$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32342d3234203d3e203538343837.roa File: 3230322e31302e34322e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: 1jAQ+aiv0TmEjLjx4exRddNvXc3fsBwTCafIwz/oaXI= Subject key identifier: DF:25:B1:28:B8:65:BF:76:E9:3A:81:BA:96:7A:4F:15:E0:E4:FB:39 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 5548BB0176BA78DCFB03780D7B07A01DB806ABA5 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32342d3234203d3e203538343837.roa Signing time: Thu 11 Apr 2024 10:02:03 +0000 ROA not before: Thu 11 Apr 2024 09:57:03 +0000 ROA not after: Thu 10 Apr 2025 10:02:03 +0000 asID: 58487 IP address blocks: 202.10.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:48:bb:01:76:ba:78:dc:fb:03:78:0d:7b:07:a0:1d:b8:06:ab:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Apr 11 09:57:03 2024 GMT Not After : Apr 10 10:02:03 2025 GMT Subject: CN=DF25B128B865BF76E93A81BA967A4F15E0E4FB39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:09:77:28:87:a0:16:fc:4d:e5:d9:c1:5e:aa: 7f:f7:a6:e0:37:b7:0d:41:60:84:a0:4f:00:41:fb: 72:ac:4d:a9:ea:9b:92:5b:b6:40:17:af:f7:4c:ba: 4a:1e:55:e5:01:25:92:53:98:6b:b4:c3:41:97:4e: c3:10:a8:04:7d:c5:4c:ce:82:b9:16:12:5f:a8:00: fd:f5:54:05:26:e8:db:ed:51:b3:7d:53:20:32:ee: 3f:e2:bc:b5:79:9d:91:f1:80:2e:fb:de:21:fa:82: 1a:2f:a7:b3:af:34:ce:7a:80:d0:ec:c3:34:2b:30: 9d:92:9a:fe:d4:3f:fc:28:aa:b6:14:7a:a2:26:4a: 94:24:a8:68:89:e7:05:76:81:ee:0f:66:0a:75:ba: e1:47:5d:0e:66:08:99:8e:5f:f7:07:12:ed:f3:ef: 93:dd:e7:17:e1:bf:ca:72:4c:a1:51:0d:f2:76:4a: 6d:c2:d1:a1:68:de:97:e6:64:83:7b:5a:54:67:0f: 28:1c:9d:3d:c5:95:45:20:b6:44:da:be:b3:5a:4f: 80:05:3c:4f:2e:a3:68:06:9a:ab:0b:1e:ea:25:5d: ed:4f:bd:e9:84:f5:9c:bb:ac:e3:f3:d1:01:c4:86: 47:52:cf:69:a0:2e:a8:34:5e:86:05:4a:cf:45:4d: b4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:25:B1:28:B8:65:BF:76:E9:3A:81:BA:96:7A:4F:15:E0:E4:FB:39 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.42.0/24 Signature Algorithm: sha256WithRSAEncryption 30:2c:10:c3:c2:78:4f:90:77:ac:81:86:fa:3b:e3:f6:d8:d9: 5f:6b:10:8e:3e:28:82:1a:88:13:aa:17:09:c2:bd:b4:b9:9e: bc:59:82:d1:9e:e1:59:ad:f9:6e:08:e0:e5:5e:fa:b9:73:9c: 33:ca:ea:f4:f9:39:0a:d0:93:3a:73:47:4e:04:aa:6b:6c:56: 82:26:06:95:2f:f6:c5:8e:dc:48:a6:40:47:e5:8b:12:69:1e: 52:4a:44:ea:79:42:fb:47:04:a9:56:24:a2:54:70:e5:57:9d: 85:ae:cc:fe:49:3a:87:f3:6e:00:a9:99:6c:9a:83:71:22:ab: 88:e2:1b:b3:6f:c2:e0:a2:70:d6:48:a2:df:34:01:83:41:20: c9:f1:3c:a6:6f:fd:7d:f4:ab:8f:f3:39:ef:97:6c:8c:48:92: 20:46:9c:ae:42:fe:6c:9e:0d:71:be:bb:fb:ee:b7:33:9d:fb: 0e:22:e8:a7:7c:4e:ba:93:e2:61:18:1f:9d:ab:4f:a8:30:d9: 43:6c:72:54:ab:19:a4:24:c4:fa:e1:a5:f1:3b:6d:34:a8:eb: 76:7e:2f:27:09:1b:12:1f:fa:9c:2c:1b:dc:8d:b8:c3:9e:91: b1:86:f7:c3:23:b2:82:92:83:12:c1:a5:d3:64:60:32:30:06: db:d0:69:c8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVUi7AXa6eNz7A3gNewegHbgGq6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDA0MTEwOTU3MDNaFw0yNTA0MTAxMDAyMDNaMDMxMTAvBgNV BAMTKERGMjVCMTI4Qjg2NUJGNzZFOTNBODFCQTk2N0E0RjE1RTBFNEZCMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSCXcoh6AW/E3l2cFeqn/3puA3 tw1BYISgTwBB+3KsTanqm5JbtkAXr/dMukoeVeUBJZJTmGu0w0GXTsMQqAR9xUzO grkWEl+oAP31VAUm6NvtUbN9UyAy7j/ivLV5nZHxgC773iH6ghovp7OvNM56gNDs wzQrMJ2Smv7UP/woqrYUeqImSpQkqGiJ5wV2ge4PZgp1uuFHXQ5mCJmOX/cHEu3z 75Pd5xfhv8pyTKFRDfJ2Sm3C0aFo3pfmZIN7WlRnDygcnT3FlUUgtkTavrNaT4AF PE8uo2gGmqsLHuolXe1PvemE9Zy7rOPz0QHEhkdSz2mgLqg0XoYFSs9FTbTJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3yWxKLhlv3bpOoG6lnpPFeDk+zkwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCiowDQYJKoZIhvcN AQELBQADggEBADAsEMPCeE+Qd6yBhvo74/bY2V9rEI4+KIIaiBOqFwnCvbS5nrxZ gtGe4Vmt+W4I4OVe+rlznDPK6vT5OQrQkzpzR04EqmtsVoImBpUv9sWO3EimQEfl ixJpHlJKROp5QvtHBKlWJKJUcOVXnYWuzP5JOofzbgCpmWyag3Eiq4jiG7NvwuCi cNZIot80AYNBIMnxPKZv/X30q4/zOe+XbIxIkiBGnK5C/myeDXG+u/vutzOd+w4i 6Kd8TrqT4mEYH52rT6gw2UNsclSrGaQkxPrhpfE7bTSo63Z+LycJGxIf+pwsG9yN uMOekbGG98MjsoKSgxLBpdNkYDIwBtvQacg= -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org