$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa File: 3230322e35312e32302e302f32332d3234203d3e20313439343039.roa (raw, json) Hash identifier: sdP0GfM29CjT2qSs6k29aTQAVtw7WuE4nuzVONDfaXA= Subject key identifier: A2:4C:11:E0:0D:1F:7E:AB:B7:1E:BD:DA:59:7B:D6:11:9A:D4:EE:BA Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Certificate serial: 1C4BE6AEF484E6D18AA6EF0AE8A1476C8C730826 Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa Signing time: Wed 18 Oct 2023 08:34:34 +0000 ROA not before: Wed 18 Oct 2023 08:29:34 +0000 ROA not after: Wed 16 Oct 2024 08:34:34 +0000 asID: 149409 IP address blocks: 202.51.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4b:e6:ae:f4:84:e6:d1:8a:a6:ef:0a:e8:a1:47:6c:8c:73:08:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Validity Not Before: Oct 18 08:29:34 2023 GMT Not After : Oct 16 08:34:34 2024 GMT Subject: CN=A24C11E00D1F7EABB71EBDDA597BD6119AD4EEBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:35:fb:1e:ac:2c:44:7e:a6:1d:4e:d9:49:08: 0a:87:b8:c4:a7:32:45:ea:c6:89:ff:55:49:6e:26: 62:57:f1:cb:07:f0:51:53:45:3a:7c:5a:f5:4a:b8: 64:e5:6f:3b:24:0f:8b:0e:d2:a1:9f:bb:43:d5:66: a7:92:ae:98:d9:49:6b:ba:32:a0:fb:10:22:8d:88: 7c:21:86:e5:1a:e0:c0:11:48:f8:bd:bb:47:68:d2: 7d:53:98:59:11:e7:4f:a9:bd:9d:0b:4f:3c:b8:fd: 98:1a:37:e7:cb:18:f9:92:7e:24:1d:47:07:98:c4: c5:1a:66:5b:38:3a:a3:f2:0f:25:3c:5e:89:f5:e7: c8:28:9a:68:c6:32:03:b7:50:be:3c:2d:97:00:ef: 93:f7:bc:65:70:9e:91:e3:78:20:24:c0:f2:53:7f: db:3b:f8:78:1d:1e:85:73:7c:e4:90:18:b5:91:a8: 4f:fe:38:b0:bb:37:6a:9b:f7:e6:e7:c3:3e:64:01: 2f:6f:67:04:ff:61:41:6c:24:05:39:1e:8a:f4:44: 5d:27:54:21:e7:54:47:66:db:fc:45:46:b9:df:7e: 85:b2:74:e8:40:1c:c2:f2:5b:9e:1e:e1:5a:e9:1d: 8d:d0:09:02:66:f2:19:fc:96:a0:10:8e:4d:89:1c: d5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4C:11:E0:0D:1F:7E:AB:B7:1E:BD:DA:59:7B:D6:11:9A:D4:EE:BA X509v3 Authority Key Identifier: keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32332d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.20.0/23 Signature Algorithm: sha256WithRSAEncryption 74:bd:6f:bc:57:0c:80:c2:81:f0:1a:d5:6b:05:3a:4c:7f:dc: 16:bb:c9:87:d7:a3:82:f5:47:36:82:48:64:11:51:14:ec:af: 99:11:91:c5:0a:83:f4:a8:ad:ed:a8:ca:dc:5f:59:a8:b7:07: 7e:6e:94:6c:a8:a5:10:e2:29:56:07:01:ee:0b:13:4a:33:4b: 87:6e:3f:9e:ec:ce:a0:ec:e9:eb:b8:f7:cb:db:e9:78:41:f8: 27:f2:dd:22:9c:11:63:6a:1c:d1:69:7c:3a:03:38:4d:23:f3: 07:07:a0:dd:57:f5:f4:fd:3c:d3:c7:b9:88:48:b0:ac:9c:6d: af:10:57:c1:77:f2:9e:a4:48:31:0b:65:7e:5f:b9:78:07:63: 8b:2e:48:03:50:1d:cf:8c:4a:86:1f:89:91:67:07:86:79:27: 59:93:d7:ab:bb:f6:7e:8d:2b:b6:c0:e7:5f:a5:a7:6c:fc:c8: 34:cb:07:97:9c:2b:65:2f:46:b8:64:5a:0c:3e:44:4e:03:eb: e4:89:46:eb:1d:bb:1d:5c:74:cb:9d:07:81:73:c0:2e:4b:c2: 97:5e:ab:36:aa:0a:0f:5c:13:d6:fc:d9:3c:9c:2d:dc:32:41: 02:5f:80:84:02:d4:a3:05:db:bf:fd:eb:68:8a:d0:0c:43:81: 50:8f:8d:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHEvmrvSE5tGKpu8K6KFHbIxzCCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcx QUI0MjBBMDAeFw0yMzEwMTgwODI5MzRaFw0yNDEwMTYwODM0MzRaMDMxMTAvBgNV BAMTKEEyNEMxMUUwMEQxRjdFQUJCNzFFQkREQTU5N0JENjExOUFENEVFQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDINfserCxEfqYdTtlJCAqHuMSn MkXqxon/VUluJmJX8csH8FFTRTp8WvVKuGTlbzskD4sO0qGfu0PVZqeSrpjZSWu6 MqD7ECKNiHwhhuUa4MARSPi9u0do0n1TmFkR50+pvZ0LTzy4/ZgaN+fLGPmSfiQd RweYxMUaZls4OqPyDyU8Xon158gommjGMgO3UL48LZcA75P3vGVwnpHjeCAkwPJT f9s7+HgdHoVzfOSQGLWRqE/+OLC7N2qb9+bnwz5kAS9vZwT/YUFsJAU5Hor0RF0n VCHnVEdm2/xFRrnffoWydOhAHMLyW54e4VrpHY3QCQJm8hn8lqAQjk2JHNUTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUokwR4A0ffqu3Hr3aWXvWEZrU7rowHwYDVR0j BBgwFoAUnmpn1bnXJcH0Can7O/NaBxq0IKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRlNmIyZC0zZGRiLTQ2ZWItODNlZi1jOTliMjAwMzc4M2YvMC85RTZBNjdENUI5 RDcyNUMxRjQwOUE5RkIzQkYzNUEwNzFBQjQyMEEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcxQUI0 MjBBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzIzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcozFDANBgkqhkiG 9w0BAQsFAAOCAQEAdL1vvFcMgMKB8BrVawU6TH/cFrvJh9ejgvVHNoJIZBFRFOyv mRGRxQqD9Kit7ajK3F9ZqLcHfm6UbKilEOIpVgcB7gsTSjNLh24/nuzOoOzp67j3 y9vpeEH4J/LdIpwRY2oc0Wl8OgM4TSPzBweg3Vf19P0808e5iEiwrJxtrxBXwXfy nqRIMQtlfl+5eAdjiy5IA1Adz4xKhh+JkWcHhnknWZPXq7v2fo0rtsDnX6WnbPzI NMsHl5wrZS9GuGRaDD5ETgPr5IlG6x27HVx0y50HgXPALkvCl16rNqoKD1wT1vzZ PJwt3DJBAl+AhALUowXbv/3raIrQDEOBUI+NtQ== -----END CERTIFICATE-----Generated at Sun Jun 2 14:07:12 2024 by rpki-client on console-fra.rpki-client.org