$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: pK9Jj30fFXgP6E+Qz1Q3JlAiamInZsL4/2RLtJVAJJQ= Subject key identifier: 92:65:55:8E:33:C7:5A:2B:98:7C:A7:2F:6C:A8:18:B8:E9:69:BD:00 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 026EBE21915F47758B2B624AC791FCD6D000FC23 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jun 2024 06:00:00 +0000 ROA not before: Tue 18 Jun 2024 05:55:00 +0000 ROA not after: Tue 17 Jun 2025 06:00:00 +0000 asID: 38143 IP address blocks: 202.169.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:6e:be:21:91:5f:47:75:8b:2b:62:4a:c7:91:fc:d6:d0:00:fc:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jun 18 05:55:00 2024 GMT Not After : Jun 17 06:00:00 2025 GMT Subject: CN=9265558E33C75A2B987CA72F6CA818B8E969BD00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9b:58:52:5f:bb:cf:3a:fa:18:0c:1b:54:11: 7e:dd:13:61:84:ec:b1:4a:cc:88:65:e5:59:df:2a: 02:bb:22:8b:f6:26:0a:ca:6d:7b:9e:4a:fe:fd:ab: 84:5d:84:13:82:b9:8f:db:10:ea:11:9a:c3:8b:d7: 8a:a4:7c:0b:6a:66:9a:df:42:b5:95:9c:ad:82:57: c6:1f:80:95:fb:d9:89:c5:71:68:44:73:61:03:9c: ca:fa:2d:76:86:cc:b9:de:94:e5:d0:ef:5b:c9:3c: 4a:cd:e1:03:fb:14:6d:f7:36:6b:2c:0e:a6:9e:49: 7d:15:ca:bb:ae:bf:70:89:b3:6a:16:67:e3:80:3c: 22:e8:7c:e6:ec:8f:81:7c:17:48:ca:0f:00:72:16: 09:4d:8e:78:21:a3:43:7f:fa:9b:6d:39:e8:f9:58: 1a:01:b0:28:e5:c7:19:66:bb:08:13:8d:fb:ae:88: 3d:3c:c7:c1:2c:ca:fe:f7:e5:dc:b1:57:6e:ff:54: fa:d0:69:e5:af:20:ef:28:9c:b4:1a:83:4f:0d:68: 44:23:e8:75:85:06:07:fb:24:a6:87:82:b2:79:6c: 57:f0:3e:a5:34:ec:7f:67:6c:7e:f3:3e:36:59:d7: 9b:c2:c0:2e:9e:bd:9e:0e:1e:f7:ad:50:29:81:e9: e8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:65:55:8E:33:C7:5A:2B:98:7C:A7:2F:6C:A8:18:B8:E9:69:BD:00 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.244.0/24 Signature Algorithm: sha256WithRSAEncryption 78:17:10:9a:1e:7c:9e:3e:a8:09:59:41:81:e3:95:f0:f3:0a: 80:78:bc:c3:ac:66:19:3c:25:9b:19:e1:91:c1:fe:1a:08:92: b4:65:30:35:3d:f1:be:a6:f0:d8:b2:87:4e:aa:3a:fb:d6:25: 2b:b0:00:77:99:a3:2c:39:7a:10:b1:0b:71:96:7d:6c:04:d9: f3:d6:f0:7e:83:5a:9d:29:b8:96:ef:c0:4e:d4:9e:74:de:59: 3d:bd:d9:3e:fb:e5:f7:5a:ce:dd:b1:65:0a:af:9a:90:8f:64: 5e:c2:83:88:e3:7e:c3:fe:ab:c9:be:59:81:3e:e4:24:81:ef: 94:af:a0:85:c3:9e:79:43:09:8b:81:38:60:88:b7:d7:b9:f2: 3b:09:f6:da:5c:d5:3c:66:61:77:d2:d8:35:63:d4:7f:4d:34: 7a:4c:ac:ce:27:51:26:b3:06:ab:a3:0f:25:23:e2:22:19:da: 73:80:4c:de:84:01:c9:34:75:e2:40:b3:2f:ba:87:ea:2a:c2: 73:07:66:9f:be:1e:10:c3:cb:6e:3e:65:bf:1e:3a:d1:55:fc: 45:d7:02:23:88:9c:e8:6f:ff:23:a7:a6:af:d1:ae:71:15:e1: 6f:4c:78:b3:92:da:ba:12:f9:b9:94:c3:1a:48:b8:3f:34:2c: a6:c2:ff:4f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAm6+IZFfR3WLK2JKx5H81tAA/CMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDA2MTgwNTU1MDBaFw0yNTA2MTcwNjAwMDBaMDMxMTAvBgNV BAMTKDkyNjU1NThFMzNDNzVBMkI5ODdDQTcyRjZDQTgxOEI4RTk2OUJEMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQm1hSX7vPOvoYDBtUEX7dE2GE 7LFKzIhl5VnfKgK7Iov2JgrKbXueSv79q4RdhBOCuY/bEOoRmsOL14qkfAtqZprf QrWVnK2CV8YfgJX72YnFcWhEc2EDnMr6LXaGzLnelOXQ71vJPErN4QP7FG33Nmss DqaeSX0Vyruuv3CJs2oWZ+OAPCLofObsj4F8F0jKDwByFglNjngho0N/+pttOej5 WBoBsCjlxxlmuwgTjfuuiD08x8Esyv735dyxV27/VPrQaeWvIO8onLQag08NaEQj 6HWFBgf7JKaHgrJ5bFfwPqU07H9nbH7zPjZZ15vCwC6evZ4OHvetUCmB6egpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkmVVjjPHWiuYfKcvbKgYuOlpvQAwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn0MA0GCSqG SIb3DQEBCwUAA4IBAQB4FxCaHnyePqgJWUGB45Xw8wqAeLzDrGYZPCWbGeGRwf4a CJK0ZTA1PfG+pvDYsodOqjr71iUrsAB3maMsOXoQsQtxln1sBNnz1vB+g1qdKbiW 78BO1J503lk9vdk+++X3Ws7dsWUKr5qQj2RewoOI437D/qvJvlmBPuQkge+Ur6CF w555QwmLgThgiLfXufI7CfbaXNU8ZmF30tg1Y9R/TTR6TKzOJ1Emswarow8lI+Ii GdpzgEzehAHJNHXiQLMvuofqKsJzB2afvh4Qw8tuPmW/HjrRVfxF1wIjiJzob/8j p6av0a5xFeFvTHizktq6Evm5lMMaSLg/NCymwv9P -----END CERTIFICATE-----Generated at Fri Feb 21 11:05:50 2025 by rpki-client