$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa File: 3230322e35312e32302e302f32332d3234203d3e20313439343039.roa (raw, json) Hash identifier: Ssv2eZbvx9q2HF9yBmPHiXg5F7RXJ5IV1vipTWA9H6o= Subject key identifier: 85:B7:6B:B5:87:81:E0:BD:45:DE:D4:98:CE:31:CF:86:5B:01:84:D1 Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Certificate serial: 2AE5392586F28507C5A033F6E250BF93CA95A63A Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa Signing time: Wed 18 Sep 2024 09:00:00 +0000 ROA not before: Wed 18 Sep 2024 08:55:00 +0000 ROA not after: Wed 17 Sep 2025 09:00:00 +0000 asID: 149409 IP address blocks: 202.51.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e5:39:25:86:f2:85:07:c5:a0:33:f6:e2:50:bf:93:ca:95:a6:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Validity Not Before: Sep 18 08:55:00 2024 GMT Not After : Sep 17 09:00:00 2025 GMT Subject: CN=85B76BB58781E0BD45DED498CE31CF865B0184D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2e:9a:b8:2d:b9:37:2a:e6:b7:4e:a5:7d:2d: 66:08:03:ab:b5:0d:23:c3:7b:60:ab:6a:9c:b7:3b: e4:0f:cd:95:42:ea:25:5e:95:ff:3f:8d:7b:4c:bb: 92:a0:21:7a:8a:20:80:c8:9a:12:1c:b2:02:46:c4: ff:7f:0b:61:16:e1:38:32:74:4e:30:d5:49:af:f4: ee:68:81:36:a7:8d:44:d0:73:f6:9e:a1:a0:c1:3b: 8a:cb:af:66:79:d2:df:37:a8:03:e5:b9:2f:54:a7: d5:6b:55:d6:c1:c7:32:50:01:38:43:42:07:7d:8e: 2c:e9:6f:de:39:3c:d4:0e:4b:27:59:ad:6d:9f:ed: 10:1e:4e:eb:c6:81:5f:ee:c9:f9:de:c0:bc:af:ed: dc:82:2f:13:2d:0e:5d:ba:08:30:13:4f:81:eb:30: 00:46:cc:34:23:db:98:bf:54:ce:5f:a3:74:44:16: 6c:47:77:15:57:a3:b7:4b:37:af:3d:5a:67:c0:29: e5:52:20:c2:74:5a:0d:b8:9d:e6:37:dd:79:b1:ba: 8a:1f:ca:ea:fc:a0:4d:a3:29:0b:8e:2c:a4:7d:88: 0e:be:8d:5e:fc:e4:54:53:9c:f0:f2:af:0d:9e:0d: 5d:a5:2c:cc:af:9b:52:50:78:54:1a:fe:0e:1c:75: 1c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B7:6B:B5:87:81:E0:BD:45:DE:D4:98:CE:31:CF:86:5B:01:84:D1 X509v3 Authority Key Identifier: keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.20.0/23 Signature Algorithm: sha256WithRSAEncryption ba:86:20:ae:9f:1c:e7:9d:c8:05:11:e7:f3:e7:2c:7d:55:5f: 6b:43:a3:1c:c4:dd:d3:2f:9e:db:c3:aa:98:23:3b:52:ae:fd: 12:2b:f8:1d:a1:62:b3:2c:27:f3:0e:48:3a:5a:ef:16:c2:0a: 8e:4e:8d:14:c8:a4:22:a2:d8:8b:28:04:1e:34:a6:f5:07:d1: 6b:df:98:ee:18:27:b6:4a:85:77:95:ba:e7:db:08:6b:39:a2: bc:c3:f7:f8:5f:5b:3f:23:6c:a1:10:a6:ff:46:85:d8:a6:ff: dc:e4:ea:d8:73:96:18:99:0a:a8:df:7f:d2:ed:d9:9c:4c:46: 10:ee:94:38:e0:f6:c3:88:ac:57:45:5a:fb:65:45:82:ce:a8: 84:1e:a2:e8:f2:88:1f:42:27:71:28:7c:7f:c1:dd:e0:54:56: 30:87:a1:95:4f:ab:f3:2d:7f:db:35:a6:26:9b:8b:ed:b1:22: 94:14:2b:4b:71:f9:b8:9e:aa:aa:a5:31:e1:11:88:6d:de:3c: ad:b5:e2:34:79:af:f8:9a:44:73:1f:f6:e5:14:cf:be:52:e7: 62:f1:4b:9d:be:3f:30:a8:85:e5:7b:80:b9:da:b7:db:34:72: 64:4e:a6:2b:7a:56:0d:22:38:ac:04:3c:60:a0:66:99:0a:8c: dc:36:87:39 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKuU5JYbyhQfFoDP24lC/k8qVpjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcx QUI0MjBBMDAeFw0yNDA5MTgwODU1MDBaFw0yNTA5MTcwOTAwMDBaMDMxMTAvBgNV BAMTKDg1Qjc2QkI1ODc4MUUwQkQ0NURFRDQ5OENFMzFDRjg2NUIwMTg0RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeLpq4Lbk3Kua3TqV9LWYIA6u1 DSPDe2Crapy3O+QPzZVC6iVelf8/jXtMu5KgIXqKIIDImhIcsgJGxP9/C2EW4Tgy dE4w1Umv9O5ogTanjUTQc/aeoaDBO4rLr2Z50t83qAPluS9Up9VrVdbBxzJQAThD Qgd9jizpb945PNQOSydZrW2f7RAeTuvGgV/uyfnewLyv7dyCLxMtDl26CDATT4Hr MABGzDQj25i/VM5fo3REFmxHdxVXo7dLN689WmfAKeVSIMJ0Wg24neY33Xmxuoof yur8oE2jKQuOLKR9iA6+jV785FRTnPDyrw2eDV2lLMyvm1JQeFQa/g4cdRy7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhbdrtYeB4L1F3tSYzjHPhlsBhNEwHwYDVR0j BBgwFoAUnmpn1bnXJcH0Can7O/NaBxq0IKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRlNmIyZC0zZGRiLTQ2ZWItODNlZi1jOTliMjAwMzc4M2YvMC85RTZBNjdENUI5 RDcyNUMxRjQwOUE5RkIzQkYzNUEwNzFBQjQyMEEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcxQUI0 MjBBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzIzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcozFDANBgkqhkiG 9w0BAQsFAAOCAQEAuoYgrp8c553IBRHn8+csfVVfa0OjHMTd0y+e28OqmCM7Uq79 Eiv4HaFisywn8w5IOlrvFsIKjk6NFMikIqLYiygEHjSm9QfRa9+Y7hgntkqFd5W6 59sIazmivMP3+F9bPyNsoRCm/0aF2Kb/3OTq2HOWGJkKqN9/0u3ZnExGEO6UOOD2 w4isV0Va+2VFgs6ohB6i6PKIH0IncSh8f8Hd4FRWMIehlU+r8y1/2zWmJpuL7bEi lBQrS3H5uJ6qqqUx4RGIbd48rbXiNHmv+JpEcx/25RTPvlLnYvFLnb4/MKiF5XuA udq32zRyZE6mK3pWDSI4rAQ8YKBmmQqM3DaHOQ== -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:28 2024 by rpki-client on console-fra.rpki-client.org