$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e20313331363931.roa File: 3230322e36392e39362e302f32302d3234203d3e20313331363931.roa (raw, json) Hash identifier: /FTJH83n1O+sA+h8d06AOroKOys3mJRpg/2stcCOsIU= Subject key identifier: 2A:D7:D2:D3:EC:FF:0C:8B:76:B7:48:CA:55:BD:D2:86:DB:71:64:DB Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 6B6E6D559FB0A2A901351376FA8EA293E4049096 Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e20313331363931.roa Signing time: Mon 18 Nov 2024 19:00:02 +0000 ROA not before: Mon 18 Nov 2024 18:55:02 +0000 ROA not after: Mon 17 Nov 2025 19:00:02 +0000 asID: 131691 IP address blocks: 202.69.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:6e:6d:55:9f:b0:a2:a9:01:35:13:76:fa:8e:a2:93:e4:04:90:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Nov 18 18:55:02 2024 GMT Not After : Nov 17 19:00:02 2025 GMT Subject: CN=2AD7D2D3ECFF0C8B76B748CA55BDD286DB7164DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:37:bc:f7:95:ce:6f:9d:e1:52:64:d0:78:87: fd:95:65:f4:65:fa:cd:53:86:d2:0d:6b:fd:d1:da: d1:d6:02:db:17:07:76:9b:58:a6:a2:53:6d:c9:4f: 99:9d:39:6b:8a:e0:79:a0:d4:4a:33:49:26:73:48: ba:2e:de:2c:b0:20:5b:48:74:4a:cc:8e:1a:ab:67: 28:4e:23:2a:19:72:a8:81:a7:be:54:a2:ef:3f:16: ef:dd:98:87:68:c6:47:b5:3f:c9:0f:e8:76:86:b4: 43:51:e9:81:e3:ac:55:64:5e:4c:db:00:c1:b2:6c: 17:98:8f:aa:30:4d:51:de:bf:f0:da:4c:d6:92:6f: c5:b8:41:d1:5f:e9:5a:7d:4e:92:81:3b:c7:16:e9: fe:03:29:4e:9f:e4:78:3d:4f:9a:19:87:09:0c:c9: 5b:b3:bf:31:fa:b8:67:0c:24:03:a0:07:69:72:7d: 38:53:51:b3:09:9b:04:2f:57:25:5e:e7:3f:5c:55: 03:c5:73:5b:2f:fd:64:eb:e2:b9:fc:b7:9a:13:0e: 6e:58:6e:fd:49:57:b0:65:2b:88:da:2b:95:a6:a7: 38:bf:03:36:90:dc:49:b5:36:58:f6:97:75:33:bd: ce:99:ce:0a:7f:76:1e:3e:ae:a8:d0:58:81:84:11: 1b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D7:D2:D3:EC:FF:0C:8B:76:B7:48:CA:55:BD:D2:86:DB:71:64:DB X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e20313331363931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.69.96.0/20 Signature Algorithm: sha256WithRSAEncryption 8e:d8:84:6c:ce:29:2d:d5:4d:68:00:c7:2f:a9:b6:81:e5:73: 7a:e2:5e:37:b1:1e:51:ba:e5:93:45:64:f9:c7:18:d3:26:6d: e3:c9:6f:c4:70:df:64:4b:79:21:0d:6e:b3:d6:21:d6:bf:39: 1a:42:26:94:ca:9e:41:dc:5f:66:02:65:f9:3b:9c:d5:49:00: 16:87:c6:dd:d6:38:f3:cc:65:ea:98:6f:d8:b1:13:79:ee:7e: 87:a7:43:a9:03:b7:e9:05:be:45:b3:f6:9b:ec:9b:5e:bb:2a: 93:b7:ab:69:2f:7f:c5:65:f1:36:4b:90:1a:cc:1b:df:d3:be: 65:c2:90:98:c4:1d:21:bf:73:1d:07:49:00:d9:66:e3:49:37: 97:08:18:3a:31:b8:90:bc:54:de:d8:d7:9b:4b:76:09:c3:e6: 3e:76:d9:a3:3a:82:c1:70:66:33:30:8f:6c:4a:51:05:13:44: 78:c8:3d:2b:5e:58:c5:84:ea:0d:1a:fe:8a:b9:cb:b9:6e:37: f5:f5:bd:0e:ef:84:6d:c1:c3:d1:21:c6:81:c7:0e:1e:cd:b7: 20:c7:73:11:1b:9c:73:e0:4d:dc:a4:74:4a:69:ca:8d:fc:fb: 30:1b:7e:98:dd:11:17:a0:14:bd:6d:66:e2:08:ce:72:5f:78: 89:58:91:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUa25tVZ+woqkBNRN2+o6ik+QEkJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yNDExMTgxODU1MDJaFw0yNTExMTcxOTAwMDJaMDMxMTAvBgNV BAMTKDJBRDdEMkQzRUNGRjBDOEI3NkI3NDhDQTU1QkREMjg2REI3MTY0REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyN7z3lc5vneFSZNB4h/2VZfRl +s1ThtINa/3R2tHWAtsXB3abWKaiU23JT5mdOWuK4Hmg1EozSSZzSLou3iywIFtI dErMjhqrZyhOIyoZcqiBp75Uou8/Fu/dmIdoxke1P8kP6HaGtENR6YHjrFVkXkzb AMGybBeYj6owTVHev/DaTNaSb8W4QdFf6Vp9TpKBO8cW6f4DKU6f5Hg9T5oZhwkM yVuzvzH6uGcMJAOgB2lyfThTUbMJmwQvVyVe5z9cVQPFc1sv/WTr4rn8t5oTDm5Y bv1JV7BlK4jaK5Wmpzi/AzaQ3Em1Nlj2l3Uzvc6Zzgp/dh4+rqjQWIGEERsJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKtfS0+z/DIt2t0jKVb3ShttxZNswHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MGM5MDA5LWFkNTMtNGZhNi1h MTgzLTM0YjM0NTdiZWEwMy8wLzMyMzAzMjJlMzYzOTJlMzkzNjJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzMzMTM2MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpFYDANBgkqhkiG 9w0BAQsFAAOCAQEAjtiEbM4pLdVNaADHL6m2geVzeuJeN7EeUbrlk0Vk+ccY0yZt 48lvxHDfZEt5IQ1us9Yh1r85GkImlMqeQdxfZgJl+Tuc1UkAFofG3dY488xl6phv 2LETee5+h6dDqQO36QW+RbP2m+ybXrsqk7eraS9/xWXxNkuQGswb39O+ZcKQmMQd Ib9zHQdJANlm40k3lwgYOjG4kLxU3tjXm0t2CcPmPnbZozqCwXBmMzCPbEpRBRNE eMg9K15YxYTqDRr+irnLuW439fW9Du+EbcHD0SHGgccOHs23IMdzERucc+BN3KR0 SmnKjfz7MBt+mN0RF6AUvW1m4gjOcl94iViRHg== -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org