$ rpki-client -vvf repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa File: 3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa (raw, json) Hash identifier: bpQYto/zAqWMvm4EIAYuvirnYSqDrVqGzei50U2WjpM= Subject key identifier: F6:C8:A8:B9:CB:16:16:B1:95:FD:09:9F:A5:0B:F9:FC:AA:CE:04:9A Certificate issuer: /CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Certificate serial: 2287A507B4D2D6889EA1CC13CC6397FE5053593B Authority key identifier: CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa Signing time: Fri 22 Dec 2023 08:35:07 +0000 ROA not before: Fri 22 Dec 2023 08:30:07 +0000 ROA not after: Fri 20 Dec 2024 08:35:07 +0000 asID: 152032 IP address blocks: 202.47.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:87:a5:07:b4:d2:d6:88:9e:a1:cc:13:cc:63:97:fe:50:53:59:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Validity Not Before: Dec 22 08:30:07 2023 GMT Not After : Dec 20 08:35:07 2024 GMT Subject: CN=F6C8A8B9CB1616B195FD099FA50BF9FCAACE049A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b0:a2:b7:da:b5:5c:92:12:85:62:a1:26:c3: 49:34:b9:a7:20:cd:a7:63:7e:1f:e6:7d:ff:20:54: 04:96:60:37:d7:70:f9:35:5e:47:13:c4:6e:5d:f9: 59:5e:80:04:70:45:40:04:8a:d7:68:7e:41:ca:f3: 0b:b5:07:ff:a2:39:46:ef:1b:dd:5a:de:21:67:fc: 7c:45:16:72:71:04:57:c9:e8:70:44:79:f0:b4:88: 7b:31:50:22:94:97:0e:a2:11:b2:1f:ed:c8:e8:13: e6:97:f4:88:79:25:19:96:3f:08:e5:fc:a1:aa:d7: 15:1e:98:b4:b6:c4:70:f6:72:a4:ec:ea:90:9e:5c: 2b:9c:9a:ab:d4:23:4e:63:37:74:7c:cb:fa:67:33: 09:04:de:68:8c:b8:8b:f5:e5:f7:6f:61:af:80:d0: 5c:05:b3:82:48:25:7c:4e:89:48:e8:77:42:8a:98: aa:d1:90:d7:20:aa:16:75:6a:1d:64:7d:ff:d7:46: 1f:cc:e0:2e:f6:08:f2:a3:ce:c4:68:5c:2b:a6:37: 27:19:aa:2b:e9:a4:10:f3:1e:17:8e:bb:c5:76:3b: 04:c1:8a:2c:20:b4:5f:76:df:2f:1b:f2:51:1e:f4: a2:00:50:dc:fb:d0:70:11:f3:93:e4:a4:49:26:4a: 73:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C8:A8:B9:CB:16:16:B1:95:FD:09:9F:A5:0B:F9:FC:AA:CE:04:9A X509v3 Authority Key Identifier: keyid:CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.185.0/24 Signature Algorithm: sha256WithRSAEncryption a7:05:c2:f8:96:3d:1c:f9:a4:4b:24:99:41:44:a4:f7:e1:38: 64:2b:35:32:79:dd:87:c2:7b:3c:9e:56:be:74:b8:c9:4a:a4: 29:bb:f5:d5:e9:17:83:33:a1:4a:16:62:66:b7:08:87:c1:04: 90:10:aa:e1:ed:e0:f7:0a:01:69:15:1d:84:41:9c:ed:1c:2a: e5:5a:54:4a:b6:b3:19:fa:fc:11:53:ad:10:e6:c3:32:06:b8: 20:3d:e7:9c:95:cd:a3:e6:ad:90:27:ca:d6:21:79:cb:5b:19: e9:f7:84:39:94:62:a8:d6:7e:c5:fc:ea:6d:10:ea:ae:56:49: 7e:64:79:38:59:a1:91:3c:a2:ca:2e:07:14:ee:94:5c:20:f2: 46:cb:e7:e5:9d:17:15:98:46:3b:1c:b7:9b:ea:40:58:51:0a: c5:74:e2:ff:fa:8c:9a:c7:b7:cc:66:2e:b0:f2:17:f8:83:70: f3:7c:61:d6:53:fe:80:cb:0a:cc:88:43:3a:24:de:e8:fe:be: 98:9e:bf:21:3d:b0:3d:71:b8:0d:e3:94:e1:8b:16:15:54:c9: ee:a7:8a:f2:26:ee:fe:cb:0e:51:cf:e2:f3:23:06:26:30:f9: 8c:8b:5e:7b:8a:0e:ad:f9:5e:64:94:0b:49:23:9b:94:5c:70: af:39:d8:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIoelB7TS1oieocwTzGOX/lBTWTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlC NEEzN0NFODAeFw0yMzEyMjIwODMwMDdaFw0yNDEyMjAwODM1MDdaMDMxMTAvBgNV BAMTKEY2QzhBOEI5Q0IxNjE2QjE5NUZEMDk5RkE1MEJGOUZDQUFDRTA0OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNsKK32rVckhKFYqEmw0k0uacg zadjfh/mff8gVASWYDfXcPk1XkcTxG5d+VlegARwRUAEitdofkHK8wu1B/+iOUbv G91a3iFn/HxFFnJxBFfJ6HBEefC0iHsxUCKUlw6iEbIf7cjoE+aX9Ih5JRmWPwjl /KGq1xUemLS2xHD2cqTs6pCeXCucmqvUI05jN3R8y/pnMwkE3miMuIv15fdvYa+A 0FwFs4JIJXxOiUjod0KKmKrRkNcgqhZ1ah1kff/XRh/M4C72CPKjzsRoXCumNycZ qivppBDzHheOu8V2OwTBiiwgtF923y8b8lEe9KIAUNz70HAR85PkpEkmSnO9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9sioucsWFrGV/QmfpQv5/KrOBJowHwYDVR0j BBgwFoAUzsJkKd8whhWHDB9H6M3k+bSjfOgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTVmZGY2Yy0wZDAxLTQ5MmItODAwNC1hNDhlZTVhMTI0NzQvMC9DRUMyNjQyOURG MzA4NjE1ODcwQzFGNDdFOENERTRGOUI0QTM3Q0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlCNEEz N0NFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNWZkZjZjLTBkMDEtNDkyYi04 MDA0LWE0OGVlNWExMjQ3NC8wLzMyMzAzMjJlMzQzNzJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+5MA0GCSqG SIb3DQEBCwUAA4IBAQCnBcL4lj0c+aRLJJlBRKT34ThkKzUyed2Hwns8nla+dLjJ SqQpu/XV6ReDM6FKFmJmtwiHwQSQEKrh7eD3CgFpFR2EQZztHCrlWlRKtrMZ+vwR U60Q5sMyBrggPeeclc2j5q2QJ8rWIXnLWxnp94Q5lGKo1n7F/OptEOquVkl+ZHk4 WaGRPKLKLgcU7pRcIPJGy+flnRcVmEY7HLeb6kBYUQrFdOL/+oyax7fMZi6w8hf4 g3DzfGHWU/6AywrMiEM6JN7o/r6Ynr8hPbA9cbgN45ThixYVVMnup4ryJu7+yw5R z+LzIwYmMPmMi157ig6t+V5klAtJI5uUXHCvOdgA -----END CERTIFICATE-----Generated at Sun Jun 2 10:44:52 2024 by rpki-client on console-ams.rpki-client.org