$ rpki-client -vvf repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3230322e35322e3134302e302f32332d3233203d3e203436303631.roa File: 3230322e35322e3134302e302f32332d3233203d3e203436303631.roa (raw, json) Hash identifier: KjBI4hI0AlEFbo2xU6Bm4rvZiTCH+24WsSGbJ4G6HvE= Subject key identifier: 0A:74:EF:DC:97:AF:00:53:6A:8E:EE:15:FE:CD:22:23:CC:39:E3:16 Certificate issuer: /CN=667078BDA093F84040F3016D179CABA67F68A647 Certificate serial: 78C166BA9C5F442E91305D82EA216ED1DEB378CA Authority key identifier: 66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3230322e35322e3134302e302f32332d3233203d3e203436303631.roa Signing time: Wed 02 Oct 2024 09:00:02 +0000 ROA not before: Wed 02 Oct 2024 08:55:02 +0000 ROA not after: Wed 01 Oct 2025 09:00:02 +0000 asID: 46061 IP address blocks: 202.52.140.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c1:66:ba:9c:5f:44:2e:91:30:5d:82:ea:21:6e:d1:de:b3:78:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=667078BDA093F84040F3016D179CABA67F68A647 Validity Not Before: Oct 2 08:55:02 2024 GMT Not After : Oct 1 09:00:02 2025 GMT Subject: CN=0A74EFDC97AF00536A8EEE15FECD2223CC39E316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:25:76:fa:71:14:94:d9:b6:ab:cd:7a:87:69: 41:31:77:58:65:e3:36:00:ae:30:cf:0a:2e:b9:94: f5:2e:77:1e:92:71:6f:48:4d:26:ad:e6:7e:67:0e: 68:c3:91:f2:ba:af:c0:25:b2:69:89:5e:ef:a0:6e: 0d:88:da:94:f0:b8:af:da:4b:4a:a8:32:12:2d:1b: 9b:c8:e0:c7:24:f8:75:c4:86:1d:b6:c5:af:85:3c: 20:c0:61:a7:ce:61:bf:5c:8e:24:64:d2:a5:8e:75: f3:5a:11:b7:e8:b0:68:19:63:85:5d:ef:1d:e2:f8: 88:2e:0a:04:a3:56:9d:a0:ac:7b:90:56:6c:c5:69: 37:d8:eb:1f:eb:ff:a4:2a:df:eb:fb:07:15:5f:2b: 73:d2:b0:3c:85:73:39:94:e0:f3:2b:34:72:05:1b: 54:64:22:57:15:1d:6d:67:4d:0e:6f:46:77:b4:e4: 74:14:5b:00:cf:ec:36:a7:c4:f7:d7:06:69:cc:20: d2:25:e3:8b:f2:98:bc:23:c8:23:8b:9a:de:d9:be: f0:0a:c6:ae:1f:ad:5f:7b:86:14:09:3d:a8:14:29: f8:e5:24:16:23:e4:9e:1f:cf:6e:30:71:38:9a:22: 2e:d4:1f:0e:d7:de:f3:08:a0:40:2b:bd:70:86:da: 84:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:74:EF:DC:97:AF:00:53:6A:8E:EE:15:FE:CD:22:23:CC:39:E3:16 X509v3 Authority Key Identifier: keyid:66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/3230322e35322e3134302e302f32332d3233203d3e203436303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.140.0/23 Signature Algorithm: sha256WithRSAEncryption 00:a2:df:70:5d:0d:c1:cf:63:69:4f:b7:a1:37:3e:27:e8:bd: ac:a2:fd:df:d2:29:11:3b:c1:44:82:b9:7c:b3:05:a4:d8:1e: 88:7c:13:77:a5:b1:8e:16:b5:49:9c:d8:fe:d8:a9:08:b0:dc: ba:b5:47:98:ac:9e:36:e5:db:96:7e:3c:bc:93:dc:b4:df:09: 28:a2:98:22:5d:c1:d2:c8:d1:f7:85:e4:69:bd:4f:ea:2b:55: f9:c6:bf:14:dc:22:55:7a:51:8b:b5:c6:b0:be:b7:68:8e:5a: 46:8b:81:c1:45:ab:f8:1c:ad:8b:55:1c:bb:5b:39:a5:9c:97: 49:33:fb:1a:71:ee:22:61:ac:0a:fa:50:7d:01:3e:7d:1a:c0: c9:37:12:e5:55:74:58:28:a5:fa:e2:39:80:bb:23:32:46:e1: a9:67:20:3d:58:b1:81:38:5d:78:5b:37:ed:52:2c:63:91:0e: 04:52:4d:65:9f:0e:93:e8:0a:9a:73:4a:e5:d1:43:6f:b9:f2: 62:84:fe:71:44:e2:e3:ff:bd:fb:ee:4f:00:5e:11:52:30:2b: 4b:81:74:b7:13:fd:6c:e0:89:ca:f2:64:67:61:7a:7a:e5:38: 02:79:ff:b0:5b:56:6c:83:8b:ed:b1:90:a5:40:39:86:5d:05: 7b:f5:49:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeMFmupxfRC6RMF2C6iFu0d6zeMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3 RjY4QTY0NzAeFw0yNDEwMDIwODU1MDJaFw0yNTEwMDEwOTAwMDJaMDMxMTAvBgNV BAMTKDBBNzRFRkRDOTdBRjAwNTM2QThFRUUxNUZFQ0QyMjIzQ0MzOUUzMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+JXb6cRSU2barzXqHaUExd1hl 4zYArjDPCi65lPUudx6ScW9ITSat5n5nDmjDkfK6r8AlsmmJXu+gbg2I2pTwuK/a S0qoMhItG5vI4Mck+HXEhh22xa+FPCDAYafOYb9cjiRk0qWOdfNaEbfosGgZY4Vd 7x3i+IguCgSjVp2grHuQVmzFaTfY6x/r/6Qq3+v7BxVfK3PSsDyFczmU4PMrNHIF G1RkIlcVHW1nTQ5vRne05HQUWwDP7DanxPfXBmnMINIl44vymLwjyCOLmt7ZvvAK xq4frV97hhQJPagUKfjlJBYj5J4fz24wcTiaIi7UHw7X3vMIoEArvXCG2oSBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCnTv3JevAFNqju4V/s0iI8w54xYwHwYDVR0j BBgwFoAUZnB4vaCT+EBA8wFtF5yrpn9opkcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzMyNmY0ZS02NjA1LTQ5NmEtYjlmOC1kNmU3N2IyOWJjYzYvMC82NjcwNzhCREEw OTNGODQwNDBGMzAxNkQxNzlDQUJBNjdGNjhBNjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3RjY4 QTY0Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzI2ZjRlLTY2MDUtNDk2YS1i OWY4LWQ2ZTc3YjI5YmNjNi8wLzMyMzAzMjJlMzUzMjJlMzEzNDMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzQzNjMwMzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco0jDANBgkqhkiG 9w0BAQsFAAOCAQEAAKLfcF0Nwc9jaU+3oTc+J+i9rKL939IpETvBRIK5fLMFpNge iHwTd6Wxjha1SZzY/tipCLDcurVHmKyeNuXbln48vJPctN8JKKKYIl3B0sjR94Xk ab1P6itV+ca/FNwiVXpRi7XGsL63aI5aRouBwUWr+Byti1Ucu1s5pZyXSTP7GnHu ImGsCvpQfQE+fRrAyTcS5VV0WCil+uI5gLsjMkbhqWcgPVixgThdeFs37VIsY5EO BFJNZZ8Ok+gKmnNK5dFDb7nyYoT+cUTi4/+9++5PAF4RUjArS4F0txP9bOCJyvJk Z2F6euU4Ann/sFtWbIOL7bGQpUA5hl0Fe/VJEA== -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org