$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: uMkcQnGtyVMYiNc8KGtl9eYsTQiYYDMAsGIQyzCExBA= Subject key identifier: 8E:71:65:0E:E9:5F:0C:1C:E8:5E:75:6A:ED:68:E2:A3:C9:2B:2A:1E Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 0D7E473EEB9EBD36FFAC2CF2FD8E803BCA7012C3 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jun 2024 06:00:02 +0000 ROA not before: Tue 18 Jun 2024 05:55:02 +0000 ROA not after: Tue 17 Jun 2025 06:00:02 +0000 asID: 38143 IP address blocks: 202.169.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 14:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:7e:47:3e:eb:9e:bd:36:ff:ac:2c:f2:fd:8e:80:3b:ca:70:12:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jun 18 05:55:02 2024 GMT Not After : Jun 17 06:00:02 2025 GMT Subject: CN=8E71650EE95F0C1CE85E756AED68E2A3C92B2A1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cc:0f:51:c6:95:c5:6c:66:9e:55:01:6e:e2: 47:3b:9f:e5:9b:5e:0c:65:78:83:13:8f:59:dd:ce: f4:39:d4:e3:de:86:99:b5:f2:62:3b:b3:04:0e:0c: a3:9b:e3:85:26:dd:bb:bc:f3:e6:03:ce:c0:98:20: d9:a8:51:18:64:16:c5:f3:1a:78:03:de:51:55:3d: 3f:84:24:a1:2e:60:c6:cf:88:b0:33:67:58:8c:11: 62:bf:7c:c9:77:f9:d1:dc:3b:ff:2c:c3:16:be:39: fb:87:f2:4c:e1:14:8b:36:fa:84:57:62:5d:04:ef: 28:85:fb:24:82:50:fb:23:4b:50:ca:2e:51:17:ef: 65:e7:6f:ad:ac:ba:78:36:41:12:cc:d2:be:08:16: 21:84:60:4a:cb:3f:36:93:7a:42:0b:74:5a:d6:f5: 84:e1:75:a9:84:9d:b1:0e:64:78:85:2f:e4:e9:69: d1:bf:e3:45:30:4c:6b:47:0b:ce:f0:fd:71:a9:8b: de:df:f8:10:a8:65:34:b7:6c:79:7c:6a:d2:a2:f7: ea:b1:c8:63:fe:a5:e3:ca:4d:02:40:8c:77:94:b8: f6:6d:68:86:06:d4:62:4c:9b:4e:7f:9a:b4:24:75: e4:bd:de:b1:a1:25:73:77:8c:60:dd:31:09:28:76: 8c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:71:65:0E:E9:5F:0C:1C:E8:5E:75:6A:ED:68:E2:A3:C9:2B:2A:1E X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.245.0/24 Signature Algorithm: sha256WithRSAEncryption 73:d4:7d:e2:2c:ba:66:b2:b4:2b:2c:9c:de:8e:32:f8:7e:61: 89:9d:3c:c3:e9:34:ec:5a:91:78:ae:34:93:db:d5:d5:78:20: 2e:8f:07:ca:d8:f4:5c:1f:26:6f:27:f6:95:b1:f1:90:63:d5: 86:90:e0:08:f4:ca:63:a0:18:bb:ca:ac:e5:6b:5a:41:e8:8e: 04:9d:a2:bb:76:f2:8f:6f:4b:26:f4:de:ec:6e:dd:7a:75:dd: 21:be:ce:84:a5:b7:27:ec:d2:31:44:83:72:09:6b:26:8f:79: b7:83:be:4e:22:89:e9:bc:a1:07:a1:9d:ff:ad:48:4d:30:61: 63:10:1c:27:16:00:bf:30:fd:9b:bf:9f:85:c7:89:d6:fb:72: 52:7a:04:99:a6:c7:f5:b1:7d:66:e0:2e:49:68:3b:eb:26:ad: b2:f2:81:af:84:dd:59:64:5b:11:57:14:1b:02:0c:d4:3a:f4: 08:c8:3a:ac:a6:8d:ae:f1:b8:07:86:b5:bc:aa:32:3e:b4:66: ae:e6:41:c6:23:41:2b:e9:89:8b:88:d7:68:e9:01:e7:21:4c: a8:9e:47:34:9e:66:dd:e2:3e:2f:52:a4:aa:71:35:07:3d:24: 4b:8e:dd:dd:a8:8f:4a:38:1c:71:d5:97:e9:0a:7f:a6:64:02: e4:60:02:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDX5HPuuevTb/rCzy/Y6AO8pwEsMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDA2MTgwNTU1MDJaFw0yNTA2MTcwNjAwMDJaMDMxMTAvBgNV BAMTKDhFNzE2NTBFRTk1RjBDMUNFODVFNzU2QUVENjhFMkEzQzkyQjJBMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2zA9RxpXFbGaeVQFu4kc7n+Wb XgxleIMTj1ndzvQ51OPehpm18mI7swQODKOb44Um3bu88+YDzsCYINmoURhkFsXz GngD3lFVPT+EJKEuYMbPiLAzZ1iMEWK/fMl3+dHcO/8swxa+OfuH8kzhFIs2+oRX Yl0E7yiF+ySCUPsjS1DKLlEX72Xnb62sung2QRLM0r4IFiGEYErLPzaTekILdFrW 9YThdamEnbEOZHiFL+TpadG/40UwTGtHC87w/XGpi97f+BCoZTS3bHl8atKi9+qx yGP+pePKTQJAjHeUuPZtaIYG1GJMm05/mrQkdeS93rGhJXN3jGDdMQkodox7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjnFlDulfDBzoXnVq7Wjio8krKh4wHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn1MA0GCSqG SIb3DQEBCwUAA4IBAQBz1H3iLLpmsrQrLJzejjL4fmGJnTzD6TTsWpF4rjST29XV eCAujwfK2PRcHyZvJ/aVsfGQY9WGkOAI9MpjoBi7yqzla1pB6I4EnaK7dvKPb0sm 9N7sbt16dd0hvs6Epbcn7NIxRINyCWsmj3m3g75OIonpvKEHoZ3/rUhNMGFjEBwn FgC/MP2bv5+Fx4nW+3JSegSZpsf1sX1m4C5JaDvrJq2y8oGvhN1ZZFsRVxQbAgzU OvQIyDqspo2u8bgHhrW8qjI+tGau5kHGI0Er6YmLiNdo6QHnIUyonkc0nmbd4j4v UqSqcTUHPSRLjt3dqI9KOBxx1ZfpCn+mZALkYALr -----END CERTIFICATE-----Generated at Mon Apr 21 05:41:48 2025 by rpki-client