$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e31302e36332e302f32342d3234203d3e203535363533.roa File: 3230322e31302e36332e302f32342d3234203d3e203535363533.roa (raw, json) Hash identifier: 4qURHOrI0QyBD0a7W7pQdCuS3TJVGrbs9mQvKOhMAFQ= Subject key identifier: BC:AC:36:65:BC:BF:80:A4:CC:D1:A6:C5:40:AB:A9:9D:36:F3:B9:1F Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 7C2A82E56A9FCDDCC7C1D641761F41C74EF8D54C Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e31302e36332e302f32342d3234203d3e203535363533.roa Signing time: Fri 15 Mar 2024 03:00:01 +0000 ROA not before: Fri 15 Mar 2024 02:55:01 +0000 ROA not after: Fri 14 Mar 2025 03:00:01 +0000 asID: 55653 IP address blocks: 202.10.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:2a:82:e5:6a:9f:cd:dc:c7:c1:d6:41:76:1f:41:c7:4e:f8:d5:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Mar 15 02:55:01 2024 GMT Not After : Mar 14 03:00:01 2025 GMT Subject: CN=BCAC3665BCBF80A4CCD1A6C540ABA99D36F3B91F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9f:34:9c:f1:71:85:8f:18:d5:2e:a2:9c:f1: b1:e7:d5:cd:e7:b1:cc:5e:df:1f:b1:ce:f2:57:55: 51:b8:68:67:f6:6e:19:98:c8:89:c0:fb:b5:34:eb: a5:03:32:56:39:a8:d7:cd:09:4f:d3:60:1b:9e:49: d4:83:81:03:61:6c:04:61:75:9e:3c:45:63:a8:c1: d0:fc:60:03:47:28:b3:86:e7:71:32:e8:77:da:74: 6d:60:7d:41:d2:18:f8:c6:3b:05:de:63:32:c2:d7: e5:e6:f7:d3:11:9d:9a:26:ac:41:64:2f:35:2d:29: 59:cc:d7:3e:f2:e0:a9:6e:81:49:17:f1:39:fb:b1: 6a:90:47:b6:17:07:c2:cd:31:49:f2:02:c3:5f:f8: fd:6a:34:dc:4e:87:6a:15:cb:c5:92:a9:00:53:d0: bc:75:3f:aa:2c:62:f6:87:6a:9a:05:f0:10:cd:49: 39:1c:48:a0:8f:d2:35:0b:d0:88:23:95:b7:71:a3: c3:fb:43:d6:aa:b8:5b:49:9b:9b:2b:58:2d:74:4b: fe:cc:52:43:fe:a2:88:ea:95:f9:55:31:d3:b0:94: d9:64:a5:cc:f5:e9:3e:e3:1f:85:6e:5b:8a:bc:a4: 78:24:63:0b:2c:54:66:28:bf:ae:35:3e:a7:2e:4e: c8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:AC:36:65:BC:BF:80:A4:CC:D1:A6:C5:40:AB:A9:9D:36:F3:B9:1F X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e31302e36332e302f32342d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.63.0/24 Signature Algorithm: sha256WithRSAEncryption 41:64:2d:d2:93:6f:33:7b:22:4e:d4:98:3c:1a:2d:bc:73:8e: 93:df:0a:eb:d5:bf:58:ee:12:67:4f:dd:ec:db:9d:ac:7a:93: 3e:9f:a4:dc:82:7d:23:89:e4:8c:88:31:f5:20:25:2a:15:64: 5b:1d:1d:27:0f:60:24:03:b2:6b:3a:c9:24:70:77:04:c0:60: 72:8c:4f:37:49:4a:7c:c6:8e:13:08:2a:0c:e6:e1:9f:7c:eb: fe:1c:88:32:f4:18:54:c3:2b:7f:81:b6:30:95:9a:4c:95:7f: 34:60:04:1f:40:91:e8:26:f8:aa:c4:d4:c3:97:5d:ff:71:bc: aa:c0:bd:f7:53:66:fd:a9:50:0c:67:54:c3:bf:d6:98:81:3a: 0e:7e:61:46:c2:86:e1:6d:d7:1b:ad:86:fe:d9:fb:f4:a0:82: d6:51:52:13:e8:b3:eb:54:62:cd:cc:93:19:e9:55:c7:83:ae: 05:64:aa:2b:9d:78:e3:50:51:80:63:a1:a1:0f:e9:a9:c3:ae: 30:31:8f:87:ab:ce:14:9d:a3:1c:53:52:d9:9f:94:d1:32:a9: cf:b6:af:67:39:dc:be:9c:77:15:ff:9a:e6:21:84:67:74:fb: 34:86:57:cc:f4:8f:98:9e:4c:a0:16:cc:b0:ec:a4:b8:25:3c: cf:09:b1:95 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUfCqC5WqfzdzHwdZBdh9Bx0741UwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNDAzMTUwMjU1MDFaFw0yNTAzMTQwMzAwMDFaMDMxMTAvBgNV BAMTKEJDQUMzNjY1QkNCRjgwQTRDQ0QxQTZDNTQwQUJBOTlEMzZGM0I5MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpnzSc8XGFjxjVLqKc8bHn1c3n scxe3x+xzvJXVVG4aGf2bhmYyInA+7U066UDMlY5qNfNCU/TYBueSdSDgQNhbARh dZ48RWOowdD8YANHKLOG53Ey6HfadG1gfUHSGPjGOwXeYzLC1+Xm99MRnZomrEFk LzUtKVnM1z7y4KlugUkX8Tn7sWqQR7YXB8LNMUnyAsNf+P1qNNxOh2oVy8WSqQBT 0Lx1P6osYvaHapoF8BDNSTkcSKCP0jUL0Igjlbdxo8P7Q9aquFtJm5srWC10S/7M UkP+oojqlflVMdOwlNlkpcz16T7jH4VuW4q8pHgkYwssVGYov641PqcuTshDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvKw2Zby/gKTM0abFQKupnTbzuR8wHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMyMzAzMjJlMzEzMDJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCj8wDQYJKoZIhvcN AQELBQADggEBAEFkLdKTbzN7Ik7UmDwaLbxzjpPfCuvVv1juEmdP3ezbnax6kz6f pNyCfSOJ5IyIMfUgJSoVZFsdHScPYCQDsms6ySRwdwTAYHKMTzdJSnzGjhMIKgzm 4Z986/4ciDL0GFTDK3+BtjCVmkyVfzRgBB9Akegm+KrE1MOXXf9xvKrAvfdTZv2p UAxnVMO/1piBOg5+YUbChuFt1xuthv7Z+/SggtZRUhPos+tUYs3MkxnpVceDrgVk qiudeONQUYBjoaEP6anDrjAxj4erzhSdoxxTUtmflNEyqc+2r2c53L6cdxX/muYh hGd0+zSGV8z0j5ieTKAWzLDspLglPM8JsZU= -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:40 2024 by rpki-client on console-ams.rpki-client.org