$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234302e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: b64BAb1ucftC1ZfZFvWsOzCH54GJAXothlLarWzTZ7U= Subject key identifier: 0B:6E:2C:1F:12:CA:91:53:7B:65:56:27:80:D6:04:48:18:BE:EA:32 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 1009409B5B2EB0B45AE26BDADC361D17541F3A0B Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jun 2024 06:00:00 +0000 ROA not before: Tue 18 Jun 2024 05:55:00 +0000 ROA not after: Tue 17 Jun 2025 06:00:00 +0000 asID: 38143 IP address blocks: 202.169.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:09:40:9b:5b:2e:b0:b4:5a:e2:6b:da:dc:36:1d:17:54:1f:3a:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jun 18 05:55:00 2024 GMT Not After : Jun 17 06:00:00 2025 GMT Subject: CN=0B6E2C1F12CA91537B65562780D6044818BEEA32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:80:47:d4:1b:c9:b5:f9:11:4d:07:a0:7c:61: e4:87:06:5d:8f:25:fb:d4:bb:83:5a:84:69:1f:12: bc:d7:5c:f1:ae:f8:db:55:dd:92:3a:7c:2f:19:ba: b8:96:90:5b:1e:1b:06:12:be:30:c0:a6:46:04:0e: 90:16:d3:c9:01:3b:02:01:56:0d:5b:77:a1:b8:97: ce:19:38:17:f2:23:39:f3:bd:b9:00:f1:54:dc:cd: 1a:f1:4e:67:49:fd:a0:cd:6d:4c:19:7c:67:d5:c8: 2c:7d:d2:e5:d7:ff:9c:76:da:8d:10:a9:89:fb:08: 30:94:5c:ca:5b:82:9f:7d:cc:0c:af:6a:6e:ab:70: 0b:97:82:70:45:75:55:cc:10:ba:36:80:18:fa:af: d6:03:57:5f:d3:0a:e4:26:96:0a:56:4f:b9:47:d6: 95:a3:4f:4b:d3:83:51:57:d8:92:32:3a:b8:2a:3e: b4:9d:c2:29:ac:a4:21:95:75:83:7b:4c:e0:ab:e5: b4:4e:b2:ce:0a:18:25:3b:86:df:ac:ba:7f:d1:f5: bd:e0:31:e1:7b:1e:5f:43:e8:16:04:ed:33:95:5e: e5:f2:5c:e1:d0:ce:04:60:bd:e1:75:0a:3b:26:4b: 33:cf:b8:f7:3b:db:50:70:fa:6b:cb:cc:56:30:c0: 0c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6E:2C:1F:12:CA:91:53:7B:65:56:27:80:D6:04:48:18:BE:EA:32 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234302e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.240.0/24 Signature Algorithm: sha256WithRSAEncryption 63:bc:85:02:54:b0:33:ab:98:7d:08:b6:b0:7e:34:d9:3b:33: 47:26:1d:1a:81:e0:27:c4:c2:df:7c:2d:c1:8d:bc:43:72:83: f3:a2:4c:04:41:02:03:83:5a:27:3b:ce:1d:50:78:ef:e5:c7: 80:36:ca:09:62:e3:7c:45:1d:cc:c2:38:10:0d:ce:ed:1f:f0: ea:5e:15:65:1c:cf:8f:79:5d:da:44:d8:30:e5:b1:97:93:8e: 38:c1:53:9f:21:f5:d8:50:dd:60:38:f8:3a:2b:a1:8e:d6:d3: d0:bb:3c:5c:87:a6:23:af:1b:2f:eb:0c:76:11:93:c4:98:d4: a3:47:d0:f9:c6:33:2b:fb:33:d9:d0:28:b4:a6:74:7e:e5:bf: 14:b7:69:75:f2:29:84:fd:a3:79:11:09:6f:90:20:a4:4b:3b: 9a:7c:d6:bf:6a:a9:f5:3f:2f:b3:73:98:c3:91:ca:fc:bb:93: a4:1b:42:8a:95:4f:73:8f:6e:3d:fe:4d:ce:a1:65:e2:d7:78: 1d:6d:35:cd:12:63:64:5a:f0:6d:27:41:fb:a4:87:c9:db:2e: c7:83:68:db:4c:22:4f:29:35:dd:02:66:4a:3a:d8:26:e7:04: a8:fc:a1:2a:78:13:ec:e5:ed:76:de:54:0e:f6:d3:19:25:3c: f0:05:9a:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEAlAm1susLRa4mva3DYdF1QfOgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDA2MTgwNTU1MDBaFw0yNTA2MTcwNjAwMDBaMDMxMTAvBgNV BAMTKDBCNkUyQzFGMTJDQTkxNTM3QjY1NTYyNzgwRDYwNDQ4MThCRUVBMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDagEfUG8m1+RFNB6B8YeSHBl2P JfvUu4NahGkfErzXXPGu+NtV3ZI6fC8ZuriWkFseGwYSvjDApkYEDpAW08kBOwIB Vg1bd6G4l84ZOBfyIznzvbkA8VTczRrxTmdJ/aDNbUwZfGfVyCx90uXX/5x22o0Q qYn7CDCUXMpbgp99zAyvam6rcAuXgnBFdVXMELo2gBj6r9YDV1/TCuQmlgpWT7lH 1pWjT0vTg1FX2JIyOrgqPrSdwimspCGVdYN7TOCr5bROss4KGCU7ht+sun/R9b3g MeF7Hl9D6BYE7TOVXuXyXOHQzgRgveF1CjsmSzPPuPc721Bw+mvLzFYwwAyRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUC24sHxLKkVN7ZVYngNYESBi+6jIwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqnwMA0GCSqG SIb3DQEBCwUAA4IBAQBjvIUCVLAzq5h9CLawfjTZOzNHJh0ageAnxMLffC3BjbxD coPzokwEQQIDg1onO84dUHjv5ceANsoJYuN8RR3MwjgQDc7tH/DqXhVlHM+PeV3a RNgw5bGXk444wVOfIfXYUN1gOPg6K6GO1tPQuzxch6Yjrxsv6wx2EZPEmNSjR9D5 xjMr+zPZ0Ci0pnR+5b8Ut2l18imE/aN5EQlvkCCkSzuafNa/aqn1Py+zc5jDkcr8 u5OkG0KKlU9zj249/k3OoWXi13gdbTXNEmNkWvBtJ0H7pIfJ2y7Hg2jbTCJPKTXd AmZKOtgm5wSo/KEqeBPs5e123lQO9tMZJTzwBZoy -----END CERTIFICATE-----Generated at Fri Feb 21 11:03:44 2025 by rpki-client