$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33382e302f32332d3233203d3e203538343837.roa File: 3230322e31302e33382e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: hQ/XBPzAAl93OTY614ZbJdqzDDZOPH84H/CC7p0rlRA= Subject key identifier: AC:3F:40:EB:AC:EE:60:34:AA:09:55:CD:25:C7:C2:FD:13:2F:89:61 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 4C94E41F01DEAE66881D3A960E2415ADF6C996A1 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33382e302f32332d3233203d3e203538343837.roa Signing time: Thu 11 Apr 2024 10:02:03 +0000 ROA not before: Thu 11 Apr 2024 09:57:03 +0000 ROA not after: Thu 10 Apr 2025 10:02:03 +0000 asID: 58487 IP address blocks: 202.10.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:94:e4:1f:01:de:ae:66:88:1d:3a:96:0e:24:15:ad:f6:c9:96:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Apr 11 09:57:03 2024 GMT Not After : Apr 10 10:02:03 2025 GMT Subject: CN=AC3F40EBACEE6034AA0955CD25C7C2FD132F8961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:46:3d:ef:12:ce:d8:dd:23:2b:23:c2:bf:d3: 04:d4:f2:36:5a:3b:04:f1:15:eb:51:5a:a9:81:a3: d2:76:e7:b0:65:3c:ae:27:19:6e:d7:82:66:40:c8: ea:b2:32:09:02:25:60:d2:86:1a:50:cf:e6:ec:1e: 28:6f:2f:5e:c9:72:ad:96:65:db:38:b2:4e:64:e5: 71:4c:f0:1a:92:49:0e:73:11:01:d5:19:d4:7c:06: ac:e8:b0:65:fe:d4:fb:8b:f7:72:ef:42:fa:17:07: 02:da:81:e9:db:b8:cf:92:17:fa:16:be:18:d8:25: 45:1e:6a:10:86:57:69:c1:99:ce:d8:cc:60:e8:bc: c5:e0:ef:e6:1a:d0:0f:dd:41:ce:86:90:91:03:4f: 13:a2:bf:ac:d9:0c:bd:ee:6c:11:39:3a:dc:a3:c8: a9:be:83:d2:3a:d0:af:ae:be:f8:6c:4a:4b:8b:1f: 9a:b9:3a:09:83:43:14:cb:c9:1e:d7:e3:90:91:43: 4d:bc:43:c2:fd:23:aa:5f:7b:0f:fc:17:27:68:ad: d4:a3:8e:77:8d:70:df:09:c1:88:9f:98:ca:d1:12: 3d:35:cb:3f:dd:8e:1d:fc:0b:26:e3:b3:2c:b8:cd: 05:51:a5:da:91:65:b4:17:f1:fd:c9:2d:62:3c:74: 75:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3F:40:EB:AC:EE:60:34:AA:09:55:CD:25:C7:C2:FD:13:2F:89:61 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e33382e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.38.0/23 Signature Algorithm: sha256WithRSAEncryption ca:c6:26:4c:e8:ed:bf:f1:ad:6f:d2:02:8d:c8:7a:c8:23:66: 48:67:c9:7b:03:43:9f:b2:bb:37:07:c7:33:1d:bd:7b:ed:bc: 04:d3:27:2c:f8:a3:ce:9d:c7:69:c3:0d:99:33:95:2b:53:5b: ff:e7:4d:83:de:6b:08:57:81:e4:98:ac:1d:9f:ff:78:95:bf: fe:44:06:ba:b8:6f:64:d6:90:12:83:4a:76:b6:23:49:14:50: 80:b6:7b:28:f1:5d:1f:86:cb:5e:c9:26:d6:c9:75:0c:99:04: 9b:44:3d:1d:00:4c:b1:5c:6d:0e:ef:7c:38:d2:fb:f7:86:6a: d5:4b:60:2e:08:8d:b9:79:86:83:9e:3d:01:40:d6:bf:87:c2: 55:52:80:8d:ec:f8:58:de:39:ef:d3:02:ed:6a:d9:7b:36:a0: 8d:bc:17:0a:57:1d:c3:bd:33:af:31:b4:a5:79:43:0e:b7:87: 71:cd:8c:05:34:bf:c5:28:c6:d5:32:5b:24:ab:83:dc:6c:39: 82:70:e6:53:04:16:c0:d6:62:fd:77:ef:86:74:1f:a9:8a:b3: 71:ed:e3:1a:68:66:22:78:6e:24:1a:f8:f4:bc:be:69:46:e3: be:1d:40:98:82:22:7d:97:6a:06:e9:af:c6:2a:b2:62:a6:43: b5:1f:7f:a8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTJTkHwHermaIHTqWDiQVrfbJlqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDA0MTEwOTU3MDNaFw0yNTA0MTAxMDAyMDNaMDMxMTAvBgNV BAMTKEFDM0Y0MEVCQUNFRTYwMzRBQTA5NTVDRDI1QzdDMkZEMTMyRjg5NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeRj3vEs7Y3SMrI8K/0wTU8jZa OwTxFetRWqmBo9J257BlPK4nGW7XgmZAyOqyMgkCJWDShhpQz+bsHihvL17Jcq2W Zds4sk5k5XFM8BqSSQ5zEQHVGdR8BqzosGX+1PuL93LvQvoXBwLagenbuM+SF/oW vhjYJUUeahCGV2nBmc7YzGDovMXg7+Ya0A/dQc6GkJEDTxOiv6zZDL3ubBE5Otyj yKm+g9I60K+uvvhsSkuLH5q5OgmDQxTLyR7X45CRQ028Q8L9I6pfew/8FydordSj jneNcN8JwYifmMrREj01yz/djh38Cybjsyy4zQVRpdqRZbQX8f3JLWI8dHX9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUrD9A66zuYDSqCVXNJcfC/RMviWEwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzMzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiYwDQYJKoZIhvcN AQELBQADggEBAMrGJkzo7b/xrW/SAo3IesgjZkhnyXsDQ5+yuzcHxzMdvXvtvATT Jyz4o86dx2nDDZkzlStTW//nTYPeawhXgeSYrB2f/3iVv/5EBrq4b2TWkBKDSna2 I0kUUIC2eyjxXR+Gy17JJtbJdQyZBJtEPR0ATLFcbQ7vfDjS+/eGatVLYC4Ijbl5 hoOePQFA1r+HwlVSgI3s+FjeOe/TAu1q2Xs2oI28FwpXHcO9M68xtKV5Qw63h3HN jAU0v8UoxtUyWySrg9xsOYJw5lMEFsDWYv1374Z0H6mKs3Ht4xpoZiJ4biQa+PS8 vmlG474dQJiCIn2Xagbpr8YqsmKmQ7Uff6g= -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org