$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35362e302f32342d3234203d3e203338353039.roa File: 3230322e35312e35362e302f32342d3234203d3e203338353039.roa (raw, json) Hash identifier: tTjtOKY8yjArzXbGhB1oeW+9WISeqtj3QSBeBi3CWWU= Subject key identifier: E8:65:BF:EC:B0:A2:6B:BD:C7:E7:00:C1:1A:98:1C:9F:EB:2D:FC:26 Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Certificate serial: 1B4FC71AAD59B8474EB1E1B9EBD80A8A78BA24AE Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35362e302f32342d3234203d3e203338353039.roa Signing time: Tue 23 Apr 2024 06:02:06 +0000 ROA not before: Tue 23 Apr 2024 05:57:06 +0000 ROA not after: Tue 22 Apr 2025 06:02:06 +0000 asID: 38509 IP address blocks: 202.51.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:4f:c7:1a:ad:59:b8:47:4e:b1:e1:b9:eb:d8:0a:8a:78:ba:24:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Validity Not Before: Apr 23 05:57:06 2024 GMT Not After : Apr 22 06:02:06 2025 GMT Subject: CN=E865BFECB0A26BBDC7E700C11A981C9FEB2DFC26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:00:fe:c0:5f:27:18:bf:fd:a0:8b:03:3a:36: 3e:ce:26:d1:64:c7:f8:57:c3:d2:7e:4b:f3:95:bf: d6:2b:ce:de:7e:ed:7a:9c:30:de:66:44:5b:43:05: 9f:7a:9d:db:0b:96:46:8f:20:ab:71:93:04:5e:00: 4b:b7:e1:eb:f1:ce:3b:7e:08:11:e8:f3:ad:fd:8f: ab:f4:fb:b3:35:32:51:ce:0b:e7:20:ad:a5:8a:6b: 78:0b:ce:cf:1c:b5:e5:78:b2:85:d5:be:57:bc:15: f6:ba:98:b3:58:c5:a6:ee:b0:fa:11:f9:de:6a:7f: 36:da:f0:bf:fe:1f:6b:aa:3c:08:fb:92:96:4b:b8: 39:7c:96:45:9f:6d:8c:e1:c3:d1:f4:ff:82:2d:b6: 78:05:5e:be:60:07:34:5a:d5:2c:79:21:2b:04:40: 8f:8b:d7:ab:23:20:86:29:e3:39:b2:24:62:22:9b: b0:c9:ed:22:a1:c6:66:9c:42:e0:46:c6:7a:9f:a5: c6:8e:90:22:89:c2:fb:12:dc:01:08:90:29:59:d0: 86:8c:7e:84:77:1b:c9:80:2d:b4:ef:31:a7:00:9a: c9:27:be:1c:c8:00:9b:62:6f:d0:2d:93:1f:c5:bf: 3b:72:05:69:d0:df:50:ce:2e:f6:74:84:93:55:35: 0f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:65:BF:EC:B0:A2:6B:BD:C7:E7:00:C1:1A:98:1C:9F:EB:2D:FC:26 X509v3 Authority Key Identifier: keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35362e302f32342d3234203d3e203338353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.56.0/24 Signature Algorithm: sha256WithRSAEncryption 61:36:7a:f3:01:72:07:f9:08:73:15:fe:6c:80:bc:68:cb:a4: 25:21:37:fa:da:92:44:ca:09:54:15:06:1c:59:1a:9c:28:c2: 70:04:bf:e1:28:6d:8b:8c:f2:6b:8d:e2:c7:47:d9:f2:27:26: 50:3c:cc:b3:bf:9e:7a:84:fb:74:95:8d:bf:3d:e4:72:8e:49: ae:64:58:b9:19:eb:21:93:48:b2:7e:f4:ca:8d:5f:32:20:15: f0:e2:80:1f:7f:22:50:f4:1e:c6:dc:5f:b7:53:cc:a1:4f:64: 7d:24:3d:30:1b:f3:da:3d:4a:39:5c:2c:29:90:ed:6c:9f:a6: ed:23:74:23:d6:d0:1c:76:06:cd:5b:5e:31:f5:4f:9f:ba:c3: c7:a3:79:8e:93:b3:8e:67:5a:78:dd:48:8a:2b:fe:3d:66:72: 49:32:64:85:87:56:55:58:ee:43:b8:9c:eb:f6:ff:73:4b:30: 3f:9c:c3:db:64:45:24:9c:21:b3:a6:79:be:e2:83:ec:0d:ea: 3d:af:e3:09:a0:9c:78:6e:26:f7:8b:77:ec:ee:19:24:87:55: dc:92:41:94:85:2f:ab:81:62:46:a2:52:1e:a6:6b:c2:8e:b5: 87:a3:12:04:2b:e2:b5:58:18:c6:f7:86:59:4a:1d:f7:0c:0c: 93:99:6c:d4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUG0/HGq1ZuEdOseG569gKini6JK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3 QUM2NkE4QzAeFw0yNDA0MjMwNTU3MDZaFw0yNTA0MjIwNjAyMDZaMDMxMTAvBgNV BAMTKEU4NjVCRkVDQjBBMjZCQkRDN0U3MDBDMTFBOTgxQzlGRUIyREZDMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYAP7AXycYv/2giwM6Nj7OJtFk x/hXw9J+S/OVv9Yrzt5+7XqcMN5mRFtDBZ96ndsLlkaPIKtxkwReAEu34evxzjt+ CBHo8639j6v0+7M1MlHOC+cgraWKa3gLzs8cteV4soXVvle8Ffa6mLNYxabusPoR +d5qfzba8L/+H2uqPAj7kpZLuDl8lkWfbYzhw9H0/4IttngFXr5gBzRa1Sx5ISsE QI+L16sjIIYp4zmyJGIim7DJ7SKhxmacQuBGxnqfpcaOkCKJwvsS3AEIkClZ0IaM foR3G8mALbTvMacAmsknvhzIAJtib9Atkx/FvztyBWnQ31DOLvZ0hJNVNQ+HAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6GW/7LCia73H5wDBGpgcn+st/CYwHwYDVR0j BBgwFoAUPmta8jH9gJ+8jlmSFbFNNXrGaowwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTU0MDE2NC0zZDQ2LTQ3OTQtYmY1NS1iNmIxMzRkOWFiMTMvMC8zRTZCNUFGMjMx RkQ4MDlGQkM4RTU5OTIxNUIxNEQzNTdBQzY2QThDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3QUM2 NkE4Qy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlNTQwMTY0LTNkNDYtNDc5NC1i ZjU1LWI2YjEzNGQ5YWIxMy8wLzMyMzAzMjJlMzUzMTJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNTMwMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKMzgwDQYJKoZIhvcN AQELBQADggEBAGE2evMBcgf5CHMV/myAvGjLpCUhN/rakkTKCVQVBhxZGpwownAE v+EobYuM8muN4sdH2fInJlA8zLO/nnqE+3SVjb895HKOSa5kWLkZ6yGTSLJ+9MqN XzIgFfDigB9/IlD0HsbcX7dTzKFPZH0kPTAb89o9SjlcLCmQ7Wyfpu0jdCPW0Bx2 Bs1bXjH1T5+6w8ejeY6Ts45nWnjdSIor/j1mckkyZIWHVlVY7kO4nOv2/3NLMD+c w9tkRSScIbOmeb7ig+wN6j2v4wmgnHhuJveLd+zuGSSHVdySQZSFL6uBYkaiUh6m a8KOtYejEgQr4rVYGMb3hllKHfcMDJOZbNQ= -----END CERTIFICATE-----Generated at Sat Jun 1 19:26:35 2024 by rpki-client on console-fra.rpki-client.org