$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32332d3233203d3e203538343837.roa File: 3230322e31302e33342e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: yakcs8gYcQxyfIegBm69w/w7ULdenCgJzFTl1aCG6f0= Subject key identifier: 5F:36:B4:46:44:BB:9D:B8:B4:1F:67:E0:55:12:75:12:6E:73:D6:82 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 32D66F2F028718F7AA5FC9986168187395D14F6F Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32332d3233203d3e203538343837.roa Signing time: Thu 11 Apr 2024 09:02:30 +0000 ROA not before: Thu 11 Apr 2024 08:57:30 +0000 ROA not after: Thu 10 Apr 2025 09:02:30 +0000 asID: 58487 IP address blocks: 202.10.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:d6:6f:2f:02:87:18:f7:aa:5f:c9:98:61:68:18:73:95:d1:4f:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Apr 11 08:57:30 2024 GMT Not After : Apr 10 09:02:30 2025 GMT Subject: CN=5F36B44644BB9DB8B41F67E0551275126E73D682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:50:86:37:6a:ff:26:aa:1f:e9:74:0b:27:9c: bd:0d:d5:6a:0f:03:1e:57:d3:69:00:d9:e3:ab:09: 18:00:25:e3:c0:39:0e:9d:b3:11:b5:f6:9f:fe:77: a3:e1:43:2b:c8:ad:21:d4:78:e3:5d:bb:e5:5b:e7: 3f:d8:80:ca:80:ca:9c:a0:77:f0:9d:42:2f:88:f6: 19:17:aa:86:c7:81:88:b0:b9:b6:22:00:3b:eb:c5: e6:21:76:ff:19:cc:b2:86:08:31:76:58:9b:03:91: a3:7c:e4:63:3d:e9:a9:da:3c:1b:fd:80:b4:8b:91: b2:45:ca:11:c3:85:23:ac:1a:71:a1:1c:f1:26:67: 06:43:7e:53:73:5a:d0:16:10:7c:bf:23:e0:38:16: 29:85:b2:b6:9b:5c:41:ac:06:3c:7b:47:bf:39:35: 9b:24:e6:7e:d0:15:db:c7:dc:75:1c:4a:75:34:93: a1:db:16:bd:14:05:44:c2:c9:74:0c:07:6d:63:03: fc:9c:7b:61:de:6d:86:b8:c9:16:d7:8c:5f:de:31: 7f:fc:6e:ed:d6:a9:a3:dc:04:20:1b:69:12:a6:b9: 74:cd:ac:13:98:09:05:f7:e7:1c:f5:8b:b5:5c:a3: 48:f8:88:bf:69:e8:ac:f4:7b:90:36:38:dd:43:de: e4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:36:B4:46:44:BB:9D:B8:B4:1F:67:E0:55:12:75:12:6E:73:D6:82 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33342e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.34.0/23 Signature Algorithm: sha256WithRSAEncryption 65:df:a9:ae:ba:b6:8a:ba:d2:e0:fd:8c:9f:bd:3a:5e:da:1e: e5:06:6c:02:f6:b0:63:7f:e3:e7:db:72:89:3b:17:fd:36:7c: e2:9a:2a:d9:e4:4d:0d:93:03:6f:d3:27:f5:bb:cf:cb:fc:c9: 78:54:8e:82:82:e1:75:a5:98:d7:cf:7a:fe:cc:da:b5:5a:58: 07:95:8f:24:47:bd:87:e6:13:b8:d6:93:e0:67:7c:82:72:d8: 57:5d:68:3c:a2:ff:62:f3:89:54:a2:ed:3c:0e:fa:3e:45:68: 92:3a:f1:92:95:a4:28:71:2f:d5:32:60:26:f5:8c:8f:25:d8: 5b:e6:6b:8a:0f:e3:60:dd:ca:c6:5c:4a:64:bd:fc:e6:8b:27: 69:1e:51:a6:7f:ea:c4:48:b1:6a:e9:50:03:1c:93:13:9f:18: f8:b9:4d:4f:53:7e:0d:17:7f:0f:91:68:d5:d5:a8:d6:08:09: 2c:4a:0e:1f:dd:94:fe:43:40:18:37:c3:38:70:51:cd:43:45: fe:45:5a:7a:dd:e8:d4:65:63:82:c3:4c:0a:21:be:c5:20:ad: 26:73:06:b8:ff:d5:c9:7c:ab:16:fd:e5:99:86:4a:e2:d1:6f: f8:9a:46:57:de:0c:24:a7:42:bc:16:ca:6d:ea:d9:a4:fe:af: c6:3f:c0:85 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMtZvLwKHGPeqX8mYYWgYc5XRT28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDA0MTEwODU3MzBaFw0yNTA0MTAwOTAyMzBaMDMxMTAvBgNV BAMTKDVGMzZCNDQ2NDRCQjlEQjhCNDFGNjdFMDU1MTI3NTEyNkU3M0Q2ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqUIY3av8mqh/pdAsnnL0N1WoP Ax5X02kA2eOrCRgAJePAOQ6dsxG19p/+d6PhQyvIrSHUeONdu+Vb5z/YgMqAypyg d/CdQi+I9hkXqobHgYiwubYiADvrxeYhdv8ZzLKGCDF2WJsDkaN85GM96anaPBv9 gLSLkbJFyhHDhSOsGnGhHPEmZwZDflNzWtAWEHy/I+A4FimFsrabXEGsBjx7R785 NZsk5n7QFdvH3HUcSnU0k6HbFr0UBUTCyXQMB21jA/yce2HebYa4yRbXjF/eMX/8 bu3WqaPcBCAbaRKmuXTNrBOYCQX35xz1i7Vco0j4iL9p6Kz0e5A2ON1D3uTdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUXza0RkS7nbi0H2fgVRJ1Em5z1oIwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiIwDQYJKoZIhvcN AQELBQADggEBAGXfqa66toq60uD9jJ+9Ol7aHuUGbAL2sGN/4+fbcok7F/02fOKa KtnkTQ2TA2/TJ/W7z8v8yXhUjoKC4XWlmNfPev7M2rVaWAeVjyRHvYfmE7jWk+Bn fIJy2FddaDyi/2LziVSi7TwO+j5FaJI68ZKVpChxL9UyYCb1jI8l2Fvma4oP42Dd ysZcSmS9/OaLJ2keUaZ/6sRIsWrpUAMckxOfGPi5TU9Tfg0Xfw+RaNXVqNYICSxK Dh/dlP5DQBg3wzhwUc1DRf5FWnrd6NRlY4LDTAohvsUgrSZzBrj/1cl8qxb95ZmG SuLRb/iaRlfeDCSnQrwWym3q2aT+r8Y/wIU= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org