$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa File: 3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa (raw, json) Hash identifier: Y4T82wHbpzvGeh1LYj+UuVGIrkEWtMinUzP1PmfzBOY= Subject key identifier: 67:54:65:8A:B6:AA:96:F8:C9:C0:6B:25:B6:79:0F:7E:5A:E2:09:C2 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 5943A9D5A2FE6D205D769BFE9AD51CCDD1533E54 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa Signing time: Tue 25 Jun 2024 10:00:01 +0000 ROA not before: Tue 25 Jun 2024 09:55:01 +0000 ROA not after: Tue 24 Jun 2025 10:00:01 +0000 asID: 45725 IP address blocks: 202.150.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:43:a9:d5:a2:fe:6d:20:5d:76:9b:fe:9a:d5:1c:cd:d1:53:3e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Jun 25 09:55:01 2024 GMT Not After : Jun 24 10:00:01 2025 GMT Subject: CN=6754658AB6AA96F8C9C06B25B6790F7E5AE209C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:bb:6e:0b:54:0c:39:02:2b:cb:d6:24:89:dc: dc:2b:bd:61:a4:3d:e0:af:87:ae:22:b5:df:98:be: b9:a4:93:b8:60:20:a2:2b:61:73:70:f4:b1:5a:c7: d7:26:11:2f:a7:19:cd:bd:ce:69:fe:91:0c:d3:6b: 44:84:98:bc:3a:ea:98:e9:e3:24:b7:ea:2d:d8:96: 89:f4:41:23:e0:0a:46:4a:32:74:c7:5b:49:4b:e6: 4f:ca:3f:e8:9e:11:af:e1:7b:86:23:96:c1:7d:78: e4:67:ff:94:69:45:51:93:6f:4b:70:e0:06:71:19: 80:a2:2f:75:97:d4:26:af:a1:a1:3d:2c:2f:c0:55: 73:21:5d:2a:91:6c:10:6d:f5:9d:86:45:a1:be:c9: 45:01:86:ac:e5:08:c7:a4:51:51:76:56:1e:91:a2: 8c:65:d1:8e:cc:f1:e0:87:cf:9c:67:67:60:fe:3b: 4d:41:c5:d3:38:be:bd:af:af:8b:7d:5e:57:f1:52: 90:40:d0:92:04:bf:a6:ba:fb:fc:87:db:4d:6d:17: 38:e1:95:79:12:d8:e2:13:64:b1:c6:1f:2d:2a:20: d5:90:0a:05:a0:c1:9a:3a:5b:00:13:c8:58:bf:70: c6:79:1b:dc:e5:53:63:24:11:4b:9f:00:0f:0e:b1: ed:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:54:65:8A:B6:AA:96:F8:C9:C0:6B:25:B6:79:0F:7E:5A:E2:09:C2 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.160.0/20 Signature Algorithm: sha256WithRSAEncryption d1:19:a0:65:af:4e:7a:11:e9:41:f4:a1:39:02:d2:7b:85:c7: 91:dd:e9:1a:9e:4a:69:f7:88:23:f0:c1:e0:05:61:10:db:cb: 62:4e:64:9d:c2:bd:35:d2:80:cc:67:e9:1d:c7:90:ca:26:0f: d4:b6:02:f0:b0:54:ee:19:6a:8d:d1:77:55:a8:f5:91:6f:0c: a3:41:de:ab:b1:e7:49:67:a1:e0:3b:17:76:c3:96:8b:9b:94: 44:09:7a:25:0a:4d:d0:09:18:b4:dd:9a:6b:63:d1:56:3a:ea: 6a:e9:19:f6:6e:e1:a1:ce:43:2f:3e:76:d7:b3:6f:ad:14:d2: c0:e6:73:60:1f:1e:63:0c:e4:0e:9e:6d:a3:56:fb:c6:10:16: 4f:72:36:be:17:0c:83:20:f3:c4:5b:56:81:cc:0a:71:bf:2b: eb:83:d6:63:3b:0e:a4:24:cb:89:cb:ad:bd:6e:4a:37:53:90: 3e:44:da:3e:fc:c6:8e:ff:b0:11:ef:5f:7e:6e:7f:74:cc:11: b6:de:53:dc:47:55:de:ca:25:76:f2:32:23:1b:64:a3:6b:ef: 24:0c:34:40:e9:2c:a2:7f:37:2b:cc:c7:d7:48:8b:71:7a:e8: d8:b0:33:e1:92:f9:39:a2:87:d0:5d:e2:38:f8:3c:4a:0d:87: d0:81:6b:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWUOp1aL+bSBddpv+mtUczdFTPlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNDA2MjUwOTU1MDFaFw0yNTA2MjQxMDAwMDFaMDMxMTAvBgNV BAMTKDY3NTQ2NThBQjZBQTk2RjhDOUMwNkIyNUI2NzkwRjdFNUFFMjA5QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbu24LVAw5AivL1iSJ3NwrvWGk PeCvh64itd+Yvrmkk7hgIKIrYXNw9LFax9cmES+nGc29zmn+kQzTa0SEmLw66pjp 4yS36i3Ylon0QSPgCkZKMnTHW0lL5k/KP+ieEa/he4YjlsF9eORn/5RpRVGTb0tw 4AZxGYCiL3WX1CavoaE9LC/AVXMhXSqRbBBt9Z2GRaG+yUUBhqzlCMekUVF2Vh6R ooxl0Y7M8eCHz5xnZ2D+O01BxdM4vr2vr4t9XlfxUpBA0JIEv6a6+/yH201tFzjh lXkS2OITZLHGHy0qINWQCgWgwZo6WwATyFi/cMZ5G9zlU2MkEUufAA8Ose2ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ1RliraqlvjJwGsltnkPflriCcIwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzAzMjJlMzEzNTMwMmUzMTM2MzAyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEypagMA0GCSqG SIb3DQEBCwUAA4IBAQDRGaBlr056EelB9KE5AtJ7hceR3ekankpp94gj8MHgBWEQ 28tiTmSdwr010oDMZ+kdx5DKJg/UtgLwsFTuGWqN0XdVqPWRbwyjQd6rsedJZ6Hg Oxd2w5aLm5RECXolCk3QCRi03ZprY9FWOupq6Rn2buGhzkMvPnbXs2+tFNLA5nNg Hx5jDOQOnm2jVvvGEBZPcja+FwyDIPPEW1aBzApxvyvrg9ZjOw6kJMuJy629bko3 U5A+RNo+/MaO/7AR719+bn90zBG23lPcR1XeyiV28jIjG2Sja+8kDDRA6Syifzcr zMfXSItxeujYsDPhkvk5oofQXeI4+DxKDYfQgWtq -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org