$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235332e302f32342d3234203d3e20313339333635.roa File: 3230322e3136392e3235332e302f32342d3234203d3e20313339333635.roa (raw, json) Hash identifier: EdaIcC5lKlbbnUJJhTbJZ13DlJxiaTQ9kBRK/N+xV0Y= Subject key identifier: CB:67:88:B3:6F:21:0C:64:1A:7B:91:21:41:3E:84:C4:2D:F9:F2:D5 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 748ED6D1319B64E3671B7DFCEBC912F77F3ABDDD Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235332e302f32342d3234203d3e20313339333635.roa Signing time: Tue 20 Feb 2024 06:43:46 +0000 ROA not before: Tue 20 Feb 2024 06:38:46 +0000 ROA not after: Tue 18 Feb 2025 06:43:46 +0000 asID: 139365 IP address blocks: 202.169.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 13:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:8e:d6:d1:31:9b:64:e3:67:1b:7d:fc:eb:c9:12:f7:7f:3a:bd:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Feb 20 06:38:46 2024 GMT Not After : Feb 18 06:43:46 2025 GMT Subject: CN=CB6788B36F210C641A7B9121413E84C42DF9F2D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:44:b4:b5:47:bd:26:b0:5f:13:59:8b:54:d3: 90:5d:d5:f9:70:c3:c0:66:1b:d7:54:2a:42:8f:de: db:5e:7e:f1:20:18:04:bc:1e:ce:36:e9:3a:be:a8: e4:e7:dc:fc:26:89:12:8f:1c:57:9a:f0:cc:49:8d: 27:bc:bf:cd:76:88:b3:53:6d:91:6d:67:c8:75:3a: 21:03:e7:ee:61:b7:f2:b6:4e:d0:e5:0d:a3:b1:a7: 4d:e7:5e:da:28:fa:c3:5a:ae:35:b6:64:38:83:81: 29:c7:39:4c:65:31:11:1f:6d:1a:b5:fa:ac:20:42: 34:05:f4:de:43:06:f9:38:ca:f7:83:e4:e4:32:3b: d2:b3:bc:87:e5:af:a4:2f:ef:6c:4a:21:05:f4:aa: 31:d5:03:cb:9d:40:4c:69:eb:24:cc:6c:0c:6e:b4: 3e:0b:c2:5a:3e:e0:f9:e0:4c:30:6e:b7:a7:aa:fb: e5:e4:a8:91:d5:ed:fa:a5:b1:df:f7:96:31:8b:9d: 72:bf:f7:58:74:ca:9f:a7:9c:6d:f9:1b:73:ff:e9: 0d:12:47:ca:05:ec:c3:8f:37:73:66:a4:69:b7:06: f4:14:85:9d:77:c9:d2:7e:f1:ff:13:7d:bc:5a:24: b4:b5:e5:03:1a:33:e5:26:9b:09:db:60:33:01:07: d3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:67:88:B3:6F:21:0C:64:1A:7B:91:21:41:3E:84:C4:2D:F9:F2:D5 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235332e302f32342d3234203d3e20313339333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.253.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:6a:8a:b8:17:44:cb:53:40:dc:10:5e:2c:8a:aa:f9:9b:1d: 95:1c:45:5b:f0:e3:42:c3:aa:dc:cd:62:8d:ed:4b:cb:e3:ed: 4a:36:0c:1f:5d:ad:b1:07:f7:ce:68:7d:c8:33:36:71:f1:ee: 98:44:ec:67:77:51:38:59:3c:54:cb:03:81:ce:81:0e:b8:e9: c8:31:07:00:4d:ae:56:c3:85:62:2b:c6:df:3e:64:c5:53:b0: c6:96:72:76:56:2f:15:1f:d2:4e:f7:4d:98:0a:a2:c7:b0:b8: 55:90:48:e4:72:e1:14:02:eb:3b:5d:7d:2e:89:77:3c:5a:a2: b8:46:42:1e:39:02:d2:0f:7e:23:24:e6:2c:67:a0:4a:12:65: a7:f6:4a:17:83:89:b6:76:0d:82:43:8d:c7:53:61:98:66:1a: 51:40:6b:54:76:0b:5b:c6:7a:06:cd:bb:2c:56:07:fd:67:f5: ae:af:c8:7e:cd:d3:73:c8:26:3e:ff:4c:6c:b4:d9:e7:59:86: 43:17:64:be:f4:10:d8:33:6b:f5:2f:ce:73:75:44:bb:3c:29: a5:ae:92:da:34:c7:5e:50:19:df:39:98:1c:46:2e:0f:d5:20: 7f:9b:d7:b6:e7:86:51:06:d5:9f:f0:6c:eb:61:85:12:14:02: aa:be:bd:75 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdI7W0TGbZONnG33868kS9386vd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDAyMjAwNjM4NDZaFw0yNTAyMTgwNjQzNDZaMDMxMTAvBgNV BAMTKENCNjc4OEIzNkYyMTBDNjQxQTdCOTEyMTQxM0U4NEM0MkRGOUYyRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQRLS1R70msF8TWYtU05Bd1flw w8BmG9dUKkKP3ttefvEgGAS8Hs426Tq+qOTn3PwmiRKPHFea8MxJjSe8v812iLNT bZFtZ8h1OiED5+5ht/K2TtDlDaOxp03nXtoo+sNarjW2ZDiDgSnHOUxlMREfbRq1 +qwgQjQF9N5DBvk4yveD5OQyO9KzvIflr6Qv72xKIQX0qjHVA8udQExp6yTMbAxu tD4Lwlo+4PngTDBut6eq++XkqJHV7fqlsd/3ljGLnXK/91h0yp+nnG35G3P/6Q0S R8oF7MOPN3NmpGm3BvQUhZ13ydJ+8f8TfbxaJLS15QMaM+UmmwnbYDMBB9NrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUy2eIs28hDGQae5EhQT6ExC358tUwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKqf0wDQYJ KoZIhvcNAQELBQADggEBAH9qirgXRMtTQNwQXiyKqvmbHZUcRVvw40LDqtzNYo3t S8vj7Uo2DB9drbEH985ofcgzNnHx7phE7Gd3UThZPFTLA4HOgQ646cgxBwBNrlbD hWIrxt8+ZMVTsMaWcnZWLxUf0k73TZgKosewuFWQSORy4RQC6ztdfS6JdzxaorhG Qh45AtIPfiMk5ixnoEoSZaf2SheDibZ2DYJDjcdTYZhmGlFAa1R2C1vGegbNuyxW B/1n9a6vyH7N03PIJj7/TGy02edZhkMXZL70ENgza/UvznN1RLs8KaWukto0x15Q Gd85mBxGLg/VIH+b17bnhlEG1Z/wbOthhRIUAqq+vXU= -----END CERTIFICATE-----Generated at Tue Jun 18 11:40:44 2024 by rpki-client on console-fra.rpki-client.org