$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31322e302f32322d3234203d3e203535363533.roa File: 3230322e35322e31322e302f32322d3234203d3e203535363533.roa (raw, json) Hash identifier: zzu9Pa4aUrYBrkU/dzzrAVQ+KTnyVkmxoRDur+r4jp0= Subject key identifier: 8D:3C:A4:D6:0D:37:16:A1:4C:59:F7:E1:1B:19:CA:62:57:DD:E6:AF Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 12AE8DB0335189A5044677187C701CDD5DB9D0F3 Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31322e302f32322d3234203d3e203535363533.roa Signing time: Mon 01 Jul 2024 01:05:00 +0000 ROA not before: Mon 01 Jul 2024 01:00:00 +0000 ROA not after: Mon 30 Jun 2025 01:05:00 +0000 asID: 55653 IP address blocks: 202.52.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ae:8d:b0:33:51:89:a5:04:46:77:18:7c:70:1c:dd:5d:b9:d0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Jul 1 01:00:00 2024 GMT Not After : Jun 30 01:05:00 2025 GMT Subject: CN=8D3CA4D60D3716A14C59F7E11B19CA6257DDE6AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:46:25:36:37:c4:43:01:52:9b:21:19:ab:6c: 3d:cc:15:9b:90:44:a9:57:18:09:36:86:e9:8f:0c: 95:c6:9d:40:b5:70:b4:01:d4:67:cb:74:28:b3:c4: 99:ec:49:74:77:93:15:20:52:99:60:3a:69:6f:cf: 93:ce:11:8c:f6:23:b6:f7:14:59:82:82:56:34:28: 88:2e:a4:ea:9f:76:86:cf:75:4e:31:15:67:38:de: 55:e5:58:e8:f0:74:7f:67:1a:58:88:79:bc:e6:a0: e3:be:ea:5a:d1:86:24:f0:7a:83:e4:b5:e7:b3:91: 52:11:8d:d5:34:9e:e2:c8:53:72:ba:ab:ea:10:11: 2a:9d:fd:ab:68:ff:47:59:c7:03:a9:d9:72:97:23: fe:66:58:69:89:93:7f:ff:6d:95:93:32:07:fc:a4: b5:a0:82:2b:72:8c:9a:15:9f:91:32:88:67:47:43: 27:2f:35:73:20:cc:1a:b6:45:2a:2e:c4:7f:1c:5a: a8:81:a0:10:02:36:a0:fb:75:c8:1d:71:e0:0e:fa: 9c:aa:62:aa:50:0f:94:b9:21:11:79:43:f7:82:bf: 29:73:55:fc:70:55:62:f3:69:8e:37:f4:44:80:88: 78:d9:cc:6f:b3:a4:5c:8d:4f:6c:10:24:da:6b:ec: 56:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:3C:A4:D6:0D:37:16:A1:4C:59:F7:E1:1B:19:CA:62:57:DD:E6:AF X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31322e302f32322d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.12.0/22 Signature Algorithm: sha256WithRSAEncryption 62:cf:bf:65:98:e8:36:e5:c6:86:df:48:68:28:39:78:54:88: 83:43:b1:42:e3:07:71:70:87:28:88:4f:ca:bd:61:db:12:ef: 79:cc:b4:26:03:22:e0:e8:b2:4b:33:4b:7f:36:17:6f:4a:18: 88:d4:53:e0:20:e2:51:4a:3e:86:b6:0d:9d:a2:82:77:e2:40: a4:23:a4:25:78:21:08:32:fd:da:bc:52:6a:3e:36:39:67:11: 51:f3:1a:67:f3:48:8d:5b:74:ad:00:ac:1a:5a:b3:9e:6d:4b: db:bc:93:80:24:a1:9c:b1:bb:e4:54:4f:68:43:ec:8a:84:1d: ad:4a:11:e9:19:58:7e:44:59:f8:ad:61:e7:b2:d7:fd:ba:4c: f8:cc:89:ae:ec:3b:86:56:80:3e:64:0d:f0:f3:d0:c9:2c:a3: fe:8d:4d:2c:30:f4:6a:b3:19:e2:26:25:35:b5:1c:e9:40:a0: 25:7b:dd:8c:70:af:9c:e2:9b:0b:da:5f:23:5d:0e:fc:a0:39: 07:74:26:f0:ab:d2:fc:5f:98:3b:12:58:5c:e6:c1:a4:8f:06: 96:df:1e:1e:f4:7e:84:b6:87:c7:ac:ce:a3:97:b0:15:b0:0f: 4e:2e:33:b0:14:5c:5a:c2:3d:46:7d:7c:d6:cb:a0:ea:02:cd: c6:42:e4:d3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEq6NsDNRiaUERncYfHAc3V250PMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNDA3MDEwMTAwMDBaFw0yNTA2MzAwMTA1MDBaMDMxMTAvBgNV BAMTKDhEM0NBNEQ2MEQzNzE2QTE0QzU5RjdFMTFCMTlDQTYyNTdEREU2QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSRiU2N8RDAVKbIRmrbD3MFZuQ RKlXGAk2humPDJXGnUC1cLQB1GfLdCizxJnsSXR3kxUgUplgOmlvz5POEYz2I7b3 FFmCglY0KIgupOqfdobPdU4xFWc43lXlWOjwdH9nGliIebzmoOO+6lrRhiTweoPk teezkVIRjdU0nuLIU3K6q+oQESqd/ato/0dZxwOp2XKXI/5mWGmJk3//bZWTMgf8 pLWggityjJoVn5EyiGdHQycvNXMgzBq2RSouxH8cWqiBoBACNqD7dcgdceAO+pyq YqpQD5S5IRF5Q/eCvylzVfxwVWLzaY439ESAiHjZzG+zpFyNT2wQJNpr7FZhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjTyk1g03FqFMWffhGxnKYlfd5q8wHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMyMzAzMjJlMzUzMjJlMzEzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKNAwwDQYJKoZIhvcN AQELBQADggEBAGLPv2WY6DblxobfSGgoOXhUiINDsULjB3FwhyiIT8q9YdsS73nM tCYDIuDoskszS382F29KGIjUU+Ag4lFKPoa2DZ2ignfiQKQjpCV4IQgy/dq8Umo+ NjlnEVHzGmfzSI1bdK0ArBpas55tS9u8k4AkoZyxu+RUT2hD7IqEHa1KEekZWH5E WfitYeey1/26TPjMia7sO4ZWgD5kDfDz0Mkso/6NTSww9GqzGeImJTW1HOlAoCV7 3Yxwr5zimwvaXyNdDvygOQd0JvCr0vxfmDsSWFzmwaSPBpbfHh70foS2h8eszqOX sBWwD04uM7AUXFrCPUZ9fNbLoOoCzcZC5NM= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org