$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa File: 3230322e312e3233362e302f32342d3234203d3e203435373233.roa (raw, json) Hash identifier: HwN2bg6tpN4cAXIdPWemoQWQlWDtQ2WndlHfeEiKW70= Subject key identifier: 99:12:20:F7:4E:1C:A6:78:99:D6:35:78:7A:9F:F2:2C:FC:AC:7D:69 Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 3836F7421EE9BAD7BAEBACE8B3A849EC31EF9805 Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa Signing time: Fri 26 Jan 2024 03:18:05 +0000 ROA not before: Fri 26 Jan 2024 03:13:05 +0000 ROA not after: Fri 24 Jan 2025 03:18:05 +0000 asID: 45723 IP address blocks: 202.1.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:36:f7:42:1e:e9:ba:d7:ba:eb:ac:e8:b3:a8:49:ec:31:ef:98:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Jan 26 03:13:05 2024 GMT Not After : Jan 24 03:18:05 2025 GMT Subject: CN=991220F74E1CA67899D635787A9FF22CFCAC7D69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ab:78:cc:0f:8e:34:9a:45:6b:87:8c:7c:cf: e5:c6:ac:0c:96:18:d7:92:c1:43:08:5e:e5:ef:d9: c5:46:6e:2f:f2:8b:b8:4f:23:d6:86:38:ea:5e:4f: e8:ee:9a:e3:b2:f2:8e:5a:19:f8:7c:a6:8a:55:db: 7c:56:26:3a:96:89:38:5c:10:0f:09:43:92:00:8d: a3:e5:a1:2c:83:c6:48:3a:03:9a:f0:e5:15:62:09: bd:c6:8d:28:c1:df:cf:39:b6:d0:9b:b1:85:92:d0: 7d:8e:95:98:23:67:63:42:2a:03:bb:1b:88:4c:69: 40:1f:a5:3b:28:b6:86:d1:a1:c8:cd:fb:ab:44:97: 5f:52:87:ab:15:31:37:e0:f4:53:69:04:88:d9:84: 53:f5:83:ff:3b:78:b4:b7:9a:58:d1:d9:b4:58:50: b8:3b:b7:dd:e9:d4:d4:1b:e8:aa:a1:1c:05:39:19: 70:fb:50:cb:a0:e0:4b:cc:50:e4:95:be:92:67:d3: 7c:0c:33:2a:b9:5c:3c:96:6a:08:35:4c:0d:c0:a5: 68:72:31:b6:cf:2e:74:a7:23:32:d1:9d:c4:a7:8c: 58:89:3a:a7:60:3a:97:ed:59:ae:b6:1d:18:39:b6: d5:ea:23:bf:f5:5d:23:00:41:c0:d1:b9:bb:27:92: 16:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:12:20:F7:4E:1C:A6:78:99:D6:35:78:7A:9F:F2:2C:FC:AC:7D:69 X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.1.236.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:90:b9:1d:fe:98:2c:b0:f7:75:d7:1f:f9:0d:4e:78:fc:1d: 55:bb:df:93:15:df:9d:38:99:81:c6:f2:95:76:94:fb:7a:60: ef:0b:5f:a7:ac:18:94:9d:5e:1a:23:f6:d3:e8:2e:bf:4f:1c: 44:90:29:ac:77:46:d0:56:cd:0b:8d:f0:47:8a:e6:ef:3c:d3: 6f:63:8d:57:57:c2:a0:b3:09:5f:fd:77:0a:69:47:18:2b:87: 05:b0:48:7c:7c:db:f1:f8:77:d2:ee:48:e5:20:83:44:f2:da: 0b:b0:8f:0b:4a:6a:2a:30:43:8d:2f:d1:b1:8d:bc:16:bd:d2: 1b:8c:56:37:77:ac:fa:91:ff:e1:f4:39:37:62:63:87:7d:1c: 67:77:d2:b8:95:60:d2:3b:ac:32:d6:41:62:b8:c9:b6:18:5e: 17:34:55:d7:f7:dc:97:ca:24:b7:fa:ba:6c:00:ad:b6:fb:69: 90:af:35:2a:93:2c:09:c1:3c:e9:07:0f:01:87:f5:98:05:8d: b6:40:58:27:cc:14:8a:18:45:85:13:1f:36:bb:57:da:39:9d: 20:8e:d3:bd:e5:96:92:2e:b6:35:ab:cb:b4:a4:e9:04:d3:2a: f0:e5:fd:51:d8:22:8e:58:40:53:c2:12:ff:fd:57:2b:e0:c4: 6d:b8:5c:25 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUODb3Qh7pute666zos6hJ7DHvmAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNDAxMjYwMzEzMDVaFw0yNTAxMjQwMzE4MDVaMDMxMTAvBgNV BAMTKDk5MTIyMEY3NEUxQ0E2Nzg5OUQ2MzU3ODdBOUZGMjJDRkNBQzdENjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmq3jMD440mkVrh4x8z+XGrAyW GNeSwUMIXuXv2cVGbi/yi7hPI9aGOOpeT+jumuOy8o5aGfh8popV23xWJjqWiThc EA8JQ5IAjaPloSyDxkg6A5rw5RViCb3GjSjB3885ttCbsYWS0H2OlZgjZ2NCKgO7 G4hMaUAfpTsotobRocjN+6tEl19Sh6sVMTfg9FNpBIjZhFP1g/87eLS3mljR2bRY ULg7t93p1NQb6KqhHAU5GXD7UMug4EvMUOSVvpJn03wMMyq5XDyWagg1TA3ApWhy MbbPLnSnIzLRncSnjFiJOqdgOpftWa62HRg5ttXqI7/1XSMAQcDRubsnkhbbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUmRIg904cpniZ1jV4ep/yLPysfWkwHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMyMzAzMjJlMzEyZTMyMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKAewwDQYJKoZIhvcN AQELBQADggEBAIyQuR3+mCyw93XXH/kNTnj8HVW735MV3504mYHG8pV2lPt6YO8L X6esGJSdXhoj9tPoLr9PHESQKax3RtBWzQuN8EeK5u88029jjVdXwqCzCV/9dwpp RxgrhwWwSHx82/H4d9LuSOUgg0Ty2guwjwtKaiowQ40v0bGNvBa90huMVjd3rPqR /+H0OTdiY4d9HGd30riVYNI7rDLWQWK4ybYYXhc0Vdf33JfKJLf6umwArbb7aZCv NSqTLAnBPOkHDwGH9ZgFjbZAWCfMFIoYRYUTHza7V9o5nSCO073llpIutjWry7Sk 6QTTKvDl/VHYIo5YQFPCEv/9VyvgxG24XCU= -----END CERTIFICATE-----Generated at Mon Nov 25 00:59:32 2024 by rpki-client on console-ams.rpki-client.org