$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32342d3234203d3e203538383136.roa File: 3230322e37332e31362e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: 7NLroYSD9v06Wgghu4TFlZ55IAZFVZ/FFfvnOPBLAUQ= Subject key identifier: 63:99:8D:F1:34:88:B9:BF:A9:CC:A8:10:E1:D3:6B:4A:EF:5D:AE:C7 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 4942E7AA00EBE31D8554E231E711363F63869ACC Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32342d3234203d3e203538383136.roa Signing time: Thu 11 Apr 2024 11:00:00 +0000 ROA not before: Thu 11 Apr 2024 10:55:00 +0000 ROA not after: Thu 10 Apr 2025 11:00:00 +0000 asID: 58816 IP address blocks: 202.73.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:42:e7:aa:00:eb:e3:1d:85:54:e2:31:e7:11:36:3f:63:86:9a:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Apr 11 10:55:00 2024 GMT Not After : Apr 10 11:00:00 2025 GMT Subject: CN=63998DF13488B9BFA9CCA810E1D36B4AEF5DAEC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3a:2a:e3:20:cd:d7:e0:51:f1:60:5b:0f:f3: 16:cf:a4:44:c1:a3:b8:aa:f5:0f:a4:51:e5:e4:00: 9d:26:3c:29:fc:81:c2:aa:9b:cd:bc:ae:8f:5f:4a: f5:5a:f6:6d:c4:8b:80:67:5b:c2:e3:40:b0:08:18: cb:06:ae:6a:0b:78:31:af:ba:d0:a0:c0:75:44:b9: fa:82:c6:32:04:56:27:56:64:db:8e:28:9d:00:8c: 41:22:c1:b4:c7:27:7e:e8:f3:44:3f:60:91:3e:d5: b9:6b:1e:c4:34:5e:67:40:ce:e0:23:64:de:48:38: a7:43:6c:59:a3:51:80:b7:c6:d6:d3:f6:2f:ef:18: a2:02:64:be:ac:5c:15:32:67:6f:1b:39:d4:7e:0c: ce:77:69:23:de:be:cc:9d:10:dc:b4:99:70:88:74: cf:3a:54:1f:0c:f0:13:3f:fd:0f:d4:92:19:e5:8d: 8d:40:01:6c:0e:42:c4:7b:09:3a:c9:67:d8:28:99: be:9a:0e:e0:a0:1e:4f:14:42:3d:df:ce:35:7c:6b: e6:70:64:8e:c5:79:5a:13:7a:db:0b:c6:c7:56:93: db:b0:7a:70:b0:1a:90:83:55:98:4c:4f:5c:10:6f: 55:01:eb:19:42:58:56:24:d6:eb:35:db:28:cc:d9: ec:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:99:8D:F1:34:88:B9:BF:A9:CC:A8:10:E1:D3:6B:4A:EF:5D:AE:C7 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.16.0/24 Signature Algorithm: sha256WithRSAEncryption 31:ef:f3:fc:1f:f2:d6:dd:fc:2a:10:0a:f3:ad:d4:90:bc:e9: 7d:f6:ca:75:f7:ec:4a:66:20:98:1c:cf:13:60:59:c2:35:d1: a1:be:d4:2d:84:92:d9:13:cc:76:a0:87:f7:da:a5:25:ed:95: c9:39:fa:17:88:01:a7:2d:fe:c6:ec:36:ce:c1:23:64:d0:4b: 10:99:0b:52:a3:80:1f:76:0f:e5:55:58:fe:14:35:8d:7e:72: 56:4b:22:7d:fc:fc:2b:cb:85:e1:0f:9f:ad:64:77:d6:ee:a0: be:81:1f:b1:d4:1a:6f:96:21:b7:6e:59:3d:67:0f:8c:36:b5: c7:07:40:3e:dd:89:5a:48:de:42:a4:57:35:14:ab:5d:ee:59: ce:5e:a8:91:63:8e:6d:a7:24:56:1e:d7:c5:b7:a2:30:52:78: 0d:ac:ce:bc:01:25:77:7a:66:0d:55:70:3d:d8:d7:f5:c7:d8: fe:cb:e9:b2:ea:96:dd:04:2b:60:70:8a:3f:9c:b4:57:27:f7: 9d:ba:97:89:6e:4c:b5:62:0e:5a:08:61:7c:3e:45:59:84:10: b9:a9:4e:aa:b7:5f:2a:1a:bf:67:31:85:33:fd:c9:d6:f9:d0: 83:45:d6:41:5a:67:6b:23:20:08:bd:a8:28:33:82:9d:95:1d: 0d:b6:88:00 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSULnqgDr4x2FVOIx5xE2P2OGmswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDA0MTExMDU1MDBaFw0yNTA0MTAxMTAwMDBaMDMxMTAvBgNV BAMTKDYzOTk4REYxMzQ4OEI5QkZBOUNDQTgxMEUxRDM2QjRBRUY1REFFQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2OirjIM3X4FHxYFsP8xbPpETB o7iq9Q+kUeXkAJ0mPCn8gcKqm828ro9fSvVa9m3Ei4BnW8LjQLAIGMsGrmoLeDGv utCgwHVEufqCxjIEVidWZNuOKJ0AjEEiwbTHJ37o80Q/YJE+1blrHsQ0XmdAzuAj ZN5IOKdDbFmjUYC3xtbT9i/vGKICZL6sXBUyZ28bOdR+DM53aSPevsydENy0mXCI dM86VB8M8BM//Q/UkhnljY1AAWwOQsR7CTrJZ9gomb6aDuCgHk8UQj3fzjV8a+Zw ZI7FeVoTetsLxsdWk9uwenCwGpCDVZhMT1wQb1UB6xlCWFYk1us12yjM2ezRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUY5mN8TSIub+pzKgQ4dNrSu9drscwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRAwDQYJKoZIhvcN AQELBQADggEBADHv8/wf8tbd/CoQCvOt1JC86X32ynX37EpmIJgczxNgWcI10aG+ 1C2EktkTzHagh/fapSXtlck5+heIAact/sbsNs7BI2TQSxCZC1KjgB92D+VVWP4U NY1+clZLIn38/CvLheEPn61kd9buoL6BH7HUGm+WIbduWT1nD4w2tccHQD7diVpI 3kKkVzUUq13uWc5eqJFjjm2nJFYe18W3ojBSeA2szrwBJXd6Zg1VcD3Y1/XH2P7L 6bLqlt0EK2Bwij+ctFcn9526l4luTLViDloIYXw+RVmEELmpTqq3Xyoav2cxhTP9 ydb50INF1kFaZ2sjIAi9qCgzgp2VHQ22iAA= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org