$ rpki-client -vvf repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/3230322e3134392e36342e302f31392d3234203d3e203137383236.roa File: 3230322e3134392e36342e302f31392d3234203d3e203137383236.roa (raw, json) Hash identifier: PC+ijrflLlC2CTnSpuRYRRlo2oL0mLRC4JQTsIkbYWw= Subject key identifier: 73:A6:40:3A:77:B9:31:80:F4:CE:AC:38:BD:C8:B5:E5:29:4A:72:AD Certificate issuer: /CN=0DA6D433710276BF7B8006C21C26AEF5F856AF21 Certificate serial: 4664EAD6D3408346022D442B083C82003804D8AA Authority key identifier: 0D:A6:D4:33:71:02:76:BF:7B:80:06:C2:1C:26:AE:F5:F8:56:AF:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/3230322e3134392e36342e302f31392d3234203d3e203137383236.roa Signing time: Fri 16 Feb 2024 07:44:17 +0000 ROA not before: Fri 16 Feb 2024 07:39:17 +0000 ROA not after: Fri 14 Feb 2025 07:44:17 +0000 asID: 17826 IP address blocks: 202.149.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.crl rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:64:ea:d6:d3:40:83:46:02:2d:44:2b:08:3c:82:00:38:04:d8:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DA6D433710276BF7B8006C21C26AEF5F856AF21 Validity Not Before: Feb 16 07:39:17 2024 GMT Not After : Feb 14 07:44:17 2025 GMT Subject: CN=73A6403A77B93180F4CEAC38BDC8B5E5294A72AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a5:1c:d4:42:b4:93:6a:49:27:64:31:1c:7f: 02:0e:37:69:45:bb:bf:60:2e:50:f6:14:2f:58:39: f8:b9:f1:61:dd:c1:c1:b6:d2:c1:34:8b:22:e3:ab: 29:b4:01:75:c2:8d:b7:17:bf:78:80:32:fd:7d:9a: 79:8a:89:ec:32:e3:17:5b:a5:c2:ab:bd:48:ff:78: 8d:b1:47:f5:22:66:31:d2:97:86:30:1c:ea:ae:5e: 79:c4:25:fa:c9:67:a5:df:48:3b:48:c2:18:5b:b9: 30:b9:2c:e8:59:5b:7a:8a:84:e5:67:8b:e1:00:01: 20:4d:6d:57:3d:98:19:b3:f3:b1:c3:b5:0c:98:91: 8c:08:67:de:26:8e:ae:d6:88:26:6b:3d:24:72:0a: 52:bd:ca:07:d2:c1:47:5f:d0:c1:fb:a8:b7:a7:87: 13:24:ae:b9:27:3c:5e:2a:e8:e0:7b:3e:c6:ce:5c: 9d:e3:a6:36:f8:bb:19:19:3f:91:85:59:8b:0b:1a: c0:38:20:8d:1a:dc:ec:0d:22:53:88:64:ff:6a:5c: 99:db:4a:08:d5:99:b0:16:1f:ab:23:12:d6:c8:3f: 8a:e7:7f:48:ff:78:7c:01:39:32:b4:8b:28:fa:c3: 8a:21:f3:cc:65:bd:93:b9:f8:9c:f2:a0:a9:a5:e4: 24:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A6:40:3A:77:B9:31:80:F4:CE:AC:38:BD:C8:B5:E5:29:4A:72:AD X509v3 Authority Key Identifier: keyid:0D:A6:D4:33:71:02:76:BF:7B:80:06:C2:1C:26:AE:F5:F8:56:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/3230322e3134392e36342e302f31392d3234203d3e203137383236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.149.64.0/19 Signature Algorithm: sha256WithRSAEncryption 03:d6:d5:ae:51:db:a7:62:e8:68:86:29:a5:82:84:07:74:9d: 9f:76:ca:8c:9f:a9:0a:39:c8:bc:d6:03:42:20:1e:2a:20:74: 60:2b:42:cc:9c:40:b5:63:40:ac:13:5e:76:f3:9f:0c:84:c8: ee:4a:13:71:86:3e:f1:30:39:29:fa:fe:4e:8c:b0:8c:a4:71: 4e:e4:87:89:55:b8:66:19:36:0d:37:d4:a7:16:ae:6d:07:90: ba:12:03:be:8a:62:03:05:6f:69:1b:d9:50:7c:1d:c5:ee:77: c7:a0:b0:e2:96:88:cc:ba:72:2f:f6:35:f1:9f:97:50:ea:ff: ff:03:db:8e:8f:1f:b2:61:14:c7:9a:e9:9f:77:47:a2:87:14: 87:10:1d:e1:34:ff:c1:a8:63:40:a2:81:00:d9:4e:c6:6d:71: 94:21:8b:36:47:4e:0d:08:f3:87:78:3d:8b:98:c3:46:47:f1: 28:fa:84:06:60:28:40:49:63:86:43:75:84:0e:55:89:68:ec: 18:02:29:b3:e1:bf:39:5c:f6:86:91:52:5a:6c:6b:6f:37:d4: 2a:26:d7:5e:48:c4:37:f6:e9:02:75:3e:6e:ea:d3:e8:55:0c: 4e:64:9c:ab:12:12:b2:3b:ec:53:aa:e5:86:67:96:e3:e3:34: 2d:04:59:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURmTq1tNAg0YCLUQrCDyCADgE2KowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMERBNkQ0MzM3MTAyNzZCRjdCODAwNkMyMUMyNkFFRjVG ODU2QUYyMTAeFw0yNDAyMTYwNzM5MTdaFw0yNTAyMTQwNzQ0MTdaMDMxMTAvBgNV BAMTKDczQTY0MDNBNzdCOTMxODBGNENFQUMzOEJEQzhCNUU1Mjk0QTcyQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJpRzUQrSTakknZDEcfwION2lF u79gLlD2FC9YOfi58WHdwcG20sE0iyLjqym0AXXCjbcXv3iAMv19mnmKiewy4xdb pcKrvUj/eI2xR/UiZjHSl4YwHOquXnnEJfrJZ6XfSDtIwhhbuTC5LOhZW3qKhOVn i+EAASBNbVc9mBmz87HDtQyYkYwIZ94mjq7WiCZrPSRyClK9ygfSwUdf0MH7qLen hxMkrrknPF4q6OB7PsbOXJ3jpjb4uxkZP5GFWYsLGsA4II0a3OwNIlOIZP9qXJnb SgjVmbAWH6sjEtbIP4rnf0j/eHwBOTK0iyj6w4oh88xlvZO5+JzyoKml5CTxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUc6ZAOne5MYD0zqw4vci15SlKcq0wHwYDVR0j BBgwFoAUDabUM3ECdr97gAbCHCau9fhWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGQxZWFjZC1hMDY3LTQ5MjQtOTI4NC1iYzZmMTBkOGQ1YTgvMC8wREE2RDQzMzcx MDI3NkJGN0I4MDA2QzIxQzI2QUVGNUY4NTZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMERBNkQ0MzM3MTAyNzZCRjdCODAwNkMyMUMyNkFFRjVGODU2 QUYyMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkZDFlYWNkLWEwNjctNDkyNC05 Mjg0LWJjNmYxMGQ4ZDVhOC8wLzMyMzAzMjJlMzEzNDM5MmUzNjM0MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzEzNzM4MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcqVQDANBgkqhkiG 9w0BAQsFAAOCAQEAA9bVrlHbp2LoaIYppYKEB3Sdn3bKjJ+pCjnIvNYDQiAeKiB0 YCtCzJxAtWNArBNedvOfDITI7koTcYY+8TA5Kfr+ToywjKRxTuSHiVW4Zhk2DTfU pxaubQeQuhIDvopiAwVvaRvZUHwdxe53x6Cw4paIzLpyL/Y18Z+XUOr//wPbjo8f smEUx5rpn3dHoocUhxAd4TT/wahjQKKBANlOxm1xlCGLNkdODQjzh3g9i5jDRkfx KPqEBmAoQEljhkN1hA5ViWjsGAIps+G/OVz2hpFSWmxrbzfUKibXXkjEN/bpAnU+ burT6FUMTmScqxISsjvsU6rlhmeW4+M0LQRZYw== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org