$ rpki-client -vvf repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138342e302f32342d3234203d3e20313532303332.roa File: 3230322e34372e3138342e302f32342d3234203d3e20313532303332.roa (raw, json) Hash identifier: PV+L/byS9ivteHxHuiSMwxNfjaoaMWmnTHGcu8SzGjY= Subject key identifier: 36:A8:89:57:91:80:42:FE:A9:EA:E8:63:57:6E:09:07:6A:1A:A5:70 Certificate issuer: /CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Certificate serial: 57743D3923067D75EE2B37E85D5FA21D817F97EE Authority key identifier: CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138342e302f32342d3234203d3e20313532303332.roa Signing time: Fri 22 Dec 2023 08:34:30 +0000 ROA not before: Fri 22 Dec 2023 08:29:30 +0000 ROA not after: Fri 20 Dec 2024 08:34:30 +0000 asID: 152032 IP address blocks: 202.47.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:74:3d:39:23:06:7d:75:ee:2b:37:e8:5d:5f:a2:1d:81:7f:97:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Validity Not Before: Dec 22 08:29:30 2023 GMT Not After : Dec 20 08:34:30 2024 GMT Subject: CN=36A88957918042FEA9EAE863576E09076A1AA570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ea:7a:4e:eb:d1:7a:d2:7a:d9:ec:89:a2:4e: 65:60:fb:23:e1:ae:91:0c:21:72:b5:38:6a:5c:cc: 26:e3:bf:bf:f0:ae:04:d5:83:4b:56:f5:47:52:63: 2d:92:69:8d:03:dc:11:2a:2f:d6:d2:7e:ac:fb:f5: 3a:f3:f0:5c:ce:f4:13:e6:76:59:ae:47:e5:d1:60: 54:81:e6:90:25:e4:6f:c5:68:76:f4:d5:de:81:8b: 30:e4:47:1c:c5:22:65:76:71:2d:f6:5d:bd:9e:b1: e4:51:64:89:76:84:ca:57:b5:b1:95:5f:68:02:31: 0a:33:f7:1c:0b:78:0f:ce:6f:a0:f1:7a:2a:7d:44: 7f:27:ac:96:08:c2:71:8d:bb:c1:37:3d:aa:b7:97: 56:41:65:11:79:f7:30:b6:86:9e:6a:ed:b5:77:43: 9a:49:9b:c5:39:9e:3c:f4:34:b1:ff:68:47:f0:10: 2c:d8:3f:c5:78:7f:8e:f1:1c:d3:5d:0c:4d:6f:f4: 2b:0f:d3:bd:0a:d6:a4:29:2f:bf:fd:ee:50:6b:c7: 65:78:21:d8:ba:d4:dc:cd:11:ff:17:fe:8f:30:7a: 12:91:ad:59:f9:77:ac:2d:91:4f:fa:11:61:d0:6d: e4:d1:ba:6d:dc:70:d4:96:f0:6a:9a:6b:a6:e0:71: b0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A8:89:57:91:80:42:FE:A9:EA:E8:63:57:6E:09:07:6A:1A:A5:70 X509v3 Authority Key Identifier: keyid:CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138342e302f32342d3234203d3e20313532303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.184.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:50:73:c5:29:d0:a7:2c:3e:13:ce:7a:c1:7e:6e:3e:8d:64: 03:22:47:2a:83:6e:15:ba:75:8d:08:c2:fc:4f:eb:b7:71:58: ab:b6:81:3c:89:08:61:0e:42:04:67:e4:b0:30:8d:42:1c:af: 36:b0:92:a2:4a:d6:0e:c8:06:9b:af:ca:33:d4:c4:71:90:92: d7:f3:d0:19:36:fa:80:c6:90:53:03:c4:6d:e8:7e:d1:8e:a1: 2a:4b:dc:fd:2b:0a:cb:85:fb:a0:f0:5d:f7:fd:2b:8c:27:4a: 01:a2:fe:69:4c:aa:87:d9:f3:95:eb:f7:b7:54:59:7a:de:35: 94:d2:98:63:a9:fd:1e:9e:94:1f:11:db:9b:02:8d:71:d6:3b: 5e:30:83:b9:6d:91:53:48:7d:d6:e9:42:df:4f:72:76:fe:3c: 47:c3:01:73:7f:55:a0:a7:92:99:3e:e7:70:a1:99:a9:3a:dd: 66:77:bd:49:93:2d:1d:20:d4:af:cf:2f:f2:6c:e1:a0:54:82: 7f:21:5a:bb:78:26:76:b9:cb:9c:f9:e6:ab:d3:9b:48:58:b7: 6f:eb:1f:2e:d9:cb:19:5d:89:da:e0:27:1a:5b:38:2b:17:dd: 56:d4:59:4b:46:b2:e2:1a:cd:fe:2a:48:3f:96:59:c3:3e:3b: c8:85:72:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV3Q9OSMGfXXuKzfoXV+iHYF/l+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlC NEEzN0NFODAeFw0yMzEyMjIwODI5MzBaFw0yNDEyMjAwODM0MzBaMDMxMTAvBgNV BAMTKDM2QTg4OTU3OTE4MDQyRkVBOUVBRTg2MzU3NkUwOTA3NkExQUE1NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC66npO69F60nrZ7ImiTmVg+yPh rpEMIXK1OGpczCbjv7/wrgTVg0tW9UdSYy2SaY0D3BEqL9bSfqz79Trz8FzO9BPm dlmuR+XRYFSB5pAl5G/FaHb01d6BizDkRxzFImV2cS32Xb2eseRRZIl2hMpXtbGV X2gCMQoz9xwLeA/Ob6Dxeip9RH8nrJYIwnGNu8E3Paq3l1ZBZRF59zC2hp5q7bV3 Q5pJm8U5njz0NLH/aEfwECzYP8V4f47xHNNdDE1v9CsP070K1qQpL7/97lBrx2V4 Idi61NzNEf8X/o8wehKRrVn5d6wtkU/6EWHQbeTRum3ccNSW8Gqaa6bgcbARAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNqiJV5GAQv6p6uhjV24JB2oapXAwHwYDVR0j BBgwFoAUzsJkKd8whhWHDB9H6M3k+bSjfOgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTVmZGY2Yy0wZDAxLTQ5MmItODAwNC1hNDhlZTVhMTI0NzQvMC9DRUMyNjQyOURG MzA4NjE1ODcwQzFGNDdFOENERTRGOUI0QTM3Q0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlCNEEz N0NFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNWZkZjZjLTBkMDEtNDkyYi04 MDA0LWE0OGVlNWExMjQ3NC8wLzMyMzAzMjJlMzQzNzJlMzEzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+4MA0GCSqG SIb3DQEBCwUAA4IBAQANUHPFKdCnLD4TznrBfm4+jWQDIkcqg24VunWNCML8T+u3 cVirtoE8iQhhDkIEZ+SwMI1CHK82sJKiStYOyAabr8oz1MRxkJLX89AZNvqAxpBT A8Rt6H7RjqEqS9z9KwrLhfug8F33/SuMJ0oBov5pTKqH2fOV6/e3VFl63jWU0phj qf0enpQfEdubAo1x1jteMIO5bZFTSH3W6ULfT3J2/jxHwwFzf1Wgp5KZPudwoZmp Ot1md71Jky0dINSvzy/ybOGgVIJ/IVq7eCZ2ucuc+ear05tIWLdv6x8u2csZXYna 4CcaWzgrF91W1FlLRrLiGs3+Kkg/llnDPjvIhXLQ -----END CERTIFICATE-----Generated at Sun Jun 2 10:44:52 2024 by rpki-client on console-ams.rpki-client.org