$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32322e302f32342d3234203d3e203538383136.roa File: 3230322e37332e32322e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: +YnTzdf6PTUOd5tzHuJNC3yk4qsRuVyyhryi9WsX0zg= Subject key identifier: 18:2E:13:B4:D4:BD:23:80:5E:BC:6D:A0:52:6F:81:FC:B2:40:6D:D5 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 4CE7675A8F3D05788F342114AC3183276E96BE74 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32322e302f32342d3234203d3e203538383136.roa Signing time: Thu 11 Apr 2024 11:00:00 +0000 ROA not before: Thu 11 Apr 2024 10:55:00 +0000 ROA not after: Thu 10 Apr 2025 11:00:00 +0000 asID: 58816 IP address blocks: 202.73.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e7:67:5a:8f:3d:05:78:8f:34:21:14:ac:31:83:27:6e:96:be:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Apr 11 10:55:00 2024 GMT Not After : Apr 10 11:00:00 2025 GMT Subject: CN=182E13B4D4BD23805EBC6DA0526F81FCB2406DD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:17:37:01:25:4b:e1:39:c5:e6:19:8c:d9:93: 57:e1:7c:50:08:66:12:87:dc:43:f4:a7:63:3f:7b: 84:3c:29:d5:3e:6a:b5:9f:f7:31:42:c5:08:40:26: f5:a5:ae:8a:eb:84:b8:90:ed:88:b3:a4:24:a6:a6: 70:86:cf:2b:60:fb:e0:c1:b3:9f:77:aa:f9:d8:b3: 39:ed:87:cd:71:5b:9f:2c:31:9f:20:e7:99:9a:68: b0:f1:67:6e:46:1a:92:f3:52:79:05:1e:1b:e9:c2: c7:d6:1f:3d:f9:8e:ee:78:f0:7f:52:fd:9f:44:58: 23:7d:65:10:6b:8a:7b:0a:b7:77:65:d9:e9:70:f6: 51:fb:40:11:88:8a:44:c6:bf:a1:48:2f:01:91:d6: b4:90:8c:de:f7:f6:71:d0:5c:6f:ce:ed:dd:e8:2d: 04:04:72:6a:0e:80:b6:2c:68:85:6c:cb:13:58:16: 83:39:74:c4:96:2c:c5:df:70:0f:b6:7b:51:13:2b: 03:0f:b9:fa:33:2a:b7:7a:5e:8f:21:54:27:54:ba: de:ee:2d:e2:4f:7a:07:a2:5d:25:8f:f2:6c:50:5c: ab:aa:8e:77:c1:ca:79:a7:d3:a0:46:00:7f:a0:ea: ab:17:4f:cb:94:36:f4:eb:92:d4:b8:01:2c:da:2a: 24:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:2E:13:B4:D4:BD:23:80:5E:BC:6D:A0:52:6F:81:FC:B2:40:6D:D5 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32322e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.22.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:91:a3:a9:e1:83:3b:10:93:74:c1:d3:b1:d9:44:27:fd:60: 14:8c:d0:56:92:5f:7d:7b:5a:d4:19:43:6e:7f:e1:5d:99:bf: 0c:94:d3:83:20:96:8f:8d:04:9a:33:a5:f7:a0:6e:32:c8:06: ae:62:64:84:54:6f:1e:e9:55:b4:b9:11:d7:2a:71:62:e0:f4: c7:cb:c6:12:0d:3f:ee:b9:7f:de:00:f3:6d:b1:19:4f:6d:3d: 9e:89:0a:50:79:8c:21:57:10:cc:9f:dd:3e:17:08:d5:d6:8b: 63:63:fb:60:48:57:fc:e7:3a:8c:b4:a0:c4:0a:66:12:24:2e: 09:42:85:5d:d8:08:88:c1:d9:c6:68:48:81:3c:cd:eb:dd:a8: b7:d4:9a:8d:d0:80:2a:d3:4e:b2:2b:64:c7:9f:1e:aa:15:a3: 9c:ec:3f:cc:4d:b7:54:aa:8a:a0:49:ec:14:20:42:02:e8:d7: 71:e2:23:ce:0e:ad:ad:e4:2a:88:b5:42:ea:80:23:8e:ba:b6: d0:23:4a:73:ae:22:09:38:ed:a8:ba:50:57:71:30:78:1b:14: 25:d5:df:20:ff:ad:6b:68:6b:35:5a:86:33:7f:9f:2b:7a:38: f8:a1:2c:19:cf:a3:1e:d7:29:44:8e:6b:2a:1a:68:8e:6c:a5: f6:2a:d9:bc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTOdnWo89BXiPNCEUrDGDJ26WvnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDA0MTExMDU1MDBaFw0yNTA0MTAxMTAwMDBaMDMxMTAvBgNV BAMTKDE4MkUxM0I0RDRCRDIzODA1RUJDNkRBMDUyNkY4MUZDQjI0MDZERDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCFzcBJUvhOcXmGYzZk1fhfFAI ZhKH3EP0p2M/e4Q8KdU+arWf9zFCxQhAJvWlrorrhLiQ7YizpCSmpnCGzytg++DB s593qvnYsznth81xW58sMZ8g55maaLDxZ25GGpLzUnkFHhvpwsfWHz35ju548H9S /Z9EWCN9ZRBrinsKt3dl2elw9lH7QBGIikTGv6FILwGR1rSQjN739nHQXG/O7d3o LQQEcmoOgLYsaIVsyxNYFoM5dMSWLMXfcA+2e1ETKwMPufozKrd6Xo8hVCdUut7u LeJPegeiXSWP8mxQXKuqjnfBynmn06BGAH+g6qsXT8uUNvTrktS4ASzaKiTrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGC4TtNS9I4BevG2gUm+B/LJAbdUwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzIzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRYwDQYJKoZIhvcN AQELBQADggEBAJqRo6nhgzsQk3TB07HZRCf9YBSM0FaSX317WtQZQ25/4V2ZvwyU 04Mglo+NBJozpfegbjLIBq5iZIRUbx7pVbS5EdcqcWLg9MfLxhINP+65f94A822x GU9tPZ6JClB5jCFXEMyf3T4XCNXWi2Nj+2BIV/znOoy0oMQKZhIkLglChV3YCIjB 2cZoSIE8zevdqLfUmo3QgCrTTrIrZMefHqoVo5zsP8xNt1SqiqBJ7BQgQgLo13Hi I84Ora3kKoi1QuqAI466ttAjSnOuIgk47ai6UFdxMHgbFCXV3yD/rWtoazVahjN/ nyt6OPihLBnPox7XKUSOayoaaI5spfYq2bw= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org