$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32332d3234203d3e203338313433.roa File: 3230322e3136392e3235342e302f32332d3234203d3e203338313433.roa (raw, json) Hash identifier: xmqgEc9Y78ysCW1dJk+xQvIWa6B1Rx9otxL55GBap/A= Subject key identifier: 38:2F:B3:4B:4D:F1:EB:08:9F:D4:2F:AD:6C:FE:8B:41:F3:30:FE:93 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 673F21B634A11E8FE2C2960BB89BC46EB13674B8 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32332d3234203d3e203338313433.roa Signing time: Tue 18 Jun 2024 11:00:00 +0000 ROA not before: Tue 18 Jun 2024 10:55:00 +0000 ROA not after: Tue 17 Jun 2025 11:00:00 +0000 asID: 38143 IP address blocks: 202.169.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 14:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:3f:21:b6:34:a1:1e:8f:e2:c2:96:0b:b8:9b:c4:6e:b1:36:74:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jun 18 10:55:00 2024 GMT Not After : Jun 17 11:00:00 2025 GMT Subject: CN=382FB34B4DF1EB089FD42FAD6CFE8B41F330FE93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:20:70:30:1e:21:cf:86:15:c7:43:50:d8:7c: 6f:f2:b9:68:60:bc:91:ca:e8:0b:5f:4d:1e:61:3b: 67:1a:53:fb:6a:d0:fd:ee:d4:1b:19:ee:4c:a6:5c: 3d:cb:6e:bf:02:50:5f:f3:e5:e2:fd:d1:02:72:64: 3f:47:2b:5a:ee:57:96:d2:af:18:f5:21:87:87:09: 0f:19:c0:c5:65:e6:7a:ba:25:30:a6:c3:12:71:36: 2b:8d:6b:d7:f6:0f:85:de:b6:88:2e:eb:ee:85:93: 85:e6:8e:6c:ba:d7:d1:55:62:a8:d5:4c:93:3e:bb: dd:3e:c3:6b:1d:3e:73:c5:45:47:d2:21:de:70:6a: b5:1a:8a:d4:b6:37:4f:4f:ee:f7:e7:32:7e:0b:df: a7:4b:6c:29:c2:db:6a:a1:a2:dc:0d:38:7e:18:8b: a5:02:8b:71:94:6c:eb:8b:94:4a:bf:d4:b5:18:82: ec:17:90:b7:8f:a1:f4:3f:1e:5e:5d:20:d3:ab:f2: 67:15:4a:4e:0f:90:29:fc:d9:76:83:40:4c:87:86: e5:26:ac:ac:3c:30:41:ec:0d:03:e6:37:07:2b:9e: 85:da:4f:b2:72:de:82:4e:fa:9f:8e:4e:c2:0e:e2: b1:1b:c3:03:7e:ed:2b:be:3c:32:28:ee:de:1c:ad: ab:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2F:B3:4B:4D:F1:EB:08:9F:D4:2F:AD:6C:FE:8B:41:F3:30:FE:93 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32332d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.254.0/23 Signature Algorithm: sha256WithRSAEncryption 79:8c:db:63:c4:63:31:4d:e3:42:44:65:3b:08:6d:46:10:ef: 31:fe:17:49:c3:aa:0c:72:29:86:65:c6:4a:32:7a:2b:9d:40: 6c:f1:fb:86:60:1c:d2:59:e7:47:5d:df:38:23:ea:92:bf:6b: fb:27:e2:54:00:ac:e3:50:f2:a9:25:87:12:f1:ba:34:ee:c6: 7c:8a:c8:ba:6f:50:62:31:80:4d:01:20:db:72:c0:d2:dc:31: 7d:5a:1d:a8:c4:f3:57:01:9e:70:9f:64:82:76:8e:f0:c2:8d: d4:de:f3:e6:b7:e8:d5:74:5d:a0:13:4a:c8:9f:8f:e3:15:ca: 65:d2:d5:a9:3c:bc:ed:72:69:f0:23:dd:59:d7:cb:69:fc:dc: ab:1f:34:0a:d2:70:37:2b:21:4e:a8:a8:d1:05:84:c1:e2:7f: 66:4a:76:28:08:62:82:dd:6f:a3:dc:9f:42:f6:1b:72:63:2a: a0:39:4e:ab:97:87:56:0e:8e:2a:0e:ee:f4:b5:b5:e3:1f:72: fd:5c:c8:2e:f5:0e:56:b5:18:f8:5d:55:6b:7c:fb:e2:90:a7: cd:c0:ad:01:8c:7d:9f:2f:9d:7d:e7:ce:f3:a5:96:f2:4e:21: 85:b9:73:b8:f8:94:40:d4:7b:69:26:12:83:69:a2:30:61:6c: 8d:a9:8f:20 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZz8htjShHo/iwpYLuJvEbrE2dLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDA2MTgxMDU1MDBaFw0yNTA2MTcxMTAwMDBaMDMxMTAvBgNV BAMTKDM4MkZCMzRCNERGMUVCMDg5RkQ0MkZBRDZDRkU4QjQxRjMzMEZFOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1IHAwHiHPhhXHQ1DYfG/yuWhg vJHK6AtfTR5hO2caU/tq0P3u1BsZ7kymXD3Lbr8CUF/z5eL90QJyZD9HK1ruV5bS rxj1IYeHCQ8ZwMVl5nq6JTCmwxJxNiuNa9f2D4Xetogu6+6Fk4Xmjmy619FVYqjV TJM+u90+w2sdPnPFRUfSId5warUaitS2N09P7vfnMn4L36dLbCnC22qhotwNOH4Y i6UCi3GUbOuLlEq/1LUYguwXkLePofQ/Hl5dINOr8mcVSk4PkCn82XaDQEyHhuUm rKw8MEHsDQPmNwcrnoXaT7Jy3oJO+p+OTsIO4rEbwwN+7Su+PDIo7t4cravXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOC+zS03x6wif1C+tbP6LQfMw/pMwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByqn+MA0GCSqG SIb3DQEBCwUAA4IBAQB5jNtjxGMxTeNCRGU7CG1GEO8x/hdJw6oMcimGZcZKMnor nUBs8fuGYBzSWedHXd84I+qSv2v7J+JUAKzjUPKpJYcS8bo07sZ8isi6b1BiMYBN ASDbcsDS3DF9Wh2oxPNXAZ5wn2SCdo7wwo3U3vPmt+jVdF2gE0rIn4/jFcpl0tWp PLztcmnwI91Z18tp/NyrHzQK0nA3KyFOqKjRBYTB4n9mSnYoCGKC3W+j3J9C9hty YyqgOU6rl4dWDo4qDu70tbXjH3L9XMgu9Q5WtRj4XVVrfPvikKfNwK0BjH2fL519 587zpZbyTiGFuXO4+JRA1HtpJhKDaaIwYWyNqY8g -----END CERTIFICATE-----Generated at Mon Apr 21 05:42:10 2025 by rpki-client