$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34362e302f32332d3234203d3e203538343837.roa File: 3230322e31302e34362e302f32332d3234203d3e203538343837.roa (raw, json) Hash identifier: GCdP+r+C+P3lRUobpk+zWnOFdgxc/2QNOqsLVHpxR4M= Subject key identifier: 3A:F6:09:59:F6:1D:F2:C7:23:AE:90:43:06:80:7A:AD:CC:08:E9:63 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 2B6C6867A548413280DD4B93F1941D864D48962F Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34362e302f32332d3234203d3e203538343837.roa Signing time: Thu 11 Apr 2024 10:02:02 +0000 ROA not before: Thu 11 Apr 2024 09:57:02 +0000 ROA not after: Thu 10 Apr 2025 10:02:02 +0000 asID: 58487 IP address blocks: 202.10.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:6c:68:67:a5:48:41:32:80:dd:4b:93:f1:94:1d:86:4d:48:96:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Apr 11 09:57:02 2024 GMT Not After : Apr 10 10:02:02 2025 GMT Subject: CN=3AF60959F61DF2C723AE904306807AADCC08E963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:46:55:42:ea:64:36:ee:21:87:ee:de:2e: 9d:91:e5:9c:2e:44:38:84:17:0b:c5:76:16:12:a9: 8e:b1:bf:1d:da:a7:d7:96:c9:2c:e0:fb:45:e9:df: 0d:7e:6b:9a:51:8a:33:85:cc:41:c6:47:dc:51:5b: 9c:c0:d5:4c:ef:91:c4:60:1e:c1:2b:15:f9:f4:bb: 8e:24:a6:b0:12:e1:d2:eb:79:c4:b0:88:22:c2:1b: d8:47:bb:ea:48:d2:48:eb:ff:e4:f6:18:bf:6b:cb: 71:e0:74:e9:95:20:97:04:9a:4d:e3:e4:69:1f:c8: 03:d3:4d:64:ca:dd:ff:62:94:63:a5:b8:1d:9d:de: e1:2f:a5:d1:1c:03:bf:71:8a:47:5d:d4:f3:16:53: 01:e4:a3:c3:1c:a5:84:19:54:88:4c:3b:90:a4:f7: e0:5d:30:1e:4a:00:a2:2d:da:fb:84:aa:54:b3:a2: 36:01:db:2a:42:d6:9d:a0:fb:74:22:d4:64:01:4b: be:ab:fe:5b:88:4b:84:5f:16:11:1d:28:09:77:5a: 5a:40:e7:d1:88:51:86:90:ba:d5:a7:f7:6f:7e:bc: 96:42:9b:5c:33:28:45:52:70:0c:8b:c4:70:14:da: 7f:50:30:14:26:1f:ff:ef:cc:4c:20:02:55:07:e7: fe:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F6:09:59:F6:1D:F2:C7:23:AE:90:43:06:80:7A:AD:CC:08:E9:63 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34362e302f32332d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.46.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:06:5f:59:79:d0:0f:ba:17:63:3b:08:77:78:5b:01:b5:46: 76:b3:cd:88:1a:50:fa:a0:30:bf:8c:43:56:f9:25:2e:b9:fe: 79:4b:46:48:5c:7f:30:5f:c6:e8:c7:4f:ad:1d:01:54:74:78: 00:1f:26:5d:2f:9b:a9:b3:c9:1a:c3:03:ba:a8:94:9f:c1:8a: 33:7a:5a:47:9a:9f:91:fe:1b:8b:b4:98:52:a0:4f:24:ea:bc: cf:58:b3:ab:77:5c:58:77:6d:ff:94:a3:f8:5c:61:3d:91:80: 14:19:80:ef:be:2f:60:ab:a0:ec:40:24:3f:da:90:cf:01:60: 2d:c5:84:1a:38:d5:1f:fe:c6:8d:e7:fe:7d:fd:38:73:84:ba: 25:35:6d:65:e3:9e:ec:ee:72:78:bc:0a:45:ec:4a:d8:3e:ef: 27:44:07:ff:a7:41:16:38:d3:dc:6f:51:d3:d8:ca:91:7e:38: 05:de:8f:e5:e5:c2:dc:d0:64:43:11:6e:98:22:4b:4f:be:cc: 0a:04:c9:d7:19:67:05:0d:cd:11:a7:46:b3:9a:16:8b:16:e7: 3d:ca:6d:78:51:6d:70:cd:d1:cf:31:c9:eb:1b:cc:81:14:b8: c2:9a:06:8f:9b:fb:36:3d:4b:ac:3c:db:2e:c1:c4:05:25:c4: 6c:1c:e3:3b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUK2xoZ6VIQTKA3UuT8ZQdhk1Ili8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDA0MTEwOTU3MDJaFw0yNTA0MTAxMDAyMDJaMDMxMTAvBgNV BAMTKDNBRjYwOTU5RjYxREYyQzcyM0FFOTA0MzA2ODA3QUFEQ0MwOEU5NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGfUZVQupkNu4hh+7eLp2R5Zwu RDiEFwvFdhYSqY6xvx3ap9eWySzg+0Xp3w1+a5pRijOFzEHGR9xRW5zA1UzvkcRg HsErFfn0u44kprAS4dLrecSwiCLCG9hHu+pI0kjr/+T2GL9ry3HgdOmVIJcEmk3j 5GkfyAPTTWTK3f9ilGOluB2d3uEvpdEcA79xikdd1PMWUwHko8McpYQZVIhMO5Ck 9+BdMB5KAKIt2vuEqlSzojYB2ypC1p2g+3Qi1GQBS76r/luIS4RfFhEdKAl3WlpA 59GIUYaQutWn929+vJZCm1wzKEVScAyLxHAU2n9QMBQmH//vzEwgAlUH5/7JAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUOvYJWfYd8scjrpBDBoB6rcwI6WMwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCi4wDQYJKoZIhvcN AQELBQADggEBAJ0GX1l50A+6F2M7CHd4WwG1RnazzYgaUPqgML+MQ1b5JS65/nlL RkhcfzBfxujHT60dAVR0eAAfJl0vm6mzyRrDA7qolJ/BijN6Wkean5H+G4u0mFKg TyTqvM9Ys6t3XFh3bf+Uo/hcYT2RgBQZgO++L2CroOxAJD/akM8BYC3FhBo41R/+ xo3n/n39OHOEuiU1bWXjnuzucni8CkXsStg+7ydEB/+nQRY409xvUdPYypF+OAXe j+XlwtzQZEMRbpgiS0++zAoEydcZZwUNzRGnRrOaFosW5z3KbXhRbXDN0c8xyesb zIEUuMKaBo+b+zY9S6w82y7BxAUlxGwc4zs= -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org