$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31372e302f32342d3234203d3e203538383136.roa File: 3230322e37332e31372e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: T/Ka7j7C4WWsDUo9fgu90cr6T8G54gDMAo0lcHcbAb8= Subject key identifier: D1:38:71:F3:9A:D4:E2:1B:AE:8C:38:21:B2:F6:E1:2A:35:A6:8A:54 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 31C4ADC4EEFDEC0E3227606E76CABFA4DB2D9AD0 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31372e302f32342d3234203d3e203538383136.roa Signing time: Thu 11 Apr 2024 11:00:01 +0000 ROA not before: Thu 11 Apr 2024 10:55:01 +0000 ROA not after: Thu 10 Apr 2025 11:00:01 +0000 asID: 58816 IP address blocks: 202.73.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:c4:ad:c4:ee:fd:ec:0e:32:27:60:6e:76:ca:bf:a4:db:2d:9a:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Apr 11 10:55:01 2024 GMT Not After : Apr 10 11:00:01 2025 GMT Subject: CN=D13871F39AD4E21BAE8C3821B2F6E12A35A68A54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:40:c0:87:bd:33:27:88:8c:3b:8f:db:3d:6c: 36:25:de:b5:08:3f:7a:eb:c3:31:a1:a2:a3:02:2f: b8:27:07:3f:c4:51:c0:25:d4:7e:68:19:4b:63:04: 22:33:9b:fe:a4:2f:51:67:20:14:e8:2f:d2:e2:bf: ed:47:a3:b1:83:f1:87:a5:68:60:9c:72:5e:5c:8d: e6:3b:7f:8f:df:3e:ef:77:a7:50:34:cb:51:69:ff: 6b:e1:ea:d5:cd:49:1d:74:1e:2b:fc:0d:66:be:b0: 8c:05:ff:87:af:47:b0:78:ac:c6:4d:5d:1b:69:af: 1b:5c:9c:17:d0:7d:8e:e9:bd:03:36:27:06:43:ae: 7b:91:02:d0:a8:ba:9a:7d:2d:63:9a:8a:4b:fe:87: df:10:7d:df:88:7f:a9:df:c1:2e:14:c2:93:6c:00: be:01:35:7a:15:59:a9:4d:3f:5f:3f:3a:2c:0f:bc: 50:78:47:f7:77:f9:bf:c9:8b:fe:fd:8c:eb:59:7d: e3:88:4d:a8:19:64:b3:9c:aa:56:b7:e8:94:25:73: 88:b3:aa:93:ac:8c:64:23:46:c6:66:9f:90:c5:23: 44:03:23:a7:04:86:7f:10:ff:c2:4a:6c:24:01:d4: f5:fa:93:d4:a0:8d:3a:17:d5:1d:35:96:b3:7a:68: 10:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:38:71:F3:9A:D4:E2:1B:AE:8C:38:21:B2:F6:E1:2A:35:A6:8A:54 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31372e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.17.0/24 Signature Algorithm: sha256WithRSAEncryption ac:5e:a2:d1:85:b0:58:84:53:33:94:0e:4b:ac:b2:11:6f:dc: 64:1b:79:25:12:33:40:cd:7b:73:ba:95:ff:94:86:f6:4d:fe: 84:2a:c0:7e:be:97:2a:e9:32:86:8b:c3:7c:16:50:7f:00:42: 9b:b3:ff:b0:9d:00:05:71:30:bb:5f:0d:a2:c5:1c:ce:11:e5: 66:27:fe:22:81:40:d9:54:0c:b8:1d:42:4a:6b:0c:61:05:9b: 4e:27:00:a1:2c:a9:ef:ae:92:bc:6d:2c:b4:fe:74:e1:ae:02: df:20:c6:56:be:78:3d:75:88:67:c8:f9:85:1b:0e:14:2f:f4: 5a:b9:f9:4b:ed:29:17:e8:de:bc:7d:be:b3:e2:4d:83:51:74: e6:fa:54:63:d2:72:2f:0a:5e:9d:dc:12:a6:c7:69:42:bb:ae: 4f:60:76:6c:84:28:df:ff:a3:c1:39:7d:0e:bf:62:a5:63:ad: 42:03:d9:fe:b9:16:01:a0:9f:83:4c:2a:1e:17:ac:03:61:f2: 6d:4f:43:97:2f:69:3a:fd:bf:6a:e1:eb:9d:b6:84:cd:87:c9: ac:00:1c:8c:d6:6e:b8:f5:97:fd:32:64:5a:58:9a:b1:d7:e7: 82:01:72:93:61:f6:23:b0:e6:1b:38:a4:e3:f7:ce:92:d8:e0: c8:ec:26:e4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMcStxO797A4yJ2Budsq/pNstmtAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDA0MTExMDU1MDFaFw0yNTA0MTAxMTAwMDFaMDMxMTAvBgNV BAMTKEQxMzg3MUYzOUFENEUyMUJBRThDMzgyMUIyRjZFMTJBMzVBNjhBNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiQMCHvTMniIw7j9s9bDYl3rUI P3rrwzGhoqMCL7gnBz/EUcAl1H5oGUtjBCIzm/6kL1FnIBToL9Liv+1Ho7GD8Yel aGCccl5cjeY7f4/fPu93p1A0y1Fp/2vh6tXNSR10Hiv8DWa+sIwF/4evR7B4rMZN XRtprxtcnBfQfY7pvQM2JwZDrnuRAtCoupp9LWOaikv+h98Qfd+If6nfwS4UwpNs AL4BNXoVWalNP18/OiwPvFB4R/d3+b/Ji/79jOtZfeOITagZZLOcqla36JQlc4iz qpOsjGQjRsZmn5DFI0QDI6cEhn8Q/8JKbCQB1PX6k9SgjToX1R01lrN6aBDTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0Thx85rU4huujDghsvbhKjWmilQwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSREwDQYJKoZIhvcN AQELBQADggEBAKxeotGFsFiEUzOUDkusshFv3GQbeSUSM0DNe3O6lf+UhvZN/oQq wH6+lyrpMoaLw3wWUH8AQpuz/7CdAAVxMLtfDaLFHM4R5WYn/iKBQNlUDLgdQkpr DGEFm04nAKEsqe+ukrxtLLT+dOGuAt8gxla+eD11iGfI+YUbDhQv9Fq5+UvtKRfo 3rx9vrPiTYNRdOb6VGPSci8KXp3cEqbHaUK7rk9gdmyEKN//o8E5fQ6/YqVjrUID 2f65FgGgn4NMKh4XrANh8m1PQ5cvaTr9v2rh6522hM2HyawAHIzWbrj1l/0yZFpY mrHX54IBcpNh9iOw5hs4pOP3zpLY4MjsJuQ= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org