$ rpki-client -vvf repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/3230332e3131342e3232342e302f32332d3234203d3e203435363937.roa File: 3230332e3131342e3232342e302f32332d3234203d3e203435363937.roa (raw, json) Hash identifier: 6Fb/FcqckRp/U3JzummBB+qT3/Jhfx/82wKgluThdM0= Subject key identifier: 60:0D:0C:E6:40:BD:65:E4:9A:AC:34:37:04:AC:B3:5B:A3:5B:78:74 Certificate issuer: /CN=6BA087A8C1BF46BBD4748D23F9E34B92774FCC66 Certificate serial: 0DCB2F7E41145B738B276D6A0E97772C9CA9800A Authority key identifier: 6B:A0:87:A8:C1:BF:46:BB:D4:74:8D:23:F9:E3:4B:92:77:4F:CC:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/3230332e3131342e3232342e302f32332d3234203d3e203435363937.roa Signing time: Fri 26 Jul 2024 03:12:37 +0000 ROA not before: Fri 26 Jul 2024 03:07:37 +0000 ROA not after: Fri 25 Jul 2025 03:12:37 +0000 asID: 45697 IP address blocks: 203.114.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.crl rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:cb:2f:7e:41:14:5b:73:8b:27:6d:6a:0e:97:77:2c:9c:a9:80:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6BA087A8C1BF46BBD4748D23F9E34B92774FCC66 Validity Not Before: Jul 26 03:07:37 2024 GMT Not After : Jul 25 03:12:37 2025 GMT Subject: CN=600D0CE640BD65E49AAC343704ACB35BA35B7874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7c:2b:2d:c3:a9:60:2e:07:9b:82:cd:37:3f: 95:6c:3d:3c:bc:36:32:11:c9:8b:f9:03:1f:8f:01: ae:91:fe:33:19:70:65:dd:00:4d:69:cf:73:d0:8d: ab:c1:13:5d:90:49:b8:27:16:46:05:27:ad:72:cf: be:26:48:d0:3a:f4:0a:63:aa:e4:68:0e:00:bb:6d: 51:ef:d0:31:bf:2f:20:4b:8b:18:2d:02:fa:3b:12: f9:89:82:c5:aa:1a:74:3d:f3:d5:cd:25:1f:00:f5: 00:ff:6d:b9:61:71:fc:6f:ad:bf:6c:ad:ba:15:e9: 29:d7:89:67:f7:49:bb:ad:40:11:9d:51:45:48:6f: 61:53:66:c7:d0:47:fe:33:87:31:bf:60:55:45:e0: 83:0b:8a:d9:4e:6d:cc:62:78:be:00:da:c1:03:b5: 1a:76:26:ea:b5:b5:13:25:e8:26:0b:5f:a6:1a:74: e2:b2:ee:93:a6:24:1b:b4:2f:0d:93:53:98:a9:7f: 28:a5:fe:1e:d2:9c:f6:7d:18:8c:ff:d4:34:f9:29: 03:4f:78:04:97:77:ec:f0:a0:a1:cd:a9:54:53:d2: 78:52:ba:f3:8a:22:40:22:b7:80:5c:49:b5:55:b5: 24:c7:9e:3a:18:d7:be:f4:83:c7:10:fd:12:59:7b: 1a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:0D:0C:E6:40:BD:65:E4:9A:AC:34:37:04:AC:B3:5B:A3:5B:78:74 X509v3 Authority Key Identifier: keyid:6B:A0:87:A8:C1:BF:46:BB:D4:74:8D:23:F9:E3:4B:92:77:4F:CC:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BA087A8C1BF46BBD4748D23F9E34B92774FCC66.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03500767-9227-43ec-a525-2e97d5a03f09/0/3230332e3131342e3232342e302f32332d3234203d3e203435363937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.114.224.0/23 Signature Algorithm: sha256WithRSAEncryption d3:ad:b2:f5:75:fd:cd:db:dc:a3:9c:50:54:09:87:6f:29:14: a3:0b:8d:fe:55:d4:f3:2c:d4:79:9b:dd:db:88:5e:41:59:03: 4b:6c:3e:e6:03:07:68:25:80:1a:d0:0c:9a:77:4b:8f:e4:18: 4d:b2:c3:13:bf:7f:e5:6e:fc:3e:8e:82:f5:a5:2b:10:80:92: 05:f1:be:0b:88:ca:21:26:bb:99:12:dc:58:cd:7b:52:ed:0c: e2:2f:39:16:00:f8:58:6d:49:30:c7:53:7e:f1:51:88:9b:f2: 07:75:5c:b2:a0:5b:b4:ed:35:50:ba:be:8d:0a:e0:0a:67:f6: 92:49:3f:36:1b:de:e2:af:f7:01:29:97:63:ad:93:60:2c:ef: f9:f9:94:b9:7e:05:59:81:89:fe:af:a2:ce:06:f5:93:80:4c: 5c:be:bf:75:d4:68:65:43:78:dd:97:b4:b2:b7:1f:71:33:ae: bd:8a:a0:db:c2:24:83:74:36:a4:47:38:ac:68:93:90:ca:4e: db:27:12:88:f3:ef:b0:bd:71:f5:fd:27:3b:70:4c:23:06:34: b2:35:0c:0f:a5:7a:ad:45:61:da:95:de:0d:af:8d:95:cc:3c: c2:3d:8e:6e:a6:0c:5f:3d:70:79:3d:5a:8c:5d:8b:85:18:91: 19:77:39:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDcsvfkEUW3OLJ21qDpd3LJypgAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkJBMDg3QThDMUJGNDZCQkQ0NzQ4RDIzRjlFMzRCOTI3 NzRGQ0M2NjAeFw0yNDA3MjYwMzA3MzdaFw0yNTA3MjUwMzEyMzdaMDMxMTAvBgNV BAMTKDYwMEQwQ0U2NDBCRDY1RTQ5QUFDMzQzNzA0QUNCMzVCQTM1Qjc4NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdfCstw6lgLgebgs03P5VsPTy8 NjIRyYv5Ax+PAa6R/jMZcGXdAE1pz3PQjavBE12QSbgnFkYFJ61yz74mSNA69Apj quRoDgC7bVHv0DG/LyBLixgtAvo7EvmJgsWqGnQ989XNJR8A9QD/bblhcfxvrb9s rboV6SnXiWf3SbutQBGdUUVIb2FTZsfQR/4zhzG/YFVF4IMLitlObcxieL4A2sED tRp2Juq1tRMl6CYLX6YadOKy7pOmJBu0Lw2TU5ipfyil/h7SnPZ9GIz/1DT5KQNP eASXd+zwoKHNqVRT0nhSuvOKIkAit4BcSbVVtSTHnjoY1770g8cQ/RJZexoJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYA0M5kC9ZeSarDQ3BKyzW6NbeHQwHwYDVR0j BBgwFoAUa6CHqMG/RrvUdI0j+eNLkndPzGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzUwMDc2Ny05MjI3LTQzZWMtYTUyNS0yZTk3ZDVhMDNmMDkvMC82QkEwODdBOEMx QkY0NkJCRDQ3NDhEMjNGOUUzNEI5Mjc3NEZDQzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkJBMDg3QThDMUJGNDZCQkQ0NzQ4RDIzRjlFMzRCOTI3NzRG Q0M2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzNTAwNzY3LTkyMjctNDNlYy1h NTI1LTJlOTdkNWEwM2YwOS8wLzMyMzAzMzJlMzEzMTM0MmUzMjMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM1MzYzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy3LgMA0GCSqG SIb3DQEBCwUAA4IBAQDTrbL1df3N29yjnFBUCYdvKRSjC43+VdTzLNR5m93biF5B WQNLbD7mAwdoJYAa0Ayad0uP5BhNssMTv3/lbvw+joL1pSsQgJIF8b4LiMohJruZ EtxYzXtS7QziLzkWAPhYbUkwx1N+8VGIm/IHdVyyoFu07TVQur6NCuAKZ/aSST82 G97ir/cBKZdjrZNgLO/5+ZS5fgVZgYn+r6LOBvWTgExcvr911GhlQ3jdl7Sytx9x M669iqDbwiSDdDakRzisaJOQyk7bJxKI8++wvXH1/Sc7cEwjBjSyNQwPpXqtRWHa ld4Nr42VzDzCPY5upgxfPXB5PVqMXYuFGJEZdzlK -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:00 2024 by rpki-client on console-ams.rpki-client.org