$ rpki-client -vvf repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e203435373036.roa File: 3230322e34332e3131342e302f32332d3234203d3e203435373036.roa (raw, json) Hash identifier: 4bch934Vv2mVexj5yORxeulNe94hD9yd+8wpN2L0zkw= Subject key identifier: 7A:21:F5:73:2D:4C:F7:A5:32:41:62:A9:34:49:50:D1:36:98:2C:C0 Certificate issuer: /CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Certificate serial: 73AAB715C9288B0FA10CA40A9C22055748648C64 Authority key identifier: 49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e203435373036.roa Signing time: Mon 01 Jul 2024 01:03:16 +0000 ROA not before: Mon 01 Jul 2024 00:58:16 +0000 ROA not after: Mon 30 Jun 2025 01:03:16 +0000 asID: 45706 IP address blocks: 202.43.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:aa:b7:15:c9:28:8b:0f:a1:0c:a4:0a:9c:22:05:57:48:64:8c:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Validity Not Before: Jul 1 00:58:16 2024 GMT Not After : Jun 30 01:03:16 2025 GMT Subject: CN=7A21F5732D4CF7A5324162A9344950D136982CC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8a:42:c3:79:6a:38:ac:c6:5b:4a:73:c1:6e: 4b:0f:17:79:43:e1:52:87:0a:cc:73:0d:3d:91:75: 88:c8:a4:0c:75:e2:10:13:28:83:6d:0e:40:2f:7a: a6:e6:60:f8:f0:a8:44:a3:61:89:94:0b:85:be:c0: f6:f7:ba:25:3d:fd:d9:dc:59:87:74:5c:8c:19:84: 57:f2:26:c4:84:94:80:29:af:a7:b1:59:6e:b6:e7: 28:8b:31:cc:43:9f:b4:ae:e5:35:54:6d:03:78:be: 6e:39:09:06:d6:54:30:1f:af:80:11:b3:b2:c5:51: ad:4b:ee:e8:1e:b2:ee:fe:b6:8b:5e:b2:23:7b:6e: 3e:6a:0d:be:f9:ec:75:6e:61:17:88:be:53:f5:3f: 76:71:47:50:bb:1f:74:2d:fc:1e:9f:0d:26:03:aa: 6c:d4:c9:29:b4:d9:94:cc:4d:d8:7a:e0:e8:09:b2: 08:31:62:35:16:2e:0f:69:67:81:00:60:d0:a8:19: 44:9b:fa:49:11:45:bd:c5:5f:fa:20:13:8a:89:f2: bc:08:78:5d:75:07:0a:52:ea:be:52:0f:90:6a:81: ae:ba:65:15:86:42:5a:7c:4c:af:ab:86:f3:3f:79: b5:44:50:de:24:8a:4b:f8:ca:8f:53:6e:88:93:18: ac:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:21:F5:73:2D:4C:F7:A5:32:41:62:A9:34:49:50:D1:36:98:2C:C0 X509v3 Authority Key Identifier: keyid:49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e203435373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.114.0/23 Signature Algorithm: sha256WithRSAEncryption 06:82:ab:83:bc:f5:10:13:9f:bf:c9:dd:4e:6b:c3:01:23:40: ca:b4:2a:e7:a7:32:f4:87:2d:d0:6d:62:b3:9b:0d:0c:5b:b5: 7f:6d:f3:a6:90:e9:34:25:51:c6:ed:51:f5:e2:1e:a8:d4:0f: 49:24:d8:b6:91:c6:21:36:41:b0:f4:c9:35:8b:9b:c3:5c:90: 08:8e:45:43:f8:15:97:d1:7d:ed:c3:8e:f3:ca:d4:20:28:b5: 82:fa:01:bd:83:ae:b3:0d:f1:29:e2:dc:27:57:8c:4a:83:c9: 8b:e3:72:3a:3f:3c:51:ff:76:29:a2:ae:d0:15:aa:08:71:c5: da:05:81:47:24:95:c2:ad:1c:a7:26:fa:14:1b:f5:3c:0e:62: 47:06:1a:b8:c3:01:3c:0b:14:d2:d4:80:41:23:00:ae:cb:d9: bb:99:f7:ad:ee:29:ba:3b:fc:ff:8b:53:9c:70:f6:16:f4:39: 64:34:bf:8a:b8:4d:87:8c:fb:1c:54:e1:c1:c1:d4:9f:39:c6: 04:a4:4a:2e:73:98:98:e7:b6:06:6e:0d:5c:0a:c2:39:49:44: 50:2d:18:b6:89:d7:06:fa:df:cf:f6:7d:79:93:af:f8:e0:08: 99:5a:d8:ed:93:b4:41:6b:ae:3a:a7:62:f0:eb:b0:b7:6a:3f: da:e4:4e:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUc6q3Fckoiw+hDKQKnCIFV0hkjGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1 MDU3QUNFNTAeFw0yNDA3MDEwMDU4MTZaFw0yNTA2MzAwMTAzMTZaMDMxMTAvBgNV BAMTKDdBMjFGNTczMkQ0Q0Y3QTUzMjQxNjJBOTM0NDk1MEQxMzY5ODJDQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ikLDeWo4rMZbSnPBbksPF3lD 4VKHCsxzDT2RdYjIpAx14hATKINtDkAveqbmYPjwqESjYYmUC4W+wPb3uiU9/dnc WYd0XIwZhFfyJsSElIApr6exWW625yiLMcxDn7Su5TVUbQN4vm45CQbWVDAfr4AR s7LFUa1L7ugesu7+totesiN7bj5qDb757HVuYReIvlP1P3ZxR1C7H3Qt/B6fDSYD qmzUySm02ZTMTdh64OgJsggxYjUWLg9pZ4EAYNCoGUSb+kkRRb3FX/ogE4qJ8rwI eF11BwpS6r5SD5Bqga66ZRWGQlp8TK+rhvM/ebVEUN4kikv4yo9TboiTGKwfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeiH1cy1M96UyQWKpNElQ0TaYLMAwHwYDVR0j BBgwFoAUSQs/vMbw/GV4UJahU9yHvFBXrOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2NkNjhmNC02OWE1LTQ3NWYtYWVlNC0zZWY0YjhkMzAyZGQvMC80OTBCM0ZCQ0M2 RjBGQzY1Nzg1MDk2QTE1M0RDODdCQzUwNTdBQ0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1MDU3 QUNFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3Y2Q2OGY0LTY5YTUtNDc1Zi1h ZWU0LTNlZjRiOGQzMDJkZC8wLzMyMzAzMjJlMzQzMzJlMzEzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTM3MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcorcjANBgkqhkiG 9w0BAQsFAAOCAQEABoKrg7z1EBOfv8ndTmvDASNAyrQq56cy9Ict0G1is5sNDFu1 f23zppDpNCVRxu1R9eIeqNQPSSTYtpHGITZBsPTJNYubw1yQCI5FQ/gVl9F97cOO 88rUICi1gvoBvYOusw3xKeLcJ1eMSoPJi+NyOj88Uf92KaKu0BWqCHHF2gWBRySV wq0cpyb6FBv1PA5iRwYauMMBPAsU0tSAQSMArsvZu5n3re4pujv8/4tTnHD2FvQ5 ZDS/irhNh4z7HFThwcHUnznGBKRKLnOYmOe2Bm4NXArCOUlEUC0YtonXBvrfz/Z9 eZOv+OAImVrY7ZO0QWuuOqdi8Ouwt2o/2uROEw== -----END CERTIFICATE-----Generated at Fri Nov 22 09:29:43 2024 by rpki-client on console-fra.rpki-client.org