$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32342d3234203d3e20313439343039.roa File: 3230322e35312e32302e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: VgauIJib/5YKcXTJMY5O4GwqNEjl+20ATgstQ4kaGk4= Subject key identifier: 97:7D:B8:77:00:3F:69:63:2A:15:45:4B:CC:FA:69:07:C8:AD:A1:81 Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Certificate serial: 7A82A37529DEDF152A4B815B088ADC979CC0AC34 Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32342d3234203d3e20313439343039.roa Signing time: Sun 28 Apr 2024 14:00:00 +0000 ROA not before: Sun 28 Apr 2024 13:55:00 +0000 ROA not after: Sun 27 Apr 2025 14:00:00 +0000 asID: 149409 IP address blocks: 202.51.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:82:a3:75:29:de:df:15:2a:4b:81:5b:08:8a:dc:97:9c:c0:ac:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Validity Not Before: Apr 28 13:55:00 2024 GMT Not After : Apr 27 14:00:00 2025 GMT Subject: CN=977DB877003F69632A15454BCCFA6907C8ADA181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:21:8d:a2:f0:60:60:7b:3d:30:82:fd:95:34: 63:dd:4e:09:6f:a1:39:84:9e:cf:5f:bd:60:80:10: 39:93:24:2e:14:20:f2:04:61:83:f3:b9:4c:7c:10: 12:35:e4:aa:16:a7:f0:4f:9f:34:ff:6d:ca:e8:66: 8d:62:d4:ad:36:8c:60:ea:b7:d4:db:af:c3:8b:70: 1a:46:e0:5f:bf:07:8e:5b:0e:c0:21:f1:12:96:1a: df:a2:cd:e6:9d:09:15:fd:d1:b7:b7:56:a5:10:bf: 4e:2e:85:0e:e8:2e:aa:62:1a:7b:7a:8f:17:2f:dc: b6:65:54:79:9b:20:80:a4:eb:9e:d3:f4:f9:ed:42: 4c:fd:92:a1:4e:ee:7e:61:8a:9f:ad:65:f5:3e:0e: 46:04:48:3b:c1:aa:7a:a3:7a:2b:71:4a:a9:a7:b1: 62:f7:87:a1:5b:cf:f3:ab:59:a6:1f:5d:87:a8:09: 87:ef:d3:08:5c:46:77:bd:57:43:e0:1a:4c:7f:e1: 59:27:c1:4a:fc:a8:d0:9a:10:75:82:1f:2b:35:6c: 74:44:db:fd:cd:39:3f:95:3f:3b:b9:44:71:69:29: 48:e9:c1:73:04:47:65:19:0a:c5:4e:f2:5d:26:96: 2e:0d:48:c2:8f:78:9c:d1:68:0f:ad:13:32:08:85: a0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:7D:B8:77:00:3F:69:63:2A:15:45:4B:CC:FA:69:07:C8:AD:A1:81 X509v3 Authority Key Identifier: keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32302e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.20.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:e6:e7:66:6e:5a:51:f7:d0:9a:20:81:6b:79:01:a6:87:30: 23:9f:5f:a4:f2:a1:6c:f5:ca:11:6b:1c:38:85:e4:09:0c:14: dd:7c:e4:7a:da:01:22:17:0d:33:97:17:8e:79:08:e1:e0:dd: 43:a6:fb:58:c9:11:84:37:5d:c8:e9:bf:b6:81:28:f9:8c:53: 55:b0:26:47:0a:82:1b:66:70:08:71:b6:0e:f7:b6:61:3d:e9: da:71:7e:cc:fd:70:e0:5e:a4:41:7c:88:d6:f2:9d:a7:4b:b2: 52:34:78:e5:eb:07:14:9a:67:be:6b:7d:33:1c:09:7d:38:c4: 18:85:7f:5c:5c:2a:08:e4:f2:e2:55:96:52:8c:d1:66:bb:26: 01:19:f7:e0:62:5f:76:48:e5:31:32:14:65:2e:e5:b6:19:f1: e1:ae:c9:00:a0:c2:84:82:5e:c6:f6:e0:d8:a5:f6:da:6b:48: e0:97:c1:ea:a4:c9:8c:a0:d6:48:f5:ab:84:75:65:1c:8a:d3: d8:65:b9:7f:36:d3:28:56:13:78:9f:3f:e2:41:b7:69:82:e5: 9e:65:95:85:98:6d:18:09:89:be:9a:ab:bc:2e:c7:8a:1f:25: a2:ae:01:fa:da:ba:3b:6b:bb:68:75:34:95:d7:61:7c:23:32: a6:69:8a:38 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeoKjdSne3xUqS4FbCIrcl5zArDQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcx QUI0MjBBMDAeFw0yNDA0MjgxMzU1MDBaFw0yNTA0MjcxNDAwMDBaMDMxMTAvBgNV BAMTKDk3N0RCODc3MDAzRjY5NjMyQTE1NDU0QkNDRkE2OTA3QzhBREExODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAIY2i8GBgez0wgv2VNGPdTglv oTmEns9fvWCAEDmTJC4UIPIEYYPzuUx8EBI15KoWp/BPnzT/bcroZo1i1K02jGDq t9Tbr8OLcBpG4F+/B45bDsAh8RKWGt+izeadCRX90be3VqUQv04uhQ7oLqpiGnt6 jxcv3LZlVHmbIICk657T9PntQkz9kqFO7n5hip+tZfU+DkYESDvBqnqjeitxSqmn sWL3h6Fbz/OrWaYfXYeoCYfv0whcRne9V0PgGkx/4VknwUr8qNCaEHWCHys1bHRE 2/3NOT+VPzu5RHFpKUjpwXMER2UZCsVO8l0mli4NSMKPeJzRaA+tEzIIhaDPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl324dwA/aWMqFUVLzPppB8itoYEwHwYDVR0j BBgwFoAUnmpn1bnXJcH0Can7O/NaBxq0IKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRlNmIyZC0zZGRiLTQ2ZWItODNlZi1jOTliMjAwMzc4M2YvMC85RTZBNjdENUI5 RDcyNUMxRjQwOUE5RkIzQkYzNUEwNzFBQjQyMEEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcxQUI0 MjBBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozFDANBgkqhkiG 9w0BAQsFAAOCAQEAaubnZm5aUffQmiCBa3kBpocwI59fpPKhbPXKEWscOIXkCQwU 3XzketoBIhcNM5cXjnkI4eDdQ6b7WMkRhDddyOm/toEo+YxTVbAmRwqCG2ZwCHG2 Dve2YT3p2nF+zP1w4F6kQXyI1vKdp0uyUjR45esHFJpnvmt9MxwJfTjEGIV/XFwq COTy4lWWUozRZrsmARn34GJfdkjlMTIUZS7lthnx4a7JAKDChIJexvbg2KX22mtI 4JfB6qTJjKDWSPWrhHVlHIrT2GW5fzbTKFYTeJ8/4kG3aYLlnmWVhZhtGAmJvpqr vC7Hih8loq4B+tq6O2u7aHU0lddhfCMypmmKOA== -----END CERTIFICATE-----Generated at Fri May 31 10:00:18 2024 by rpki-client on console-ams.rpki-client.org