$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35302e302f32342d3234203d3e20313332363334.roa File: 3230322e31302e35302e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: KC5jCJJdhg+yRI3niJvh279d5iaN72Z4+qgNqdpBqOs= Subject key identifier: AF:F2:10:3E:64:7B:2D:69:6B:13:86:9D:26:69:8F:88:64:DC:8E:E1 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 7FEFBF27FA82359AABD99F9F967EC2866CF86D3C Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35302e302f32342d3234203d3e20313332363334.roa Signing time: Mon 25 Nov 2024 03:00:00 +0000 ROA not before: Mon 25 Nov 2024 02:55:00 +0000 ROA not after: Mon 24 Nov 2025 03:00:00 +0000 asID: 132634 IP address blocks: 202.10.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ef:bf:27:fa:82:35:9a:ab:d9:9f:9f:96:7e:c2:86:6c:f8:6d:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Nov 25 02:55:00 2024 GMT Not After : Nov 24 03:00:00 2025 GMT Subject: CN=AFF2103E647B2D696B13869D26698F8864DC8EE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3f:ef:4e:36:a0:8a:47:8d:6d:e5:ab:9a:41: 8e:bf:9a:6c:9b:de:49:6d:11:29:ea:28:bb:7a:15: 23:3e:22:71:d9:37:d4:7e:56:a1:07:50:a0:be:9d: 09:70:ba:48:92:de:54:52:23:af:54:c7:e5:b9:b3: 8e:ea:58:41:fe:2a:65:fc:f6:78:a6:47:23:3d:19: 97:c1:1f:2c:92:18:c6:6b:73:15:30:33:ed:6b:7a: 96:d6:5b:5f:b6:c5:2b:a6:6a:66:09:56:db:e0:9e: c8:ed:1d:b2:67:32:e3:37:2e:86:7d:85:fe:2e:86: f8:1e:32:18:08:64:e3:ee:bb:be:12:b3:51:2a:99: bb:e3:7e:bd:47:2a:b5:20:49:14:e0:ea:15:6a:4c: 25:a8:cd:46:e7:c2:61:0e:08:0d:df:6a:e0:11:a5: f7:8c:78:c8:b3:da:1c:2f:cb:b1:5c:57:07:59:d1: e6:41:90:5a:44:72:2e:5e:52:f1:ca:74:02:e2:3f: 7d:c8:25:2b:6a:8c:6d:d0:c9:ab:6f:67:9f:de:50: 7a:75:3c:24:25:5d:32:9c:46:6f:ec:73:b7:c6:35: bc:93:36:2b:ee:15:01:ef:95:70:fe:03:3c:03:04: fd:ec:8c:24:8a:81:07:64:f7:0d:a2:78:08:b9:9a: fa:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F2:10:3E:64:7B:2D:69:6B:13:86:9D:26:69:8F:88:64:DC:8E:E1 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35302e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.50.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:82:80:04:ab:7c:8a:84:7d:41:27:d2:bb:cd:57:2e:12:5b: 2e:d8:2c:9e:5d:72:c0:2e:8a:ee:fa:01:2c:fc:e4:c9:d3:b7: 8f:dd:91:27:00:b4:20:df:bb:fd:8f:11:90:29:8b:17:96:d7: 27:c1:e5:4a:8e:a5:68:b3:9c:ed:0d:53:7b:85:10:d2:bb:a2: ba:da:17:55:d7:38:78:24:b8:e2:c9:69:49:30:74:79:45:87: 0c:eb:86:40:11:e2:bb:61:e5:06:de:e4:78:67:c0:2c:b1:14: 27:fe:07:5a:d8:71:17:df:3a:96:21:90:a8:67:fb:65:13:c5: 20:5d:10:ed:d5:93:46:29:a9:81:15:77:d6:52:2f:c2:e8:f2: d8:3c:9d:32:2d:e2:f2:17:40:05:bb:47:a4:6e:7e:79:e0:13: 76:9d:7c:75:87:8f:6b:dc:07:32:8f:b8:f0:9a:3b:35:91:4a: 06:96:f5:4f:c2:95:f8:27:ff:3b:22:aa:a7:fc:8c:50:63:4c: bd:fc:b8:5b:f4:fc:9e:1f:a0:37:bb:8f:7d:d6:60:6c:34:57: 22:69:6b:e0:50:d3:2e:52:e7:4f:52:7c:bf:2a:ad:e7:2f:19: 56:e5:c7:39:32:ca:67:ab:0e:c0:4e:2b:c0:f5:15:51:6a:57: 5a:a0:95:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf++/J/qCNZqr2Z+fln7Chmz4bTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNDExMjUwMjU1MDBaFw0yNTExMjQwMzAwMDBaMDMxMTAvBgNV BAMTKEFGRjIxMDNFNjQ3QjJENjk2QjEzODY5RDI2Njk4Rjg4NjREQzhFRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzP+9ONqCKR41t5auaQY6/mmyb 3kltESnqKLt6FSM+InHZN9R+VqEHUKC+nQlwukiS3lRSI69Ux+W5s47qWEH+KmX8 9nimRyM9GZfBHyySGMZrcxUwM+1repbWW1+2xSumamYJVtvgnsjtHbJnMuM3LoZ9 hf4uhvgeMhgIZOPuu74Ss1Eqmbvjfr1HKrUgSRTg6hVqTCWozUbnwmEOCA3fauAR pfeMeMiz2hwvy7FcVwdZ0eZBkFpEci5eUvHKdALiP33IJStqjG3QyatvZ5/eUHp1 PCQlXTKcRm/sc7fGNbyTNivuFQHvlXD+AzwDBP3sjCSKgQdk9w2ieAi5mvqJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUr/IQPmR7LWlrE4adJmmPiGTcjuEwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKMjANBgkqhkiG 9w0BAQsFAAOCAQEAC4KABKt8ioR9QSfSu81XLhJbLtgsnl1ywC6K7voBLPzkydO3 j92RJwC0IN+7/Y8RkCmLF5bXJ8HlSo6laLOc7Q1Te4UQ0ruiutoXVdc4eCS44slp STB0eUWHDOuGQBHiu2HlBt7keGfALLEUJ/4HWthxF986liGQqGf7ZRPFIF0Q7dWT RimpgRV31lIvwujy2DydMi3i8hdABbtHpG5+eeATdp18dYePa9wHMo+48Jo7NZFK Bpb1T8KV+Cf/OyKqp/yMUGNMvfy4W/T8nh+gN7uPfdZgbDRXImlr4FDTLlLnT1J8 vyqt5y8ZVuXHOTLKZ6sOwE4rwPUVUWpXWqCVeg== -----END CERTIFICATE-----Generated at Sun Apr 6 11:44:41 2025 by rpki-client