$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e36322e382e302f32322d3232203d3e2039333431.roa File: 3230322e36322e382e302f32322d3232203d3e2039333431.roa (raw, json) Hash identifier: BSJz0arYza4rBaws08H6CwR3VLZajZCm/uT/pH4o0qA= Subject key identifier: 48:76:95:2F:07:CA:8F:A7:35:0B:F1:07:49:00:14:07:90:14:2C:B1 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 7A2C9373812B8CFB8F5A1D19478D122CC8AA65F8 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e36322e382e302f32322d3232203d3e2039333431.roa Signing time: Tue 04 Jun 2024 05:01:56 +0000 ROA not before: Tue 04 Jun 2024 04:56:56 +0000 ROA not after: Tue 03 Jun 2025 05:01:56 +0000 asID: 9341 IP address blocks: 202.62.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:2c:93:73:81:2b:8c:fb:8f:5a:1d:19:47:8d:12:2c:c8:aa:65:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Jun 4 04:56:56 2024 GMT Not After : Jun 3 05:01:56 2025 GMT Subject: CN=4876952F07CA8FA7350BF1074900140790142CB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b6:26:29:fd:03:21:27:5c:74:f4:4a:cd:12: ba:4f:bc:fc:17:54:ee:0a:f4:2a:dc:69:f3:02:22: 63:21:e2:27:a6:eb:0d:78:21:f0:0e:51:23:c2:05: d3:d3:b5:32:87:7d:c8:1e:d3:f0:0d:f3:81:e8:33: 16:6c:1a:24:a2:0d:45:eb:a3:ee:a0:39:25:d3:4e: 09:41:d8:98:61:5b:75:5e:8e:22:7a:ff:fb:e3:f3: b5:b6:a6:1a:86:72:08:b5:a6:3c:50:25:05:23:98: 10:7c:02:9f:42:64:95:98:01:04:c4:83:97:40:c0: 57:c6:4f:93:d5:2c:4a:4b:c0:10:8a:f5:07:2f:12: 8c:7b:e1:6c:1c:43:a0:ac:50:70:21:30:20:82:85: 64:8b:ae:cb:fd:3e:fe:91:6c:fe:48:b8:b9:2f:a5: dd:a7:60:a7:ea:79:a6:49:bc:37:d7:9d:85:19:1d: 5e:1f:80:44:66:4d:d9:a1:90:93:48:01:6a:c5:8f: bf:17:0c:9f:ca:0e:d2:68:0a:01:28:6a:63:5e:97: 1a:5d:9f:1f:43:4c:17:46:be:e7:e1:8b:d6:00:31: cc:1b:99:80:af:ba:a9:bc:d8:f8:10:de:09:d2:aa: e1:05:85:cb:b1:c9:ed:0f:f6:df:43:10:3f:90:11: d4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:76:95:2F:07:CA:8F:A7:35:0B:F1:07:49:00:14:07:90:14:2C:B1 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3230322e36322e382e302f32322d3232203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.62.8.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:84:f8:60:b8:11:e0:e5:15:1a:31:32:99:ae:1c:cd:58:b5: 1f:c7:7a:04:76:00:ed:45:b6:a8:12:53:e7:2f:e7:b9:33:62: b0:31:65:5d:19:9a:bd:37:bd:65:3d:05:e5:e3:23:4a:30:1d: 51:c3:50:43:a1:bf:42:9b:9c:a0:14:a8:8a:2b:c9:b9:b1:74: 7f:0b:8b:37:01:bc:31:63:12:e3:9a:9b:30:d1:03:d2:c9:c5: 56:dc:1a:5e:15:7c:83:d7:48:3d:46:8c:cd:b0:8b:9e:2d:db: da:ab:1a:37:1e:0b:21:89:5d:00:76:be:f5:c2:21:69:07:d5: 63:f2:55:0d:1d:5c:ac:12:19:b6:6f:c9:6b:72:04:8a:28:ed: a1:db:a9:8a:1b:ab:b2:73:35:5c:13:ec:ff:ab:69:d9:5c:12: 76:e9:86:75:ae:ed:56:1a:c0:b4:9e:18:b1:7f:81:14:d0:b8: e6:6c:c6:a2:16:42:db:58:c6:d5:9a:69:26:54:2a:23:78:08: 06:2b:52:5f:c6:da:7f:6e:0e:fe:29:4a:bd:67:31:67:80:69: d7:72:7d:48:ed:7d:a6:c2:8c:d5:1b:52:4b:56:70:d5:d5:5d: 20:17:28:8f:20:c1:29:51:01:ed:61:2a:6b:f7:00:5d:7d:aa: 49:0e:36:c5 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUeiyTc4ErjPuPWh0ZR40SLMiqZfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDA2MDQwNDU2NTZaFw0yNTA2MDMwNTAxNTZaMDMxMTAvBgNV BAMTKDQ4NzY5NTJGMDdDQThGQTczNTBCRjEwNzQ5MDAxNDA3OTAxNDJDQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCltiYp/QMhJ1x09ErNErpPvPwX VO4K9CrcafMCImMh4iem6w14IfAOUSPCBdPTtTKHfcge0/AN84HoMxZsGiSiDUXr o+6gOSXTTglB2JhhW3VejiJ6//vj87W2phqGcgi1pjxQJQUjmBB8Ap9CZJWYAQTE g5dAwFfGT5PVLEpLwBCK9QcvEox74WwcQ6CsUHAhMCCChWSLrsv9Pv6RbP5IuLkv pd2nYKfqeaZJvDfXnYUZHV4fgERmTdmhkJNIAWrFj78XDJ/KDtJoCgEoamNelxpd nx9DTBdGvufhi9YAMcwbmYCvuqm82PgQ3gnSquEFhcuxye0P9t9DED+QEdQ3AgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUSHaVLwfKj6c1C/EHSQAUB5AULLEwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzNiZGNiYWUtMmU5ZC00ZjNmLThh YjktMzQyNGU0NDg0ODRlLzAvMzIzMDMyMmUzNjMyMmUzODJlMzAyZjMyMzIyZDMy MzIyMDNkM2UyMDM5MzMzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyj4IMA0GCSqGSIb3DQEBCwUA A4IBAQAqhPhguBHg5RUaMTKZrhzNWLUfx3oEdgDtRbaoElPnL+e5M2KwMWVdGZq9 N71lPQXl4yNKMB1Rw1BDob9Cm5ygFKiKK8m5sXR/C4s3AbwxYxLjmpsw0QPSycVW 3BpeFXyD10g9RozNsIueLdvaqxo3HgshiV0Adr71wiFpB9Vj8lUNHVysEhm2b8lr cgSKKO2h26mKG6uyczVcE+z/q2nZXBJ26YZ1ru1WGsC0nhixf4EU0LjmbMaiFkLb WMbVmmkmVCojeAgGK1Jfxtp/bg7+KUq9ZzFngGnXcn1I7X2mwozVG1JLVnDV1V0g FyiPIMEpUQHtYSpr9wBdfapJDjbF -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org