$ rpki-client -vvf repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32312e302f32342d3234203d3e20313439343039.roa File: 3230322e35312e32312e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: LDlAmIkfBI44itLAHSw+oCtaKYJxkyaV9N6k7QGrffc= Subject key identifier: D0:B6:7A:04:2C:BA:E7:38:81:A9:EA:45:44:0F:AC:C2:81:5A:BD:8F Certificate issuer: /CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Certificate serial: 2312452EA8BA75578C0DF35D20EEABA2101888B8 Authority key identifier: 9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32312e302f32342d3234203d3e20313439343039.roa Signing time: Sun 28 Apr 2024 14:00:00 +0000 ROA not before: Sun 28 Apr 2024 13:55:00 +0000 ROA not after: Sun 27 Apr 2025 14:00:00 +0000 asID: 149409 IP address blocks: 202.51.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:12:45:2e:a8:ba:75:57:8c:0d:f3:5d:20:ee:ab:a2:10:18:88:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0 Validity Not Before: Apr 28 13:55:00 2024 GMT Not After : Apr 27 14:00:00 2025 GMT Subject: CN=D0B67A042CBAE73881A9EA45440FACC2815ABD8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c5:a5:da:de:2c:71:c7:6a:db:4b:a7:e9:3c: a2:35:12:91:e7:49:26:e6:85:63:c2:c7:8c:28:1f: 24:b2:94:7b:33:81:f9:bb:77:f2:ee:74:c5:94:35: 9d:62:b6:e5:58:87:44:f1:f3:d7:1a:df:86:11:c4: c4:f3:cf:54:17:2d:ba:06:0b:dc:12:b4:f5:cc:28: c6:09:02:0f:0f:c6:f6:39:dd:7d:46:90:65:e8:a1: 43:61:9d:36:1f:40:82:73:a8:85:c8:89:b2:07:93: d4:d0:b7:4d:b8:cd:3d:32:be:da:59:ae:ef:9f:1b: 4d:56:b8:be:b5:34:a3:95:0f:d6:8a:29:5c:ca:f3: 96:57:e3:8b:bc:33:d4:91:60:23:51:54:70:71:4d: 2d:13:48:9b:d9:e5:c5:47:db:fd:d3:73:17:4b:91: 8e:fc:2b:f3:8d:07:93:74:14:bf:42:83:51:47:dd: e9:77:d0:e4:6a:f1:22:d6:6c:ea:56:7f:28:ce:9d: 6a:88:55:8d:3a:56:62:9e:fd:9a:f8:24:1e:23:bd: 0c:4f:1e:f3:36:b7:cd:5e:34:ff:ca:6b:65:b5:86: 4d:4f:e1:e3:92:e3:d9:88:41:5b:cc:6a:14:68:0f: ed:49:2e:41:a4:99:3a:8d:0b:39:1e:90:b5:83:f2: 82:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B6:7A:04:2C:BA:E7:38:81:A9:EA:45:44:0F:AC:C2:81:5A:BD:8F X509v3 Authority Key Identifier: keyid:9E:6A:67:D5:B9:D7:25:C1:F4:09:A9:FB:3B:F3:5A:07:1A:B4:20:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E6A67D5B9D725C1F409A9FB3BF35A071AB420A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/994e6b2d-3ddb-46eb-83ef-c99b2003783f/0/3230322e35312e32312e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.21.0/24 Signature Algorithm: sha256WithRSAEncryption 12:5e:23:ca:4c:d5:b5:5e:26:3a:8d:90:ed:35:29:e1:5c:d4: 12:7a:e4:73:f9:3f:82:26:ea:f8:0a:1f:16:31:5b:a9:25:aa: c3:99:17:db:1e:b5:b8:c8:09:9d:24:60:4c:f8:29:eb:76:97: 69:a6:c3:26:49:12:cf:23:f7:5b:90:99:64:15:17:5c:20:1c: 2a:9c:bd:db:3b:40:1d:c6:a4:b4:41:3b:f9:b7:69:6e:c8:2d: a0:1d:40:36:5d:5d:79:34:e9:a6:71:4e:5f:7c:ee:f4:d5:40: de:ca:a1:bb:64:6b:11:12:96:83:22:e6:1c:26:cc:83:a3:ef: b6:e6:0a:fd:3c:22:62:60:4a:f6:76:37:9c:01:e6:10:d8:e2: 26:42:ad:ab:21:32:7f:8c:7a:e3:c3:8e:ca:ba:36:2a:82:b4: 3c:ff:bb:33:4e:e9:c8:43:d6:96:c8:6b:55:cb:7b:51:20:1f: e6:d9:3f:4f:10:44:39:ad:83:75:c2:2a:8c:83:6e:fe:fd:c7: e8:aa:da:df:66:e9:5f:1b:07:a6:fc:09:31:ed:fc:30:04:13: f7:07:4f:36:be:a2:27:7a:4f:86:f4:43:11:29:b0:f4:9a:09: f3:9e:d5:94:b5:80:e6:22:8d:85:56:78:db:d6:a4:40:5b:e8: 28:c9:60:72 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIxJFLqi6dVeMDfNdIO6rohAYiLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcx QUI0MjBBMDAeFw0yNDA0MjgxMzU1MDBaFw0yNTA0MjcxNDAwMDBaMDMxMTAvBgNV BAMTKEQwQjY3QTA0MkNCQUU3Mzg4MUE5RUE0NTQ0MEZBQ0MyODE1QUJEOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpxaXa3ixxx2rbS6fpPKI1EpHn SSbmhWPCx4woHySylHszgfm7d/LudMWUNZ1ituVYh0Tx89ca34YRxMTzz1QXLboG C9wStPXMKMYJAg8PxvY53X1GkGXooUNhnTYfQIJzqIXIibIHk9TQt024zT0yvtpZ ru+fG01WuL61NKOVD9aKKVzK85ZX44u8M9SRYCNRVHBxTS0TSJvZ5cVH2/3TcxdL kY78K/ONB5N0FL9Cg1FH3el30ORq8SLWbOpWfyjOnWqIVY06VmKe/Zr4JB4jvQxP HvM2t81eNP/Ka2W1hk1P4eOS49mIQVvMahRoD+1JLkGkmTqNCzkekLWD8oLTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0LZ6BCy65ziBqepFRA+swoFavY8wHwYDVR0j BBgwFoAUnmpn1bnXJcH0Can7O/NaBxq0IKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OTRlNmIyZC0zZGRiLTQ2ZWItODNlZi1jOTliMjAwMzc4M2YvMC85RTZBNjdENUI5 RDcyNUMxRjQwOUE5RkIzQkYzNUEwNzFBQjQyMEEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2QTY3RDVCOUQ3MjVDMUY0MDlBOUZCM0JGMzVBMDcxQUI0 MjBBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5NGU2YjJkLTNkZGItNDZlYi04 M2VmLWM5OWIyMDAzNzgzZi8wLzMyMzAzMjJlMzUzMTJlMzIzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozFTANBgkqhkiG 9w0BAQsFAAOCAQEAEl4jykzVtV4mOo2Q7TUp4VzUEnrkc/k/gibq+AofFjFbqSWq w5kX2x61uMgJnSRgTPgp63aXaabDJkkSzyP3W5CZZBUXXCAcKpy92ztAHcaktEE7 +bdpbsgtoB1ANl1deTTppnFOX3zu9NVA3sqhu2RrERKWgyLmHCbMg6PvtuYK/Twi YmBK9nY3nAHmENjiJkKtqyEyf4x648OOyro2KoK0PP+7M07pyEPWlshrVct7USAf 5tk/TxBEOa2DdcIqjINu/v3H6Kra32bpXxsHpvwJMe38MAQT9wdPNr6iJ3pPhvRD ESmw9JoJ857VlLWA5iKNhVZ429akQFvoKMlgcg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org