$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235322e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3235322e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: OMTCmYHshbNaVCDEBEaeY9ZV9u0M9thihudjhmPVOZg= Subject key identifier: 11:D2:5C:3E:D8:9B:DF:D9:04:71:E9:78:15:38:59:D9:43:71:6C:DB Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 73E53572BFFF039B8195D0C844DD5B4393C79479 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235322e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jun 2024 06:00:02 +0000 ROA not before: Tue 18 Jun 2024 05:55:02 +0000 ROA not after: Tue 17 Jun 2025 06:00:02 +0000 asID: 38143 IP address blocks: 202.169.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e5:35:72:bf:ff:03:9b:81:95:d0:c8:44:dd:5b:43:93:c7:94:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jun 18 05:55:02 2024 GMT Not After : Jun 17 06:00:02 2025 GMT Subject: CN=11D25C3ED89BDFD90471E978153859D943716CDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ba:f6:7c:46:c0:f6:c6:fa:85:42:0d:f8:b4: 0d:97:ba:6e:e2:be:c8:69:5a:28:9d:0b:40:b0:09: a3:bd:0d:5b:58:4b:2a:f6:20:49:92:d0:3c:38:e7: 9e:2c:98:60:cc:0d:44:a7:d3:e7:ec:df:ab:36:49: 54:f8:7f:5b:30:91:0b:14:a8:2b:80:e5:2e:fc:ef: 10:c4:85:f1:ee:c6:e6:00:49:24:ff:ce:d9:5d:a4: 22:6c:c6:96:e3:23:18:98:ab:3c:6f:df:07:f1:87: 23:52:f7:48:66:a7:54:12:7f:8b:42:b0:93:cc:1c: 8d:76:5e:93:14:fc:91:f4:ba:b2:27:95:d0:44:f7: b3:7f:6a:94:2f:14:d0:82:3a:0a:18:0e:7a:55:fb: dc:d9:db:74:d2:57:50:4b:3d:33:eb:69:25:19:67: af:45:1a:c8:c0:ec:ac:52:e7:34:13:a0:40:2f:32: c3:44:02:7d:e9:99:1c:11:2e:71:c9:86:de:e7:08: e9:a8:33:7f:20:7f:43:15:cb:20:66:bd:85:17:0e: ed:ae:93:76:c7:17:eb:7a:23:2d:34:10:77:ec:b0: a3:1e:b6:d8:e1:ea:63:09:e3:68:37:3b:70:ba:cf: 90:21:50:20:35:8d:04:a0:d6:44:56:d7:4d:ad:37: 89:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D2:5C:3E:D8:9B:DF:D9:04:71:E9:78:15:38:59:D9:43:71:6C:DB X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235322e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.252.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:d8:af:8a:26:cc:e4:ba:6d:3d:64:8d:0e:0b:70:da:82:af: a9:e7:fc:ef:a4:fd:d0:a4:e4:ee:65:52:f4:e7:4f:0d:d0:29: ec:39:ec:9c:76:46:02:79:6a:03:fd:22:09:88:6b:ec:10:0b: e9:0f:96:31:08:ba:a3:bf:bf:b2:f6:07:17:f1:12:82:60:2a: 2e:4e:27:55:ac:57:92:50:5c:21:02:70:ce:ab:3e:85:02:04: 5e:ba:36:97:04:d4:10:96:dc:42:0f:7a:02:b5:be:6c:70:46: 67:e0:1d:79:4e:90:9c:b8:4a:ab:2b:95:ed:63:b7:66:26:b9: 5b:6e:a7:32:18:84:f8:02:bb:3f:de:a0:57:60:e4:61:a2:b6: af:b4:54:b5:fa:bb:1e:85:68:47:c9:bd:aa:6c:46:f8:4a:2a: 23:22:9c:a5:6d:c8:25:d8:39:2f:df:55:0b:41:88:13:b3:fb: ab:d1:46:89:c4:74:bf:d7:81:aa:a4:02:f3:54:64:e5:25:93: 7d:bd:ae:d3:4b:7c:93:df:f2:fa:5d:5d:5f:c3:7a:0d:3c:32: c1:ec:46:52:6f:62:03:96:27:83:91:12:a6:d2:4d:3b:48:e6: 8c:7d:10:1c:2e:e5:d0:9c:23:ba:14:db:e5:90:0d:d8:ee:f9: 1e:aa:bb:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc+U1cr//A5uBldDIRN1bQ5PHlHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDA2MTgwNTU1MDJaFw0yNTA2MTcwNjAwMDJaMDMxMTAvBgNV BAMTKDExRDI1QzNFRDg5QkRGRDkwNDcxRTk3ODE1Mzg1OUQ5NDM3MTZDREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkuvZ8RsD2xvqFQg34tA2Xum7i vshpWiidC0CwCaO9DVtYSyr2IEmS0Dw4554smGDMDUSn0+fs36s2SVT4f1swkQsU qCuA5S787xDEhfHuxuYASST/ztldpCJsxpbjIxiYqzxv3wfxhyNS90hmp1QSf4tC sJPMHI12XpMU/JH0urInldBE97N/apQvFNCCOgoYDnpV+9zZ23TSV1BLPTPraSUZ Z69FGsjA7KxS5zQToEAvMsNEAn3pmRwRLnHJht7nCOmoM38gf0MVyyBmvYUXDu2u k3bHF+t6Iy00EHfssKMettjh6mMJ42g3O3C6z5AhUCA1jQSg1kRW102tN4l3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEdJcPtib39kEcel4FThZ2UNxbNswHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn8MA0GCSqG SIb3DQEBCwUAA4IBAQBc2K+KJszkum09ZI0OC3Dagq+p5/zvpP3QpOTuZVL0508N 0CnsOeycdkYCeWoD/SIJiGvsEAvpD5YxCLqjv7+y9gcX8RKCYCouTidVrFeSUFwh AnDOqz6FAgReujaXBNQQltxCD3oCtb5scEZn4B15TpCcuEqrK5XtY7dmJrlbbqcy GIT4Ars/3qBXYORhoravtFS1+rsehWhHyb2qbEb4SiojIpylbcgl2Dkv31ULQYgT s/ur0UaJxHS/14GqpALzVGTlJZN9va7TS3yT3/L6XV1fw3oNPDLB7EZSb2IDlieD kRKm0k07SOaMfRAcLuXQnCO6FNvlkA3Y7vkeqrv8 -----END CERTIFICATE-----Generated at Fri Feb 21 11:23:49 2025 by rpki-client