$ rpki-client -vvf repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa File: 3230322e35302e3230322e302f32342d3234203d3e203535363936.roa (raw, json) Hash identifier: /IyNbA1kqbXr8soi03tvIhIx1RVwzc2j41ZqTx0XLRE= Subject key identifier: 8E:B8:A1:F0:82:0D:75:65:C8:08:D5:C4:3B:F5:6A:6C:CA:F1:25:BD Certificate issuer: /CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B Certificate serial: 496FA165766C94873BFE81567FA96692A0D70644 Authority key identifier: B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa Signing time: Wed 24 Jan 2024 06:00:00 +0000 ROA not before: Wed 24 Jan 2024 05:55:00 +0000 ROA not after: Wed 22 Jan 2025 06:00:00 +0000 asID: 55696 IP address blocks: 202.50.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 17:44:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:6f:a1:65:76:6c:94:87:3b:fe:81:56:7f:a9:66:92:a0:d7:06:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B Validity Not Before: Jan 24 05:55:00 2024 GMT Not After : Jan 22 06:00:00 2025 GMT Subject: CN=8EB8A1F0820D7565C808D5C43BF56A6CCAF125BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4f:1f:be:78:b2:54:34:20:f3:fc:5c:9e:cc: 35:a4:d3:ec:86:ce:44:21:dd:6a:2d:28:b6:6b:96: a9:5b:6d:51:41:67:77:f9:bc:e4:d5:70:f1:9c:c7: 70:a3:f1:96:63:57:15:6e:5d:ca:cf:f1:bc:cc:1b: 9b:2c:9a:ce:e9:2d:9e:71:15:56:4a:05:2f:2f:da: 6a:8e:16:f9:dc:e5:10:5c:f9:f1:02:5a:b9:70:b4: 05:10:97:26:40:e9:2b:1f:99:3b:91:8b:7b:d4:db: c8:b2:20:96:8b:57:9c:6b:60:41:6f:c1:ed:fe:40: d8:ac:66:d4:ca:65:f3:b8:b9:03:81:75:1c:7f:9d: 80:2b:74:8c:1b:5e:61:d3:69:ee:4d:d8:d5:da:8f: 19:d2:b0:ed:8a:f4:39:6a:e7:77:06:ff:33:90:ef: 33:5f:b6:cb:ef:d5:50:e8:7f:f9:ae:42:df:0a:41: 5c:e8:00:c8:76:4c:ed:7b:db:d5:ff:79:11:2c:af: 61:bd:dd:83:af:d4:82:e8:06:0a:6e:4e:0b:39:25: f9:b0:17:04:cb:ec:7c:df:1f:84:ce:03:22:8a:d7: 89:25:9e:f5:33:3f:c3:2b:0e:bc:8d:77:25:5d:d0: 7f:7f:57:bc:36:a2:ff:88:4e:5d:09:5d:cf:b6:70: 7a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:B8:A1:F0:82:0D:75:65:C8:08:D5:C4:3B:F5:6A:6C:CA:F1:25:BD X509v3 Authority Key Identifier: keyid:B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.50.202.0/24 Signature Algorithm: sha256WithRSAEncryption 82:e4:6b:ca:32:b8:1b:a1:50:ae:c5:f4:7b:d6:c3:eb:a8:f5: d2:e5:10:62:2f:c2:5f:c8:ab:79:6b:fc:ab:de:55:e7:1a:a2: 8a:82:bc:26:32:8d:37:a3:fc:7c:82:08:06:81:db:62:54:c1: af:3d:22:7e:35:0b:f6:ec:ef:ad:5f:6e:ac:e9:d7:30:76:54: 65:6b:aa:27:6a:1e:45:92:c1:24:e5:61:3d:87:6b:5e:a6:8a: cd:69:d5:9d:46:a2:6c:5a:a6:c9:b9:9d:fa:83:b1:58:d3:71: 47:46:f9:4f:23:67:d1:9a:ce:85:3c:2f:a7:e1:f1:12:51:3b: 2f:b2:52:55:08:8f:63:92:87:0e:fa:c2:19:d6:41:a5:61:42: 09:41:1c:c1:34:4a:19:da:8a:21:92:ff:f6:5c:70:5f:d6:37: 2d:c0:47:ca:57:49:ed:98:f1:e7:48:6e:62:33:dc:8d:a5:33: ae:13:ce:98:4c:ae:87:17:0d:e7:57:f4:48:5f:91:13:21:1f: ec:79:9e:78:70:99:87:01:cd:3d:1b:73:50:80:46:17:eb:02: ac:02:6c:6b:b5:d9:7d:a5:f4:25:8b:23:a1:13:24:8f:4e:78: a1:69:51:e5:66:b7:4c:ac:f0:d4:48:07:06:4c:ab:3d:f4:36: 54:38:d0:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSW+hZXZslIc7/oFWf6lmkqDXBkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1 RUVBQUI1QjAeFw0yNDAxMjQwNTU1MDBaFw0yNTAxMjIwNjAwMDBaMDMxMTAvBgNV BAMTKDhFQjhBMUYwODIwRDc1NjVDODA4RDVDNDNCRjU2QTZDQ0FGMTI1QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJTx++eLJUNCDz/FyezDWk0+yG zkQh3WotKLZrlqlbbVFBZ3f5vOTVcPGcx3Cj8ZZjVxVuXcrP8bzMG5ssms7pLZ5x FVZKBS8v2mqOFvnc5RBc+fECWrlwtAUQlyZA6SsfmTuRi3vU28iyIJaLV5xrYEFv we3+QNisZtTKZfO4uQOBdRx/nYArdIwbXmHTae5N2NXajxnSsO2K9Dlq53cG/zOQ 7zNftsvv1VDof/muQt8KQVzoAMh2TO1729X/eREsr2G93YOv1ILoBgpuTgs5Jfmw FwTL7HzfH4TOAyKK14klnvUzP8MrDryNdyVd0H9/V7w2ov+ITl0JXc+2cHpRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjrih8IINdWXICNXEO/VqbMrxJb0wHwYDVR0j BBgwFoAUs/HapncJoGVh3J6sWochA17qq1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Mjg4MGRlZS03YWEyLTRiZTQtYmYzNS1jZGJkMTFkNzk1MDcvMC9CM0YxREFBNjc3 MDlBMDY1NjFEQzlFQUM1QTg3MjEwMzVFRUFBQjVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1RUVB QUI1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyODgwZGVlLTdhYTItNGJlNC1i ZjM1LWNkYmQxMWQ3OTUwNy8wLzMyMzAzMjJlMzUzMDJlMzIzMDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoyyjANBgkqhkiG 9w0BAQsFAAOCAQEAguRryjK4G6FQrsX0e9bD66j10uUQYi/CX8ireWv8q95V5xqi ioK8JjKNN6P8fIIIBoHbYlTBrz0ifjUL9uzvrV9urOnXMHZUZWuqJ2oeRZLBJOVh PYdrXqaKzWnVnUaibFqmybmd+oOxWNNxR0b5TyNn0ZrOhTwvp+HxElE7L7JSVQiP Y5KHDvrCGdZBpWFCCUEcwTRKGdqKIZL/9lxwX9Y3LcBHyldJ7Zjx50huYjPcjaUz rhPOmEyuhxcN51f0SF+REyEf7HmeeHCZhwHNPRtzUIBGF+sCrAJsa7XZfaX0JYsj oRMkj054oWlR5Wa3TKzw1EgHBkyrPfQ2VDjQRQ== -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:44 2024 by rpki-client on console-fra.rpki-client.org