$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34342e302f32342d3234203d3e203538343837.roa File: 3230322e31302e34342e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: a2TdrZVsplTkN2su5mK7vSsG8btcKvmGJ67XePuGDr0= Subject key identifier: 67:6E:BF:59:AD:36:B5:49:9C:9A:9D:2A:37:03:F1:D4:B2:01:11:F9 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 27DBF5691E9653070A93DA8C180A9C1B9BDEE942 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34342e302f32342d3234203d3e203538343837.roa Signing time: Thu 11 Apr 2024 10:02:02 +0000 ROA not before: Thu 11 Apr 2024 09:57:02 +0000 ROA not after: Thu 10 Apr 2025 10:02:02 +0000 asID: 58487 IP address blocks: 202.10.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:db:f5:69:1e:96:53:07:0a:93:da:8c:18:0a:9c:1b:9b:de:e9:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Apr 11 09:57:02 2024 GMT Not After : Apr 10 10:02:02 2025 GMT Subject: CN=676EBF59AD36B5499C9A9D2A3703F1D4B20111F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f1:ed:57:38:6a:47:7d:01:26:79:3f:81:09: fc:59:77:b7:29:7e:7d:9f:12:4b:b9:f4:95:95:44: 37:c2:05:0d:0a:7d:01:49:8d:ad:09:5c:ce:79:66: 7a:a4:ae:10:80:b8:17:31:87:f0:de:2d:39:2a:14: ca:33:1c:2e:70:fa:59:96:2d:5b:23:ef:88:43:d4: 2a:a3:29:57:bb:54:38:6b:ab:d7:81:f9:cc:cd:37: cd:c1:9a:75:cf:55:80:b0:86:10:a0:88:37:a0:20: 09:73:9a:e9:9d:1f:e0:6e:cd:4c:61:7a:26:9e:9b: 9d:6b:26:dc:52:b7:40:f8:ce:4a:09:36:29:5c:db: 61:64:b3:67:4d:b0:b3:6c:44:0a:f1:4e:f1:b6:cb: c1:59:7c:16:e9:bc:44:91:37:9b:07:f7:84:08:d6: 67:5f:d3:75:72:4a:46:71:d2:b9:68:12:5d:64:19: 59:b7:94:83:7f:11:7b:8b:86:e0:5e:55:af:8d:a7: 3f:14:ab:54:57:b5:5d:7d:24:53:e1:b5:b8:74:75: 53:d0:11:06:e3:62:f9:cd:ad:1e:60:b0:f0:c9:bd: a1:82:20:90:00:29:ad:35:5d:2d:0a:e5:ad:6b:ae: 7f:fc:8f:58:5d:a7:24:39:24:7d:37:27:3b:c5:c4: e7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:6E:BF:59:AD:36:B5:49:9C:9A:9D:2A:37:03:F1:D4:B2:01:11:F9 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34342e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.44.0/24 Signature Algorithm: sha256WithRSAEncryption a8:c2:dd:8a:97:d8:19:c1:5e:10:3a:c7:34:0f:9e:41:f5:73: 3b:e4:22:53:a6:56:a7:76:10:41:2f:a9:03:45:7c:84:f2:f5: 52:fe:86:1a:85:87:e2:54:cc:c0:61:ac:95:26:35:09:b1:c2: f6:01:df:3b:bd:95:a9:94:27:00:11:b1:a2:ad:5b:c0:a0:66: dd:a9:c4:3e:bb:ad:f0:01:af:e9:7b:5a:fa:73:ef:c9:d2:4b: c7:cd:2e:a7:1b:4b:52:a3:a1:02:0c:4f:a6:49:f3:32:de:53: 47:9d:43:5a:98:00:ac:2b:39:da:55:da:5e:2b:12:87:f4:9c: 4b:90:73:27:13:d0:5e:aa:02:42:e1:c8:ae:4a:3f:4f:ad:39: 4c:ad:50:14:24:5e:d7:5e:52:e9:74:5e:a2:dd:74:0d:3f:81: 29:d1:7d:57:c1:a8:95:ab:cb:87:2f:24:9c:dc:19:3f:ce:bf: 63:4c:63:24:b2:23:36:2c:b8:16:35:f7:e8:6b:f4:fb:84:58: 7c:b9:ed:62:86:1f:7c:ac:6a:e9:e6:ce:5c:29:4e:84:50:9c: ab:f5:fe:ab:b2:3a:d3:81:41:44:c2:cb:cc:b2:a0:fb:ab:60: 20:e1:73:c7:23:41:49:bc:bc:9d:4a:a7:ce:47:fa:17:9a:9c: 8e:36:5b:8a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJ9v1aR6WUwcKk9qMGAqcG5ve6UIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDA0MTEwOTU3MDJaFw0yNTA0MTAxMDAyMDJaMDMxMTAvBgNV BAMTKDY3NkVCRjU5QUQzNkI1NDk5QzlBOUQyQTM3MDNGMUQ0QjIwMTExRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa8e1XOGpHfQEmeT+BCfxZd7cp fn2fEku59JWVRDfCBQ0KfQFJja0JXM55ZnqkrhCAuBcxh/DeLTkqFMozHC5w+lmW LVsj74hD1CqjKVe7VDhrq9eB+czNN83BmnXPVYCwhhCgiDegIAlzmumdH+BuzUxh eiaem51rJtxSt0D4zkoJNilc22Fks2dNsLNsRArxTvG2y8FZfBbpvESRN5sH94QI 1mdf03VySkZx0rloEl1kGVm3lIN/EXuLhuBeVa+Npz8Uq1RXtV19JFPhtbh0dVPQ EQbjYvnNrR5gsPDJvaGCIJAAKa01XS0K5a1rrn/8j1hdpyQ5JH03JzvFxOf7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZ26/Wa02tUmcmp0qNwPx1LIBEfkwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMyMzAzMjJlMzEzMDJlMzQzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNDM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCiwwDQYJKoZIhvcN AQELBQADggEBAKjC3YqX2BnBXhA6xzQPnkH1czvkIlOmVqd2EEEvqQNFfITy9VL+ hhqFh+JUzMBhrJUmNQmxwvYB3zu9lamUJwARsaKtW8CgZt2pxD67rfABr+l7Wvpz 78nSS8fNLqcbS1KjoQIMT6ZJ8zLeU0edQ1qYAKwrOdpV2l4rEof0nEuQcycT0F6q AkLhyK5KP0+tOUytUBQkXtdeUul0XqLddA0/gSnRfVfBqJWry4cvJJzcGT/Ov2NM YySyIzYsuBY19+hr9PuEWHy57WKGH3ysaunmzlwpToRQnKv1/quyOtOBQUTCy8yy oPurYCDhc8cjQUm8vJ1Kp85H+heanI42W4o= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org