$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32352e302f32342d3234203d3e20313431383932.roa File: 3230322e37332e32352e302f32342d3234203d3e20313431383932.roa (raw, json) Hash identifier: Z2l2ZyXPPHRZ6RP/3te2bf9kifPjyXPHeMeGoiNzGwI= Subject key identifier: A1:0C:03:7D:5D:80:09:B9:E2:05:27:7E:14:DE:DE:3A:72:70:D0:62 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 264F07F67DE5AA27E99E0A5F74FD87D245AB7F08 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32352e302f32342d3234203d3e20313431383932.roa Signing time: Wed 06 Dec 2023 02:00:02 +0000 ROA not before: Wed 06 Dec 2023 01:55:02 +0000 ROA not after: Wed 04 Dec 2024 02:00:02 +0000 asID: 141892 IP address blocks: 202.73.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:4f:07:f6:7d:e5:aa:27:e9:9e:0a:5f:74:fd:87:d2:45:ab:7f:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Dec 6 01:55:02 2023 GMT Not After : Dec 4 02:00:02 2024 GMT Subject: CN=A10C037D5D8009B9E205277E14DEDE3A7270D062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:21:7e:6e:be:6b:51:8b:e4:be:b9:e7:bb:87: 19:22:6d:5b:4f:e5:d0:eb:6e:0a:80:93:92:70:22: 96:69:aa:78:9b:ec:44:78:d2:1e:17:7e:37:19:98: 1b:8c:37:fe:d1:59:19:4e:8e:df:42:1f:8f:17:30: 71:c5:4a:b9:fd:b3:34:7c:fe:45:fe:c1:ba:18:cb: da:3d:e9:c7:93:df:0b:d4:ba:68:cb:ae:7f:12:e5: 62:96:3e:75:f3:fa:db:dd:06:02:c0:5f:bd:cb:de: bc:86:8b:bb:06:60:f6:03:6a:20:bd:8b:ef:a3:ba: 32:c4:98:68:ab:44:58:65:ef:97:f5:9b:50:f5:05: a2:df:54:f0:90:48:77:99:06:08:08:96:0a:08:0a: 2a:da:16:d2:11:c9:e6:42:af:5d:6d:12:98:f3:49: fc:ec:bd:33:18:82:b2:a6:cc:cd:3c:be:7f:35:e6: 40:1a:7d:72:ba:0a:ed:f7:0a:8d:37:b2:1c:d1:c8: fc:d4:9d:1b:04:71:af:c4:da:bc:35:0d:27:71:78: ed:48:a6:5b:3c:8e:dd:2d:31:25:8c:44:f8:b3:63: 31:e6:1f:d2:e2:1e:90:c5:1b:47:a7:37:49:db:e3: 18:14:49:f3:10:99:44:d7:f6:83:47:92:aa:9d:25: 53:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:0C:03:7D:5D:80:09:B9:E2:05:27:7E:14:DE:DE:3A:72:70:D0:62 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32352e302f32342d3234203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.25.0/24 Signature Algorithm: sha256WithRSAEncryption 12:5b:9e:cc:79:c1:5f:95:c0:7d:e0:9f:e7:2f:bc:1a:f6:bd: 19:72:8e:16:88:2a:25:5e:12:01:c3:43:a1:5b:95:ad:51:b6: c0:ff:4c:10:a5:ee:2f:f8:55:55:e9:48:ec:53:7a:b4:13:26: 1d:08:d8:f0:a7:1f:53:59:07:9b:d6:94:23:3f:17:59:df:9e: d5:5e:1a:ff:cd:e7:05:78:da:dc:88:1f:c1:1c:16:5b:7d:05: 22:94:f8:8b:6e:15:ca:e9:3b:73:75:66:4c:90:b5:a6:9f:59: e8:3e:2b:c2:b7:14:ac:10:90:14:b3:d1:4b:dc:48:01:00:f6: e2:0d:7e:31:4b:c3:db:76:55:74:94:8f:d1:b3:3e:69:17:27: fb:59:70:a8:ad:40:aa:2a:03:1e:98:1a:23:b9:e5:4d:1d:14: 2b:ba:1b:d9:a9:b6:48:71:02:7a:81:85:18:b4:c4:fa:42:fa: f5:51:98:9b:93:3c:48:b8:89:36:83:eb:32:42:e2:1f:f8:e5: 1a:f6:ad:47:15:82:0b:a7:64:3c:2a:1a:13:f3:c1:9d:58:f9: f8:47:f9:e1:d0:7d:b8:54:60:b4:49:d5:f6:bf:83:c9:8e:6a: 99:d5:a3:04:26:bd:6b:1e:53:e3:a8:3c:71:60:67:c5:11:50: 9a:c7:cf:04 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJk8H9n3lqifpngpfdP2H0kWrfwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzEyMDYwMTU1MDJaFw0yNDEyMDQwMjAwMDJaMDMxMTAvBgNV BAMTKEExMEMwMzdENUQ4MDA5QjlFMjA1Mjc3RTE0REVERTNBNzI3MEQwNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUIX5uvmtRi+S+uee7hxkibVtP 5dDrbgqAk5JwIpZpqnib7ER40h4XfjcZmBuMN/7RWRlOjt9CH48XMHHFSrn9szR8 /kX+wboYy9o96ceT3wvUumjLrn8S5WKWPnXz+tvdBgLAX73L3ryGi7sGYPYDaiC9 i++jujLEmGirRFhl75f1m1D1BaLfVPCQSHeZBggIlgoICiraFtIRyeZCr11tEpjz SfzsvTMYgrKmzM08vn815kAafXK6Cu33Co03shzRyPzUnRsEca/E2rw1DSdxeO1I pls8jt0tMSWMRPizYzHmH9LiHpDFG0enN0nb4xgUSfMQmUTX9oNHkqqdJVPzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoQwDfV2ACbniBSd+FN7eOnJw0GIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpJGTANBgkqhkiG 9w0BAQsFAAOCAQEAEluezHnBX5XAfeCf5y+8Gva9GXKOFogqJV4SAcNDoVuVrVG2 wP9MEKXuL/hVVelI7FN6tBMmHQjY8KcfU1kHm9aUIz8XWd+e1V4a/83nBXja3Igf wRwWW30FIpT4i24Vyuk7c3VmTJC1pp9Z6D4rwrcUrBCQFLPRS9xIAQD24g1+MUvD 23ZVdJSP0bM+aRcn+1lwqK1AqioDHpgaI7nlTR0UK7ob2am2SHECeoGFGLTE+kL6 9VGYm5M8SLiJNoPrMkLiH/jlGvatRxWCC6dkPCoaE/PBnVj5+Ef54dB9uFRgtEnV 9r+DyY5qmdWjBCa9ax5T46g8cWBnxRFQmsfPBA== -----END CERTIFICATE-----Generated at Sun Apr 28 15:43:44 2024 by rpki-client on console-fra.rpki-client.org