$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33372e302f32342d3234203d3e203538343837.roa File: 3230322e31302e33372e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: RRlgM5GZuht/nGE/+DFzjaHPD8bIMvuiP77rIoFiVw4= Subject key identifier: F2:AE:2F:CF:6C:50:C0:56:D4:82:17:8E:98:81:07:E7:9B:83:CE:D1 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 6106EC9C45BF856C47DF7F5477569FE7F0AACB83 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33372e302f32342d3234203d3e203538343837.roa Signing time: Thu 11 Apr 2024 10:02:02 +0000 ROA not before: Thu 11 Apr 2024 09:57:02 +0000 ROA not after: Thu 10 Apr 2025 10:02:02 +0000 asID: 58487 IP address blocks: 202.10.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:06:ec:9c:45:bf:85:6c:47:df:7f:54:77:56:9f:e7:f0:aa:cb:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Apr 11 09:57:02 2024 GMT Not After : Apr 10 10:02:02 2025 GMT Subject: CN=F2AE2FCF6C50C056D482178E988107E79B83CED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:92:21:39:be:d8:3e:1c:a6:f0:d8:14:05:ab: e2:49:07:bf:7f:2f:a2:b3:01:40:0c:55:e7:0e:30: 5a:84:32:b9:28:e4:29:2b:9d:26:c7:9f:fa:df:f9: 41:78:4a:73:0a:d0:2c:bf:45:23:54:c8:64:06:09: 74:19:bc:de:b9:b9:40:82:9f:f4:28:7c:9a:cf:7d: 08:f5:44:2a:bf:1f:b5:c6:8f:82:1d:c1:4a:f6:52: 66:80:3b:cd:f6:0c:b8:cd:3a:44:03:81:de:89:84: f0:b8:c4:55:18:1f:47:da:92:89:f4:66:1a:40:8b: 33:1d:d9:b6:fe:b5:63:7f:9c:33:95:d3:61:7d:c2: f3:5c:28:84:b1:98:d9:49:0d:53:4b:45:f1:60:ce: 92:ab:58:12:7a:75:3a:00:c3:13:5c:de:d4:7a:9c: ed:01:6d:66:08:22:35:f8:7c:20:5d:29:0e:ee:82: 63:ad:bf:d6:15:24:c0:6e:ad:aa:09:37:ac:0a:47: 6e:94:a3:d7:a8:26:59:19:04:f2:d5:93:19:64:70: d8:31:53:e9:d6:ff:8d:cb:1e:78:e1:7e:e1:92:df: c4:23:0b:b3:87:49:da:8b:df:76:e4:94:8a:da:47: f8:85:cc:33:ac:6b:a6:67:c1:60:0d:16:4c:00:a2: 8f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:AE:2F:CF:6C:50:C0:56:D4:82:17:8E:98:81:07:E7:9B:83:CE:D1 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33372e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.37.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:f2:f6:94:2a:50:5e:95:36:3d:a6:5e:e8:31:2a:ba:79:03: e5:c6:d6:b8:90:64:54:31:70:83:fb:1c:c3:6e:59:c8:ac:18: ad:09:47:72:a3:96:bb:d8:3c:1c:3f:c1:d0:bd:0f:23:2e:8b: 2d:ea:34:ec:0f:3e:5e:83:3f:3b:53:a8:cd:a4:b7:bd:99:61: 79:2b:71:b9:8a:b7:c5:1b:c3:5e:b8:90:8d:38:24:f8:bb:aa: 34:cf:69:a6:b7:81:3d:20:c8:59:16:ec:97:c1:42:82:b4:af: 49:9f:5e:71:fc:2e:10:1c:f6:df:47:b1:d7:01:47:df:5e:0a: fe:49:95:93:c3:fe:95:04:fd:36:7d:06:8d:34:c0:46:0a:36: f4:10:3f:e7:5c:b0:df:f8:12:4c:ea:20:73:e5:78:99:cd:47: e9:00:fc:22:30:23:cc:b5:d5:41:4a:33:93:16:53:21:1f:11: b5:df:22:cd:7e:29:d2:63:8b:ae:b9:a4:02:6b:62:a3:bd:81: bb:31:42:99:6b:67:f3:07:cf:69:f7:14:6c:30:c7:23:db:86: 04:c5:b3:83:07:f0:a9:0c:be:80:d7:d8:2c:05:a1:90:fc:1a: 4d:7a:67:4e:a7:ec:fa:39:b4:a6:fe:86:03:fe:69:83:06:9b: 6f:3f:41:89 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYQbsnEW/hWxH339Ud1af5/Cqy4MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDA0MTEwOTU3MDJaFw0yNTA0MTAxMDAyMDJaMDMxMTAvBgNV BAMTKEYyQUUyRkNGNkM1MEMwNTZENDgyMTc4RTk4ODEwN0U3OUI4M0NFRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVkiE5vtg+HKbw2BQFq+JJB79/ L6KzAUAMVecOMFqEMrko5CkrnSbHn/rf+UF4SnMK0Cy/RSNUyGQGCXQZvN65uUCC n/QofJrPfQj1RCq/H7XGj4IdwUr2UmaAO832DLjNOkQDgd6JhPC4xFUYH0fakon0 ZhpAizMd2bb+tWN/nDOV02F9wvNcKISxmNlJDVNLRfFgzpKrWBJ6dToAwxNc3tR6 nO0BbWYIIjX4fCBdKQ7ugmOtv9YVJMBuraoJN6wKR26Uo9eoJlkZBPLVkxlkcNgx U+nW/43LHnjhfuGS38QjC7OHSdqL33bklIraR/iFzDOsa6ZnwWANFkwAoo+vAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8q4vz2xQwFbUgheOmIEH55uDztEwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCiUwDQYJKoZIhvcN AQELBQADggEBAD3y9pQqUF6VNj2mXugxKrp5A+XG1riQZFQxcIP7HMNuWcisGK0J R3KjlrvYPBw/wdC9DyMuiy3qNOwPPl6DPztTqM2kt72ZYXkrcbmKt8Ubw164kI04 JPi7qjTPaaa3gT0gyFkW7JfBQoK0r0mfXnH8LhAc9t9HsdcBR99eCv5JlZPD/pUE /TZ9Bo00wEYKNvQQP+dcsN/4EkzqIHPleJnNR+kA/CIwI8y11UFKM5MWUyEfEbXf Is1+KdJji665pAJrYqO9gbsxQplrZ/MHz2n3FGwwxyPbhgTFs4MH8KkMvoDX2CwF oZD8Gk16Z06n7Po5tKb+hgP+aYMGm28/QYk= -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org