$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31392e302f32342d3234203d3e203538383136.roa File: 3230322e37332e31392e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: ZHPkKuDh7o+co+zyt5xKxAjUhiv1G6ko9mERbbbnw3s= Subject key identifier: 08:6F:B0:CF:07:53:21:3B:58:5C:7C:09:0C:0F:9E:8A:0A:55:A2:00 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 3E5D45CD16DE45D77765D7645C8BD9D1E0FB7FBF Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31392e302f32342d3234203d3e203538383136.roa Signing time: Thu 11 Apr 2024 11:00:00 +0000 ROA not before: Thu 11 Apr 2024 10:55:00 +0000 ROA not after: Thu 10 Apr 2025 11:00:00 +0000 asID: 58816 IP address blocks: 202.73.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:5d:45:cd:16:de:45:d7:77:65:d7:64:5c:8b:d9:d1:e0:fb:7f:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Apr 11 10:55:00 2024 GMT Not After : Apr 10 11:00:00 2025 GMT Subject: CN=086FB0CF0753213B585C7C090C0F9E8A0A55A200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6d:4c:da:93:4c:55:69:e6:9b:f7:28:cd:6e: 2d:ba:f9:28:9c:92:70:ab:b7:16:dd:55:aa:9c:8f: 00:91:da:4a:ab:d7:c5:2e:77:9e:36:44:dc:40:dc: 23:5f:92:a6:7f:ff:4b:62:ef:cd:81:9a:c5:4b:df: fb:5f:ec:34:29:23:8e:ae:4c:77:1b:fa:eb:4c:8c: 6f:f1:87:94:9a:f7:db:b2:69:83:e2:92:5d:47:9a: f4:48:ce:58:e9:f2:cf:76:e6:62:72:f1:4e:6c:21: 95:5f:3f:f1:a7:dc:b0:d4:68:bb:0b:73:bf:7d:75: 74:a9:d7:9a:59:29:cc:15:9c:a5:b4:71:fe:0d:cf: 6f:e0:95:d5:e8:c4:e7:49:6a:a5:92:f8:36:5c:7f: b2:16:5e:af:10:21:d2:98:62:87:dd:64:12:dc:fb: d8:44:32:86:5d:52:e1:ca:75:ab:74:ed:6e:09:33: 3d:a1:8b:cf:40:ab:a6:7d:74:52:0a:a4:06:5c:8a: c8:f9:82:56:ff:1a:e2:85:6c:e9:bb:6c:25:89:b2: 78:f1:02:7d:3d:16:14:61:0d:26:21:e0:f2:9a:cc: a8:ac:ec:d9:fa:7f:c2:ee:dd:5d:8d:df:a3:84:a5: 8b:7a:43:80:af:59:b2:f9:95:bf:31:2f:dc:a5:35: fd:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6F:B0:CF:07:53:21:3B:58:5C:7C:09:0C:0F:9E:8A:0A:55:A2:00 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31392e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.19.0/24 Signature Algorithm: sha256WithRSAEncryption 61:3b:aa:ca:3b:8f:aa:9f:89:35:57:ee:cf:e0:dc:7f:d3:49: 0c:22:53:0c:3b:b7:72:9a:a3:33:c6:41:b3:97:65:c7:a8:6a: d7:36:c4:fd:a1:d1:cb:96:bb:9d:e8:d2:dd:33:24:ce:60:7f: dd:e1:a1:2d:ca:cd:f2:06:31:52:8d:6a:5e:37:31:18:93:65: d4:0d:e9:f6:95:ab:a4:39:50:c0:28:ce:6e:c6:17:31:14:ef: ef:d1:8d:97:3e:da:51:9f:cc:b5:6c:21:04:97:48:63:04:09: e4:75:d0:17:c1:95:c3:d7:d2:d6:e1:56:d4:8d:5e:8c:8d:a2: 65:5c:07:16:6d:57:a8:cb:42:79:6e:6f:8a:cd:6c:e1:70:7c: 8b:34:c6:f9:8b:d7:a5:24:cb:54:82:58:5e:a7:c6:f1:1e:50: 11:34:5d:58:9e:1a:53:44:d2:03:29:4d:37:dc:ad:b7:a6:4f: 18:77:68:bb:63:2c:fc:45:8f:42:3a:b6:58:46:5e:76:27:0e: c3:95:15:f3:ab:1a:36:23:25:1b:b7:52:30:ad:0a:ec:15:33: e6:77:0e:63:08:dd:5e:bf:be:17:47:c1:d4:37:3a:fe:73:0f: e1:5b:da:8a:6d:0c:2a:71:df:28:dc:a3:40:5c:4f:e5:fd:51: 1c:47:ce:43 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPl1FzRbeRdd3ZddkXIvZ0eD7f78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDA0MTExMDU1MDBaFw0yNTA0MTAxMTAwMDBaMDMxMTAvBgNV BAMTKDA4NkZCMENGMDc1MzIxM0I1ODVDN0MwOTBDMEY5RThBMEE1NUEyMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpbUzak0xVaeab9yjNbi26+Sic knCrtxbdVaqcjwCR2kqr18Uud542RNxA3CNfkqZ//0ti782BmsVL3/tf7DQpI46u THcb+utMjG/xh5Sa99uyaYPikl1HmvRIzljp8s925mJy8U5sIZVfP/Gn3LDUaLsL c799dXSp15pZKcwVnKW0cf4Nz2/gldXoxOdJaqWS+DZcf7IWXq8QIdKYYofdZBLc +9hEMoZdUuHKdat07W4JMz2hi89Aq6Z9dFIKpAZcisj5glb/GuKFbOm7bCWJsnjx An09FhRhDSYh4PKazKis7Nn6f8Lu3V2N36OEpYt6Q4CvWbL5lb8xL9ylNf3tAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUCG+wzwdTITtYXHwJDA+eigpVogAwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRMwDQYJKoZIhvcN AQELBQADggEBAGE7qso7j6qfiTVX7s/g3H/TSQwiUww7t3KaozPGQbOXZceoatc2 xP2h0cuWu53o0t0zJM5gf93hoS3KzfIGMVKNal43MRiTZdQN6faVq6Q5UMAozm7G FzEU7+/RjZc+2lGfzLVsIQSXSGMECeR10BfBlcPX0tbhVtSNXoyNomVcBxZtV6jL Qnlub4rNbOFwfIs0xvmL16Uky1SCWF6nxvEeUBE0XVieGlNE0gMpTTfcrbemTxh3 aLtjLPxFj0I6tlhGXnYnDsOVFfOrGjYjJRu3UjCtCuwVM+Z3DmMI3V6/vhdHwdQ3 Ov5zD+Fb2optDCpx3yjco0BcT+X9URxHzkM= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org