$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3235342e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: 5n0MfrsDSDNA1GTVQvTToVZ/ib62p26YcRfnOLr417I= Subject key identifier: E6:36:D0:42:FA:A1:55:AE:B6:98:86:36:FE:3A:79:03:E5:99:66:8A Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 4D85CCA2EFAF1D683482DCFE5D38468BF02B8F8E Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jun 2024 06:00:01 +0000 ROA not before: Tue 18 Jun 2024 05:55:01 +0000 ROA not after: Tue 17 Jun 2025 06:00:01 +0000 asID: 38143 IP address blocks: 202.169.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 13:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:85:cc:a2:ef:af:1d:68:34:82:dc:fe:5d:38:46:8b:f0:2b:8f:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jun 18 05:55:01 2024 GMT Not After : Jun 17 06:00:01 2025 GMT Subject: CN=E636D042FAA155AEB6988636FE3A7903E599668A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:51:2d:70:43:cb:bb:0b:2b:a0:93:6e:e4:ee: 1a:c3:28:7f:51:8f:59:b8:5a:83:05:fd:e2:8f:f9: 6f:d5:f1:ac:2c:08:d4:ee:e5:11:48:ff:ff:97:c8: ec:f1:1b:a5:48:cd:e4:7b:7e:f3:e7:55:b2:b7:61: c8:5e:76:13:87:e1:ca:a7:39:0e:7d:fc:33:98:3b: 09:20:89:bf:fb:39:90:cc:41:c4:8d:98:88:37:24: 39:ea:21:6c:67:54:56:6e:9a:b8:09:e1:21:00:ff: 1f:05:7e:e2:32:22:1f:fa:5e:d3:52:67:1c:ae:2c: c2:64:e1:9e:0f:4d:55:6d:17:30:9c:b2:ff:08:92: df:47:00:b2:b7:95:e1:f7:49:92:81:9b:52:e3:33: c0:ab:3e:a7:89:45:33:e0:fa:da:4f:a9:15:7d:99: d7:53:55:a8:bb:37:43:87:bd:51:7d:9b:e8:87:4e: 44:35:ac:22:9e:ef:1c:49:1e:c2:7c:4f:d5:65:4e: 5f:4f:49:2e:18:71:57:23:04:ac:a5:e6:41:12:ab: d3:a1:d8:58:3f:9c:95:cd:2b:f2:bd:09:75:00:38: 46:6f:59:52:e9:fe:16:5f:29:b7:65:ab:c0:14:8d: f6:ae:4b:35:86:ec:e2:4a:9f:03:99:97:fc:7f:b4: 40:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:36:D0:42:FA:A1:55:AE:B6:98:86:36:FE:3A:79:03:E5:99:66:8A X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.254.0/24 Signature Algorithm: sha256WithRSAEncryption 50:a7:d5:a6:78:33:02:58:d0:cf:dc:6e:51:90:2c:48:a8:e1: 2e:48:4a:2a:df:dd:18:73:dd:9c:47:2e:80:14:e0:8c:b9:53: 5d:81:d3:10:80:a4:da:7d:ff:d8:96:df:bf:ef:63:67:38:37: 47:aa:90:4f:48:cf:7a:f3:8f:61:e4:fc:2d:08:82:28:6b:5a: aa:40:62:04:b0:b2:c9:93:a8:c7:de:10:00:30:af:eb:0a:5c: 84:41:c6:ee:ed:4b:06:9d:17:f7:e1:ae:65:40:9a:59:3d:05: a6:0a:7f:52:e0:e9:0d:1a:eb:1c:6a:91:55:68:6a:e8:28:6d: 34:85:90:b5:5a:e3:b9:9e:42:e8:14:f4:6b:60:34:d5:7c:b0: 5a:b8:5b:3a:55:3f:ea:7d:6a:28:5c:00:4a:0d:d5:1d:bd:42: 6c:01:5e:01:0a:77:d5:5a:b8:76:9d:ff:dc:9a:92:34:25:19: 8d:9c:7d:75:ee:82:ea:d7:b2:5a:64:a9:d9:33:ac:a9:0b:fe: 47:73:c4:5a:f3:f0:96:86:4e:c8:03:72:62:ea:1a:52:bc:a7: f0:4d:6b:ca:58:bd:ca:79:dc:6c:af:39:04:29:71:ab:85:2b: d9:af:63:40:4b:2f:c1:35:5d:81:d5:82:e8:93:90:f3:02:b9: dc:8e:ce:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTYXMou+vHWg0gtz+XThGi/Arj44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yNDA2MTgwNTU1MDFaFw0yNTA2MTcwNjAwMDFaMDMxMTAvBgNV BAMTKEU2MzZEMDQyRkFBMTU1QUVCNjk4ODYzNkZFM0E3OTAzRTU5OTY2OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcUS1wQ8u7Cyugk27k7hrDKH9R j1m4WoMF/eKP+W/V8awsCNTu5RFI//+XyOzxG6VIzeR7fvPnVbK3YchedhOH4cqn OQ59/DOYOwkgib/7OZDMQcSNmIg3JDnqIWxnVFZumrgJ4SEA/x8FfuIyIh/6XtNS ZxyuLMJk4Z4PTVVtFzCcsv8Ikt9HALK3leH3SZKBm1LjM8CrPqeJRTPg+tpPqRV9 mddTVai7N0OHvVF9m+iHTkQ1rCKe7xxJHsJ8T9VlTl9PSS4YcVcjBKyl5kESq9Oh 2Fg/nJXNK/K9CXUAOEZvWVLp/hZfKbdlq8AUjfauSzWG7OJKnwOZl/x/tEAXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5jbQQvqhVa62mIY2/jp5A+WZZoowHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn+MA0GCSqG SIb3DQEBCwUAA4IBAQBQp9WmeDMCWNDP3G5RkCxIqOEuSEoq390Yc92cRy6AFOCM uVNdgdMQgKTaff/Ylt+/72NnODdHqpBPSM96849h5PwtCIIoa1qqQGIEsLLJk6jH 3hAAMK/rClyEQcbu7UsGnRf34a5lQJpZPQWmCn9S4OkNGuscapFVaGroKG00hZC1 WuO5nkLoFPRrYDTVfLBauFs6VT/qfWooXABKDdUdvUJsAV4BCnfVWrh2nf/cmpI0 JRmNnH117oLq17JaZKnZM6ypC/5Hc8Ra8/CWhk7IA3Ji6hpSvKfwTWvKWL3Kedxs rzkEKXGrhSvZr2NASy/BNV2B1YLok5DzArncjs6Z -----END CERTIFICATE-----Generated at Fri Feb 21 12:58:44 2025 by rpki-client