$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32362e302f32342d3234203d3e20313431383932.roa File: 3230322e37332e32362e302f32342d3234203d3e20313431383932.roa (raw, json) Hash identifier: w5thUMSyvo0h2Smx0g1yqwQsY69VdEKVxd3uPMBeeeY= Subject key identifier: 6B:59:6A:93:AC:2E:49:04:76:12:23:7A:24:70:25:B2:7D:15:33:30 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 483F654F5550F97B2E0A34B77CA80BDE0D1C9B3B Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32362e302f32342d3234203d3e20313431383932.roa Signing time: Mon 07 Oct 2024 01:00:02 +0000 ROA not before: Mon 07 Oct 2024 00:55:02 +0000 ROA not after: Mon 06 Oct 2025 01:00:02 +0000 asID: 141892 IP address blocks: 202.73.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:3f:65:4f:55:50:f9:7b:2e:0a:34:b7:7c:a8:0b:de:0d:1c:9b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Oct 7 00:55:02 2024 GMT Not After : Oct 6 01:00:02 2025 GMT Subject: CN=6B596A93AC2E49047612237A247025B27D153330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:dc:5f:57:62:70:b6:9f:d1:db:fe:71:2b:fe: f2:80:5f:b0:6b:9e:9e:bd:b6:85:0c:d7:00:54:1a: 29:d6:4c:0a:d5:8d:73:e0:83:43:c9:d1:fb:ba:6e: d1:3f:ca:70:4b:eb:52:87:00:8c:32:93:65:8d:0b: e2:5f:12:ea:74:31:85:d5:63:83:97:93:83:7c:2f: 7b:df:1b:34:eb:31:35:04:1a:60:7a:37:2a:e0:dc: 04:eb:e8:0b:a0:6e:f8:94:98:84:b4:03:65:b7:a2: b0:f3:00:e4:05:da:1b:cd:8d:73:82:54:7f:ca:40: d3:94:e3:e8:b9:32:5f:b8:9f:19:91:93:e6:d0:ca: 96:e4:bc:bc:a0:97:8d:06:9d:ea:58:98:e1:30:ee: c8:9c:d4:9e:a5:f8:f6:2f:df:43:87:c5:dc:a7:3e: ae:0b:f6:65:a4:15:c4:d1:da:1a:18:25:f0:20:64: 6e:b1:e5:6f:d7:16:d5:d0:a7:3b:34:b8:2c:e8:ff: 73:f9:17:57:cc:4f:5c:90:6f:22:38:7b:e2:7c:4f: db:20:b1:ea:a7:c0:b1:82:b1:af:93:48:cb:87:bf: 8e:a1:f2:7a:d2:be:ca:7c:ac:b9:a8:25:f5:88:a7: 4d:9b:9f:57:15:1a:3d:a1:9f:3b:48:3e:8c:f7:f0: e9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:59:6A:93:AC:2E:49:04:76:12:23:7A:24:70:25:B2:7D:15:33:30 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32362e302f32342d3234203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.26.0/24 Signature Algorithm: sha256WithRSAEncryption c3:85:7d:c7:f9:b0:aa:c8:c5:37:5b:62:24:a1:c9:dc:c0:c1: 0f:27:6f:77:80:59:d5:aa:92:d2:dc:9d:c9:e6:97:32:8f:3a: 6a:a3:ed:d3:2c:04:28:e1:4a:48:7a:7b:eb:b4:c2:f3:53:08: d6:fc:ac:9a:72:35:e3:ab:b1:ab:2e:9a:c7:f6:46:1c:df:2b: 78:f5:73:7f:2e:44:79:72:04:d5:99:51:7d:10:90:b7:89:2e: a5:33:49:de:6f:e5:ed:85:5d:ea:90:cd:cd:47:81:be:f1:8f: f0:2c:14:df:27:7c:77:7a:39:d8:df:51:b7:23:2e:12:c1:68: e8:ff:8f:bb:0f:cf:c0:c8:0d:22:b7:df:93:a9:53:7a:74:55: 20:c5:3a:80:af:e7:ae:21:23:1c:b6:30:83:a4:53:be:f1:29: 69:44:99:e5:3c:d2:74:57:fe:c6:dc:1b:b3:c2:54:b4:64:31: 09:38:a4:bf:3a:8e:69:91:1b:4a:0a:17:50:19:f1:db:e3:7f: ed:d1:25:b5:56:83:97:5d:e2:86:3d:89:a8:21:f9:70:64:df: 46:46:72:05:c0:49:ca:29:21:a6:2e:da:e4:80:89:46:1f:49: 2f:a0:f0:81:ee:a0:fc:7f:cf:50:e3:c4:29:97:c1:53:49:67: 6e:14:3f:eb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSD9lT1VQ+XsuCjS3fKgL3g0cmzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDEwMDcwMDU1MDJaFw0yNTEwMDYwMTAwMDJaMDMxMTAvBgNV BAMTKDZCNTk2QTkzQUMyRTQ5MDQ3NjEyMjM3QTI0NzAyNUIyN0QxNTMzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC43F9XYnC2n9Hb/nEr/vKAX7Br np69toUM1wBUGinWTArVjXPgg0PJ0fu6btE/ynBL61KHAIwyk2WNC+JfEup0MYXV Y4OXk4N8L3vfGzTrMTUEGmB6Nyrg3ATr6AugbviUmIS0A2W3orDzAOQF2hvNjXOC VH/KQNOU4+i5Ml+4nxmRk+bQypbkvLygl40GnepYmOEw7sic1J6l+PYv30OHxdyn Pq4L9mWkFcTR2hoYJfAgZG6x5W/XFtXQpzs0uCzo/3P5F1fMT1yQbyI4e+J8T9sg seqnwLGCsa+TSMuHv46h8nrSvsp8rLmoJfWIp02bn1cVGj2hnztIPoz38OlJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUa1lqk6wuSQR2EiN6JHAlsn0VMzAwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpJGjANBgkqhkiG 9w0BAQsFAAOCAQEAw4V9x/mwqsjFN1tiJKHJ3MDBDydvd4BZ1aqS0tydyeaXMo86 aqPt0ywEKOFKSHp767TC81MI1vysmnI146uxqy6ax/ZGHN8rePVzfy5EeXIE1ZlR fRCQt4kupTNJ3m/l7YVd6pDNzUeBvvGP8CwU3yd8d3o52N9RtyMuEsFo6P+Puw/P wMgNIrffk6lTenRVIMU6gK/nriEjHLYwg6RTvvEpaUSZ5TzSdFf+xtwbs8JUtGQx CTikvzqOaZEbSgoXUBnx2+N/7dEltVaDl13ihj2JqCH5cGTfRkZyBcBJyikhpi7a 5ICJRh9JL6Dwge6g/H/PUOPEKZfBU0lnbhQ/6w== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org