$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa File: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (raw, json) Hash identifier: KOn+mldQdaUiZNp+rUK9pgWesKnmMNNLYhwDe+NavKU= Subject key identifier: 18:D6:A3:64:55:4A:A6:E8:3C:FB:7A:0C:45:E2:D5:0F:C4:49:78:EC Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 18322BEB80DF57E0FDC4D237AF6A0ECA6A6FA186 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa Signing time: Mon 01 Jul 2024 01:05:59 +0000 ROA not before: Mon 01 Jul 2024 01:00:59 +0000 ROA not after: Mon 30 Jun 2025 01:05:59 +0000 asID: 55701 IP address blocks: 202.73.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:32:2b:eb:80:df:57:e0:fd:c4:d2:37:af:6a:0e:ca:6a:6f:a1:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jul 1 01:00:59 2024 GMT Not After : Jun 30 01:05:59 2025 GMT Subject: CN=18D6A364554AA6E83CFB7A0C45E2D50FC44978EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5d:6b:a5:68:e8:f8:22:db:d0:7f:ec:fd:82: c0:4b:ae:7d:bb:4b:f1:9b:7b:80:09:dc:9a:b3:6a: e6:ee:32:71:d7:6a:15:85:7c:8b:14:93:b0:e8:8c: 85:55:2f:14:d4:27:70:ef:45:a3:4a:30:b9:1f:15: f9:70:50:17:78:e4:fa:7a:7c:50:dd:4a:10:13:75: f8:a2:fe:0b:9e:49:7b:75:46:81:f4:11:d2:d5:0c: 5b:2b:f7:fb:4a:fa:14:45:a4:99:17:3f:08:11:7d: 6a:12:74:06:85:92:b0:5d:b2:87:34:ca:da:d1:00: 69:f9:1d:44:f9:06:75:2d:7e:a5:b8:55:e5:8f:a4: e1:d1:be:df:94:52:c8:6d:2c:54:49:dd:eb:53:5e: 38:37:50:33:f9:ab:8a:37:77:23:b8:55:72:57:be: 45:98:e0:fa:b0:b8:e6:f4:65:f7:85:a3:99:ec:5a: 5d:ed:32:32:c4:df:89:56:87:43:3e:dd:ec:31:69: 7a:80:c4:f4:26:34:07:a8:c4:2e:85:4b:33:4b:f6: bf:ff:29:1c:68:38:e3:c7:7a:70:5c:f7:90:ac:47: 81:c4:f8:11:6d:c5:6b:87:07:a7:ab:48:18:c5:43: 31:42:12:84:be:08:ed:d5:34:d0:de:4f:58:0c:16: be:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D6:A3:64:55:4A:A6:E8:3C:FB:7A:0C:45:E2:D5:0F:C4:49:78:EC X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32342e302f32342d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.24.0/24 Signature Algorithm: sha256WithRSAEncryption c5:c4:0f:e0:70:c7:db:6e:64:d9:32:47:1d:4f:1c:40:6e:08: 38:a0:95:82:c1:63:77:d6:ee:2b:34:f4:ab:5b:8e:8f:02:f0: 51:8e:3b:f5:5c:94:f8:0d:1c:19:83:8c:70:d6:ea:51:a4:84: d2:0a:c9:46:8f:9d:c6:8f:6b:45:22:99:c9:57:d1:27:c8:3a: 72:3d:b8:e5:fe:0a:fb:88:fa:19:16:44:48:70:5f:34:93:7e: ed:7e:ec:76:13:44:f6:3e:9a:c4:48:a6:5e:16:f5:ff:c3:87: 48:79:7c:23:d2:20:02:bd:ae:56:6b:7f:b8:dd:56:94:ce:29: 3f:b9:35:21:59:76:f9:25:a3:c1:f7:80:3d:5e:79:17:7e:2d: b4:91:4f:7c:be:ab:45:c1:f3:07:74:23:9c:87:2e:a1:d6:7e: 0d:1f:92:a6:f0:29:0e:e1:b3:e5:98:12:16:82:dd:10:78:68: 50:4e:72:1e:66:69:7f:a2:78:a8:8c:4f:c9:6e:ff:4c:42:dd: 9e:9a:ce:ae:21:39:a2:63:70:e4:8f:7f:bb:57:27:0b:01:79: 54:a1:50:3e:08:71:57:a9:19:b3:48:06:96:ea:10:41:64:98: 8d:ab:8c:a3:2e:ef:9a:1d:c8:e0:a8:b0:97:44:56:a1:e9:00: 93:93:22:ea -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGDIr64DfV+D9xNI3r2oOympvoYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA3MDEwMTAwNTlaFw0yNTA2MzAwMTA1NTlaMDMxMTAvBgNV BAMTKDE4RDZBMzY0NTU0QUE2RTgzQ0ZCN0EwQzQ1RTJENTBGQzQ0OTc4RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+XWulaOj4ItvQf+z9gsBLrn27 S/Gbe4AJ3JqzaubuMnHXahWFfIsUk7DojIVVLxTUJ3DvRaNKMLkfFflwUBd45Pp6 fFDdShATdfii/gueSXt1RoH0EdLVDFsr9/tK+hRFpJkXPwgRfWoSdAaFkrBdsoc0 ytrRAGn5HUT5BnUtfqW4VeWPpOHRvt+UUshtLFRJ3etTXjg3UDP5q4o3dyO4VXJX vkWY4PqwuOb0ZfeFo5nsWl3tMjLE34lWh0M+3ewxaXqAxPQmNAeoxC6FSzNL9r// KRxoOOPHenBc95CsR4HE+BFtxWuHB6erSBjFQzFCEoS+CO3VNNDeT1gMFr4nAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGNajZFVKpug8+3oMReLVD8RJeOwwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRgwDQYJKoZIhvcN AQELBQADggEBAMXED+Bwx9tuZNkyRx1PHEBuCDiglYLBY3fW7is09Ktbjo8C8FGO O/VclPgNHBmDjHDW6lGkhNIKyUaPncaPa0UimclX0SfIOnI9uOX+CvuI+hkWREhw XzSTfu1+7HYTRPY+msRIpl4W9f/Dh0h5fCPSIAK9rlZrf7jdVpTOKT+5NSFZdvkl o8H3gD1eeRd+LbSRT3y+q0XB8wd0I5yHLqHWfg0fkqbwKQ7hs+WYEhaC3RB4aFBO ch5maX+ieKiMT8lu/0xC3Z6azq4hOaJjcOSPf7tXJwsBeVShUD4IcVepGbNIBpbq EEFkmI2rjKMu75odyOCosJdEVqHpAJOTIuo= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org