$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32322d3232203d3e203538383136.roa File: 3230322e37332e31362e302f32322d3232203d3e203538383136.roa (raw, json) Hash identifier: 2DnArTQ2x8AYPb+2dxd7oZRXJsX8oW64vEwQxp0G9Bk= Subject key identifier: D6:40:36:6D:38:A9:84:39:A9:B7:2A:E3:9E:C7:AC:9F:6E:5A:65:43 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 74E59321316EF9ED8F129F1D55D584949E6A0725 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32322d3232203d3e203538383136.roa Signing time: Thu 21 Mar 2024 02:30:12 +0000 ROA not before: Thu 21 Mar 2024 02:25:12 +0000 ROA not after: Thu 20 Mar 2025 02:30:12 +0000 asID: 58816 IP address blocks: 202.73.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:e5:93:21:31:6e:f9:ed:8f:12:9f:1d:55:d5:84:94:9e:6a:07:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Mar 21 02:25:12 2024 GMT Not After : Mar 20 02:30:12 2025 GMT Subject: CN=D640366D38A98439A9B72AE39EC7AC9F6E5A6543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:69:e6:6d:cf:43:90:3b:56:b8:04:ce:1b: 44:ef:d7:64:2f:bb:29:f4:59:f0:59:69:ae:06:77: ee:b2:db:51:65:9c:e3:85:85:51:c0:51:6d:ee:d1: ef:db:b7:c7:5c:22:32:96:95:ae:08:63:64:5a:4e: 23:c6:45:23:39:0f:41:e5:76:bd:30:ef:6c:ce:fa: 21:7e:2e:bd:08:a2:92:af:d7:9d:b2:67:a7:bc:b2: cc:b7:77:e6:70:11:0e:aa:c9:a8:09:d8:e4:c9:b0: d7:d1:dd:46:ce:72:6c:2e:10:d1:04:f2:8d:60:ee: 9b:fd:ee:99:45:26:79:08:18:06:a6:4c:92:42:be: 1f:c3:39:79:f1:68:7e:a3:b1:1a:36:6f:65:80:01: e6:49:b4:de:a0:3d:13:0f:76:b5:b3:75:4e:be:f7: 0d:ab:81:f8:0b:4c:c3:d0:da:e8:40:6e:24:18:00: b6:8b:43:82:3e:8d:da:67:9a:21:1d:56:c3:26:7c: a1:f4:37:79:d2:b7:24:39:b6:ac:09:cb:e2:22:ad: 7d:a1:52:93:d1:9c:b2:76:70:87:4f:28:29:74:5f: e0:f4:eb:8e:d5:8a:3b:53:2c:db:1d:ca:9c:39:f1: f2:8f:5e:85:33:48:bc:bc:ab:3a:5c:d8:0b:5a:7d: f9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:40:36:6D:38:A9:84:39:A9:B7:2A:E3:9E:C7:AC:9F:6E:5A:65:43 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32322d3232203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.16.0/22 Signature Algorithm: sha256WithRSAEncryption 84:0d:c5:9d:41:03:c4:4d:5e:14:d1:a2:85:9d:3a:a5:7a:77: 86:43:e5:4f:42:be:a6:01:88:46:19:32:06:f9:68:78:41:fd: 49:6d:5d:fa:dd:07:6e:9c:d7:c0:3f:64:e3:bf:57:ad:2a:e2: c3:6f:0b:63:21:21:b5:ad:66:a9:62:0b:a8:e0:c0:9b:2c:28: e8:89:22:30:96:0a:77:95:d3:f4:09:45:eb:d0:33:b4:1f:5b: 99:f1:0e:27:57:bc:8d:ec:3a:5b:91:b3:f3:de:1d:aa:29:73: d8:69:bc:b3:62:0a:3f:f0:4c:fd:fb:32:91:49:3f:44:18:7e: 0b:e4:58:4a:33:97:f3:5b:f2:d9:83:8f:6e:68:af:ce:8c:52: 03:f3:b0:13:34:6c:7f:d3:b8:bc:45:68:bf:d9:3b:40:c8:d0: 40:65:9f:3d:81:2c:73:83:fe:66:12:92:bd:a9:74:b5:19:1d: 37:cf:79:62:9b:a9:3f:11:1b:b9:ac:a2:20:d5:c5:b9:5c:b7: 22:ee:60:11:3d:d4:0b:b3:30:53:14:dd:d9:34:69:f9:ce:d8: a8:6e:11:27:66:7c:20:a9:1e:f6:3e:35:f2:fb:c9:13:a1:57: e9:64:51:db:61:aa:15:74:83:16:cb:d6:c4:0c:57:2a:67:62: b0:59:2e:0c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdOWTITFu+e2PEp8dVdWElJ5qByUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDAzMjEwMjI1MTJaFw0yNTAzMjAwMjMwMTJaMDMxMTAvBgNV BAMTKEQ2NDAzNjZEMzhBOTg0MzlBOUI3MkFFMzlFQzdBQzlGNkU1QTY1NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB+Wnmbc9DkDtWuATOG0Tv12Qv uyn0WfBZaa4Gd+6y21FlnOOFhVHAUW3u0e/bt8dcIjKWla4IY2RaTiPGRSM5D0Hl dr0w72zO+iF+Lr0IopKv152yZ6e8ssy3d+ZwEQ6qyagJ2OTJsNfR3UbOcmwuENEE 8o1g7pv97plFJnkIGAamTJJCvh/DOXnxaH6jsRo2b2WAAeZJtN6gPRMPdrWzdU6+ 9w2rgfgLTMPQ2uhAbiQYALaLQ4I+jdpnmiEdVsMmfKH0N3nStyQ5tqwJy+IirX2h UpPRnLJ2cIdPKCl0X+D0647VijtTLNsdypw58fKPXoUzSLy8qzpc2AtaffnVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1kA2bTiphDmptyrjnsesn25aZUMwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzNjJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKSRAwDQYJKoZIhvcN AQELBQADggEBAIQNxZ1BA8RNXhTRooWdOqV6d4ZD5U9CvqYBiEYZMgb5aHhB/Ult XfrdB26c18A/ZOO/V60q4sNvC2MhIbWtZqliC6jgwJssKOiJIjCWCneV0/QJRevQ M7QfW5nxDidXvI3sOluRs/PeHaopc9hpvLNiCj/wTP37MpFJP0QYfgvkWEozl/Nb 8tmDj25or86MUgPzsBM0bH/TuLxFaL/ZO0DI0EBlnz2BLHOD/mYSkr2pdLUZHTfP eWKbqT8RG7msoiDVxblctyLuYBE91AuzMFMU3dk0afnO2KhuESdmfCCpHvY+NfL7 yROhV+lkUdthqhV0gxbL1sQMVypnYrBZLgw= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org