$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234312e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234312e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: LsZQ/GwSeStmvITZ5Or+AQOb5lrx958EUozywHBUCa0= Subject key identifier: E5:02:ED:C1:26:61:A9:03:A1:F9:06:44:BE:47:3A:DA:BE:3D:04:A2 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 1BDAA77B4B59606928C0C13E9555DE04C118EF95 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234312e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jun 2024 05:00:00 +0000 ROA not before: Tue 18 Jun 2024 04:55:00 +0000 ROA not after: Tue 17 Jun 2025 05:00:00 +0000 asID: 38143 IP address blocks: 202.169.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:da:a7:7b:4b:59:60:69:28:c0:c1:3e:95:55:de:04:c1:18:ef:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jun 18 04:55:00 2024 GMT Not After : Jun 17 05:00:00 2025 GMT Subject: CN=E502EDC12661A903A1F90644BE473ADABE3D04A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:17:98:bd:67:e4:cc:9e:13:93:5a:10:7d:a0: 8d:2c:03:6e:0c:44:28:b3:f6:78:f7:6b:da:89:41: d1:80:8d:cd:ea:a9:c8:ad:a1:cb:2a:d2:7b:ad:c4: fa:82:b0:74:54:5d:8d:83:7d:df:4d:64:81:48:8e: db:28:f7:c0:46:f3:9f:87:e0:3c:3d:56:61:e9:3e: ae:b9:c7:e3:72:3d:06:07:e7:a1:ad:3d:ab:31:3f: 27:1f:20:a8:06:96:6a:4a:28:aa:94:e0:78:d7:00: 1a:c2:91:49:41:cd:d7:32:9b:ea:f5:5a:2c:4b:b4: ff:d0:97:14:c3:05:37:e7:be:62:a4:4f:4f:0f:67: 1e:1d:92:23:6d:b2:e7:37:27:84:8d:9d:1e:ec:ff: a6:53:38:5d:73:35:54:40:40:3c:c4:fa:dc:7a:8f: 32:26:de:9a:e1:ce:ea:b2:fd:fa:f5:c6:a8:0e:e1: 6b:30:c2:da:24:8e:54:a1:af:fd:a3:50:e4:37:05: 3a:55:cd:ee:a0:75:e5:8f:d4:75:e2:c6:d7:48:5d: 86:06:c7:de:03:9f:9d:ad:be:d6:2d:7d:a0:26:02: 53:50:1d:62:c3:5a:64:bc:08:c7:33:6c:79:09:c6: d5:c2:8d:f4:60:ef:9a:0d:0c:73:a3:1b:32:c4:6e: 7d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:02:ED:C1:26:61:A9:03:A1:F9:06:44:BE:47:3A:DA:BE:3D:04:A2 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234312e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.241.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:6c:d2:54:97:d5:91:0c:3d:a8:31:11:c2:5d:39:37:39:11: b5:1c:9b:35:0f:6a:58:c7:88:72:88:49:e5:fb:95:d0:2e:46: 5c:76:7b:3d:ee:08:2d:cb:a3:13:4d:a8:92:90:67:33:76:ea: a3:87:b6:2f:1a:57:54:d5:60:f4:15:c5:d3:89:10:84:70:17: 6f:0f:85:48:8a:1c:f1:99:0d:0d:9e:e8:67:26:ca:a1:c2:b9: 07:be:54:df:63:5a:66:44:45:d8:a1:60:e5:de:cb:24:e8:6b: f1:7a:4b:f3:18:ed:22:20:39:4a:63:15:8d:b0:29:4b:02:27: 99:f3:3d:1b:6b:78:13:4e:42:87:3d:2d:7d:bd:3f:82:8c:75: 62:dd:97:5b:59:db:7a:49:a3:7c:80:2e:21:7f:ea:81:e4:69: ef:43:16:01:9e:aa:35:ec:f5:83:f4:80:3c:ce:d3:17:9a:3e: 7e:cd:fc:a9:4c:92:0b:4b:79:1d:79:38:1d:10:1a:5f:65:b8: fa:6c:31:55:56:6c:e9:0c:fd:47:00:25:78:c9:59:bf:4f:8d: 26:c0:12:83:e1:95:10:75:7d:d7:76:10:67:f3:c0:d6:49:e0: 77:f0:b6:15:07:5d:ec:ef:b6:b3:14:92:b2:62:36:25:c6:6e: 34:61:90:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG9qne0tZYGkowME+lVXeBMEY75UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDA2MTgwNDU1MDBaFw0yNTA2MTcwNTAwMDBaMDMxMTAvBgNV BAMTKEU1MDJFREMxMjY2MUE5MDNBMUY5MDY0NEJFNDczQURBQkUzRDA0QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYF5i9Z+TMnhOTWhB9oI0sA24M RCiz9nj3a9qJQdGAjc3qqcitocsq0nutxPqCsHRUXY2Dfd9NZIFIjtso98BG85+H 4Dw9VmHpPq65x+NyPQYH56GtPasxPycfIKgGlmpKKKqU4HjXABrCkUlBzdcym+r1 WixLtP/QlxTDBTfnvmKkT08PZx4dkiNtsuc3J4SNnR7s/6ZTOF1zNVRAQDzE+tx6 jzIm3prhzuqy/fr1xqgO4WswwtokjlShr/2jUOQ3BTpVze6gdeWP1HXixtdIXYYG x94Dn52tvtYtfaAmAlNQHWLDWmS8CMczbHkJxtXCjfRg75oNDHOjGzLEbn3lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5QLtwSZhqQOh+QZEvkc62r49BKIwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqnxMA0GCSqG SIb3DQEBCwUAA4IBAQAtbNJUl9WRDD2oMRHCXTk3ORG1HJs1D2pYx4hyiEnl+5XQ LkZcdns97ggty6MTTaiSkGczduqjh7YvGldU1WD0FcXTiRCEcBdvD4VIihzxmQ0N nuhnJsqhwrkHvlTfY1pmREXYoWDl3ssk6GvxekvzGO0iIDlKYxWNsClLAieZ8z0b a3gTTkKHPS19vT+CjHVi3ZdbWdt6SaN8gC4hf+qB5GnvQxYBnqo17PWD9IA8ztMX mj5+zfypTJILS3kdeTgdEBpfZbj6bDFVVmzpDP1HACV4yVm/T40mwBKD4ZUQdX3X dhBn88DWSeB38LYVB13s77azFJKyYjYlxm40YZC7 -----END CERTIFICATE-----Generated at Fri Feb 21 11:23:05 2025 by rpki-client