$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: FIRVFZc1UU9Hchzd1z8+PKGISur2+CyfQSCwWhe0oGk= Subject key identifier: 0E:3A:FD:53:07:FD:E2:41:F9:70:4C:AD:6E:18:F2:94:1E:0D:E9:79 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 5A2B693CC1175E2E1C927FD16CCE6C970026F69B Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jun 2024 06:00:02 +0000 ROA not before: Tue 18 Jun 2024 05:55:02 +0000 ROA not after: Tue 17 Jun 2025 06:00:02 +0000 asID: 38143 IP address blocks: 202.169.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:2b:69:3c:c1:17:5e:2e:1c:92:7f:d1:6c:ce:6c:97:00:26:f6:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jun 18 05:55:02 2024 GMT Not After : Jun 17 06:00:02 2025 GMT Subject: CN=0E3AFD5307FDE241F9704CAD6E18F2941E0DE979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fc:2c:18:d1:7e:1a:cf:b4:10:31:4b:10:29: 7d:65:74:5d:f3:75:f2:89:25:5f:e0:7a:8a:a4:5a: 55:65:8a:a3:a6:a5:66:0d:16:65:f9:70:75:f0:ce: 27:a1:fa:2c:b0:b8:83:50:82:06:ec:da:60:00:03: b6:c7:7d:56:35:e4:5f:7d:e3:22:f2:bd:74:49:0e: 81:b1:7a:8e:88:ad:5b:96:87:f0:f8:14:49:13:0f: 47:1f:99:96:bf:5d:03:df:4b:2c:59:0e:b2:57:3a: 75:5c:b3:29:4b:c4:f0:bd:a6:48:c8:d3:2a:7d:50: 13:75:c2:da:2a:97:8b:94:54:a9:8e:73:4c:8f:cd: b3:fa:e9:42:88:cb:7e:58:86:2d:32:4e:5d:3e:c8: 99:14:a7:50:de:ec:b2:3f:76:04:af:3d:31:6a:48: 52:52:f8:9d:c0:29:45:7c:8c:22:19:c9:00:ca:d3: b3:e4:52:e1:2d:e1:de:f8:3f:68:95:c1:99:1c:6f: 24:6c:24:5a:76:9a:13:03:b6:99:eb:05:83:a3:92: ca:f3:93:47:52:89:7b:86:17:90:59:40:2c:63:94: c9:33:9d:ac:f3:bf:65:7c:36:82:52:18:c7:bf:73: eb:6f:04:f7:af:6a:6c:ec:f8:83:67:aa:ba:e3:4b: 7f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:3A:FD:53:07:FD:E2:41:F9:70:4C:AD:6E:18:F2:94:1E:0D:E9:79 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234392e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.249.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:ff:b3:c7:77:ff:c3:51:43:75:33:af:f8:c8:11:29:a7:02: cf:85:7b:09:4e:8b:a6:0c:32:29:a2:a9:c7:b4:14:c7:c6:07: 56:83:0c:51:9d:61:86:fa:19:d6:9d:20:71:e2:f7:5b:3d:5d: 2c:c4:0b:cd:c8:18:74:ce:f0:61:53:d1:0f:6a:c2:e2:1c:4e: 66:fd:62:cf:7a:38:dd:93:fb:31:b3:46:32:79:c8:54:7a:6b: 6b:ff:07:98:83:c6:dd:e2:14:8d:f2:31:0f:3c:39:93:75:cc: 51:62:45:5f:55:31:9a:fe:42:21:91:5e:7f:9f:68:6b:11:d8: 29:5d:14:c0:43:6d:81:4a:38:ef:53:1e:f1:27:9c:91:31:c3: ca:31:bd:ea:3a:f5:77:84:ac:59:b5:0a:d3:e3:97:22:e4:da: ba:04:a3:c0:7e:15:55:5e:88:66:a3:19:c3:3f:d9:9e:0d:35: 84:9e:20:64:a8:ff:6c:30:b0:ce:84:be:30:b1:bc:a5:de:c8: e4:39:21:64:6b:a1:40:54:11:30:fe:6e:f2:7e:fb:2b:7a:c8: 8d:42:62:42:0b:d7:b0:51:ff:7b:08:16:1d:40:db:83:7f:b8: 9a:de:32:e2:b9:c2:78:ea:56:a5:4e:44:4e:39:d7:68:89:17: b8:8f:d6:24 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWitpPMEXXi4ckn/RbM5slwAm9pswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDA2MTgwNTU1MDJaFw0yNTA2MTcwNjAwMDJaMDMxMTAvBgNV BAMTKDBFM0FGRDUzMDdGREUyNDFGOTcwNENBRDZFMThGMjk0MUUwREU5NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE/CwY0X4az7QQMUsQKX1ldF3z dfKJJV/geoqkWlVliqOmpWYNFmX5cHXwzieh+iywuINQggbs2mAAA7bHfVY15F99 4yLyvXRJDoGxeo6IrVuWh/D4FEkTD0cfmZa/XQPfSyxZDrJXOnVcsylLxPC9pkjI 0yp9UBN1wtoql4uUVKmOc0yPzbP66UKIy35Yhi0yTl0+yJkUp1De7LI/dgSvPTFq SFJS+J3AKUV8jCIZyQDK07PkUuEt4d74P2iVwZkcbyRsJFp2mhMDtpnrBYOjksrz k0dSiXuGF5BZQCxjlMkznazzv2V8NoJSGMe/c+tvBPevamzs+INnqrrjS3/nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDjr9Uwf94kH5cEytbhjylB4N6XkwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn5MA0GCSqG SIb3DQEBCwUAA4IBAQBM/7PHd//DUUN1M6/4yBEppwLPhXsJToumDDIpoqnHtBTH xgdWgwxRnWGG+hnWnSBx4vdbPV0sxAvNyBh0zvBhU9EPasLiHE5m/WLPejjdk/sx s0YyechUemtr/weYg8bd4hSN8jEPPDmTdcxRYkVfVTGa/kIhkV5/n2hrEdgpXRTA Q22BSjjvUx7xJ5yRMcPKMb3qOvV3hKxZtQrT45ci5Nq6BKPAfhVVXohmoxnDP9me DTWEniBkqP9sMLDOhL4wsbyl3sjkOSFka6FAVBEw/m7yfvsresiNQmJCC9ewUf97 CBYdQNuDf7ia3jLiucJ46lalTkROOddoiRe4j9Yk -----END CERTIFICATE-----Generated at Fri Feb 21 11:25:48 2025 by rpki-client