$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e20313331363931.roa File: 3230322e36392e39362e302f32302d3234203d3e20313331363931.roa (raw, json) Hash identifier: S2VX9B55OQzHQYwSFdoVDrRezCQ+VYeN1hb0PQK+c+4= Subject key identifier: 45:06:76:31:FB:3D:D3:10:4C:77:65:7E:F8:3F:46:67:69:2C:D2:A2 Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 5226D98D935E593058E7C263EB42489674413DA0 Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e20313331363931.roa Signing time: Mon 18 Dec 2023 19:00:02 +0000 ROA not before: Mon 18 Dec 2023 18:55:02 +0000 ROA not after: Mon 16 Dec 2024 19:00:02 +0000 asID: 131691 IP address blocks: 202.69.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 07:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:26:d9:8d:93:5e:59:30:58:e7:c2:63:eb:42:48:96:74:41:3d:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Dec 18 18:55:02 2023 GMT Not After : Dec 16 19:00:02 2024 GMT Subject: CN=45067631FB3DD3104C77657EF83F4667692CD2A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:84:43:49:bd:fa:28:e6:d6:01:70:a2:4a:ea: 09:d1:27:94:94:ab:ea:9f:81:3b:78:73:bc:e3:5b: e6:20:52:9f:57:1e:fd:ea:c2:ff:59:d1:97:db:74: ba:7e:a5:cb:fc:60:cd:e4:12:37:fa:b8:23:28:d2: d1:84:d2:6a:95:bc:e6:fe:ec:e8:7a:b5:02:ba:68: 3e:f1:3a:c7:9c:82:e5:7a:66:54:0e:c2:ed:e6:6b: f5:b6:3b:6f:92:8d:89:d8:21:f9:6c:17:86:2c:1d: e7:8b:80:31:7e:70:2c:3a:78:5d:4f:dc:3f:54:d8: 52:70:99:f7:83:7f:39:84:ec:6a:b5:da:ed:37:fc: c2:a9:16:a3:79:24:57:27:4b:1b:22:cf:26:34:2d: a0:32:08:b1:ba:59:70:be:a6:04:3f:09:7a:b0:e2: 25:09:73:69:83:4e:cc:31:c0:60:54:6f:eb:a0:af: 59:30:aa:5e:7d:7e:ba:12:0c:93:7c:db:bf:44:08: 09:1b:e1:a6:3e:7c:cf:44:43:13:8a:9b:af:b1:c0: 73:de:47:69:82:9b:0d:2c:00:91:90:3b:23:d9:fd: fb:62:da:f5:1d:bb:5a:b0:4d:fc:8b:56:9d:84:c1: 20:13:cf:39:2d:39:5d:74:68:43:b1:42:75:ae:93: 09:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:06:76:31:FB:3D:D3:10:4C:77:65:7E:F8:3F:46:67:69:2C:D2:A2 X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e20313331363931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.69.96.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:24:26:48:0c:0b:bc:0f:2f:b9:e2:83:c6:06:55:2b:cd:3a: b9:f8:79:35:87:f3:b5:b7:d3:b0:03:9a:fa:72:11:30:86:80: 20:a8:9c:11:11:73:f6:f3:84:08:0e:4b:2c:f5:ef:62:93:86: e1:83:3b:e5:ac:db:69:10:9f:b4:fa:ba:43:bd:b6:8a:2c:63: 28:f1:76:c5:4e:a9:ae:45:35:e4:5e:30:83:ad:1c:19:f0:7a: 29:84:3f:37:f6:db:80:1d:78:4a:f8:21:07:0f:dd:43:01:7b: c7:2b:cc:7d:c4:c5:e5:41:b0:39:5f:71:11:a6:a4:e4:91:bf: 9a:2a:54:a1:3c:49:6a:9e:e1:29:28:b1:40:c6:83:c3:1d:a0: d1:ac:fd:f7:82:d6:92:f9:ad:3e:b3:0a:c4:6d:64:e7:c8:7a: 41:4c:bb:ac:97:a3:6f:eb:ca:d3:32:c5:e2:27:ee:1e:48:cb: 37:c8:b3:fa:b8:4e:c9:ce:56:24:d2:e0:8c:86:3b:c8:b1:57: c4:57:b3:5d:9d:d1:c1:7e:80:9e:e9:83:1d:c2:a4:7b:c2:bc: 26:c8:e5:2c:f2:86:c9:90:29:cc:12:95:7c:76:f5:fb:e8:d9: 33:37:6f:b0:8b:88:13:23:e4:84:0e:02:e4:f0:e0:bb:48:ba: ac:cd:73:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUibZjZNeWTBY58Jj60JIlnRBPaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yMzEyMTgxODU1MDJaFw0yNDEyMTYxOTAwMDJaMDMxMTAvBgNV BAMTKDQ1MDY3NjMxRkIzREQzMTA0Qzc3NjU3RUY4M0Y0NjY3NjkyQ0QyQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChhENJvfoo5tYBcKJK6gnRJ5SU q+qfgTt4c7zjW+YgUp9XHv3qwv9Z0ZfbdLp+pcv8YM3kEjf6uCMo0tGE0mqVvOb+ 7Oh6tQK6aD7xOsecguV6ZlQOwu3ma/W2O2+SjYnYIflsF4YsHeeLgDF+cCw6eF1P 3D9U2FJwmfeDfzmE7Gq12u03/MKpFqN5JFcnSxsizyY0LaAyCLG6WXC+pgQ/CXqw 4iUJc2mDTswxwGBUb+ugr1kwql59froSDJN8279ECAkb4aY+fM9EQxOKm6+xwHPe R2mCmw0sAJGQOyPZ/fti2vUdu1qwTfyLVp2EwSATzzktOV10aEOxQnWukwnNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURQZ2Mfs90xBMd2V++D9GZ2ks0qIwHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MGM5MDA5LWFkNTMtNGZhNi1h MTgzLTM0YjM0NTdiZWEwMy8wLzMyMzAzMjJlMzYzOTJlMzkzNjJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzMzMTM2MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpFYDANBgkqhkiG 9w0BAQsFAAOCAQEASyQmSAwLvA8vueKDxgZVK806ufh5NYfztbfTsAOa+nIRMIaA IKicERFz9vOECA5LLPXvYpOG4YM75azbaRCftPq6Q722iixjKPF2xU6prkU15F4w g60cGfB6KYQ/N/bbgB14SvghBw/dQwF7xyvMfcTF5UGwOV9xEaak5JG/mipUoTxJ ap7hKSixQMaDwx2g0az994LWkvmtPrMKxG1k58h6QUy7rJejb+vK0zLF4ifuHkjL N8iz+rhOyc5WJNLgjIY7yLFXxFezXZ3RwX6AnumDHcKke8K8JsjlLPKGyZApzBKV fHb1++jZMzdvsIuIEyPkhA4C5PDgu0i6rM1zVg== -----END CERTIFICATE-----Generated at Fri May 17 00:23:00 2024 by rpki-client on console-fra.rpki-client.org