$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230322e35322e3134362e302f32332d3234203d3e203435333234.roa File: 3230322e35322e3134362e302f32332d3234203d3e203435333234.roa (raw, json) Hash identifier: iyuYI15kkpPbO7NUigKqskqQQ4plk9btKYZQ0Pd1YJg= Subject key identifier: 82:1C:6C:95:6B:59:B1:1D:77:40:0A:5B:D7:F6:7A:76:03:80:54:5B Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Certificate serial: 4FB8BB1B8A46C32C9B074A6E2A8527188D133323 Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230322e35322e3134362e302f32332d3234203d3e203435333234.roa Signing time: Fri 09 Aug 2024 07:02:22 +0000 ROA not before: Fri 09 Aug 2024 06:57:22 +0000 ROA not after: Fri 08 Aug 2025 07:02:22 +0000 asID: 45324 IP address blocks: 202.52.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:b8:bb:1b:8a:46:c3:2c:9b:07:4a:6e:2a:85:27:18:8d:13:33:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Validity Not Before: Aug 9 06:57:22 2024 GMT Not After : Aug 8 07:02:22 2025 GMT Subject: CN=821C6C956B59B11D77400A5BD7F67A760380545B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8c:a2:e6:4a:6e:cb:ac:09:ee:9f:ba:be:fc: 4f:9e:e0:b4:96:55:cc:d4:54:b9:f6:0c:3f:e5:81: 8f:35:93:94:76:28:f1:e1:00:94:39:e5:5f:a8:07: 06:60:24:d5:a7:05:e3:bf:1f:b0:76:27:3d:48:02: cd:25:3d:4c:0f:7b:03:ec:ed:e4:32:43:51:5d:8c: db:22:79:c9:ec:11:cd:43:8e:3c:3b:fc:ef:30:bd: 17:08:b1:43:72:35:d1:ca:63:59:bb:0d:b0:d9:24: 4a:09:0c:cf:7e:08:f4:47:db:4f:0d:ea:ad:8c:a1: cf:97:a2:b1:4f:3b:73:cd:36:64:8e:50:38:a1:50: 72:2a:b5:28:91:52:52:08:8d:a0:f1:df:8f:b6:4d: 59:b7:02:ae:d9:01:e5:16:84:cd:25:57:2d:9c:a6: 4f:98:7f:97:c9:52:d2:d3:f6:ba:fa:bc:93:b2:c2: a9:04:c8:3e:1e:76:97:f8:69:4d:50:52:79:c9:51: 6b:00:6e:f1:e6:64:97:34:ce:08:a7:75:f1:c8:3e: e5:19:b3:94:d9:53:71:ff:36:a1:e3:26:bb:9a:46: 71:00:d6:63:19:58:0f:a4:10:26:28:3c:81:30:a3: 6e:f3:b6:7e:f1:96:4d:b6:24:d3:73:06:64:ae:df: e7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:1C:6C:95:6B:59:B1:1D:77:40:0A:5B:D7:F6:7A:76:03:80:54:5B X509v3 Authority Key Identifier: keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230322e35322e3134362e302f32332d3234203d3e203435333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.146.0/23 Signature Algorithm: sha256WithRSAEncryption cf:10:7b:cf:34:90:14:32:55:e1:2a:cf:5b:2c:b3:f6:16:20: ed:e1:81:41:8a:39:86:e9:8c:df:07:7d:b5:d5:a7:66:58:3e: 05:01:b6:f8:45:92:f6:65:c1:62:d0:18:0a:b6:52:07:e3:24: 51:63:60:90:8a:af:80:8e:12:52:c3:3a:63:1c:6b:24:ba:e6: 68:a1:b3:e8:0a:ce:36:ee:ea:dd:f4:be:45:49:e9:28:82:6b: 61:1c:f9:6d:30:be:4a:62:de:5b:d0:54:a6:e9:a5:7d:c3:72: aa:e8:16:9b:76:c0:62:cb:18:f4:24:2e:92:71:fb:92:01:a8: ac:79:7b:26:2b:7f:97:bb:9c:f3:39:c6:5a:ae:fa:41:f2:4a: ce:e0:84:f0:4e:66:41:32:90:8c:40:0b:f5:52:f2:12:c7:26: 95:c7:a6:b1:3a:c7:9f:95:01:af:7b:f4:3e:93:eb:e6:3c:82: ac:07:51:b9:a0:71:a0:a5:64:6e:c2:46:fe:d1:46:56:03:d1: d5:f9:18:50:d1:df:71:ee:b5:27:af:64:75:1d:22:30:27:23: 40:68:a3:93:9b:43:b8:3e:3a:78:0e:5a:48:98:0a:71:f6:46: 31:d3:6d:4d:da:5b:0f:7c:78:86:04:72:6f:16:a4:6b:ae:fa: 9d:84:ca:2d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT7i7G4pGwyybB0puKoUnGI0TMyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBE RTE4MUUwNjAeFw0yNDA4MDkwNjU3MjJaFw0yNTA4MDgwNzAyMjJaMDMxMTAvBgNV BAMTKDgyMUM2Qzk1NkI1OUIxMUQ3NzQwMEE1QkQ3RjY3QTc2MDM4MDU0NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+jKLmSm7LrAnun7q+/E+e4LSW VczUVLn2DD/lgY81k5R2KPHhAJQ55V+oBwZgJNWnBeO/H7B2Jz1IAs0lPUwPewPs 7eQyQ1FdjNsiecnsEc1Djjw7/O8wvRcIsUNyNdHKY1m7DbDZJEoJDM9+CPRH208N 6q2Moc+XorFPO3PNNmSOUDihUHIqtSiRUlIIjaDx34+2TVm3Aq7ZAeUWhM0lVy2c pk+Yf5fJUtLT9rr6vJOywqkEyD4edpf4aU1QUnnJUWsAbvHmZJc0zgindfHIPuUZ s5TZU3H/NqHjJruaRnEA1mMZWA+kECYoPIEwo27ztn7xlk22JNNzBmSu3+fBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUghxslWtZsR13QApb1/Z6dgOAVFswHwYDVR0j BBgwFoAUFmGhvInMrdTHvnIwUq5ZAN4YHgYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MGQyZDNlMy00YzIwLTRhOTAtODMzZS1lYWQ0M2MzMzk5MWUvMC8xNjYxQTFCQzg5 Q0NBREQ0QzdCRTcyMzA1MkFFNTkwMERFMTgxRTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBERTE4 MUUwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwZDJkM2UzLTRjMjAtNGE5MC04 MzNlLWVhZDQzYzMzOTkxZS8wLzMyMzAzMjJlMzUzMjJlMzEzNDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco0kjANBgkqhkiG 9w0BAQsFAAOCAQEAzxB7zzSQFDJV4SrPWyyz9hYg7eGBQYo5humM3wd9tdWnZlg+ BQG2+EWS9mXBYtAYCrZSB+MkUWNgkIqvgI4SUsM6YxxrJLrmaKGz6ArONu7q3fS+ RUnpKIJrYRz5bTC+SmLeW9BUpumlfcNyqugWm3bAYssY9CQuknH7kgGorHl7Jit/ l7uc8znGWq76QfJKzuCE8E5mQTKQjEAL9VLyEscmlcemsTrHn5UBr3v0PpPr5jyC rAdRuaBxoKVkbsJG/tFGVgPR1fkYUNHfce61J69kdR0iMCcjQGijk5tDuD46eA5a SJgKcfZGMdNtTdpbD3x4hgRybxaka676nYTKLQ== -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org