$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32342d3234203d3e20323031333431.roa File: 3230322e35312e36302e302f32342d3234203d3e20323031333431.roa (raw, json) Hash identifier: 11MC5FJV81eDF0hmXmIGlCvYBfxe8/B4DDfC+bAnVcc= Subject key identifier: 6C:0A:2D:D5:FB:ED:B6:E6:A8:6A:F8:E0:44:3E:07:D5:61:01:BC:20 Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Certificate serial: 2B30991C8DEA9B3F1C732363552F5112879186BC Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32342d3234203d3e20323031333431.roa Signing time: Wed 24 Apr 2024 06:00:02 +0000 ROA not before: Wed 24 Apr 2024 05:55:02 +0000 ROA not after: Wed 23 Apr 2025 06:00:02 +0000 asID: 201341 IP address blocks: 202.51.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:30:99:1c:8d:ea:9b:3f:1c:73:23:63:55:2f:51:12:87:91:86:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Validity Not Before: Apr 24 05:55:02 2024 GMT Not After : Apr 23 06:00:02 2025 GMT Subject: CN=6C0A2DD5FBEDB6E6A86AF8E0443E07D56101BC20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:71:ec:a2:03:64:dd:37:77:5e:76:8e:64:5b: 99:c3:0b:50:be:a3:c4:ba:3d:c5:86:6d:1b:94:38: ca:90:59:77:06:6c:34:05:56:46:e9:e9:d0:b4:bb: e8:cf:c8:58:43:3b:9b:0e:6e:8e:ca:f3:9c:c0:11: 5f:b0:d0:84:59:eb:90:b9:5b:c8:f8:f0:e9:2b:cd: 6e:b5:7a:e9:6b:74:69:e8:c9:b3:78:04:e4:ab:6c: 8c:ac:95:01:e6:05:c5:f8:b2:bf:e5:0f:21:df:2e: a9:a2:93:3f:5c:8f:8e:1e:fd:01:75:79:56:89:0d: 93:63:78:62:36:79:22:de:18:f5:e4:77:af:f4:19: de:d0:1e:61:eb:78:65:61:90:8c:52:4c:98:14:75: 71:92:88:72:46:ce:78:c2:27:81:30:83:c2:30:16: ee:1e:a9:f3:87:b4:ac:82:65:52:a7:63:9c:e3:cf: 04:1f:7a:86:ca:51:8f:83:39:2a:db:4a:a7:c8:c4: 2b:e5:17:49:69:80:e4:4c:59:e1:99:a2:c3:9c:6a: 18:c0:50:76:46:84:b1:7f:26:10:98:28:fc:6f:15: 75:fe:9d:e3:45:db:55:ca:0f:aa:51:5f:4e:d1:3d: c8:db:04:ff:05:c0:d7:05:45:a6:10:58:91:87:8d: 0b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:0A:2D:D5:FB:ED:B6:E6:A8:6A:F8:E0:44:3E:07:D5:61:01:BC:20 X509v3 Authority Key Identifier: keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32342d3234203d3e20323031333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.60.0/24 Signature Algorithm: sha256WithRSAEncryption c5:6d:72:aa:81:df:1c:f3:c7:f5:33:f0:dc:8b:9c:fd:31:dc: 8b:20:49:70:3e:41:e5:ee:66:f1:a3:74:a4:be:e4:ac:04:44: a8:72:ca:5e:2c:47:f1:fe:81:9d:e5:e2:74:2d:22:3f:15:13: 5d:b6:56:96:29:fd:b5:ac:79:a8:81:b1:bc:88:2d:ec:3a:04: bf:89:4e:d3:9a:47:9a:27:08:81:8e:69:80:cb:b9:f5:bc:34: f5:68:21:0c:7c:97:22:be:e8:3c:93:9e:25:33:02:2b:95:1b: 15:42:38:41:23:e5:d3:89:48:57:02:c3:ce:b4:50:68:8e:8e: 38:e2:14:e9:5b:43:73:a1:28:7b:8f:d4:0e:aa:81:96:fa:4a: 2e:cc:83:7f:b7:62:40:82:03:6b:e6:bd:ee:98:7e:8a:1e:c7: d5:62:02:81:72:c9:8d:ef:08:8f:b2:74:0b:26:fe:66:76:f6: e1:5c:8d:d2:9c:a6:10:54:75:3c:f9:4a:96:26:32:b1:b2:c1: 46:58:25:f5:68:c4:cb:d8:f4:90:53:a1:18:eb:8f:b6:5f:bc: 61:22:8e:6b:b5:2f:d4:57:e4:6f:07:22:7c:79:fe:8b:7f:8e: 11:72:f3:52:b7:62:b7:52:87:fe:5d:3b:2d:15:73:5c:76:97: 4c:64:d2:c5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKzCZHI3qmz8ccyNjVS9REoeRhrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3 QUM2NkE4QzAeFw0yNDA0MjQwNTU1MDJaFw0yNTA0MjMwNjAwMDJaMDMxMTAvBgNV BAMTKDZDMEEyREQ1RkJFREI2RTZBODZBRjhFMDQ0M0UwN0Q1NjEwMUJDMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNceyiA2TdN3dedo5kW5nDC1C+ o8S6PcWGbRuUOMqQWXcGbDQFVkbp6dC0u+jPyFhDO5sObo7K85zAEV+w0IRZ65C5 W8j48OkrzW61eulrdGnoybN4BOSrbIyslQHmBcX4sr/lDyHfLqmikz9cj44e/QF1 eVaJDZNjeGI2eSLeGPXkd6/0Gd7QHmHreGVhkIxSTJgUdXGSiHJGznjCJ4Ewg8Iw Fu4eqfOHtKyCZVKnY5zjzwQfeobKUY+DOSrbSqfIxCvlF0lpgORMWeGZosOcahjA UHZGhLF/JhCYKPxvFXX+neNF21XKD6pRX07RPcjbBP8FwNcFRaYQWJGHjQtrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbAot1fvttuaoavjgRD4H1WEBvCAwHwYDVR0j BBgwFoAUPmta8jH9gJ+8jlmSFbFNNXrGaowwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTU0MDE2NC0zZDQ2LTQ3OTQtYmY1NS1iNmIxMzRkOWFiMTMvMC8zRTZCNUFGMjMx RkQ4MDlGQkM4RTU5OTIxNUIxNEQzNTdBQzY2QThDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3QUM2 NkE4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlNTQwMTY0LTNkNDYtNDc5NC1i ZjU1LWI2YjEzNGQ5YWIxMy8wLzMyMzAzMjJlMzUzMTJlMzYzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzAzMTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozPDANBgkqhkiG 9w0BAQsFAAOCAQEAxW1yqoHfHPPH9TPw3Iuc/THciyBJcD5B5e5m8aN0pL7krARE qHLKXixH8f6BneXidC0iPxUTXbZWlin9tax5qIGxvIgt7DoEv4lO05pHmicIgY5p gMu59bw09WghDHyXIr7oPJOeJTMCK5UbFUI4QSPl04lIVwLDzrRQaI6OOOIU6VtD c6Eoe4/UDqqBlvpKLsyDf7diQIIDa+a97ph+ih7H1WICgXLJje8Ij7J0Cyb+Znb2 4VyN0pymEFR1PPlKliYysbLBRlgl9WjEy9j0kFOhGOuPtl+8YSKOa7Uv1Ffkbwci fHn+i3+OEXLzUrdit1KH/l07LRVzXHaXTGTSxQ== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org