$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e31362e302f32302d3234203d3e203338373834.roa File: 3230322e37352e31362e302f32302d3234203d3e203338373834.roa (raw, json) Hash identifier: NfmSPys6e/QB4NN1ZMlv0N2EArEhn9BXic+hONNKga8= Subject key identifier: 1A:07:C1:16:18:42:A1:B8:5A:54:D3:CB:57:27:31:27:11:8E:34:35 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 332D271044E01F1BD36A343C805444A4522189AE Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e31362e302f32302d3234203d3e203338373834.roa Signing time: Wed 27 Dec 2023 10:00:01 +0000 ROA not before: Wed 27 Dec 2023 09:55:01 +0000 ROA not after: Wed 25 Dec 2024 10:00:01 +0000 asID: 38784 IP address blocks: 202.75.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:2d:27:10:44:e0:1f:1b:d3:6a:34:3c:80:54:44:a4:52:21:89:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Dec 27 09:55:01 2023 GMT Not After : Dec 25 10:00:01 2024 GMT Subject: CN=1A07C1161842A1B85A54D3CB57273127118E3435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9a:6b:3f:25:dd:a2:ea:27:a1:13:ae:17:4b: 72:9d:83:c6:16:c8:36:a3:59:7a:8a:97:f1:07:e3: 66:57:96:2b:b9:c5:4a:e3:ed:d8:10:a3:41:7c:4d: be:8a:9a:d5:48:1c:a3:79:d0:5a:98:6b:02:d8:48: e4:36:78:30:cb:a8:7e:47:95:30:e4:c6:21:4a:be: 8f:ea:53:28:33:ec:67:cc:95:96:5b:57:b8:2f:17: 12:ff:93:ea:51:c2:99:33:29:e0:b3:8e:0e:8e:6d: 45:32:29:f6:ed:dd:76:5f:1b:50:3b:7b:2d:e5:9b: 00:fd:74:a6:fc:b8:6e:fd:be:10:e3:07:06:5f:7d: 5f:96:1b:84:cc:86:6f:f6:17:c1:fa:3a:07:77:84: 77:f1:5f:45:b3:dd:62:5c:8b:14:8a:36:8f:e5:75: d4:06:29:a9:ce:4c:13:af:85:70:95:0f:40:d0:66: 00:6e:d3:50:4b:7d:28:ab:fb:bc:6e:11:e2:36:5d: b3:a3:24:79:7e:41:df:d1:76:ac:99:c3:eb:7b:6f: d6:a3:fd:18:63:b7:ec:65:91:b7:a2:3b:4c:9b:ac: 8f:d4:a1:b0:71:c1:55:f8:8d:36:f0:82:89:92:7e: 99:27:7a:f9:62:94:c1:2a:bd:32:02:39:67:ab:ff: a9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:07:C1:16:18:42:A1:B8:5A:54:D3:CB:57:27:31:27:11:8E:34:35 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e31362e302f32302d3234203d3e203338373834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.75.16.0/20 Signature Algorithm: sha256WithRSAEncryption 97:8c:92:e8:1a:23:23:bd:69:9e:f8:57:06:fe:62:02:77:cb: e3:53:5a:d5:71:cf:11:f2:b8:86:f9:a7:5a:11:95:f4:53:ec: 79:aa:8e:58:e8:bf:fa:a2:fd:73:50:10:fc:9b:f5:2e:a4:ca: 53:a1:9d:1b:ce:fe:64:5b:1a:26:b2:43:9b:26:aa:da:9a:47: 5b:8f:0a:fa:7c:77:a1:af:0b:99:61:d7:2c:a9:69:f7:60:71: 78:13:00:29:49:ba:c8:f8:02:c6:03:f8:78:66:c3:58:5f:fe: 8a:61:22:b9:41:61:1e:53:00:77:07:14:06:0e:f7:a9:59:89: 9d:d5:24:4b:9d:2f:6a:9b:ca:ed:bf:05:60:92:cb:4d:07:c0: d9:16:03:70:64:d3:ac:a4:62:31:cb:d8:1a:57:93:6a:6b:c4: f4:a0:be:dd:71:9e:3a:a9:dd:2e:20:6d:0f:c6:0c:1b:23:3f: 50:40:8b:b9:f6:35:6c:fe:d0:08:f7:06:46:dc:09:eb:e1:d5: 36:98:60:75:b2:31:07:6b:ad:f1:50:12:07:d3:57:7c:2a:5f: 9e:a8:9c:5c:0a:58:b5:9c:2f:bc:43:b6:87:5c:a6:c3:af:24: 85:17:d1:46:de:88:a8:fd:0c:25:9e:e8:d8:ac:6c:dd:86:b4: 17:1b:e6:5b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMy0nEETgHxvTajQ8gFREpFIhia4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yMzEyMjcwOTU1MDFaFw0yNDEyMjUxMDAwMDFaMDMxMTAvBgNV BAMTKDFBMDdDMTE2MTg0MkExQjg1QTU0RDNDQjU3MjczMTI3MTE4RTM0MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNmms/Jd2i6iehE64XS3Kdg8YW yDajWXqKl/EH42ZXliu5xUrj7dgQo0F8Tb6KmtVIHKN50FqYawLYSOQ2eDDLqH5H lTDkxiFKvo/qUygz7GfMlZZbV7gvFxL/k+pRwpkzKeCzjg6ObUUyKfbt3XZfG1A7 ey3lmwD9dKb8uG79vhDjBwZffV+WG4TMhm/2F8H6Ogd3hHfxX0Wz3WJcixSKNo/l ddQGKanOTBOvhXCVD0DQZgBu01BLfSir+7xuEeI2XbOjJHl+Qd/RdqyZw+t7b9aj /Rhjt+xlkbeiO0ybrI/UobBxwVX4jTbwgomSfpknevlilMEqvTICOWer/6lrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGgfBFhhCobhaVNPLVycxJxGONDUwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0NTQ3MTA0LTkzOWUtNDBlMy04 ZmM4LTQyNTIyNjQyMDQ0Yi8wLzMyMzAzMjJlMzczNTJlMzEzNjJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMzMzgzNzM4MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKSxAwDQYJKoZIhvcN AQELBQADggEBAJeMkugaIyO9aZ74Vwb+YgJ3y+NTWtVxzxHyuIb5p1oRlfRT7Hmq jljov/qi/XNQEPyb9S6kylOhnRvO/mRbGiayQ5smqtqaR1uPCvp8d6GvC5lh1yyp afdgcXgTAClJusj4AsYD+Hhmw1hf/ophIrlBYR5TAHcHFAYO96lZiZ3VJEudL2qb yu2/BWCSy00HwNkWA3Bk06ykYjHL2BpXk2prxPSgvt1xnjqp3S4gbQ/GDBsjP1BA i7n2NWz+0Aj3BkbcCevh1TaYYHWyMQdrrfFQEgfTV3wqX56onFwKWLWcL7xDtodc psOvJIUX0UbeiKj9DCWe6NisbN2GtBcb5ls= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org