$ rpki-client -vvf repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3230322e392e36392e302f32342d3234203d3e203436303437.roa File: 3230322e392e36392e302f32342d3234203d3e203436303437.roa (raw, json) Hash identifier: IGi6DrH51U07XomDWdoiKr2G5BS4MVMB5tHm0OIctaE= Subject key identifier: 6A:8E:CC:8A:73:5D:D8:F5:7D:4D:FA:F5:38:DF:10:31:87:B0:7C:CE Certificate issuer: /CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A Certificate serial: 146C808BD61E428E2CAFF7AF40DC7E63A4BBDF92 Authority key identifier: 1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3230322e392e36392e302f32342d3234203d3e203436303437.roa Signing time: Fri 11 Oct 2024 08:00:00 +0000 ROA not before: Fri 11 Oct 2024 07:55:00 +0000 ROA not after: Fri 10 Oct 2025 08:00:00 +0000 asID: 46047 IP address blocks: 202.9.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.crl rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:6c:80:8b:d6:1e:42:8e:2c:af:f7:af:40:dc:7e:63:a4:bb:df:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A Validity Not Before: Oct 11 07:55:00 2024 GMT Not After : Oct 10 08:00:00 2025 GMT Subject: CN=6A8ECC8A735DD8F57D4DFAF538DF103187B07CCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ff:60:11:21:50:be:bf:3b:b6:2d:22:62:f3: df:40:be:98:db:04:e6:7f:91:51:0b:e3:44:52:d1: ca:f7:c7:ff:f2:4a:25:8d:a0:04:c0:2f:13:7e:7e: a8:fb:a4:36:44:2d:78:b1:cf:df:88:a7:b0:17:6a: 72:65:75:50:32:44:9d:73:2e:37:39:cf:82:28:44: e3:17:88:5e:82:e3:6d:65:a0:f3:3d:2b:db:30:54: 54:d6:cf:82:e3:90:7a:a3:e1:13:35:fe:ea:27:12: 1d:2e:85:cc:9d:a7:8c:40:9b:2c:31:7f:a2:26:5d: c3:b8:50:01:4c:88:b4:32:ce:06:87:c6:1c:f4:ac: 05:cf:60:98:94:50:d8:3c:fe:f5:15:45:41:26:3d: 04:2c:fc:af:f6:89:9a:6e:64:42:b0:f2:50:25:89: c5:5e:b2:3d:f3:1f:6a:61:cd:4a:88:d6:74:0e:ba: da:f7:6d:bf:c7:a0:60:b1:20:c1:3d:e1:a6:b2:37: 1d:a8:d5:82:7d:c4:c0:ae:18:6e:8d:92:25:e3:07: e4:12:93:62:d7:38:f3:75:60:26:8a:cb:a5:e5:09: ba:4d:8f:43:73:79:46:e4:24:ba:f1:b2:9d:31:43: ef:df:51:f4:68:81:55:d8:ae:75:ea:b3:76:6e:6f: 7b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:8E:CC:8A:73:5D:D8:F5:7D:4D:FA:F5:38:DF:10:31:87:B0:7C:CE X509v3 Authority Key Identifier: keyid:1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3230322e392e36392e302f32342d3234203d3e203436303437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.9.69.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:99:3f:c0:fe:a7:5a:d7:9a:7a:75:cd:28:e2:9d:13:a9:93: c3:74:4b:6b:e0:09:e2:fc:1b:e1:35:f0:ae:3d:cf:24:8a:23: 33:e1:ed:64:d0:43:58:ae:8b:46:9a:2c:00:73:de:6c:84:be: bd:e8:ac:56:06:36:c2:e3:7a:3a:73:81:02:96:b3:9e:87:83: 58:24:5b:ea:c9:ca:7a:26:5a:12:95:80:80:fb:e3:46:92:6c: 8a:d9:ba:24:62:eb:eb:8f:63:f3:a1:77:e4:09:1f:18:8b:b9: 60:58:29:72:2f:10:77:4a:4a:c9:55:ec:3f:42:7c:cb:30:7c: 82:1e:19:dc:f0:20:99:76:e7:18:06:bd:17:c2:9b:5d:e3:b7: 68:fd:08:06:9b:ab:91:8f:a4:d6:df:03:73:c2:72:1c:4f:07: 09:b0:80:8f:d0:ce:b6:ef:d6:c9:ef:86:8e:71:53:27:10:f5: 32:1c:63:7a:a5:cd:e1:a2:4d:84:82:4b:74:d4:0f:30:4d:ab: 96:9e:e5:7a:c7:58:b9:07:60:78:a0:9a:21:d6:61:24:cc:e4: cd:bc:d8:90:ff:c3:0b:c6:19:7c:36:5f:76:a4:f8:da:07:c7: 6a:65:41:a1:bc:24:39:1c:86:89:56:bf:ac:dd:6e:02:2f:27: ad:64:be:56 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUFGyAi9YeQo4sr/evQNx+Y6S735IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZEN0NFRUM2OURFQTc4MzgzODMzMTdGRkIwRDRBMTA3 QUY0NTcyQTAeFw0yNDEwMTEwNzU1MDBaFw0yNTEwMTAwODAwMDBaMDMxMTAvBgNV BAMTKDZBOEVDQzhBNzM1REQ4RjU3RDRERkFGNTM4REYxMDMxODdCMDdDQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU/2ARIVC+vzu2LSJi899Avpjb BOZ/kVEL40RS0cr3x//ySiWNoATALxN+fqj7pDZELXixz9+Ip7AXanJldVAyRJ1z Ljc5z4IoROMXiF6C421loPM9K9swVFTWz4LjkHqj4RM1/uonEh0uhcydp4xAmywx f6ImXcO4UAFMiLQyzgaHxhz0rAXPYJiUUNg8/vUVRUEmPQQs/K/2iZpuZEKw8lAl icVesj3zH2phzUqI1nQOutr3bb/HoGCxIME94aayNx2o1YJ9xMCuGG6NkiXjB+QS k2LXOPN1YCaKy6XlCbpNj0NzeUbkJLrxsp0xQ+/fUfRogVXYrnXqs3Zub3vvAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUao7MinNd2PV9Tfr1ON8QMYewfM4wHwYDVR0j BBgwFoAUH9fO7Gnep4ODgzF/+w1KEHr0VyowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTEyOWM5NC1jNWE2LTRkZDQtYjM0YS03ZTM1M2RlNmNlODEvMC8xRkQ3Q0VFQzY5 REVBNzgzODM4MzMxN0ZGQjBENEExMDdBRjQ1NzJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZEN0NFRUM2OURFQTc4MzgzODMzMTdGRkIwRDRBMTA3QUY0 NTcyQS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWUxMjljOTQtYzVhNi00ZGQ0LWIz NGEtN2UzNTNkZTZjZTgxLzAvMzIzMDMyMmUzOTJlMzYzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzYzMDM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCUUwDQYJKoZIhvcNAQEL BQADggEBAAuZP8D+p1rXmnp1zSjinROpk8N0S2vgCeL8G+E18K49zySKIzPh7WTQ Q1iui0aaLABz3myEvr3orFYGNsLjejpzgQKWs56Hg1gkW+rJynomWhKVgID740aS bIrZuiRi6+uPY/Ohd+QJHxiLuWBYKXIvEHdKSslV7D9CfMswfIIeGdzwIJl25xgG vRfCm13jt2j9CAabq5GPpNbfA3PCchxPBwmwgI/Qzrbv1snvho5xUycQ9TIcY3ql zeGiTYSCS3TUDzBNq5ae5XrHWLkHYHigmiHWYSTM5M282JD/wwvGGXw2X3ak+NoH x2plQaG8JDkcholWv6zdbgIvJ61kvlY= -----END CERTIFICATE-----Generated at Mon Nov 25 02:56:53 2024 by rpki-client on console-fra.rpki-client.org