$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32342d3234203d3e20323031333431.roa File: 3230322e35312e36322e302f32342d3234203d3e20323031333431.roa (raw, json) Hash identifier: ZFZXeihhDtU9k6tut8B1YVi1rve9EUj2x0+wMaAyKco= Subject key identifier: DB:FD:DA:23:4C:5D:72:DF:87:A1:3D:A1:EC:80:D6:A1:6A:F2:10:BF Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Certificate serial: 4B608775666426A7422C3BDA78AB61FC4E63935A Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32342d3234203d3e20323031333431.roa Signing time: Wed 24 Apr 2024 06:00:02 +0000 ROA not before: Wed 24 Apr 2024 05:55:02 +0000 ROA not after: Wed 23 Apr 2025 06:00:02 +0000 asID: 201341 IP address blocks: 202.51.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:60:87:75:66:64:26:a7:42:2c:3b:da:78:ab:61:fc:4e:63:93:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C Validity Not Before: Apr 24 05:55:02 2024 GMT Not After : Apr 23 06:00:02 2025 GMT Subject: CN=DBFDDA234C5D72DF87A13DA1EC80D6A16AF210BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:22:88:d9:25:1e:39:91:c5:b2:ce:d8:af:6e: f7:1f:5e:b8:ee:c2:f2:25:be:bc:27:32:bb:a0:82: c0:13:b9:84:30:5e:db:ce:2d:e7:ac:fa:8f:ee:ca: f4:9a:85:ad:73:ed:ba:17:d8:2a:ca:8c:5e:49:85: 76:ad:28:ec:e2:d7:0f:b6:c5:25:5e:6e:04:a0:6f: e1:06:bd:0d:d7:ff:0b:e5:7d:03:60:d9:0e:61:4e: 2e:5a:84:94:bf:ff:7b:c2:9a:17:c0:24:f7:fb:63: ac:df:7b:5d:f8:25:e5:33:eb:93:d6:4f:82:2f:4f: 00:88:47:a2:ae:2c:12:cc:9d:2f:d1:9b:66:37:e5: a1:c1:52:9c:89:8c:12:c2:e8:41:dc:3b:22:02:b1: ca:7a:92:af:6c:fa:17:84:03:56:cd:02:36:85:02: b6:b6:37:e9:01:30:69:a8:b6:04:46:d4:c9:61:2e: 7b:fe:57:e7:15:e3:d6:69:6b:ff:62:c3:a1:e7:82: fe:ac:bb:4b:ad:fd:34:ec:03:9d:8d:b7:73:78:87: 3b:90:00:ca:c8:55:02:cd:41:dc:0d:52:92:c6:27: 3e:8b:98:45:f1:79:29:23:a3:a2:eb:81:c1:97:8f: c5:10:93:f0:73:05:98:ae:0f:62:e4:47:ff:c3:b3: 65:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FD:DA:23:4C:5D:72:DF:87:A1:3D:A1:EC:80:D6:A1:6A:F2:10:BF X509v3 Authority Key Identifier: keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32342d3234203d3e20323031333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.62.0/24 Signature Algorithm: sha256WithRSAEncryption 41:c1:17:f0:df:64:3b:1c:4a:bc:7c:19:2c:ea:1b:11:0a:0f: fd:de:64:72:e0:ed:26:ec:88:f5:ec:f2:bf:bd:51:59:33:2d: 85:18:b8:40:fc:2b:9a:8b:3d:47:54:f4:5e:3f:ec:55:03:34: 4b:d1:35:f2:5f:64:7d:6a:4b:ca:1f:89:c9:32:48:30:71:79: 74:55:ea:cd:22:7b:50:bf:4e:4f:51:03:84:6c:28:1d:cd:76: aa:cf:49:54:be:09:76:ca:7f:e4:bb:e4:51:0c:23:f8:38:e7: 97:e0:23:70:36:b8:bd:3a:db:fe:1a:fc:1e:ef:09:69:e8:ca: 6e:ec:f8:78:9d:d2:71:40:c2:7e:ef:27:3b:5e:0d:5b:30:43: e9:05:24:8c:7c:a2:0b:b6:08:a4:49:b4:93:5a:77:e5:12:9c: d9:ca:ae:ad:f0:ed:3d:4c:31:e6:d5:f1:76:b4:6d:c8:58:d8: b5:f3:d5:9a:c7:5e:e5:25:cd:17:c8:9d:70:99:89:84:a5:90: 7f:52:8b:97:3a:1e:76:e6:87:be:f3:e3:2a:0a:3b:bb:ec:05: 71:de:71:04:0b:51:e3:4a:66:f4:b4:88:b2:30:3e:c0:da:9a: bc:86:6d:af:68:60:ea:d2:57:8a:f4:45:fc:df:3f:de:12:b2: 0c:2c:2a:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS2CHdWZkJqdCLDvaeKth/E5jk1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3 QUM2NkE4QzAeFw0yNDA0MjQwNTU1MDJaFw0yNTA0MjMwNjAwMDJaMDMxMTAvBgNV BAMTKERCRkREQTIzNEM1RDcyREY4N0ExM0RBMUVDODBENkExNkFGMjEwQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxIojZJR45kcWyztivbvcfXrju wvIlvrwnMruggsATuYQwXtvOLees+o/uyvSaha1z7boX2CrKjF5JhXatKOzi1w+2 xSVebgSgb+EGvQ3X/wvlfQNg2Q5hTi5ahJS//3vCmhfAJPf7Y6zfe134JeUz65PW T4IvTwCIR6KuLBLMnS/Rm2Y35aHBUpyJjBLC6EHcOyICscp6kq9s+heEA1bNAjaF Ara2N+kBMGmotgRG1MlhLnv+V+cV49Zpa/9iw6Hngv6su0ut/TTsA52Nt3N4hzuQ AMrIVQLNQdwNUpLGJz6LmEXxeSkjo6LrgcGXj8UQk/BzBZiuD2LkR//Ds2XhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2/3aI0xdct+HoT2h7IDWoWryEL8wHwYDVR0j BBgwFoAUPmta8jH9gJ+8jlmSFbFNNXrGaowwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTU0MDE2NC0zZDQ2LTQ3OTQtYmY1NS1iNmIxMzRkOWFiMTMvMC8zRTZCNUFGMjMx RkQ4MDlGQkM4RTU5OTIxNUIxNEQzNTdBQzY2QThDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3QUM2 NkE4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlNTQwMTY0LTNkNDYtNDc5NC1i ZjU1LWI2YjEzNGQ5YWIxMy8wLzMyMzAzMjJlMzUzMTJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzAzMTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozPjANBgkqhkiG 9w0BAQsFAAOCAQEAQcEX8N9kOxxKvHwZLOobEQoP/d5kcuDtJuyI9ezyv71RWTMt hRi4QPwrmos9R1T0Xj/sVQM0S9E18l9kfWpLyh+JyTJIMHF5dFXqzSJ7UL9OT1ED hGwoHc12qs9JVL4Jdsp/5LvkUQwj+Djnl+AjcDa4vTrb/hr8Hu8JaejKbuz4eJ3S cUDCfu8nO14NWzBD6QUkjHyiC7YIpEm0k1p35RKc2cqurfDtPUwx5tXxdrRtyFjY tfPVmsde5SXNF8idcJmJhKWQf1KLlzoeduaHvvPjKgo7u+wFcd5xBAtR40pm9LSI sjA+wNqavIZtr2hg6tJXivRF/N8/3hKyDCwqtQ== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org