$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa File: 3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa (raw, json) Hash identifier: qbMdZeEF5ulgbtLtOVvIoSQBBDQ7sxPmRUrQpChcyqQ= Subject key identifier: EE:0D:89:C0:98:46:7A:49:F1:30:59:34:DF:EA:D8:BD:2B:A3:8A:15 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 319A0CC0051C2655DD9BC04D1F333D55D050E289 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa Signing time: Tue 04 Jun 2024 05:01:56 +0000 ROA not before: Tue 04 Jun 2024 04:56:56 +0000 ROA not after: Tue 03 Jun 2025 05:01:56 +0000 asID: 9341 IP address blocks: 220.247.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9a:0c:c0:05:1c:26:55:dd:9b:c0:4d:1f:33:3d:55:d0:50:e2:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Jun 4 04:56:56 2024 GMT Not After : Jun 3 05:01:56 2025 GMT Subject: CN=EE0D89C098467A49F1305934DFEAD8BD2BA38A15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cc:b1:49:f2:65:3b:63:7b:69:25:ac:f1:a7: 4e:c2:52:54:11:94:a3:4a:a3:02:e6:27:53:db:28: 9e:b9:21:af:f0:1c:f5:e6:64:fb:46:b1:67:77:e4: 9b:15:e9:9c:13:97:ec:fd:cf:ff:06:15:f3:7c:ba: 97:8e:80:fd:38:ac:2e:84:41:09:9a:00:92:69:69: 6a:01:b7:f6:c6:f9:66:3a:39:6c:2c:80:41:c7:ca: 73:8b:2c:60:2b:9c:bc:a0:c8:f8:3e:56:33:6b:24: 02:a5:35:18:a0:19:db:e4:56:36:e1:32:57:b0:c4: 87:ed:e1:2e:09:67:20:51:df:10:64:be:46:f5:b0: ae:d5:e4:85:fc:f6:12:44:70:e2:68:08:cf:67:d0: ed:35:fd:ed:62:24:86:dd:97:76:25:56:b3:49:db: b3:f0:80:8f:f6:30:cc:2d:0f:ca:f0:fa:c2:35:b8: a5:57:0a:53:dd:48:1b:a7:3b:f1:34:ff:8f:70:6c: f6:b2:4e:1c:54:60:f3:0a:a9:d0:49:22:57:f6:5c: 88:bc:29:06:be:b6:b6:c4:80:8f:90:64:f5:4c:4f: e4:b4:e7:9e:1e:8d:2e:7d:6f:6d:2e:09:b1:30:b0: 82:12:06:5f:a3:79:e6:cb:5e:e9:32:f9:d9:23:30: 16:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:0D:89:C0:98:46:7A:49:F1:30:59:34:DF:EA:D8:BD:2B:A3:8A:15 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3232302e3234372e3136382e302f32312d3231203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.247.168.0/21 Signature Algorithm: sha256WithRSAEncryption 60:3c:38:8d:da:c9:b4:4b:7a:3f:a6:37:90:e7:78:b5:52:88: e2:09:8c:6d:78:8a:ed:cb:34:5b:0f:e5:53:35:d2:50:00:cf: eb:6e:e5:cc:17:7a:39:dd:67:df:86:91:9d:90:15:fc:77:85: 67:c4:c8:29:e2:d0:f6:9c:cc:07:97:9c:66:ba:31:11:a8:80: f6:03:ec:12:28:32:03:ba:71:bd:69:3e:db:a8:bb:62:17:9d: 82:2d:51:16:dc:11:7e:30:23:ae:4c:1e:01:45:7e:11:58:76: a5:94:f6:65:ea:a5:a7:4a:51:bd:a6:f7:f6:fa:80:65:16:e3: b7:15:bf:a6:e0:6e:72:24:26:f5:ea:cc:e6:5b:e1:19:63:79: 89:94:36:31:e9:b4:62:78:e7:2e:20:26:6e:d5:0d:99:ee:48: 58:98:c3:12:57:d2:1e:39:bb:e7:9d:85:a9:34:24:e6:57:67: 8c:d1:6a:e6:1d:ee:ef:ca:22:98:8f:6a:7e:9e:1a:63:60:80: d6:e1:76:ad:8b:78:1a:10:d7:a0:92:97:31:06:97:ca:d3:b7: 27:01:45:77:7b:70:7b:c4:40:75:30:d4:9b:c2:41:c5:69:ea: ad:71:9f:4e:4f:fe:a8:85:c6:3c:8e:09:82:f1:d0:8c:6f:f5: e3:8a:d3:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMZoMwAUcJlXdm8BNHzM9VdBQ4okwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDA2MDQwNDU2NTZaFw0yNTA2MDMwNTAxNTZaMDMxMTAvBgNV BAMTKEVFMEQ4OUMwOTg0NjdBNDlGMTMwNTkzNERGRUFEOEJEMkJBMzhBMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSzLFJ8mU7Y3tpJazxp07CUlQR lKNKowLmJ1PbKJ65Ia/wHPXmZPtGsWd35JsV6ZwTl+z9z/8GFfN8upeOgP04rC6E QQmaAJJpaWoBt/bG+WY6OWwsgEHHynOLLGArnLygyPg+VjNrJAKlNRigGdvkVjbh MlewxIft4S4JZyBR3xBkvkb1sK7V5IX89hJEcOJoCM9n0O01/e1iJIbdl3YlVrNJ 27PwgI/2MMwtD8rw+sI1uKVXClPdSBunO/E0/49wbPayThxUYPMKqdBJIlf2XIi8 KQa+trbEgI+QZPVMT+S0554ejS59b20uCbEwsIISBl+jeebLXuky+dkjMBaVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7g2JwJhGeknxMFk03+rYvSujihUwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMyMzIzMDJlMzIzNDM3MmUzMTM2MzgyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9z3qDANBgkqhkiG 9w0BAQsFAAOCAQEAYDw4jdrJtEt6P6Y3kOd4tVKI4gmMbXiK7cs0Ww/lUzXSUADP 627lzBd6Od1n34aRnZAV/HeFZ8TIKeLQ9pzMB5ecZroxEaiA9gPsEigyA7pxvWk+ 26i7Yhedgi1RFtwRfjAjrkweAUV+EVh2pZT2Zeqlp0pRvab39vqAZRbjtxW/puBu ciQm9erM5lvhGWN5iZQ2Mem0YnjnLiAmbtUNme5IWJjDElfSHjm7552FqTQk5ldn jNFq5h3u78oimI9qfp4aY2CA1uF2rYt4GhDXoJKXMQaXytO3JwFFd3twe8RAdTDU m8JBxWnqrXGfTk/+qIXGPI4JgvHQjG/144rTgA== -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org