$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3230322e37302e34382e302f32302d3234203d3e203138303034.roa File: 3230322e37302e34382e302f32302d3234203d3e203138303034.roa (raw, json) Hash identifier: zvgnMY8wPSXc3mzVu3a1CGAGczTfjSmy5MA1FfiX5lU= Subject key identifier: C1:86:76:9E:DA:D0:4F:C6:9D:FD:76:D2:C8:7B:20:2F:16:D6:78:73 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 42AB65906FA02CA2612F59550D287431B05850D6 Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3230322e37302e34382e302f32302d3234203d3e203138303034.roa Signing time: Sun 02 Jun 2024 04:00:02 +0000 ROA not before: Sun 02 Jun 2024 03:55:02 +0000 ROA not after: Sun 01 Jun 2025 04:00:02 +0000 asID: 18004 IP address blocks: 202.70.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ab:65:90:6f:a0:2c:a2:61:2f:59:55:0d:28:74:31:b0:58:50:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: Jun 2 03:55:02 2024 GMT Not After : Jun 1 04:00:02 2025 GMT Subject: CN=C186769EDAD04FC69DFD76D2C87B202F16D67873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:92:1f:2e:57:df:6c:14:0d:59:89:2a:d0: 81:49:40:82:74:74:64:83:b4:2e:96:f0:4e:81:1f: bc:2a:6b:09:2d:3e:66:cc:4c:c9:cb:46:8f:2a:ca: 3b:ac:7d:04:9f:8c:14:0a:42:e2:a5:b1:0a:19:68: 7d:43:15:1a:b2:7d:93:3c:ee:fa:9c:0c:09:a5:e4: 7f:19:30:95:14:a3:55:b5:5b:95:c1:62:ae:2d:e7: d3:80:38:7b:03:a3:3d:79:57:21:d8:99:80:6f:00: 17:45:df:86:6b:55:c5:5b:ca:13:13:d9:f6:c7:8f: ad:b2:a7:b6:90:fe:2e:41:31:62:53:ac:92:0b:1a: 4a:82:31:11:eb:90:3c:32:e1:bc:66:f1:9d:ef:e5: f0:69:b6:f4:3b:d4:6b:03:d6:5b:86:f5:74:4e:dd: 44:53:17:38:a3:8f:d3:c0:1a:a2:f6:e1:5f:32:70: 4a:28:af:1a:35:bd:5a:fe:7d:78:a4:13:ac:80:ad: d6:49:99:d0:4d:54:e4:3e:1a:ba:19:85:ac:7d:55: 66:4c:2b:ee:7d:6b:7a:7b:46:ee:c9:0e:28:cd:21: 5d:81:d8:5d:3d:3b:84:36:4c:55:5d:5c:ab:00:e5: 7d:89:e2:65:aa:19:e0:0e:77:7f:78:73:91:47:ed: b0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:86:76:9E:DA:D0:4F:C6:9D:FD:76:D2:C8:7B:20:2F:16:D6:78:73 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3230322e37302e34382e302f32302d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.48.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:73:5d:1e:72:09:dd:49:98:78:78:77:35:ab:50:f1:69:19: ae:66:d8:6e:52:94:42:41:1b:d7:e7:50:ed:29:a4:f7:03:be: cd:11:7b:c4:82:d3:4a:37:d1:e2:ab:f8:f3:7c:17:67:88:77: 52:7d:bc:60:89:ce:64:c3:41:17:74:39:4c:e4:a0:8c:36:78: 42:aa:ba:b8:bd:5c:f9:41:95:20:c2:77:fc:61:7a:b7:34:0d: 7d:6b:76:fa:fe:db:d2:17:e4:14:a3:5d:20:ee:21:68:f0:39: 10:31:fd:9f:d9:15:af:9f:d9:1c:30:be:b0:b5:03:e4:2f:6b: de:b8:41:7c:eb:6c:26:1d:d1:8f:bd:bf:f3:f9:72:9d:8a:2b: fa:3e:0b:5f:29:28:7a:ba:13:b5:5b:fc:f3:bc:65:8e:57:19: a9:28:dd:0c:d0:a9:61:29:bd:7f:18:bc:45:39:dd:8e:2e:fe: 99:92:b4:6d:81:62:5b:c5:0b:74:a4:b3:82:40:da:6d:3b:6a: 03:3e:cf:89:28:16:e5:96:a2:e1:20:30:d2:e1:db:bf:f9:f1: 69:5b:fb:39:e8:bb:8a:24:a3:5f:ad:1d:16:13:99:21:3c:7e: d1:9b:70:64:0c:5c:2d:fb:a6:09:73:b3:00:66:d0:f1:17:94: b4:01:50:85 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQqtlkG+gLKJhL1lVDSh0MbBYUNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNDA2MDIwMzU1MDJaFw0yNTA2MDEwNDAwMDJaMDMxMTAvBgNV BAMTKEMxODY3NjlFREFEMDRGQzY5REZENzZEMkM4N0IyMDJGMTZENjc4NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDy5IfLlffbBQNWYkq0IFJQIJ0 dGSDtC6W8E6BH7wqawktPmbMTMnLRo8qyjusfQSfjBQKQuKlsQoZaH1DFRqyfZM8 7vqcDAml5H8ZMJUUo1W1W5XBYq4t59OAOHsDoz15VyHYmYBvABdF34ZrVcVbyhMT 2fbHj62yp7aQ/i5BMWJTrJILGkqCMRHrkDwy4bxm8Z3v5fBptvQ71GsD1luG9XRO 3URTFzijj9PAGqL24V8ycEoorxo1vVr+fXikE6yArdZJmdBNVOQ+GroZhax9VWZM K+59a3p7Ru7JDijNIV2B2F09O4Q2TFVdXKsA5X2J4mWqGeAOd394c5FH7bDbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUwYZ2ntrQT8ad/XbSyHsgLxbWeHMwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMyMzAzMjJlMzczMDJlMzQzODJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzgzMDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKRjAwDQYJKoZIhvcN AQELBQADggEBAEpzXR5yCd1JmHh4dzWrUPFpGa5m2G5SlEJBG9fnUO0ppPcDvs0R e8SC00o30eKr+PN8F2eId1J9vGCJzmTDQRd0OUzkoIw2eEKquri9XPlBlSDCd/xh erc0DX1rdvr+29IX5BSjXSDuIWjwORAx/Z/ZFa+f2RwwvrC1A+Qva964QXzrbCYd 0Y+9v/P5cp2KK/o+C18pKHq6E7Vb/PO8ZY5XGako3QzQqWEpvX8YvEU53Y4u/pmS tG2BYlvFC3Sks4JA2m07agM+z4koFuWWouEgMNLh27/58Wlb+znou4oko1+tHRYT mSE8ftGbcGQMXC37pglzswBm0PEXlLQBUIU= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org