$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230342e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3230342e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: c1LzwRP8jvbCSrkQN3bZf2LHFiYRAEujqAcqaUwTi/M= Subject key identifier: AA:67:10:42:F8:E6:D3:DB:3E:32:19:B1:F3:DB:F8:48:D6:89:F1:75 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 456159367CEBB36D69ECBCF81099A53073A23CCD Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230342e302f32342d3234203d3e203538353532.roa Signing time: Mon 01 Jul 2024 01:03:53 +0000 ROA not before: Mon 01 Jul 2024 00:58:53 +0000 ROA not after: Mon 30 Jun 2025 01:03:53 +0000 asID: 58552 IP address blocks: 202.72.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:61:59:36:7c:eb:b3:6d:69:ec:bc:f8:10:99:a5:30:73:a2:3c:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jul 1 00:58:53 2024 GMT Not After : Jun 30 01:03:53 2025 GMT Subject: CN=AA671042F8E6D3DB3E3219B1F3DBF848D689F175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6d:a8:a1:ed:e2:55:85:a8:54:e9:24:10:9f: 56:8e:62:49:e5:4d:da:1c:0c:7c:77:ab:98:bf:ba: 92:e7:5d:60:0c:bd:86:dc:01:d3:52:dc:67:e1:b8: a8:dc:33:18:22:62:07:07:28:79:8a:75:19:01:58: 1a:56:26:d4:5d:55:6e:1c:54:34:7d:0c:3d:37:81: e4:ea:18:33:17:0a:7e:cd:20:99:ea:88:b0:0a:24: 5e:bd:ca:49:32:55:bc:ad:6a:0b:d9:3a:38:78:0b: 10:bb:5c:f9:7f:f9:45:89:3a:64:38:d8:8b:f4:88: 43:6e:49:29:26:ab:4c:30:80:93:59:f3:64:dd:f8: e1:8e:69:01:a2:7f:c4:93:c4:b5:f0:83:ce:94:9f: fa:dd:c5:87:cb:ed:40:f2:84:d9:a3:eb:76:50:fa: c4:3f:57:b3:79:37:14:a5:ad:6b:24:1b:e9:51:1d: 8f:b2:10:63:22:0e:1c:4a:a9:29:29:b6:3f:cc:7f: 36:1d:c5:91:1d:3e:60:fc:99:70:ea:69:c9:1a:f6: f8:ba:86:44:95:61:0b:47:89:29:3c:b2:b6:56:c6: b6:67:1a:88:06:8d:07:ae:71:90:ec:fa:87:7c:24: 23:e7:b4:97:45:7d:65:31:83:38:df:c0:7d:41:53: 18:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:67:10:42:F8:E6:D3:DB:3E:32:19:B1:F3:DB:F8:48:D6:89:F1:75 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230342e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.204.0/24 Signature Algorithm: sha256WithRSAEncryption 13:57:f6:31:74:3f:7d:f0:23:b4:d6:36:dc:c9:4e:d9:50:22: 02:28:f3:ee:cf:64:11:b5:60:b4:e6:06:dc:3c:79:f9:99:99: 53:65:f7:9c:a6:f0:68:f7:ee:fe:a2:16:b2:ec:a0:63:2a:2f: e7:b4:ed:cc:3e:4d:f0:fa:6b:05:b6:1e:ad:ee:fe:3f:d4:41: f7:01:2c:05:3c:e9:8b:05:ea:f1:e4:cc:3d:5a:ec:b2:c9:a0: 15:3c:f0:8a:eb:30:b2:2a:ab:93:11:48:c9:d7:f3:68:25:a4: 8c:e5:15:bb:f5:1b:f1:98:ea:39:74:94:17:1e:11:c3:ab:7f: 2f:20:65:65:33:b6:03:e5:27:a1:e1:5f:24:82:22:1d:75:64: 89:b8:25:6e:6d:29:58:ec:62:1e:de:72:41:4a:6f:31:05:8a: d4:67:18:5d:bf:4e:fc:f4:c7:ea:bc:c1:42:de:80:6b:f0:a9: 67:dc:7f:b4:7f:87:e7:09:ca:fa:cf:48:0a:af:1a:22:ab:bf: ee:4f:e2:ec:3b:17:21:46:3a:18:cf:96:57:11:e5:dd:a0:c0: cb:11:e5:f1:9b:df:27:0e:95:ce:4b:b6:8d:b5:af:c0:90:78: 7c:50:e8:fa:3e:7a:4e:50:32:16:36:c7:b8:13:18:91:a4:5f: 33:df:04:6b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURWFZNnzrs21p7Lz4EJmlMHOiPM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yNDA3MDEwMDU4NTNaFw0yNTA2MzAwMTAzNTNaMDMxMTAvBgNV BAMTKEFBNjcxMDQyRjhFNkQzREIzRTMyMTlCMUYzREJGODQ4RDY4OUYxNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6baih7eJVhahU6SQQn1aOYknl TdocDHx3q5i/upLnXWAMvYbcAdNS3GfhuKjcMxgiYgcHKHmKdRkBWBpWJtRdVW4c VDR9DD03geTqGDMXCn7NIJnqiLAKJF69ykkyVbytagvZOjh4CxC7XPl/+UWJOmQ4 2Iv0iENuSSkmq0wwgJNZ82Td+OGOaQGif8STxLXwg86Un/rdxYfL7UDyhNmj63ZQ +sQ/V7N5NxSlrWskG+lRHY+yEGMiDhxKqSkptj/MfzYdxZEdPmD8mXDqacka9vi6 hkSVYQtHiSk8srZWxrZnGogGjQeucZDs+od8JCPntJdFfWUxgzjfwH1BUxj3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqmcQQvjm09s+Mhmx89v4SNaJ8XUwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzIzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIzDANBgkqhkiG 9w0BAQsFAAOCAQEAE1f2MXQ/ffAjtNY23MlO2VAiAijz7s9kEbVgtOYG3Dx5+ZmZ U2X3nKbwaPfu/qIWsuygYyov57TtzD5N8PprBbYere7+P9RB9wEsBTzpiwXq8eTM PVrsssmgFTzwiuswsiqrkxFIydfzaCWkjOUVu/Ub8ZjqOXSUFx4Rw6t/LyBlZTO2 A+UnoeFfJIIiHXVkibglbm0pWOxiHt5yQUpvMQWK1GcYXb9O/PTH6rzBQt6Aa/Cp Z9x/tH+H5wnK+s9ICq8aIqu/7k/i7DsXIUY6GM+WVxHl3aDAyxHl8ZvfJw6Vzku2 jbWvwJB4fFDo+j56TlAyFjbHuBMYkaRfM98Eaw== -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org