$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230322e36322e31322e302f32322d3234203d3e203234353233.roa File: 3230322e36322e31322e302f32322d3234203d3e203234353233.roa (raw, json) Hash identifier: 2hUq9sQt5qY1h3e31R3uSoYPSdCwunHedXmRXN36Mkw= Subject key identifier: 61:71:57:71:FE:D1:1E:08:03:71:CA:E4:1C:E7:70:D9:79:D2:85:AF Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Certificate serial: 72E6FE45BA5739AA4DC256088CC2BBD315C0034F Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230322e36322e31322e302f32322d3234203d3e203234353233.roa Signing time: Wed 20 Sep 2023 10:00:00 +0000 ROA not before: Wed 20 Sep 2023 09:55:00 +0000 ROA not after: Wed 18 Sep 2024 10:00:00 +0000 asID: 24523 IP address blocks: 202.62.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:e6:fe:45:ba:57:39:aa:4d:c2:56:08:8c:c2:bb:d3:15:c0:03:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38 Validity Not Before: Sep 20 09:55:00 2023 GMT Not After : Sep 18 10:00:00 2024 GMT Subject: CN=61715771FED11E080371CAE41CE770D979D285AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e4:97:c3:31:bf:62:69:e0:e3:95:31:a3:e8: a3:e3:34:bb:3c:66:b8:eb:16:18:58:79:a6:a1:ac: 60:90:cd:ea:67:1b:1a:d1:06:65:4b:46:e1:97:d0: ef:1c:f2:6e:16:06:09:c1:fe:81:8a:7b:d4:04:3e: f7:2c:8a:b3:e7:c4:e1:9d:e7:94:55:45:f3:73:9b: 0e:84:72:3f:2d:99:8a:79:68:b4:c5:11:38:cd:a5: 51:02:64:4f:33:0c:49:28:42:db:90:60:77:fd:58: 3b:18:b6:a8:ff:e3:64:89:23:24:c1:fe:0a:73:47: 2c:fa:6c:04:eb:2d:cf:e3:a0:87:58:1f:a3:24:7e: 17:93:e7:5a:6d:71:ea:82:2c:c4:c1:8f:ef:6c:d6: b0:ab:d6:b6:8b:51:07:d9:13:96:3f:02:6b:a8:0a: a6:10:ec:b5:f7:72:83:24:de:bb:27:37:54:b0:52: 84:fd:72:45:69:a8:29:19:43:c6:e7:5c:c9:98:7e: 1e:75:68:7e:ad:28:9f:da:87:d8:c2:0d:49:e7:4b: fd:97:01:02:c3:6b:26:b6:9f:12:11:54:ce:c2:ac: 8e:a6:0a:38:36:b5:00:13:a8:d1:14:7c:6d:74:08: 27:33:75:f7:94:2d:0f:84:05:2d:e2:0f:c6:da:ac: 33:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:71:57:71:FE:D1:1E:08:03:71:CA:E4:1C:E7:70:D9:79:D2:85:AF X509v3 Authority Key Identifier: keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230322e36322e31322e302f32322d3234203d3e203234353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.62.12.0/22 Signature Algorithm: sha256WithRSAEncryption 07:21:92:df:5f:6e:4c:a2:7d:b2:af:46:a4:cf:67:f6:61:d4: b1:57:4b:ae:64:ad:01:30:73:a9:4a:38:01:62:18:c5:ef:58: e6:bd:b5:08:51:8e:64:2d:8c:d5:24:4c:e1:b9:db:4e:d9:6e: e8:43:b2:b1:17:0e:3c:8e:88:07:72:42:4a:b8:23:68:51:38: fc:2d:97:b2:82:f6:d8:a9:a5:e7:db:87:a5:c6:69:35:5f:4e: 6f:57:62:b2:6b:ef:5e:b0:21:7f:08:50:ce:b0:43:a2:94:eb: 73:07:56:ed:e3:3d:f7:5e:b6:e0:72:cb:71:4c:97:4b:f7:7b: 20:4b:78:16:8f:4e:65:e0:cb:96:0c:6b:bc:48:c6:f6:67:cd: 6b:90:9a:60:4e:3b:ac:be:dc:f3:33:88:5a:1a:d2:66:cd:63: 7f:9a:d4:f7:80:99:9f:ef:d8:fe:4f:d8:4e:0d:19:3f:ce:cb: cd:2b:17:88:00:a9:84:30:f9:95:2f:ff:45:1f:66:9d:9c:22: fc:fc:ea:81:8d:36:a6:7d:cd:df:13:c6:28:7e:c5:d8:40:f6: c2:79:45:5f:a0:37:c8:c0:7c:e4:78:7f:67:3c:19:18:e0:bf: 1e:7c:09:cb:f6:47:b6:00:d0:08:6c:03:da:82:77:4a:c1:d8: e3:8e:6e:0c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcub+RbpXOapNwlYIjMK70xXAA08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFC MjUwM0EzODAeFw0yMzA5MjAwOTU1MDBaFw0yNDA5MTgxMDAwMDBaMDMxMTAvBgNV BAMTKDYxNzE1NzcxRkVEMTFFMDgwMzcxQ0FFNDFDRTc3MEQ5NzlEMjg1QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCU5JfDMb9iaeDjlTGj6KPjNLs8 ZrjrFhhYeaahrGCQzepnGxrRBmVLRuGX0O8c8m4WBgnB/oGKe9QEPvcsirPnxOGd 55RVRfNzmw6Ecj8tmYp5aLTFETjNpVECZE8zDEkoQtuQYHf9WDsYtqj/42SJIyTB /gpzRyz6bATrLc/joIdYH6MkfheT51ptceqCLMTBj+9s1rCr1raLUQfZE5Y/Amuo CqYQ7LX3coMk3rsnN1SwUoT9ckVpqCkZQ8bnXMmYfh51aH6tKJ/ah9jCDUnnS/2X AQLDaya2nxIRVM7CrI6mCjg2tQATqNEUfG10CCczdfeULQ+EBS3iD8barDPNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUYXFXcf7RHggDccrkHOdw2XnSha8wHwYDVR0j BBgwFoAUEWsbSTEU5vhyRNpUyrjY6rJQOjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YzY2Nzc2OS04MGRjLTQwOTMtYjVmNy1kZmU3YzU3MjA0ODYvMC8xMTZCMUI0OTMx MTRFNkY4NzI0NERBNTRDQUI4RDhFQUIyNTAzQTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFCMjUw M0EzOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i NWY3LWRmZTdjNTcyMDQ4Ni8wLzMyMzAzMjJlMzYzMjJlMzEzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKPgwwDQYJKoZIhvcN AQELBQADggEBAAchkt9fbkyifbKvRqTPZ/Zh1LFXS65krQEwc6lKOAFiGMXvWOa9 tQhRjmQtjNUkTOG5207ZbuhDsrEXDjyOiAdyQkq4I2hROPwtl7KC9tippefbh6XG aTVfTm9XYrJr716wIX8IUM6wQ6KU63MHVu3jPfdetuByy3FMl0v3eyBLeBaPTmXg y5YMa7xIxvZnzWuQmmBOO6y+3PMziFoa0mbNY3+a1PeAmZ/v2P5P2E4NGT/Oy80r F4gAqYQw+ZUv/0UfZp2cIvz86oGNNqZ9zd8Txih+xdhA9sJ5RV+gN8jAfOR4f2c8 GRjgvx58Ccv2R7YA0AhsA9qCd0rB2OOObgw= -----END CERTIFICATE-----Generated at Wed Apr 24 18:34:12 2024 by rpki-client on console-ams.rpki-client.org