$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31362e302f32302d3234203d3e203338373538.roa File: 3230322e3138302e31362e302f32302d3234203d3e203338373538.roa (raw, json) Hash identifier: bXRD5DYpUOHeCiXubU6nJTSoa02/Z8k3WnCQ8nyGZyc= Subject key identifier: 26:84:49:DC:87:EE:D0:C3:91:A0:57:C4:20:56:42:C6:ED:D5:FA:38 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 3FE4D3B04F4D13CBED4E98ED1B57D332CDCE1019 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31362e302f32302d3234203d3e203338373538.roa Signing time: Tue 16 Jul 2024 15:00:00 +0000 ROA not before: Tue 16 Jul 2024 14:55:00 +0000 ROA not after: Tue 15 Jul 2025 15:00:00 +0000 asID: 38758 IP address blocks: 202.180.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e4:d3:b0:4f:4d:13:cb:ed:4e:98:ed:1b:57:d3:32:cd:ce:10:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Jul 16 14:55:00 2024 GMT Not After : Jul 15 15:00:00 2025 GMT Subject: CN=268449DC87EED0C391A057C4205642C6EDD5FA38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:23:ce:64:d3:31:77:b0:8c:43:9d:1a:f7:7f: 47:b4:08:5d:d5:08:5d:17:f8:c2:10:6e:38:76:40: 26:3d:96:e0:bc:84:07:04:03:b3:ce:0c:28:1f:c6: 78:e4:28:4b:ab:88:4e:76:e4:8a:16:9b:e1:d1:57: b1:65:80:2b:f0:4a:60:ef:f9:0c:7e:6b:4a:46:ea: 83:a7:e7:27:e3:e3:7d:e4:27:a5:0a:04:09:88:f2: 5e:d4:d0:4e:fe:0a:53:7c:3a:f3:64:22:00:f0:54: d9:cd:96:92:75:45:22:44:ab:20:be:c8:4d:bb:54: 17:35:2f:ab:66:da:a1:9e:be:fe:24:44:76:16:8c: f0:2f:6d:40:e6:28:6e:35:22:b4:af:18:c9:1e:9c: 25:a7:5f:44:e7:b6:3b:24:5f:8e:25:53:41:ed:ba: f1:db:7a:70:e9:d9:c8:08:80:ad:f0:45:1e:7c:e9: 2d:92:2d:4c:e0:2f:5a:30:e7:04:a2:ec:55:a1:f1: 16:11:62:6c:c5:34:b6:ef:8f:b3:3b:90:e3:79:4b: 39:90:af:75:a5:9b:53:dd:2f:0e:31:3f:44:cb:d1: 7f:df:8b:89:4a:3d:36:28:5a:26:be:11:d8:fe:d2: ea:1e:b4:bb:03:4f:eb:a7:fa:27:76:07:4a:ac:84: 20:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:84:49:DC:87:EE:D0:C3:91:A0:57:C4:20:56:42:C6:ED:D5:FA:38 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31362e302f32302d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.16.0/20 Signature Algorithm: sha256WithRSAEncryption 2e:f2:4b:ac:4a:8f:a1:fb:84:7b:50:d2:9b:27:74:74:92:68: 6f:bb:8d:54:bb:36:b0:e5:a9:ce:7f:c3:b3:f5:9e:b3:48:0b: 0c:78:fe:bb:8f:5e:01:75:5d:ac:13:13:4f:2f:55:4e:48:bb: 11:dc:7a:0b:22:de:d4:5e:0d:c4:6d:0a:9e:76:a3:d3:4d:d5: f7:22:8e:8d:6e:92:b4:0c:4f:a4:30:a6:c6:8d:aa:0a:73:53: 26:45:02:8d:d6:2d:ba:67:5d:75:5c:85:b5:f0:c6:cd:10:09: 99:d8:22:59:e3:56:42:d3:62:cd:8a:d4:05:f3:60:28:e7:ea: 12:7d:3c:7e:ed:c4:ab:8b:e5:cd:2c:8d:b6:0c:70:00:00:5f: 6a:76:9b:74:db:52:12:cf:e5:b2:58:72:a3:ea:43:e7:d9:33: b4:6b:e9:10:4e:fb:95:29:a3:8d:a7:68:99:79:8c:98:d6:74: 3b:f1:de:da:27:65:72:ff:5c:fb:fc:e3:e2:cc:dc:16:d1:a7: 37:39:85:8d:a1:d4:8d:63:cc:49:c5:5c:88:91:b9:8c:53:24: de:52:96:90:66:38:1b:c5:9f:fd:0a:50:9a:da:25:0e:26:c4: 09:32:5d:1e:9f:01:4f:ef:35:d9:02:c5:68:db:0b:52:13:f9: 5a:24:54:91 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP+TTsE9NE8vtTpjtG1fTMs3OEBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yNDA3MTYxNDU1MDBaFw0yNTA3MTUxNTAwMDBaMDMxMTAvBgNV BAMTKDI2ODQ0OURDODdFRUQwQzM5MUEwNTdDNDIwNTY0MkM2RURENUZBMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZI85k0zF3sIxDnRr3f0e0CF3V CF0X+MIQbjh2QCY9luC8hAcEA7PODCgfxnjkKEuriE525IoWm+HRV7FlgCvwSmDv +Qx+a0pG6oOn5yfj433kJ6UKBAmI8l7U0E7+ClN8OvNkIgDwVNnNlpJ1RSJEqyC+ yE27VBc1L6tm2qGevv4kRHYWjPAvbUDmKG41IrSvGMkenCWnX0TntjskX44lU0Ht uvHbenDp2cgIgK3wRR586S2SLUzgL1ow5wSi7FWh8RYRYmzFNLbvj7M7kON5SzmQ r3Wlm1PdLw4xP0TL0X/fi4lKPTYoWia+Edj+0uoetLsDT+un+id2B0qshCA1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJoRJ3Ifu0MORoFfEIFZCxu3V+jgwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMjJlMzEzODMwMmUzMTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMq0EDANBgkqhkiG 9w0BAQsFAAOCAQEALvJLrEqPofuEe1DSmyd0dJJob7uNVLs2sOWpzn/Ds/Wes0gL DHj+u49eAXVdrBMTTy9VTki7Edx6CyLe1F4NxG0Knnaj003V9yKOjW6StAxPpDCm xo2qCnNTJkUCjdYtumdddVyFtfDGzRAJmdgiWeNWQtNizYrUBfNgKOfqEn08fu3E q4vlzSyNtgxwAABfanabdNtSEs/lslhyo+pD59kztGvpEE77lSmjjadomXmMmNZ0 O/He2idlcv9c+/zj4szcFtGnNzmFjaHUjWPMScVciJG5jFMk3lKWkGY4G8Wf/QpQ mtolDibECTJdHp8BT+812QLFaNsLUhP5WiRUkQ== -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:48 2024 by rpki-client on console-ams.rpki-client.org