$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32312d3231203d3e203538383136.roa File: 3230322e37332e31362e302f32312d3231203d3e203538383136.roa (raw, json) Hash identifier: wSfAp/MILQ8qsjgcoSobVSjQ+LgmtNfIU9pJCyfkOHY= Subject key identifier: CC:67:7C:9C:55:D5:06:4E:7A:2D:DC:43:DC:90:C4:A8:4D:35:2A:47 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 082D2DD930F64DCFDB109661906F01D840C7A2C9 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32312d3231203d3e203538383136.roa Signing time: Wed 31 Jan 2024 10:12:20 +0000 ROA not before: Wed 31 Jan 2024 10:07:20 +0000 ROA not after: Wed 29 Jan 2025 10:12:20 +0000 asID: 58816 IP address blocks: 202.73.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:2d:2d:d9:30:f6:4d:cf:db:10:96:61:90:6f:01:d8:40:c7:a2:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Jan 31 10:07:20 2024 GMT Not After : Jan 29 10:12:20 2025 GMT Subject: CN=CC677C9C55D5064E7A2DDC43DC90C4A84D352A47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ca:84:81:ef:ce:17:7a:24:c9:fa:64:48:9e: 2f:7d:b2:21:e7:0a:0b:7b:21:32:cd:90:cd:09:ad: ab:4d:31:e3:6d:23:15:a2:14:bb:02:58:1a:1d:d7: 4e:1c:c1:a0:cc:fa:62:1f:1b:1c:44:3b:44:ba:58: b7:1c:19:6b:60:b4:bc:63:36:de:df:f0:6e:b6:01: 0f:8d:11:b3:96:5b:ee:20:f5:0b:17:9b:59:b2:be: 50:4a:e2:9b:78:07:3b:0b:f8:fd:30:f8:4b:a1:e6: c6:a5:bd:69:38:53:02:a8:2e:86:57:ee:e4:5c:d3: 3f:f4:e7:80:ee:31:a9:aa:20:a7:12:2f:e0:a3:b3: 68:74:ea:7b:9d:b6:7e:40:3b:e0:4e:a6:9c:4a:d6: dd:db:0d:c9:ad:98:ff:64:56:3e:44:60:29:55:61: 1b:f2:a1:e7:97:fa:04:41:0a:91:cd:f2:2c:d9:47: cc:ac:c1:01:6c:21:fe:ff:98:62:a1:cc:db:c8:a6: 2e:fc:28:74:9a:23:93:7d:f6:3d:31:dd:1d:9d:0a: 98:93:cb:c4:18:b5:3a:be:51:de:17:c0:dc:82:94: a8:a8:88:bb:c9:7a:36:b6:5b:2e:f1:46:8f:80:18: 7f:cf:06:41:ca:ea:e5:da:fc:8e:3c:c4:bc:48:b4: 18:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:67:7C:9C:55:D5:06:4E:7A:2D:DC:43:DC:90:C4:A8:4D:35:2A:47 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32312d3231203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.16.0/21 Signature Algorithm: sha256WithRSAEncryption 52:9b:eb:37:c4:74:a2:2f:66:de:80:e5:61:1d:ca:99:72:bf: ee:06:6d:36:97:00:38:f8:cb:0d:a8:b3:20:d0:9b:60:33:f4: 4c:08:ed:ee:ee:5b:27:83:10:41:73:43:b0:fe:6c:98:09:4d: fd:0b:1c:16:73:8a:8c:50:af:ad:a5:9d:e1:f0:b9:72:de:96: 9b:55:78:d3:51:85:7c:ac:ad:1f:2a:02:f0:f2:db:95:e6:2c: 16:f6:ac:f2:0c:5b:4e:a6:4d:9f:36:a4:c7:52:b6:8c:91:c0: 37:35:aa:f0:3c:b0:84:5f:e8:c4:6c:95:6c:44:8a:10:29:9a: 4d:82:a2:47:4f:ca:43:0e:fe:50:d9:00:8e:35:b8:e8:cc:e4: 4a:cf:09:32:44:91:2f:98:60:c8:91:ce:c0:d2:9e:fa:1f:bf: 44:56:3d:15:15:83:86:d3:3a:f9:ae:76:80:4f:ca:4d:45:f5: 39:34:12:4c:80:ab:13:83:78:ba:58:3c:f2:d6:4d:e6:16:0a: 2c:ac:9c:2c:e5:fd:13:b5:bd:10:eb:f1:da:d0:3b:06:80:6f: 53:ce:d7:fc:92:7c:d3:7e:ec:81:f8:a2:d8:d6:34:77:04:c2: 6f:9f:5d:19:fc:45:d8:d8:88:02:f6:3c:78:9b:fb:56:b9:f7: b2:2f:b5:eb -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCC0t2TD2Tc/bEJZhkG8B2EDHoskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDAxMzExMDA3MjBaFw0yNTAxMjkxMDEyMjBaMDMxMTAvBgNV BAMTKENDNjc3QzlDNTVENTA2NEU3QTJEREM0M0RDOTBDNEE4NEQzNTJBNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoyoSB784XeiTJ+mRIni99siHn Cgt7ITLNkM0JratNMeNtIxWiFLsCWBod104cwaDM+mIfGxxEO0S6WLccGWtgtLxj Nt7f8G62AQ+NEbOWW+4g9QsXm1myvlBK4pt4BzsL+P0w+Euh5salvWk4UwKoLoZX 7uRc0z/054DuMamqIKcSL+Cjs2h06nudtn5AO+BOppxK1t3bDcmtmP9kVj5EYClV YRvyoeeX+gRBCpHN8izZR8yswQFsIf7/mGKhzNvIpi78KHSaI5N99j0x3R2dCpiT y8QYtTq+Ud4XwNyClKioiLvJeja2Wy7xRo+AGH/PBkHK6uXa/I48xLxItBgFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzGd8nFXVBk56LdxD3JDEqE01KkcwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzNjJlMzAyZjMyMzEy ZDMyMzEyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKSRAwDQYJKoZIhvcN AQELBQADggEBAFKb6zfEdKIvZt6A5WEdyplyv+4GbTaXADj4yw2osyDQm2Az9EwI 7e7uWyeDEEFzQ7D+bJgJTf0LHBZzioxQr62lneHwuXLelptVeNNRhXysrR8qAvDy 25XmLBb2rPIMW06mTZ82pMdStoyRwDc1qvA8sIRf6MRslWxEihApmk2CokdPykMO /lDZAI41uOjM5ErPCTJEkS+YYMiRzsDSnvofv0RWPRUVg4bTOvmudoBPyk1F9Tk0 EkyAqxODeLpYPPLWTeYWCiysnCzl/RO1vRDr8drQOwaAb1PO1/ySfNN+7IH4otjW NHcEwm+fXRn8RdjYiAL2PHib+1a597Ivtes= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org