$ rpki-client -vvf repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3230322e34362e3134342e302f32322d3234203d3e203138303536.roa File: 3230322e34362e3134342e302f32322d3234203d3e203138303536.roa (raw, json) Hash identifier: Ldlc7VFQJBTu0wUNSLLhBA2sjvGn3t93qpLaO/2C0Jk= Subject key identifier: D8:7B:86:6A:03:35:4D:F1:E7:9F:DE:6C:76:EE:4D:AE:42:E6:BD:CD Certificate issuer: /CN=3E6F306418455683DBA0AC95B4FD41E1846476AB Certificate serial: 4D79B18DF426CA8DA237673EC832D1A94A9732AF Authority key identifier: 3E:6F:30:64:18:45:56:83:DB:A0:AC:95:B4:FD:41:E1:84:64:76:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6F306418455683DBA0AC95B4FD41E1846476AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3230322e34362e3134342e302f32322d3234203d3e203138303536.roa Signing time: Thu 28 Mar 2024 15:00:00 +0000 ROA not before: Thu 28 Mar 2024 14:55:00 +0000 ROA not after: Thu 27 Mar 2025 15:00:00 +0000 asID: 18056 IP address blocks: 202.46.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3E6F306418455683DBA0AC95B4FD41E1846476AB.crl rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3E6F306418455683DBA0AC95B4FD41E1846476AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6F306418455683DBA0AC95B4FD41E1846476AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:79:b1:8d:f4:26:ca:8d:a2:37:67:3e:c8:32:d1:a9:4a:97:32:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E6F306418455683DBA0AC95B4FD41E1846476AB Validity Not Before: Mar 28 14:55:00 2024 GMT Not After : Mar 27 15:00:00 2025 GMT Subject: CN=D87B866A03354DF1E79FDE6C76EE4DAE42E6BDCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:38:0c:17:a5:4c:1e:17:57:1f:50:83:60:3c: 96:8d:61:42:08:13:af:b4:69:42:57:35:82:67:3a: b7:ec:7f:e2:de:16:a0:c7:73:fd:79:92:5e:0b:1f: 30:04:a1:f8:ba:7d:c3:42:2b:68:80:34:e7:3c:97: bc:1f:3d:d7:ea:3c:a5:70:72:f0:bb:82:1b:24:73: e9:bf:38:32:72:79:67:0d:9f:17:65:57:7b:c9:ac: 11:ab:fa:a2:53:20:39:18:c0:cf:0a:6d:b9:24:06: 1a:b4:80:10:22:33:07:78:53:f8:c5:be:c5:84:ea: 87:7d:73:00:f0:30:12:53:11:72:cd:15:44:ca:74: 15:a6:66:d9:92:48:de:7d:6f:1d:c7:9a:2d:a0:1c: b5:08:bf:54:1c:84:a7:8b:e4:66:c7:3d:9e:f9:9c: a7:21:7c:1d:a9:a6:28:cf:d4:da:14:d1:25:5d:6f: 65:df:0e:88:5d:29:6e:80:ff:0e:0d:80:73:ec:63: 95:dd:f2:36:09:58:7b:d9:ce:c4:cf:36:d2:f9:6d: 6b:52:6e:e6:b6:02:9d:e2:c7:1b:a6:b7:57:99:61: 5e:7d:40:1a:70:75:41:8f:f4:a7:c5:ed:e3:1a:80: e7:7e:bb:9b:41:98:7d:76:00:d0:43:57:eb:4b:3c: 8a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:7B:86:6A:03:35:4D:F1:E7:9F:DE:6C:76:EE:4D:AE:42:E6:BD:CD X509v3 Authority Key Identifier: keyid:3E:6F:30:64:18:45:56:83:DB:A0:AC:95:B4:FD:41:E1:84:64:76:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3E6F306418455683DBA0AC95B4FD41E1846476AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6F306418455683DBA0AC95B4FD41E1846476AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64f7eb4f-7924-4db6-b6d6-394d83b392fc/0/3230322e34362e3134342e302f32322d3234203d3e203138303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.46.144.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:fe:cc:cf:95:ed:b8:d6:88:8f:da:cf:65:f4:22:2c:7a:84: 1d:2d:75:4d:72:99:80:d8:5a:aa:05:98:d8:e5:36:04:42:c5: f9:26:b4:b2:39:e3:c9:17:43:10:ab:4d:0b:7a:b6:b0:35:eb: 6c:a2:0b:da:b9:f2:99:37:01:ea:bc:64:69:48:5d:24:cc:de: 0f:a4:6a:01:94:0a:04:da:21:7d:67:0d:83:fc:24:80:cf:ea: 4d:11:ef:11:df:5a:2c:25:e1:b4:7b:56:e6:c9:69:bb:82:2d: 79:3f:6b:56:87:1b:f4:10:0e:18:72:ba:e4:ab:0c:80:36:bb: 52:01:fb:d9:05:26:09:f3:06:80:b1:ea:05:0c:5b:e9:ff:ad: 0c:2e:60:b5:e3:cb:4e:f4:99:33:25:91:44:a9:ae:9b:7c:e2: 18:a0:cf:6e:d0:43:d3:d3:75:86:1c:31:8b:13:e6:b3:4a:10: b3:42:2d:37:12:01:38:3d:88:07:f2:7d:df:40:c0:77:c0:44: 29:2b:ee:a1:4a:96:7c:11:08:25:86:8e:cc:ed:ab:3e:ec:75: 7e:45:4f:7d:b0:68:68:4e:c3:8a:2a:93:0a:2e:04:a5:a3:b1: 4d:5f:ac:df:7b:90:9d:ef:5a:65:b1:68:9e:c8:40:ca:fb:7c: 5f:38:76:0d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTXmxjfQmyo2iN2c+yDLRqUqXMq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2RjMwNjQxODQ1NTY4M0RCQTBBQzk1QjRGRDQxRTE4 NDY0NzZBQjAeFw0yNDAzMjgxNDU1MDBaFw0yNTAzMjcxNTAwMDBaMDMxMTAvBgNV BAMTKEQ4N0I4NjZBMDMzNTRERjFFNzlGREU2Qzc2RUU0REFFNDJFNkJEQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMOAwXpUweF1cfUINgPJaNYUII E6+0aUJXNYJnOrfsf+LeFqDHc/15kl4LHzAEofi6fcNCK2iANOc8l7wfPdfqPKVw cvC7ghskc+m/ODJyeWcNnxdlV3vJrBGr+qJTIDkYwM8KbbkkBhq0gBAiMwd4U/jF vsWE6od9cwDwMBJTEXLNFUTKdBWmZtmSSN59bx3Hmi2gHLUIv1QchKeL5GbHPZ75 nKchfB2ppijP1NoU0SVdb2XfDohdKW6A/w4NgHPsY5Xd8jYJWHvZzsTPNtL5bWtS bua2Ap3ixxumt1eZYV59QBpwdUGP9KfF7eMagOd+u5tBmH12ANBDV+tLPIp5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2HuGagM1TfHnn95sdu5NrkLmvc0wHwYDVR0j BBgwFoAUPm8wZBhFVoPboKyVtP1B4YRkdqswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NGY3ZWI0Zi03OTI0LTRkYjYtYjZkNi0zOTRkODNiMzkyZmMvMC8zRTZGMzA2NDE4 NDU1NjgzREJBMEFDOTVCNEZENDFFMTg0NjQ3NkFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2RjMwNjQxODQ1NTY4M0RCQTBBQzk1QjRGRDQxRTE4NDY0 NzZBQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0ZjdlYjRmLTc5MjQtNGRiNi1i NmQ2LTM5NGQ4M2IzOTJmYy8wLzMyMzAzMjJlMzQzNjJlMzEzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzODMwMzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsoukDANBgkqhkiG 9w0BAQsFAAOCAQEAO/7Mz5XtuNaIj9rPZfQiLHqEHS11TXKZgNhaqgWY2OU2BELF +Sa0sjnjyRdDEKtNC3q2sDXrbKIL2rnymTcB6rxkaUhdJMzeD6RqAZQKBNohfWcN g/wkgM/qTRHvEd9aLCXhtHtW5slpu4IteT9rVocb9BAOGHK65KsMgDa7UgH72QUm CfMGgLHqBQxb6f+tDC5gtePLTvSZMyWRRKmum3ziGKDPbtBD09N1hhwxixPms0oQ s0ItNxIBOD2IB/J930DAd8BEKSvuoUqWfBEIJYaOzO2rPux1fkVPfbBoaE7DiiqT Ci4EpaOxTV+s33uQne9aZbFonshAyvt8Xzh2DQ== -----END CERTIFICATE-----Generated at Sun Nov 24 00:53:31 2024 by rpki-client on console-fra.rpki-client.org