$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34312e302f32342d3234203d3e203538343837.roa File: 3230322e31302e34312e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: sD7Cs8x2umA+9VibmhoSAIi0mk2BBHdCKEVzVHo5um0= Subject key identifier: A7:F9:0F:C9:92:94:6C:B2:0F:C0:F6:8E:42:83:55:16:F7:0F:64:9D Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 3B6796EDD14DAB05D100CD4F217E5262591AB2CE Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34312e302f32342d3234203d3e203538343837.roa Signing time: Thu 11 Apr 2024 10:02:02 +0000 ROA not before: Thu 11 Apr 2024 09:57:02 +0000 ROA not after: Thu 10 Apr 2025 10:02:02 +0000 asID: 58487 IP address blocks: 202.10.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:67:96:ed:d1:4d:ab:05:d1:00:cd:4f:21:7e:52:62:59:1a:b2:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Apr 11 09:57:02 2024 GMT Not After : Apr 10 10:02:02 2025 GMT Subject: CN=A7F90FC992946CB20FC0F68E42835516F70F649D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b8:ec:61:71:41:8e:07:d6:54:af:95:2d:1c: 80:78:fa:81:82:80:ba:fa:7e:a8:63:74:64:47:fe: 32:43:b7:fb:6f:4a:5e:16:92:30:5c:34:06:49:ac: 73:72:fc:7e:ff:85:da:19:80:3a:c6:64:2b:9c:7c: 6f:d6:0c:8b:27:d5:9d:b0:b5:5a:77:b5:7a:36:01: c7:16:05:7b:15:15:10:30:35:4b:50:8d:62:0a:a5: 46:c2:80:07:db:ce:82:1b:d6:dc:da:e9:dc:51:f8: 7c:76:05:e6:df:5b:9d:d3:f9:18:71:ca:04:03:b0: 41:42:69:ba:07:ac:ea:87:97:44:c2:db:5b:44:a0: 36:71:a3:46:bb:30:e3:8d:6e:12:2b:0d:47:1f:bb: b8:93:c5:d5:f6:2b:80:ec:53:49:6b:76:9e:6c:bc: 06:b7:4f:9b:c3:8d:dd:31:e0:ae:a6:9a:fa:f0:78: 81:a4:80:49:25:0e:4c:1b:81:7d:af:0a:8f:9b:bd: 6e:05:00:aa:08:a0:ce:ee:6e:47:61:3b:66:bb:e7: cc:e4:69:cb:cf:aa:b1:71:e9:69:85:30:3c:e0:cc: 7f:e5:71:a1:91:40:a0:41:50:92:b8:d4:b5:25:c9: 76:58:46:d8:23:11:78:c0:f2:2d:ba:cf:2b:70:93: 2f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:F9:0F:C9:92:94:6C:B2:0F:C0:F6:8E:42:83:55:16:F7:0F:64:9D X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34312e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.41.0/24 Signature Algorithm: sha256WithRSAEncryption 90:fd:de:3e:14:b3:3f:42:70:73:83:6d:5d:7d:97:32:63:c3: 13:51:bc:5f:0b:d5:26:8f:c4:6d:4c:8f:2b:ef:d3:ff:52:b9: 88:b2:5a:01:4a:cd:96:89:02:75:56:dc:6c:5e:35:4b:79:ac: e8:79:02:62:14:b6:f1:c1:c5:20:76:1c:0d:9e:b6:20:de:88: 9e:5b:b9:aa:61:23:1f:78:fe:1e:a9:f3:f5:c4:6a:0a:d2:39: a2:0f:73:b3:1a:30:93:05:fe:49:24:76:fe:85:49:4c:3b:f2: f1:de:74:51:2e:cf:05:c6:36:59:20:59:5a:01:39:3a:cd:2a: 9b:1f:dd:5c:73:0a:71:09:27:01:77:29:d0:c7:ca:9a:b1:0c: cb:8f:de:96:08:45:bf:1b:ed:ce:66:68:8f:53:59:98:c6:be: 33:cd:e2:d3:a0:e2:e7:e6:9c:98:d5:cc:a3:6c:15:40:9b:8b: 88:24:d9:e8:9c:64:00:cf:c0:79:0c:ee:3a:b4:55:a5:2f:e0: 8b:c4:98:e5:95:70:b7:27:b9:d8:36:e0:ef:bf:f4:9c:6c:19: f6:83:90:6a:44:3d:f5:28:ba:a1:26:02:94:6c:91:86:73:ad: 9b:9d:26:db:a3:05:7e:b6:6a:23:b0:90:c6:34:d7:6c:60:65: ca:5a:10:82 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUO2eW7dFNqwXRAM1PIX5SYlkass4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDA0MTEwOTU3MDJaFw0yNTA0MTAxMDAyMDJaMDMxMTAvBgNV BAMTKEE3RjkwRkM5OTI5NDZDQjIwRkMwRjY4RTQyODM1NTE2RjcwRjY0OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwuOxhcUGOB9ZUr5UtHIB4+oGC gLr6fqhjdGRH/jJDt/tvSl4WkjBcNAZJrHNy/H7/hdoZgDrGZCucfG/WDIsn1Z2w tVp3tXo2AccWBXsVFRAwNUtQjWIKpUbCgAfbzoIb1tza6dxR+Hx2BebfW53T+Rhx ygQDsEFCaboHrOqHl0TC21tEoDZxo0a7MOONbhIrDUcfu7iTxdX2K4DsU0lrdp5s vAa3T5vDjd0x4K6mmvrweIGkgEklDkwbgX2vCo+bvW4FAKoIoM7ubkdhO2a758zk acvPqrFx6WmFMDzgzH/lcaGRQKBBUJK41LUlyXZYRtgjEXjA8i26zytwky8vAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUp/kPyZKUbLIPwPaOQoNVFvcPZJ0wHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCikwDQYJKoZIhvcN AQELBQADggEBAJD93j4Usz9CcHODbV19lzJjwxNRvF8L1SaPxG1Mjyvv0/9SuYiy WgFKzZaJAnVW3GxeNUt5rOh5AmIUtvHBxSB2HA2etiDeiJ5buaphIx94/h6p8/XE agrSOaIPc7MaMJMF/kkkdv6FSUw78vHedFEuzwXGNlkgWVoBOTrNKpsf3VxzCnEJ JwF3KdDHypqxDMuP3pYIRb8b7c5maI9TWZjGvjPN4tOg4ufmnJjVzKNsFUCbi4gk 2eicZADPwHkM7jq0VaUv4IvEmOWVcLcnudg24O+/9JxsGfaDkGpEPfUouqEmApRs kYZzrZudJtujBX62aiOwkMY012xgZcpaEII= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org