$ rpki-client -vvf repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3230322e38332e3132302e302f32322d3234203d3e20313331373435.roa File: 3230322e38332e3132302e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: 72Ze6A7LrmxUiCfVAacDlQnAQZ1KkwVRhNUI5HmtIBY= Subject key identifier: 49:98:86:A3:25:66:04:88:0D:45:F8:3C:34:D6:44:AD:6C:7B:9A:82 Certificate issuer: /CN=A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A Certificate serial: 425024E6F647CABA2B4B9E661796700CF9BB663A Authority key identifier: A6:6E:6F:78:7B:7D:E2:EA:2F:F1:C1:9F:30:DF:E2:21:5B:0B:EB:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3230322e38332e3132302e302f32322d3234203d3e20313331373435.roa Signing time: Mon 01 Jul 2024 01:03:09 +0000 ROA not before: Mon 01 Jul 2024 00:58:09 +0000 ROA not after: Mon 30 Jun 2025 01:03:09 +0000 asID: 131745 IP address blocks: 202.83.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.crl rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:50:24:e6:f6:47:ca:ba:2b:4b:9e:66:17:96:70:0c:f9:bb:66:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A Validity Not Before: Jul 1 00:58:09 2024 GMT Not After : Jun 30 01:03:09 2025 GMT Subject: CN=499886A3256604880D45F83C34D644AD6C7B9A82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:83:f9:70:53:e7:90:b5:71:69:2c:3d:93:70: 26:fa:87:72:b2:6a:82:30:7c:27:12:b7:1e:02:ae: 68:f7:57:3d:1b:bf:b6:9b:10:92:32:14:a6:5a:94: cd:89:e7:71:c8:e1:4d:07:74:89:76:b1:8a:58:27: 30:b9:9e:fa:f0:6a:94:17:18:43:d5:79:c8:e4:b2: 2f:a1:20:8a:c6:60:b7:3a:85:4b:07:9f:c6:a4:cf: f9:a3:90:61:e5:74:1e:96:6f:90:62:e0:28:2d:9c: fc:21:e3:da:b3:77:96:64:64:2d:2b:05:14:f1:27: 99:c4:96:dc:af:24:cf:87:5f:49:c9:34:a9:7c:f8: 0c:72:7a:b2:c0:68:25:4e:c7:b0:eb:eb:5b:c2:cf: 51:3b:c0:1d:6d:7c:15:e2:d6:5c:82:c5:45:28:0c: 98:92:3d:24:e1:93:dd:50:ea:e6:12:f5:eb:11:b7: 21:f0:89:2d:e9:ef:f0:e0:06:1b:bb:8d:a8:dd:dc: 94:dd:bd:a6:25:80:d7:f2:b5:a5:65:9a:d8:c4:2f: 27:ea:b3:05:03:54:e0:cd:31:78:84:21:49:51:74: a6:27:56:19:a4:67:8d:3a:1d:cf:f6:5d:d1:af:80: b8:85:86:05:c3:21:9c:3b:93:7b:67:d7:3d:97:49: 08:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:98:86:A3:25:66:04:88:0D:45:F8:3C:34:D6:44:AD:6C:7B:9A:82 X509v3 Authority Key Identifier: keyid:A6:6E:6F:78:7B:7D:E2:EA:2F:F1:C1:9F:30:DF:E2:21:5B:0B:EB:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A66E6F787B7DE2EA2FF1C19F30DFE2215B0BEB4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/538c621d-05bc-4bcd-9657-cdf33860f21a/0/3230322e38332e3132302e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.83.120.0/22 Signature Algorithm: sha256WithRSAEncryption 52:25:bb:57:a9:4d:47:03:e4:66:61:2c:32:41:9a:81:97:90: 28:37:c6:23:a7:4b:ca:db:8e:29:22:f9:15:2a:0a:2c:0a:db: 09:12:37:ff:e0:30:55:e0:3b:d9:6b:da:c4:cc:10:82:18:fb: 9f:25:8c:54:0c:e9:4b:c8:21:66:3d:d9:e5:4a:0b:1b:07:ba: 85:b3:39:f3:b0:a4:c4:d1:e4:ae:fa:e5:2a:e6:ee:75:fd:95: ad:fe:9b:be:d9:3a:97:4f:82:12:34:ce:70:fc:ec:83:cc:9f: b8:69:63:d7:bc:14:3e:30:76:ef:45:46:64:2a:a6:98:16:29: 41:9d:0e:96:c4:80:41:13:e9:ba:99:0a:39:6e:98:1b:60:31: db:bb:24:84:e8:2e:24:ce:e7:f8:af:1c:3a:c0:6f:e1:4e:7f: 41:77:c7:c6:a5:65:dc:b0:11:55:bc:21:42:56:c2:54:d8:7f: df:14:9a:9e:f7:86:be:16:fb:ec:fb:c2:14:a3:12:8d:9d:b4: 24:25:40:9f:cf:16:26:1e:6f:41:55:eb:19:21:06:a4:f2:b2: 9f:27:3e:e0:82:c4:b5:56:12:21:1e:ff:d0:e2:7b:89:a1:52: 24:1f:37:15:8b:68:dd:47:4f:43:7b:e2:b3:98:6c:5d:a4:2e: 9c:6f:29:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQlAk5vZHyrorS55mF5ZwDPm7ZjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY2RTZGNzg3QjdERTJFQTJGRjFDMTlGMzBERkUyMjE1 QjBCRUI0QTAeFw0yNDA3MDEwMDU4MDlaFw0yNTA2MzAwMTAzMDlaMDMxMTAvBgNV BAMTKDQ5OTg4NkEzMjU2NjA0ODgwRDQ1RjgzQzM0RDY0NEFENkM3QjlBODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNg/lwU+eQtXFpLD2TcCb6h3Ky aoIwfCcStx4Crmj3Vz0bv7abEJIyFKZalM2J53HI4U0HdIl2sYpYJzC5nvrwapQX GEPVecjksi+hIIrGYLc6hUsHn8akz/mjkGHldB6Wb5Bi4CgtnPwh49qzd5ZkZC0r BRTxJ5nEltyvJM+HX0nJNKl8+AxyerLAaCVOx7Dr61vCz1E7wB1tfBXi1lyCxUUo DJiSPSThk91Q6uYS9esRtyHwiS3p7/DgBhu7jajd3JTdvaYlgNfytaVlmtjELyfq swUDVODNMXiEIUlRdKYnVhmkZ406Hc/2XdGvgLiFhgXDIZw7k3tn1z2XSQjnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSZiGoyVmBIgNRfg8NNZErWx7moIwHwYDVR0j BBgwFoAUpm5veHt94uov8cGfMN/iIVsL60owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MzhjNjIxZC0wNWJjLTRiY2QtOTY1Ny1jZGYzMzg2MGYyMWEvMC9BNjZFNkY3ODdC N0RFMkVBMkZGMUMxOUYzMERGRTIyMTVCMEJFQjRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTY2RTZGNzg3QjdERTJFQTJGRjFDMTlGMzBERkUyMjE1QjBC RUI0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzOGM2MjFkLTA1YmMtNGJjZC05 NjU3LWNkZjMzODYwZjIxYS8wLzMyMzAzMjJlMzgzMzJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCylN4MA0GCSqG SIb3DQEBCwUAA4IBAQBSJbtXqU1HA+RmYSwyQZqBl5AoN8Yjp0vK244pIvkVKgos CtsJEjf/4DBV4DvZa9rEzBCCGPufJYxUDOlLyCFmPdnlSgsbB7qFsznzsKTE0eSu +uUq5u51/ZWt/pu+2TqXT4ISNM5w/OyDzJ+4aWPXvBQ+MHbvRUZkKqaYFilBnQ6W xIBBE+m6mQo5bpgbYDHbuySE6C4kzuf4rxw6wG/hTn9Bd8fGpWXcsBFVvCFCVsJU 2H/fFJqe94a+Fvvs+8IUoxKNnbQkJUCfzxYmHm9BVesZIQak8rKfJz7ggsS1VhIh Hv/Q4nuJoVIkHzcVi2jdR09De+KzmGxdpC6cbykF -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org