$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e312e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e312e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: +WQDDpOr7BIkoO1ou9EO6AdPk7I9sWGQQ0uBCTy/cyM= Subject key identifier: CD:90:D9:6C:F0:8D:CE:3B:C9:0D:13:7D:AC:74:B7:74:D4:CA:1B:61 Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 66C61FCBCF11855C42655264FDC454D9BDDA07BD Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e312e302f32342d3234203d3e203234323030.roa Signing time: Mon 23 Dec 2024 08:34:50 +0000 ROA not before: Mon 23 Dec 2024 08:29:50 +0000 ROA not after: Mon 22 Dec 2025 08:34:50 +0000 asID: 24200 IP address blocks: 202.133.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 16:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:c6:1f:cb:cf:11:85:5c:42:65:52:64:fd:c4:54:d9:bd:da:07:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: Dec 23 08:29:50 2024 GMT Not After : Dec 22 08:34:50 2025 GMT Subject: CN=CD90D96CF08DCE3BC90D137DAC74B774D4CA1B61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f6:70:bc:d5:93:61:a5:bc:13:2e:fe:f7:69: d7:db:f9:42:12:3d:84:37:f8:c3:7c:83:88:7a:ff: d2:72:85:30:a9:1c:8e:89:7c:46:a0:8a:e8:5a:b8: 61:36:44:d8:c7:8b:3c:e7:c4:65:de:e2:36:09:fa: 86:22:2b:86:f2:7e:cc:8b:66:1e:0d:75:75:71:ad: 3b:cc:ef:76:3a:20:6a:76:f8:83:78:16:62:69:2a: 8a:dc:09:16:66:06:24:02:e5:73:42:43:c3:49:70: b0:8b:de:6c:d7:28:26:51:91:9d:2f:ad:7d:b5:6e: a4:64:1a:02:d9:c7:b3:0e:5f:69:ae:26:ea:1a:f7: 07:62:7b:fa:58:d4:32:d9:39:58:42:f1:cc:96:22: ba:0e:ea:d2:70:38:1d:19:92:3e:cb:92:d3:71:e1: a7:65:07:a6:6c:bb:ff:84:32:0c:f5:03:5e:de:57: 7e:c1:57:35:ee:0d:f3:10:85:1d:69:a9:79:0b:32: ae:c7:ab:7f:13:e0:f5:de:cc:9c:9d:99:86:65:85: 38:71:40:af:9d:c1:c6:1e:b9:a4:e9:96:37:5e:d9: d0:d6:e8:37:68:0e:56:47:0a:f8:ef:bf:ae:dc:c2: 00:19:d9:25:5a:26:9a:80:22:cf:d5:97:cf:e2:23: 48:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:90:D9:6C:F0:8D:CE:3B:C9:0D:13:7D:AC:74:B7:74:D4:CA:1B:61 X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e312e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.1.0/24 Signature Algorithm: sha256WithRSAEncryption 32:a5:6f:c4:18:a8:3c:6d:85:6b:e4:3a:f2:f2:c9:34:69:e8: 5f:b7:77:41:22:c8:d8:d7:42:b6:d1:b2:16:38:4e:35:aa:d9: 16:e8:4f:4c:14:45:17:c8:6c:88:23:88:b7:62:2b:9b:5f:e8: ed:58:9b:dd:43:1a:84:0f:67:35:3f:4f:7c:d8:93:20:ec:ab: 3b:a3:06:55:2f:e9:3d:98:5f:4e:c3:b2:3a:09:89:26:ec:97: 10:ff:a2:12:07:ec:b5:47:3a:06:f8:42:72:60:5c:0b:86:6a: 74:d5:6a:bd:34:57:c3:7b:d9:fe:9d:1f:3a:30:bd:5a:44:64: b2:88:58:01:2a:5f:2a:2b:86:a3:8f:37:aa:6b:4d:3a:13:54: 3a:08:cc:73:60:38:1c:fb:83:35:41:4f:9b:34:8b:a7:3b:82: e3:3a:ab:94:b6:d2:a3:08:03:30:ca:f8:1b:49:8b:61:c2:8d: 23:0a:f5:f5:8a:4e:26:91:5e:fb:51:62:64:47:d7:4e:93:a3: 6c:57:5f:2a:b0:c0:fc:16:19:4c:b8:0b:64:72:25:10:09:50: de:c2:c0:c3:c8:90:42:a4:c5:4b:08:b0:1d:60:30:35:c9:d8: 0e:01:05:90:47:c8:f7:8f:26:b0:bf:32:d5:76:7c:c2:68:23: 99:32:8e:19 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZsYfy88RhVxCZVJk/cRU2b3aB70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNDEyMjMwODI5NTBaFw0yNTEyMjIwODM0NTBaMDMxMTAvBgNV BAMTKENEOTBEOTZDRjA4RENFM0JDOTBEMTM3REFDNzRCNzc0RDRDQTFCNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn9nC81ZNhpbwTLv73adfb+UIS PYQ3+MN8g4h6/9JyhTCpHI6JfEagiuhauGE2RNjHizznxGXe4jYJ+oYiK4byfsyL Zh4NdXVxrTvM73Y6IGp2+IN4FmJpKorcCRZmBiQC5XNCQ8NJcLCL3mzXKCZRkZ0v rX21bqRkGgLZx7MOX2muJuoa9wdie/pY1DLZOVhC8cyWIroO6tJwOB0Zkj7LktNx 4adlB6Zsu/+EMgz1A17eV37BVzXuDfMQhR1pqXkLMq7Hq38T4PXezJydmYZlhThx QK+dwcYeuaTpljde2dDW6DdoDlZHCvjvv67cwgAZ2SVaJpqAIs/Vl8/iI0hFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzZDZbPCNzjvJDRN9rHS3dNTKG2EwHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQEwDQYJKoZIhvcN AQELBQADggEBADKlb8QYqDxthWvkOvLyyTRp6F+3d0EiyNjXQrbRshY4TjWq2Rbo T0wURRfIbIgjiLdiK5tf6O1Ym91DGoQPZzU/T3zYkyDsqzujBlUv6T2YX07DsjoJ iSbslxD/ohIH7LVHOgb4QnJgXAuGanTVar00V8N72f6dHzowvVpEZLKIWAEqXyor hqOPN6prTToTVDoIzHNgOBz7gzVBT5s0i6c7guM6q5S20qMIAzDK+BtJi2HCjSMK 9fWKTiaRXvtRYmRH106To2xXXyqwwPwWGUy4C2RyJRAJUN7CwMPIkEKkxUsIsB1g MDXJ2A4BBZBHyPePJrC/MtV2fMJoI5kyjhk= -----END CERTIFICATE-----Generated at Sun Apr 6 19:08:01 2025 by rpki-client