$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230332e3136312e3138342e302f32332d3234203d3e203436303530.roa File: 3230332e3136312e3138342e302f32332d3234203d3e203436303530.roa (raw, json) Hash identifier: qb/Mp/evl7jg0oYt9bdhD9XiouNQbvER0H1nFXzf/fA= Subject key identifier: E2:F6:6B:89:0E:56:8F:FF:60:3A:49:43:2B:3B:FE:55:74:9C:66:AA Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Certificate serial: 163FA6E04A06B5B052711034B81B53B2BB43C2A4 Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230332e3136312e3138342e302f32332d3234203d3e203436303530.roa Signing time: Fri 09 Aug 2024 07:02:22 +0000 ROA not before: Fri 09 Aug 2024 06:57:22 +0000 ROA not after: Fri 08 Aug 2025 07:02:22 +0000 asID: 46050 IP address blocks: 203.161.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:3f:a6:e0:4a:06:b5:b0:52:71:10:34:b8:1b:53:b2:bb:43:c2:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Validity Not Before: Aug 9 06:57:22 2024 GMT Not After : Aug 8 07:02:22 2025 GMT Subject: CN=E2F66B890E568FFF603A49432B3BFE55749C66AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8b:11:c0:7b:8e:9c:02:5e:32:98:8e:c8:3f: 92:1b:dd:7c:ba:9f:da:43:b8:9f:7a:d5:6d:3c:0e: c4:2c:b0:e0:2c:5a:29:56:66:3e:2f:b0:dc:00:fa: 95:22:64:03:33:f0:03:1a:f4:23:64:c7:1a:0d:c1: 84:27:d4:8b:d3:29:10:4e:27:35:00:a1:4b:f6:c1: 5a:23:96:2a:b9:20:1b:9c:40:bb:e0:47:aa:bc:15: 99:5f:fe:02:41:02:ff:24:5c:05:91:e5:1f:b8:9a: e9:92:40:a8:8c:2d:e9:56:50:ed:d4:2e:8c:86:33: 94:fa:00:16:98:a7:28:3e:22:d6:fb:06:7e:68:99: 40:21:64:0a:2f:95:e3:a3:08:73:50:f1:3c:e2:cf: 93:3f:4a:d7:06:24:b7:0a:e2:8b:a4:34:a2:83:63: bf:dc:1b:a7:7b:62:25:fa:85:b7:6e:a2:4a:e3:95: 65:28:45:3c:a2:9a:13:28:3a:44:43:7f:02:37:6e: de:9b:fd:27:43:a4:47:7b:09:11:3b:9f:db:91:fc: 0e:a7:54:18:8a:7d:a3:e8:6a:df:90:c6:d4:d1:0c: 79:8b:ea:60:e4:30:36:a4:82:f9:8a:23:67:51:bf: e2:7a:76:22:e1:c8:a7:a2:8c:90:d6:0c:d1:a2:72: fd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:F6:6B:89:0E:56:8F:FF:60:3A:49:43:2B:3B:FE:55:74:9C:66:AA X509v3 Authority Key Identifier: keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230332e3136312e3138342e302f32332d3234203d3e203436303530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.184.0/23 Signature Algorithm: sha256WithRSAEncryption a4:fb:06:56:63:fa:d8:2f:8c:3f:5c:b0:1b:0c:7a:32:64:a2: 42:ba:6a:38:c8:4f:bc:b9:94:76:7c:2e:51:2b:c7:98:79:7c: 60:bb:70:d3:5c:d8:d9:e1:8f:3c:79:2c:af:12:6a:93:a8:bc: 08:e6:5b:cd:a4:2f:f9:63:c4:e8:fd:fe:65:7b:50:f9:db:fe: d7:54:5d:22:78:2c:6f:14:e3:0c:ee:6a:ba:5b:fa:fd:f3:4a: ea:03:08:ce:a9:32:6b:2b:ed:63:84:be:9f:26:61:ab:7d:79: 33:8f:90:7f:93:1d:81:6f:15:4e:ad:61:3e:d4:46:dd:00:1e: 2f:dc:04:54:ca:af:23:49:46:3d:1b:9c:2e:39:a0:27:96:a3: 47:0d:54:04:e6:64:95:ac:9f:ba:26:44:70:84:96:ce:a6:c1: 17:65:48:8e:73:ea:25:05:99:12:29:3d:41:dd:a1:54:6b:16: e4:72:86:12:0e:e6:52:eb:ad:bc:c1:3a:e0:db:c5:cf:fd:fb: 12:38:bc:86:35:2d:38:33:99:45:33:44:48:f0:0b:e8:9c:93: 65:6d:4e:42:43:c8:d8:58:ce:e0:b8:52:6d:68:49:54:1f:15: e6:a0:9b:07:c5:29:43:d5:ad:14:da:83:59:e4:df:38:42:0a: e5:9e:50:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFj+m4EoGtbBScRA0uBtTsrtDwqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBE RTE4MUUwNjAeFw0yNDA4MDkwNjU3MjJaFw0yNTA4MDgwNzAyMjJaMDMxMTAvBgNV BAMTKEUyRjY2Qjg5MEU1NjhGRkY2MDNBNDk0MzJCM0JGRTU1NzQ5QzY2QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqixHAe46cAl4ymI7IP5Ib3Xy6 n9pDuJ961W08DsQssOAsWilWZj4vsNwA+pUiZAMz8AMa9CNkxxoNwYQn1IvTKRBO JzUAoUv2wVojliq5IBucQLvgR6q8FZlf/gJBAv8kXAWR5R+4mumSQKiMLelWUO3U LoyGM5T6ABaYpyg+Itb7Bn5omUAhZAovleOjCHNQ8Tziz5M/StcGJLcK4oukNKKD Y7/cG6d7YiX6hbduokrjlWUoRTyimhMoOkRDfwI3bt6b/SdDpEd7CRE7n9uR/A6n VBiKfaPoat+QxtTRDHmL6mDkMDakgvmKI2dRv+J6diLhyKeijJDWDNGicv3PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4vZriQ5Wj/9gOklDKzv+VXScZqowHwYDVR0j BBgwFoAUFmGhvInMrdTHvnIwUq5ZAN4YHgYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MGQyZDNlMy00YzIwLTRhOTAtODMzZS1lYWQ0M2MzMzk5MWUvMC8xNjYxQTFCQzg5 Q0NBREQ0QzdCRTcyMzA1MkFFNTkwMERFMTgxRTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBERTE4 MUUwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwZDJkM2UzLTRjMjAtNGE5MC04 MzNlLWVhZDQzYzMzOTkxZS8wLzMyMzAzMzJlMzEzNjMxMmUzMTM4MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM2MzAzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy6G4MA0GCSqG SIb3DQEBCwUAA4IBAQCk+wZWY/rYL4w/XLAbDHoyZKJCumo4yE+8uZR2fC5RK8eY eXxgu3DTXNjZ4Y88eSyvEmqTqLwI5lvNpC/5Y8To/f5le1D52/7XVF0ieCxvFOMM 7mq6W/r980rqAwjOqTJrK+1jhL6fJmGrfXkzj5B/kx2BbxVOrWE+1EbdAB4v3ARU yq8jSUY9G5wuOaAnlqNHDVQE5mSVrJ+6JkRwhJbOpsEXZUiOc+olBZkSKT1B3aFU axbkcoYSDuZS6628wTrg28XP/fsSOLyGNS04M5lFM0RI8AvonJNlbU5CQ8jYWM7g uFJtaElUHxXmoJsHxSlD1a0U2oNZ5N84QgrlnlBH -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org