$ rpki-client -vvf repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/3230322e3136352e33322e302f32302d3234203d3e203137353338.roa File: 3230322e3136352e33322e302f32302d3234203d3e203137353338.roa (raw, json) Hash identifier: Xq/nk1aLkZ/Nl9N21WbLvcg8yh69WLzrt1dFMWGoW1k= Subject key identifier: 9D:85:CB:74:71:F2:FC:F8:79:1D:00:91:B8:C1:8E:59:7F:D3:23:D3 Certificate issuer: /CN=233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D Certificate serial: 64B8E61EE8026EBD718D678DEAC0590285A8D445 Authority key identifier: 23:3A:F2:6D:7D:AE:6C:35:9E:B0:3A:D5:C6:FB:4B:4E:05:DD:F2:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/3230322e3136352e33322e302f32302d3234203d3e203137353338.roa Signing time: Mon 01 Jul 2024 01:04:09 +0000 ROA not before: Mon 01 Jul 2024 00:59:09 +0000 ROA not after: Mon 30 Jun 2025 01:04:09 +0000 asID: 17538 IP address blocks: 202.165.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.crl rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:b8:e6:1e:e8:02:6e:bd:71:8d:67:8d:ea:c0:59:02:85:a8:d4:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D Validity Not Before: Jul 1 00:59:09 2024 GMT Not After : Jun 30 01:04:09 2025 GMT Subject: CN=9D85CB7471F2FCF8791D0091B8C18E597FD323D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:30:2a:62:23:4c:f1:e7:41:bb:1c:ec:fb:8f: 1d:d5:b5:5d:81:80:55:ed:a6:35:cb:6d:9f:b7:2d: d4:bf:47:60:de:fb:d4:63:c5:bf:de:da:42:e2:bc: 01:c9:08:af:91:03:09:d4:7f:a3:10:08:85:4d:8f: 71:0e:88:e6:bb:10:e9:5e:bf:ab:6b:ec:33:98:56: d7:51:f8:40:75:32:a4:47:a8:7c:99:94:2a:33:f6: e5:9d:56:48:50:e5:6f:ce:a6:e9:e6:73:94:17:f9: c8:ef:df:f7:b7:f2:5d:30:b2:1d:58:ae:6e:21:51: cc:d7:56:d7:49:21:14:68:17:f9:b5:be:b3:eb:03: b0:b1:d3:94:35:c9:50:08:8f:73:94:63:eb:2a:a4: 4d:38:ff:8c:54:4d:8b:7f:e4:89:dc:59:e0:b2:56: 99:cd:6f:f6:14:4e:25:8a:07:02:c4:50:fc:5a:1f: b6:d8:55:88:75:79:73:be:21:e6:ce:f2:83:26:7f: 2d:f4:12:6f:ea:de:09:39:2a:f9:8d:e8:61:17:a7: e8:f9:23:46:ac:aa:27:26:6e:e5:de:ed:d8:3f:46: 56:c2:b2:1a:b3:31:7a:9d:db:23:9b:1f:cd:a5:36: 19:80:ad:bf:8b:33:b5:25:9f:03:2b:25:c7:45:4c: cc:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:85:CB:74:71:F2:FC:F8:79:1D:00:91:B8:C1:8E:59:7F:D3:23:D3 X509v3 Authority Key Identifier: keyid:23:3A:F2:6D:7D:AE:6C:35:9E:B0:3A:D5:C6:FB:4B:4E:05:DD:F2:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/3230322e3136352e33322e302f32302d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.165.32.0/20 Signature Algorithm: sha256WithRSAEncryption 0e:ee:95:63:b0:03:2d:d8:4e:20:2d:1a:06:a5:c7:f7:a0:71: 5f:75:34:01:e4:bd:76:c5:8a:9a:54:5b:71:aa:23:6d:5e:2a: c0:9e:aa:cb:54:50:cf:79:47:e3:72:65:c0:4e:db:d2:bb:13: 77:f2:45:98:23:e0:2d:94:ac:04:5c:e1:35:89:cd:7f:45:1a: fb:1d:98:54:df:d9:e8:99:7c:d7:92:55:c3:27:fe:bb:27:40: 66:8f:1a:c4:d6:6d:9b:cd:eb:54:35:f1:1a:7f:62:e8:64:1d: 3e:33:06:17:85:43:7a:77:17:08:29:f0:27:a1:c1:18:aa:e4: fe:35:c7:2f:60:86:9b:c4:ec:11:d6:82:bc:2a:cf:44:36:c9: 50:21:60:ee:08:a6:cb:37:07:e9:b1:01:67:34:02:94:39:c6: 5c:70:8e:b7:90:38:50:9c:c6:74:4c:b2:5c:11:a0:b6:5b:49: f2:98:90:8a:a6:64:73:e9:fc:89:12:4e:c2:ba:7f:14:f7:e0: 1e:db:54:c5:91:7a:40:a5:85:0f:a4:b0:37:77:cd:50:af:b0: b0:72:60:ba:14:a6:7c:0e:6d:a2:b5:dd:5d:4c:4e:71:fc:3d: 27:8f:4a:83:1f:0d:f3:ef:67:c9:f7:df:63:da:d2:a8:ce:77: 20:ba:8a:6c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZLjmHugCbr1xjWeN6sBZAoWo1EUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzQUYyNkQ3REFFNkMzNTlFQjAzQUQ1QzZGQjRCNEUw NURERjIzRDAeFw0yNDA3MDEwMDU5MDlaFw0yNTA2MzAwMTA0MDlaMDMxMTAvBgNV BAMTKDlEODVDQjc0NzFGMkZDRjg3OTFEMDA5MUI4QzE4RTU5N0ZEMzIzRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWMCpiI0zx50G7HOz7jx3VtV2B gFXtpjXLbZ+3LdS/R2De+9Rjxb/e2kLivAHJCK+RAwnUf6MQCIVNj3EOiOa7EOle v6tr7DOYVtdR+EB1MqRHqHyZlCoz9uWdVkhQ5W/Opunmc5QX+cjv3/e38l0wsh1Y rm4hUczXVtdJIRRoF/m1vrPrA7Cx05Q1yVAIj3OUY+sqpE04/4xUTYt/5IncWeCy VpnNb/YUTiWKBwLEUPxaH7bYVYh1eXO+IebO8oMmfy30Em/q3gk5KvmN6GEXp+j5 I0asqicmbuXe7dg/RlbCshqzMXqd2yObH82lNhmArb+LM7UlnwMrJcdFTMwjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnYXLdHHy/Ph5HQCRuMGOWX/TI9MwHwYDVR0j BBgwFoAUIzrybX2ubDWesDrVxvtLTgXd8j0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTVlYWM5Ny0zMWI1LTRmMzMtODJmNC01MjQxNDcwY2JiYmUvMC8yMzNBRjI2RDdE QUU2QzM1OUVCMDNBRDVDNkZCNEI0RTA1RERGMjNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjMzQUYyNkQ3REFFNkMzNTlFQjAzQUQ1QzZGQjRCNEUwNURE RjIzRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1NWVhYzk3LTMxYjUtNGYzMy04 MmY0LTUyNDE0NzBjYmJiZS8wLzMyMzAzMjJlMzEzNjM1MmUzMzMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMqlIDANBgkqhkiG 9w0BAQsFAAOCAQEADu6VY7ADLdhOIC0aBqXH96BxX3U0AeS9dsWKmlRbcaojbV4q wJ6qy1RQz3lH43JlwE7b0rsTd/JFmCPgLZSsBFzhNYnNf0Ua+x2YVN/Z6Jl815JV wyf+uydAZo8axNZtm83rVDXxGn9i6GQdPjMGF4VDencXCCnwJ6HBGKrk/jXHL2CG m8TsEdaCvCrPRDbJUCFg7gimyzcH6bEBZzQClDnGXHCOt5A4UJzGdEyyXBGgtltJ 8piQiqZkc+n8iRJOwrp/FPfgHttUxZF6QKWFD6SwN3fNUK+wsHJguhSmfA5torXd XUxOcfw9J49Kgx8N8+9nyfffY9rSqM53ILqKbA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:51 2024 by rpki-client on console-ams.rpki-client.org