$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32302e302f32342d3234203d3e203538383136.roa File: 3230322e37332e32302e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: cm73JAuUCZkKzXUWJboWhK5REq3NH6mjebxXmqE6/8o= Subject key identifier: 7D:BA:19:E3:21:23:DB:74:5C:C2:42:51:AF:C7:A7:52:E0:6C:30:BC Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 47CF6B4195B8F9F39E97CA9EF64AAAD957CC3F53 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32302e302f32342d3234203d3e203538383136.roa Signing time: Thu 11 Apr 2024 11:00:01 +0000 ROA not before: Thu 11 Apr 2024 10:55:01 +0000 ROA not after: Thu 10 Apr 2025 11:00:01 +0000 asID: 58816 IP address blocks: 202.73.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:cf:6b:41:95:b8:f9:f3:9e:97:ca:9e:f6:4a:aa:d9:57:cc:3f:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Apr 11 10:55:01 2024 GMT Not After : Apr 10 11:00:01 2025 GMT Subject: CN=7DBA19E32123DB745CC24251AFC7A752E06C30BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:77:e7:02:bb:17:dd:17:bc:d0:4b:de:c1:eb: c5:69:e0:0f:5f:28:59:b4:ae:fb:47:6a:fc:ea:27: 09:8f:ba:69:44:f7:96:17:ec:27:20:ae:bd:37:80: 60:e0:d4:af:cb:39:fe:b6:6b:f7:fc:b8:b2:9e:40: e5:7a:22:58:45:fe:25:14:ea:0a:36:5b:9a:72:e7: 5e:a9:f5:ed:05:16:a1:ac:77:af:73:22:b4:28:15: 4f:0b:ca:ac:e9:75:b2:8f:79:08:c2:c4:37:42:bf: a9:6c:f8:5e:8c:0f:36:b0:57:6c:c2:21:54:4f:c3: 76:4e:80:63:14:8b:a8:dd:05:e0:61:c9:5d:5d:05: 3d:70:a4:90:33:15:30:46:65:5c:45:f5:81:12:f7: 67:14:54:2c:bb:3d:f7:a0:ef:35:bc:94:d9:00:e2: b9:dd:45:3b:0a:46:6b:48:e7:d9:c0:ea:be:b3:7a: b8:4e:72:33:f9:a5:70:2b:d2:e2:79:4b:4f:20:ad: b0:ed:e6:81:01:02:07:70:c7:4a:32:34:bd:83:1d: 60:18:cf:d5:02:4b:da:12:53:9a:fd:71:6f:44:07: 6d:00:b1:70:28:11:99:41:68:5b:35:8f:db:c1:74: c9:a5:35:68:6f:be:cf:0e:c8:ea:1e:90:50:c1:88: e7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:BA:19:E3:21:23:DB:74:5C:C2:42:51:AF:C7:A7:52:E0:6C:30:BC X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32302e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.20.0/24 Signature Algorithm: sha256WithRSAEncryption 34:2d:02:6d:f2:11:d4:28:e3:f3:6d:16:a6:89:29:06:ec:33: ad:34:74:e4:bb:c8:4c:ae:ff:78:25:01:3c:63:80:56:5f:56: b2:7b:3a:c6:3b:bd:dd:37:4f:ad:43:d6:5a:90:cc:33:55:cd: 00:7d:66:0a:4d:e1:31:ac:09:51:77:e4:f9:fd:1c:8e:43:6d: f6:4f:80:f6:60:f3:03:dd:bd:fa:30:0d:0f:89:10:54:c3:fd: b3:3d:0b:44:02:ab:d3:fd:a5:9a:cf:21:5a:21:0e:8c:ca:8c: 5c:cb:5f:53:07:fb:8f:dd:9b:3c:b4:04:e6:13:3f:bc:fa:48: af:91:1a:ce:8c:da:d3:f3:95:48:78:e1:ed:a5:7a:21:b5:58: 21:66:59:6a:a2:9e:cc:e3:e6:ec:a3:db:4a:ed:16:e1:cc:47: c1:92:c0:b7:21:18:58:94:13:08:5c:76:87:91:dd:1f:d3:06: e5:20:19:44:24:a0:6d:1e:7d:79:d4:5d:c1:a5:f0:f4:61:75: 32:2d:b6:22:f9:39:7b:62:d2:50:b4:3d:39:67:b8:cf:d0:80: 44:90:50:0e:fb:7f:92:68:88:9f:9b:d1:e8:26:f5:ce:44:0b: dc:96:78:95:33:a0:ab:6e:9d:49:89:15:a3:5e:c1:b4:d7:01: 07:8f:56:9b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUR89rQZW4+fOel8qe9kqq2VfMP1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDA0MTExMDU1MDFaFw0yNTA0MTAxMTAwMDFaMDMxMTAvBgNV BAMTKDdEQkExOUUzMjEyM0RCNzQ1Q0MyNDI1MUFGQzdBNzUyRTA2QzMwQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsd+cCuxfdF7zQS97B68Vp4A9f KFm0rvtHavzqJwmPumlE95YX7Ccgrr03gGDg1K/LOf62a/f8uLKeQOV6IlhF/iUU 6go2W5py516p9e0FFqGsd69zIrQoFU8LyqzpdbKPeQjCxDdCv6ls+F6MDzawV2zC IVRPw3ZOgGMUi6jdBeBhyV1dBT1wpJAzFTBGZVxF9YES92cUVCy7Pfeg7zW8lNkA 4rndRTsKRmtI59nA6r6zerhOcjP5pXAr0uJ5S08grbDt5oEBAgdwx0oyNL2DHWAY z9UCS9oSU5r9cW9EB20AsXAoEZlBaFs1j9vBdMmlNWhvvs8OyOoekFDBiOexAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUfboZ4yEj23RcwkJRr8enUuBsMLwwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRQwDQYJKoZIhvcN AQELBQADggEBADQtAm3yEdQo4/NtFqaJKQbsM600dOS7yEyu/3glATxjgFZfVrJ7 OsY7vd03T61D1lqQzDNVzQB9ZgpN4TGsCVF35Pn9HI5DbfZPgPZg8wPdvfowDQ+J EFTD/bM9C0QCq9P9pZrPIVohDozKjFzLX1MH+4/dmzy0BOYTP7z6SK+RGs6M2tPz lUh44e2leiG1WCFmWWqinszj5uyj20rtFuHMR8GSwLchGFiUEwhcdoeR3R/TBuUg GUQkoG0efXnUXcGl8PRhdTIttiL5OXti0lC0PTlnuM/QgESQUA77f5JoiJ+b0egm 9c5EC9yWeJUzoKtunUmJFaNewbTXAQePVps= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org