$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32332d3233203d3e203538343837.roa File: 3230322e31302e34322e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: mNuSluHFgSIbpNU7f+H8+ht3NEg8RYHaJtxwflw7a94= Subject key identifier: 2B:4A:FA:6C:E7:91:87:75:9C:8F:31:5C:6B:2E:A0:80:28:83:91:E4 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 6E308DEB0391B72A94012B2B63661D47CA802F77 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32332d3233203d3e203538343837.roa Signing time: Thu 11 Apr 2024 10:02:03 +0000 ROA not before: Thu 11 Apr 2024 09:57:03 +0000 ROA not after: Thu 10 Apr 2025 10:02:03 +0000 asID: 58487 IP address blocks: 202.10.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:30:8d:eb:03:91:b7:2a:94:01:2b:2b:63:66:1d:47:ca:80:2f:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Apr 11 09:57:03 2024 GMT Not After : Apr 10 10:02:03 2025 GMT Subject: CN=2B4AFA6CE79187759C8F315C6B2EA080288391E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:11:dd:03:81:b0:76:7c:e6:04:c8:48:76:bd: 6f:a7:23:ed:4e:80:3d:8c:e0:c0:17:39:e7:5e:18: 36:98:d9:90:8c:e7:5a:70:d7:af:3c:ed:18:b2:00: 48:24:f8:3c:b1:53:78:ba:2c:09:d2:44:d4:01:f4: a7:99:49:80:05:7a:40:7d:69:f8:9d:6c:dd:cf:9e: cb:a4:f5:47:fb:3e:60:c2:37:2c:63:5c:40:0c:1b: 4f:13:3a:a0:13:a1:c7:d5:9c:ec:81:99:dc:2c:5e: e5:6d:85:c2:8b:23:06:ba:db:d0:30:8a:3c:fe:0c: 10:1e:7a:84:80:c3:3b:4e:21:b7:5c:66:37:ad:47: 57:9b:b3:5b:3a:ce:17:1b:22:4c:ce:6d:af:87:2b: 3d:50:4d:b8:90:61:4f:fd:b6:9d:62:22:c3:4b:a6: 66:c9:9b:ce:85:8f:97:5d:a8:4f:0f:d1:64:01:1e: 9e:23:e9:bc:a6:53:f6:fa:c3:b5:11:ef:ee:8c:01: b1:3f:da:0e:93:d8:58:26:98:da:5c:d5:07:cf:a0: 07:8d:68:0a:99:32:f6:73:1b:bc:69:4c:64:f1:e0: fe:04:dd:82:ee:0a:7b:10:c5:e5:7c:be:54:bc:5d: 75:a1:16:c8:76:18:2d:92:c9:18:b9:eb:0c:b2:68: 59:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4A:FA:6C:E7:91:87:75:9C:8F:31:5C:6B:2E:A0:80:28:83:91:E4 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34322e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.42.0/23 Signature Algorithm: sha256WithRSAEncryption b0:05:23:02:a0:77:e8:f3:8d:11:a2:8d:a7:30:b1:7a:5b:fa: f1:1c:f4:f8:53:5a:bd:91:87:ee:44:6f:24:11:04:1c:91:78: 1f:09:3a:fc:80:7e:16:64:f5:e0:b4:b0:c6:ea:89:3d:7a:df: f5:09:29:11:fa:a6:8b:79:26:d4:7a:39:19:b7:a4:d4:8b:68: 91:ea:ec:c3:5b:1a:71:7e:b0:cd:e6:6e:39:38:24:d6:52:0a: b1:83:1a:e7:3b:94:03:07:c3:a3:e0:e5:ee:9a:86:e9:bc:97: 21:2b:43:0f:9d:3b:6b:2f:36:bb:53:81:b2:d5:16:98:64:bf: c9:2f:51:38:8c:80:95:23:e5:a4:5d:44:28:a2:91:8e:b5:2c: 6f:54:4a:07:d0:6f:0a:d7:68:78:58:1e:c1:14:3e:53:b9:9c: 28:56:6c:54:94:3c:6f:53:34:d3:f6:4a:ab:e6:02:a5:9f:b4: 1f:1d:ca:67:4b:f7:8a:b2:90:70:f8:ae:20:09:d6:61:fe:ab: 02:16:a2:51:15:ea:93:70:cf:a1:01:8c:91:3c:17:a0:8e:c4: 6e:7d:bb:88:9d:69:df:cb:2f:d3:dd:fb:c6:43:ea:f9:a0:f2: 62:50:b8:19:b5:c9:81:93:0a:10:7c:d5:c5:d5:b3:e6:44:8d: 84:0e:32:d1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbjCN6wORtyqUASsrY2YdR8qAL3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDA0MTEwOTU3MDNaFw0yNTA0MTAxMDAyMDNaMDMxMTAvBgNV BAMTKDJCNEFGQTZDRTc5MTg3NzU5QzhGMzE1QzZCMkVBMDgwMjg4MzkxRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Ed0DgbB2fOYEyEh2vW+nI+1O gD2M4MAXOedeGDaY2ZCM51pw16887RiyAEgk+DyxU3i6LAnSRNQB9KeZSYAFekB9 afidbN3Pnsuk9Uf7PmDCNyxjXEAMG08TOqATocfVnOyBmdwsXuVthcKLIwa629Aw ijz+DBAeeoSAwztOIbdcZjetR1ebs1s6zhcbIkzOba+HKz1QTbiQYU/9tp1iIsNL pmbJm86Fj5ddqE8P0WQBHp4j6bymU/b6w7UR7+6MAbE/2g6T2FgmmNpc1QfPoAeN aAqZMvZzG7xpTGTx4P4E3YLuCnsQxeV8vlS8XXWhFsh2GC2SyRi56wyyaFkJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUK0r6bOeRh3WcjzFcay6ggCiDkeQwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKCiowDQYJKoZIhvcN AQELBQADggEBALAFIwKgd+jzjRGijacwsXpb+vEc9PhTWr2Rh+5EbyQRBByReB8J OvyAfhZk9eC0sMbqiT163/UJKRH6pot5JtR6ORm3pNSLaJHq7MNbGnF+sM3mbjk4 JNZSCrGDGuc7lAMHw6Pg5e6ahum8lyErQw+dO2svNrtTgbLVFphkv8kvUTiMgJUj 5aRdRCiikY61LG9USgfQbwrXaHhYHsEUPlO5nChWbFSUPG9TNNP2SqvmAqWftB8d ymdL94qykHD4riAJ1mH+qwIWolEV6pNwz6EBjJE8F6COxG59u4idad/LL9Pd+8ZD 6vmg8mJQuBm1yYGTChB81cXVs+ZEjYQOMtE= -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org