:39:42:5e:b1:c4:f6:61:ca:0a:a8: a0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:84:07:71:29:AD:88:F5:7E:E9:88:A5:E3:F3:A1:CA:2B:A7:0E:49 X509v3 Authority Key Identifier: keyid:3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3230332e3135332e39362e302f32302d3234203d3e203234323037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.96.0/20 Signature Algorithm: sha256WithRSAEncryption 6b:cd:78:bc:48:a8:79:0e:18:1a:c5:09:09:f1:b5:8b:de:f2: 3a:29:91:eb:d6:87:fc:cc:a6:02:d7:f9:a9:fe:62:dd:02:56: 0a:6f:e0:da:3a:98:1f:d1:da:ef:31:20:33:1e:08:eb:53:b8: 80:7a:5d:01:2f:d2:1f:7f:62:3c:c9:f0:05:c5:de:92:59:19: e6:6e:09:d4:83:86:38:e8:ae:da:d7:0a:d7:0c:38:b8:b0:82: c8:22:d2:85:d0:40:ab:22:34:bc:c9:2d:4b:e9:b3:03:03:b9: a7:fe:17:be:07:c4:29:38:96:12:d9:45:9f:be:57:42:71:ea: fb:31:72:16:3c:bc:32:2f:5f:68:4e:f3:9c:1f:34:cc:fb:df: 6b:0e:eb:d7:13:03:86:8d:e2:35:04:6d:28:e5:48:96:67:12: 32:64:de:fb:cf:c0:cb:dd:6e:0c:56:98:a6:83:ba:3c:9f:be: d2:12:61:db:12:69:fb:73:bd:f2:ca:77:13:83:95:8f:29:0c: 07:1f:98:68:ae:6c:96:ea:17:dd:d3:83:00:42:06:cb:22:c4: 5a:ed:bd:d6:48:5e:e6:a2:e6:41:70:8c:de:09:96:5d:26:38: ca:90:71:98:4e:a9:ee:24:ee:69:9b:fb:ac:9f:cb:4d:0b:90: 3e:48:de:12 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH1kt7xzbjzwyZmdC7MR8NjT7PoMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVC RjBBRkIwRjAeFw0yNDAzMTMwMzIzMDBaFw0yNTAzMTIwMzI4MDBaMDMxMTAvBgNV BAMTKEM3ODQwNzcxMjlBRDg4RjU3RUU5ODhBNUUzRjNBMUNBMkJBNzBFNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGIr27ZJ44i/BpHy+tjSjVjqV0 28CKt/tWcISB2MsP7BAej+AcJTCq/bwfd3Os1x9Qp5xXzMqp+zFcFSYqqzzIjkkS E+EJX3mMKYT9er9jGQ+Ngs4HLk76rK5EdLUY31AyX1vO4K4WTgyNpXqt2XhMJX+z orSvpB6bs8NPlqSUQTZQV/B9SKcMtI5NLkSzm45i9cPgk/kccrGZtbbU9Beovpdl 90I1EIJtDwYfBEicqLrrXHqopsIwyHY5uNx7LDUVggZVOhdpcnDQLcnCyLHMC1FP HYEN0EZhGyT+aZSLx3MgThhvOCfmRVMssNcG+NIr9S7iOUJescT2YcoKqKD1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUx4QHcSmtiPV+6Yil4/OhyiunDkkwHwYDVR0j BBgwFoAUPHkP5KuCosFQF9JlcUsSRb8K+w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzdlODA4MS02M2FmLTQ5ZTctOTY0Ni03NmMyNWE1ZTk3Y2EvMC8zQzc5MEZFNEFC ODJBMkMxNTAxN0QyNjU3MTRCMTI0NUJGMEFGQjBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVCRjBB RkIwRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjN2U4MDgxLTYzYWYtNDllNy05 NjQ2LTc2YzI1YTVlOTdjYS8wLzMyMzAzMzJlMzEzNTMzMmUzOTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMuZYDANBgkqhkiG 9w0BAQsFAAOCAQEAa814vEioeQ4YGsUJCfG1i97yOimR69aH/MymAtf5qf5i3QJW Cm/g2jqYH9Ha7zEgMx4I61O4gHpdAS/SH39iPMnwBcXeklkZ5m4J1IOGOOiu2tcK 1ww4uLCCyCLShdBAqyI0vMktS+mzAwO5p/4XvgfEKTiWEtlFn75XQnHq+zFyFjy8 Mi9faE7znB80zPvfaw7r1xMDho3iNQRtKOVIlmcSMmTe+8/Ay91uDFaYpoO6PJ++ 0hJh2xJp+3O98sp3E4OVjykMBx+YaK5sluoX3dODAEIGyyLEWu291khe5qLmQXCM 3gmWXSY4ypBxmE6p7iTuaZv7rJ/LTQuQPkjeEg== -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org