$ rpki-client -vvf repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa File: 3230322e39332e3131322e302f32302d3234203d3e203233363936.roa (raw, json) Hash identifier: bYiP/gT3tssmEshWDR+uWvBdHdyDVEshU6H8/AUYQ8o= Subject key identifier: 61:65:4E:85:F4:50:14:79:A9:C2:F0:5D:86:5D:31:E9:EE:CB:0B:16 Certificate issuer: /CN=3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0 Certificate serial: 34D28865118E3AF32F13FA529E140DB45C0DAC0E Authority key identifier: 3D:1D:44:97:31:55:6F:8E:14:51:DE:65:BB:2E:0F:88:EF:CE:0C:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa Signing time: Mon 01 Jul 2024 01:04:15 +0000 ROA not before: Mon 01 Jul 2024 00:59:15 +0000 ROA not after: Mon 30 Jun 2025 01:04:15 +0000 asID: 23696 IP address blocks: 202.93.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.crl rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:d2:88:65:11:8e:3a:f3:2f:13:fa:52:9e:14:0d:b4:5c:0d:ac:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0 Validity Not Before: Jul 1 00:59:15 2024 GMT Not After : Jun 30 01:04:15 2025 GMT Subject: CN=61654E85F4501479A9C2F05D865D31E9EECB0B16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:de:e7:c5:c1:ae:33:cb:36:5a:65:1d:2e:a4: 18:c2:60:87:a4:dd:13:28:36:f0:7d:2d:7d:d8:bf: 0c:aa:5d:68:68:fb:00:c3:3a:78:f0:2d:25:35:01: 5f:df:64:de:4a:8d:19:05:d8:0c:f5:81:c5:60:76: 99:95:43:73:00:b7:7e:59:2f:dc:f1:56:d8:0c:30: f6:17:99:38:7d:9c:18:d3:71:41:fd:b1:54:3a:d9: b0:e7:40:2d:78:e9:e8:c7:ff:bc:d7:5e:f7:90:b2: 5d:79:91:a7:1d:9f:a3:44:0f:d2:80:fb:d2:e4:1c: 1c:ca:e2:3d:e5:7d:e7:33:93:17:6c:5b:86:ff:58: 8a:30:88:12:1f:b0:71:ef:71:58:cd:30:34:2f:18: ef:14:f6:68:da:6c:ce:26:9a:2e:1f:0a:b8:96:c2: f0:02:dc:7f:1b:68:72:9d:8a:35:8f:5e:58:43:cd: cc:51:66:fc:dc:28:76:45:29:ab:61:8c:41:86:a4: 07:3b:3e:f1:f9:37:9c:73:0f:03:45:66:96:d6:50: 36:f7:70:da:ea:4b:33:45:b3:ba:ef:4f:e8:a8:b5: e9:04:79:4c:76:a5:a8:6b:25:e9:a4:6d:3e:e7:c7: ac:48:da:4f:9d:42:10:4d:82:21:07:93:36:3e:e8: a8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:65:4E:85:F4:50:14:79:A9:C2:F0:5D:86:5D:31:E9:EE:CB:0B:16 X509v3 Authority Key Identifier: keyid:3D:1D:44:97:31:55:6F:8E:14:51:DE:65:BB:2E:0F:88:EF:CE:0C:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.112.0/20 Signature Algorithm: sha256WithRSAEncryption 85:99:b3:19:83:c1:06:fe:ea:d7:13:0c:bb:5f:c2:29:9c:e8: e3:f6:48:48:8c:91:02:0e:3b:0e:b1:b5:88:1d:92:b9:22:78: 4c:a8:4f:63:f6:48:35:65:90:75:48:e7:e2:22:5a:fb:69:91: 38:0d:e6:ba:5c:55:11:c9:79:6e:5e:a2:4e:14:7f:49:43:75: 71:25:1f:32:19:73:5e:30:4b:d7:a5:94:46:9b:c5:26:92:ef: 2a:71:95:b3:e6:19:da:97:78:2d:25:2a:b4:63:1a:cd:73:4b: 48:e6:20:7d:9f:2e:a1:5c:7f:2b:53:4d:75:eb:ce:72:f8:df: c7:a4:e2:eb:b1:3a:23:f5:5b:5f:57:ec:5a:de:13:e9:b8:98: 85:62:80:a0:9b:eb:9a:41:72:42:24:03:8d:08:47:2a:26:94: 6e:c3:5f:c1:a4:b6:47:cf:ca:0f:32:fd:8a:29:67:37:14:dc: a3:fb:5c:2a:71:16:a3:0e:88:cf:15:03:43:9c:eb:1e:04:65: 97:ee:5f:ee:11:19:c3:72:71:e4:2e:98:f5:7b:4d:85:25:7f: 19:8b:a1:8c:6c:e6:a7:e6:e8:3e:f6:bf:77:15:dd:ec:88:ec: db:e8:9e:d7:b6:0a:40:36:06:39:6b:da:b1:3b:bb:ce:dc:a5: aa:f6:32:b6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNNKIZRGOOvMvE/pSnhQNtFwNrA4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxRDQ0OTczMTU1NkY4RTE0NTFERTY1QkIyRTBGODhF RkNFMENBMDAeFw0yNDA3MDEwMDU5MTVaFw0yNTA2MzAwMTA0MTVaMDMxMTAvBgNV BAMTKDYxNjU0RTg1RjQ1MDE0NzlBOUMyRjA1RDg2NUQzMUU5RUVDQjBCMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm3ufFwa4zyzZaZR0upBjCYIek 3RMoNvB9LX3YvwyqXWho+wDDOnjwLSU1AV/fZN5KjRkF2Az1gcVgdpmVQ3MAt35Z L9zxVtgMMPYXmTh9nBjTcUH9sVQ62bDnQC146ejH/7zXXveQsl15kacdn6NED9KA +9LkHBzK4j3lfeczkxdsW4b/WIowiBIfsHHvcVjNMDQvGO8U9mjabM4mmi4fCriW wvAC3H8baHKdijWPXlhDzcxRZvzcKHZFKathjEGGpAc7PvH5N5xzDwNFZpbWUDb3 cNrqSzNFs7rvT+iotekEeUx2pahrJemkbT7nx6xI2k+dQhBNgiEHkzY+6KiLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYWVOhfRQFHmpwvBdhl0x6e7LCxYwHwYDVR0j BBgwFoAUPR1ElzFVb44UUd5luy4PiO/ODKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OGM3Mzk2Yy00YmJlLTRjNmUtOGY1MC00NDJjMjA1ZTA3MGMvMC8zRDFENDQ5NzMx NTU2RjhFMTQ1MURFNjVCQjJFMEY4OEVGQ0UwQ0EwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxRDQ0OTczMTU1NkY4RTE0NTFERTY1QkIyRTBGODhFRkNF MENBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzczOTZjLTRiYmUtNGM2ZS04 ZjUwLTQ0MmMyMDVlMDcwYy8wLzMyMzAzMjJlMzkzMzJlMzEzMTMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpdcDANBgkqhkiG 9w0BAQsFAAOCAQEAhZmzGYPBBv7q1xMMu1/CKZzo4/ZISIyRAg47DrG1iB2SuSJ4 TKhPY/ZINWWQdUjn4iJa+2mROA3mulxVEcl5bl6iThR/SUN1cSUfMhlzXjBL16WU RpvFJpLvKnGVs+YZ2pd4LSUqtGMazXNLSOYgfZ8uoVx/K1NNdevOcvjfx6Ti67E6 I/VbX1fsWt4T6biYhWKAoJvrmkFyQiQDjQhHKiaUbsNfwaS2R8/KDzL9iilnNxTc o/tcKnEWow6IzxUDQ5zrHgRll+5f7hEZw3Jx5C6Y9XtNhSV/GYuhjGzmp+boPva/ dxXd7Ijs2+ie17YKQDYGOWvasTu7ztylqvYytg== -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org