$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e33322e302f32332d3234203d3e20313337333633.roa File: 3230322e31302e33322e302f32332d3234203d3e20313337333633.roa (raw, json) Hash identifier: HYX5VvbCXY9bcDF70c4upSy8Mrtc/ergqC8Mb9XpE7I= Subject key identifier: 40:1A:34:74:A7:28:5E:51:81:BA:7F:61:EE:12:3A:62:88:15:AF:44 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 3618F8974739CAD80C7CA729C99B159F884A3B37 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e33322e302f32332d3234203d3e20313337333633.roa Signing time: Mon 02 Sep 2024 03:49:05 +0000 ROA not before: Mon 02 Sep 2024 03:44:05 +0000 ROA not after: Mon 01 Sep 2025 03:49:05 +0000 asID: 137363 IP address blocks: 202.10.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:18:f8:97:47:39:ca:d8:0c:7c:a7:29:c9:9b:15:9f:88:4a:3b:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Sep 2 03:44:05 2024 GMT Not After : Sep 1 03:49:05 2025 GMT Subject: CN=401A3474A7285E5181BA7F61EE123A628815AF44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a1:e8:6a:36:b5:33:29:9e:13:ec:6b:12:d3: c0:f0:8c:50:7f:cf:62:12:0e:7f:18:94:38:4d:38: dc:7e:54:ca:b3:50:3d:c0:b9:ed:78:0c:bb:1d:32: 19:c2:5b:2b:38:45:85:34:8b:38:d6:6c:6f:3e:dc: f5:42:4c:bf:eb:51:f9:f0:0a:c9:bd:01:6a:9f:ec: 6d:61:52:f8:11:c2:5d:51:ad:82:d0:c6:6e:cb:f3: f0:c8:88:fa:e0:2e:97:8c:0d:fa:22:f4:c9:5f:49: 55:f5:11:6e:cc:6b:7a:11:4d:ac:05:eb:45:d0:d5: 9f:5a:58:9d:c8:3f:a0:93:a0:aa:fb:3c:91:d0:cf: 0c:55:db:50:ca:0e:24:40:6f:88:2c:e2:c3:cf:65: 47:51:01:20:d6:fc:75:ce:63:27:96:13:fd:01:aa: 3a:0f:e0:5f:54:07:fc:4c:e1:e3:00:85:ee:eb:f9: f7:a5:93:0e:1c:54:54:7f:fa:de:d9:11:73:e4:f6: 3d:9f:f3:3f:19:f7:4a:4a:90:64:5b:18:a5:c6:39: e8:c2:09:5e:d2:9f:9e:bf:a8:23:ef:06:8f:53:39: 69:29:86:91:8e:69:34:1f:59:4b:3f:f2:a5:82:6d: 1f:0e:e2:2f:f3:1d:73:e0:e1:d2:13:90:16:22:16: c5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:1A:34:74:A7:28:5E:51:81:BA:7F:61:EE:12:3A:62:88:15:AF:44 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e33322e302f32332d3234203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.32.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:fc:0a:ca:07:f3:48:a3:6e:87:48:fb:10:96:79:dd:ec:e1: 8f:33:e0:f9:75:fd:9d:a5:d3:cf:12:b5:9d:ce:c8:4f:85:24: a0:2f:9f:fb:58:27:36:bb:9a:82:90:c3:b0:fb:3b:f9:55:0f: ca:91:d4:16:4b:60:c8:9a:6a:5f:94:45:2b:50:b3:7a:1b:82: 2a:1d:53:42:00:e3:9d:99:72:74:d1:4f:17:15:3f:11:c5:0b: 55:46:4d:ab:d1:ef:c7:a9:31:4a:48:54:51:9c:d7:ea:a2:4c: 25:55:57:be:0d:2b:f6:50:81:72:d9:92:87:b4:64:92:63:85: 3a:13:0c:ad:84:aa:bd:57:ca:29:93:4f:c6:41:7f:b0:e6:c0: bf:19:b2:09:03:fc:6c:6f:1e:f4:d8:e4:9b:8c:ce:cf:b3:0a: 65:07:0b:cf:50:a5:26:94:0e:47:3c:8f:08:6e:f6:b7:21:c4: 20:9e:54:af:67:3f:7d:77:e5:4c:aa:ae:49:e6:68:70:4a:c1: 90:b2:0c:57:23:5d:35:59:51:93:2d:c8:83:01:96:ba:c2:b5: 4c:48:e8:2b:0d:67:c5:a1:a2:35:d9:99:a0:53:e1:6b:86:0b: 4d:8a:8e:d3:4c:1c:4e:8f:2c:99:1e:ea:f3:42:33:54:b3:18: 9d:77:e7:74 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNhj4l0c5ytgMfKcpyZsVn4hKOzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNDA5MDIwMzQ0MDVaFw0yNTA5MDEwMzQ5MDVaMDMxMTAvBgNV BAMTKDQwMUEzNDc0QTcyODVFNTE4MUJBN0Y2MUVFMTIzQTYyODgxNUFGNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaoehqNrUzKZ4T7GsS08DwjFB/ z2ISDn8YlDhNONx+VMqzUD3Aue14DLsdMhnCWys4RYU0izjWbG8+3PVCTL/rUfnw Csm9AWqf7G1hUvgRwl1RrYLQxm7L8/DIiPrgLpeMDfoi9MlfSVX1EW7Ma3oRTawF 60XQ1Z9aWJ3IP6CToKr7PJHQzwxV21DKDiRAb4gs4sPPZUdRASDW/HXOYyeWE/0B qjoP4F9UB/xM4eMAhe7r+felkw4cVFR/+t7ZEXPk9j2f8z8Z90pKkGRbGKXGOejC CV7Sn56/qCPvBo9TOWkphpGOaTQfWUs/8qWCbR8O4i/zHXPg4dITkBYiFsV3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQBo0dKcoXlGBun9h7hI6YogVr0QwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzMzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNzMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcoKIDANBgkqhkiG 9w0BAQsFAAOCAQEAn/wKygfzSKNuh0j7EJZ53ezhjzPg+XX9naXTzxK1nc7IT4Uk oC+f+1gnNruagpDDsPs7+VUPypHUFktgyJpqX5RFK1CzehuCKh1TQgDjnZlydNFP FxU/EcULVUZNq9Hvx6kxSkhUUZzX6qJMJVVXvg0r9lCBctmSh7RkkmOFOhMMrYSq vVfKKZNPxkF/sObAvxmyCQP8bG8e9Njkm4zOz7MKZQcLz1ClJpQORzyPCG72tyHE IJ5Ur2c/fXflTKquSeZocErBkLIMVyNdNVlRky3IgwGWusK1TEjoKw1nxaGiNdmZ oFPha4YLTYqO00wcTo8smR7q80IzVLMYnXfndA== -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org