$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33352e302f32342d3234203d3e203538343837.roa File: 3230322e31302e33352e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: K0X2m7XWrcQFpNIBKStq5Yc0KV77wKgNSaDYE2UNTjI= Subject key identifier: 9E:43:CA:D2:EA:BE:60:D1:7D:BF:85:9C:37:96:FF:BC:48:1E:8A:FD Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 6E52AE861C1AD23FD91FB04115D4A81C8D69FB89 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33352e302f32342d3234203d3e203538343837.roa Signing time: Thu 11 Apr 2024 09:02:30 +0000 ROA not before: Thu 11 Apr 2024 08:57:30 +0000 ROA not after: Thu 10 Apr 2025 09:02:30 +0000 asID: 58487 IP address blocks: 202.10.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:52:ae:86:1c:1a:d2:3f:d9:1f:b0:41:15:d4:a8:1c:8d:69:fb:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Apr 11 08:57:30 2024 GMT Not After : Apr 10 09:02:30 2025 GMT Subject: CN=9E43CAD2EABE60D17DBF859C3796FFBC481E8AFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:40:fd:d5:5c:b8:82:49:17:93:74:92:ac:f2: bf:ea:6f:c6:e6:6b:40:4f:d9:42:d8:2b:cd:ac:78: 7d:8e:9e:73:9a:43:96:96:c9:d2:68:c1:b9:d4:3c: 07:fb:94:7c:da:31:87:0e:86:87:25:69:6e:b0:4f: cb:ac:d5:4d:2f:cf:30:c7:00:21:a1:e6:05:8b:73: 12:8d:80:1e:a3:05:fb:3e:93:04:0a:22:2f:88:25: 54:09:f1:5b:8f:16:00:7b:e7:53:e3:98:89:15:4c: 6e:4b:02:f1:d0:b8:a5:5e:7d:12:8d:16:9c:ea:12: 82:8e:d3:47:4f:27:ff:97:ac:56:e6:d3:b4:9b:6a: 53:c0:3f:22:1d:81:82:4d:bf:c8:74:5b:38:4f:7c: 96:38:1b:97:69:3a:5b:63:8d:b1:de:d0:17:5d:7a: 5d:b1:19:cf:d3:a6:b5:32:3c:7a:de:db:6d:69:32: fb:81:3d:44:b2:3e:1c:bd:8a:a6:92:b6:31:ca:0e: 9e:39:d9:6b:54:4b:e4:00:28:ae:62:a8:a0:94:72: 3d:0e:99:dc:b6:66:78:0b:7c:4d:fc:3d:a2:c5:39: 75:e6:0b:4e:de:82:ed:14:54:74:9f:56:46:70:eb: 1b:4e:1a:f2:65:35:74:0d:d0:c4:d1:00:70:7e:94: 09:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:43:CA:D2:EA:BE:60:D1:7D:BF:85:9C:37:96:FF:BC:48:1E:8A:FD X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33352e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.35.0/24 Signature Algorithm: sha256WithRSAEncryption 56:97:ba:dd:ea:ce:5b:7a:3a:dc:5f:62:1c:3a:e8:fd:7e:3e: 49:56:36:a9:b0:77:01:a6:e1:a5:cf:d6:98:e0:46:be:7b:52: cc:d1:56:fb:5d:20:5c:f3:4f:7f:19:ce:d4:fa:0c:f0:38:fd: 43:f6:ce:5d:a2:1a:98:f2:d3:d8:79:5d:1e:36:0b:1a:11:4c: 6f:0c:ef:b1:7d:b7:80:0f:1f:0c:57:41:d2:49:39:40:51:38: b9:12:61:67:99:37:0c:71:0b:07:eb:97:1a:5b:20:f2:b2:43: 84:d6:8a:5a:04:bb:0d:85:46:ae:c0:ea:bb:ee:26:e5:22:22: 8b:95:6a:c5:76:f6:22:98:4d:8f:8a:80:af:80:c6:83:ac:4c: 76:2b:94:04:e9:73:da:4f:ae:6e:4e:37:f8:d1:62:82:c8:98: c6:19:fe:b6:8f:7c:b5:fb:73:48:29:96:3c:d1:bb:a2:b7:cc: 58:1e:ba:06:1b:28:93:2c:23:8c:83:90:57:71:9f:da:91:af: b7:3b:8a:7c:ee:49:e9:a7:e6:e3:fb:f4:37:07:c1:89:7a:8b: ea:9c:74:5d:96:c9:2e:9f:4b:4a:15:d5:d5:4d:dd:94:bb:40: dd:98:55:13:e2:88:c2:d1:10:24:4f:ba:90:bf:5c:c4:dd:2a: 32:60:43:b7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUblKuhhwa0j/ZH7BBFdSoHI1p+4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDA0MTEwODU3MzBaFw0yNTA0MTAwOTAyMzBaMDMxMTAvBgNV BAMTKDlFNDNDQUQyRUFCRTYwRDE3REJGODU5QzM3OTZGRkJDNDgxRThBRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdQP3VXLiCSReTdJKs8r/qb8bm a0BP2ULYK82seH2OnnOaQ5aWydJowbnUPAf7lHzaMYcOhoclaW6wT8us1U0vzzDH ACGh5gWLcxKNgB6jBfs+kwQKIi+IJVQJ8VuPFgB751PjmIkVTG5LAvHQuKVefRKN FpzqEoKO00dPJ/+XrFbm07SbalPAPyIdgYJNv8h0WzhPfJY4G5dpOltjjbHe0Bdd el2xGc/TprUyPHre221pMvuBPUSyPhy9iqaStjHKDp452WtUS+QAKK5iqKCUcj0O mdy2ZngLfE38PaLFOXXmC07egu0UVHSfVkZw6xtOGvJlNXQN0MTRAHB+lAlzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUnkPK0uq+YNF9v4WcN5b/vEgeiv0wHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCiMwDQYJKoZIhvcN AQELBQADggEBAFaXut3qzlt6OtxfYhw66P1+PklWNqmwdwGm4aXP1pjgRr57UszR VvtdIFzzT38ZztT6DPA4/UP2zl2iGpjy09h5XR42CxoRTG8M77F9t4APHwxXQdJJ OUBROLkSYWeZNwxxCwfrlxpbIPKyQ4TWiloEuw2FRq7A6rvuJuUiIouVasV29iKY TY+KgK+AxoOsTHYrlATpc9pPrm5ON/jRYoLImMYZ/raPfLX7c0gpljzRu6K3zFge ugYbKJMsI4yDkFdxn9qRr7c7inzuSemn5uP79DcHwYl6i+qcdF2WyS6fS0oV1dVN 3ZS7QN2YVRPiiMLRECRPupC/XMTdKjJgQ7c= -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org