$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35312e302f32342d3234203d3e20313332363334.roa File: 3230322e31302e35312e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: zi8rRm5oIKEKnE8kP9VKx6LXAH8MoDxhh7gkXXwnmE4= Subject key identifier: 2F:55:CB:EC:4F:B7:5F:3D:15:E3:40:95:6F:61:D8:19:B2:91:96:65 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 52AFB13FAED787D96B5F48BE0C6FE3441134C9AB Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35312e302f32342d3234203d3e20313332363334.roa Signing time: Mon 25 Dec 2023 02:33:37 +0000 ROA not before: Mon 25 Dec 2023 02:28:37 +0000 ROA not after: Mon 23 Dec 2024 02:33:37 +0000 asID: 132634 IP address blocks: 202.10.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:af:b1:3f:ae:d7:87:d9:6b:5f:48:be:0c:6f:e3:44:11:34:c9:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Dec 25 02:28:37 2023 GMT Not After : Dec 23 02:33:37 2024 GMT Subject: CN=2F55CBEC4FB75F3D15E340956F61D819B2919665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8e:88:87:2f:08:3c:78:63:1f:f3:b3:97:8f: f8:ef:4f:0e:32:5f:b6:00:9c:6a:59:22:44:65:1c: 2d:dc:9a:01:c0:71:cf:da:f5:36:24:ab:0a:7f:f8: ea:11:14:97:34:cb:0c:c2:9e:f6:8f:00:b2:34:81: b8:71:21:d7:ed:1e:a5:ee:2a:3d:27:69:16:f5:57: f8:3d:84:d2:00:2d:39:e7:89:b2:e9:48:bf:20:cf: 98:2c:8c:5d:f7:b9:85:81:4f:32:e9:a4:1e:29:53: 9d:bc:66:f4:9c:f8:d5:17:09:65:00:0b:22:ac:0c: 27:61:4f:d6:2d:45:02:c3:80:9f:1c:bc:57:48:90: b1:74:9c:a7:d2:e8:18:dd:ea:d3:04:93:77:2e:0f: 99:a4:ac:d7:e9:d7:96:59:ae:1b:bc:e8:f7:9f:e6: f8:61:87:b2:ae:40:a6:ce:99:ca:2f:61:50:f4:bc: 2f:9c:0b:0d:8c:46:c0:60:15:a2:74:ae:b4:04:e8: fa:c2:15:a6:0c:34:4e:55:2c:28:8e:da:5d:15:e8: 3d:08:4c:e3:8b:15:dc:2e:37:31:60:94:fd:86:7d: 41:3b:eb:f4:9d:37:f2:c1:d1:77:e2:e6:82:8f:4c: f5:26:76:f8:8c:fc:c1:be:df:7f:db:ec:d1:5e:ab: 7a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:55:CB:EC:4F:B7:5F:3D:15:E3:40:95:6F:61:D8:19:B2:91:96:65 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35312e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.51.0/24 Signature Algorithm: sha256WithRSAEncryption a1:84:30:f8:e2:fd:bd:e4:18:f2:28:b6:b6:01:19:4c:d9:dd: a7:3c:85:e7:b2:45:68:15:05:cc:d6:99:b3:f1:5c:a8:46:df: 57:7d:69:63:5f:9d:48:99:c2:be:62:e3:24:4a:6e:71:01:37: d9:bd:f4:82:3a:56:ab:8a:1c:98:30:fd:8a:39:a8:a6:62:25: 54:60:c6:99:96:db:fa:b5:a6:e9:93:37:03:bc:03:a2:3b:a1: c2:ba:9b:25:2a:40:16:0b:c0:67:32:b5:cd:47:55:76:85:e0: be:2d:53:03:1e:8f:46:5c:97:64:bc:35:34:64:4b:1c:55:6b: 66:0a:21:d2:b4:76:3d:d0:b7:5c:a2:bc:e0:06:29:08:23:a4: 74:50:c6:a3:17:a3:31:05:fc:7a:44:57:c8:df:82:39:cb:d9: 3e:27:e4:ec:72:90:7f:82:f0:26:51:66:c4:ec:53:55:1e:79: 76:70:52:41:bb:78:cf:a0:13:d9:d8:07:32:06:25:a1:c9:e4: 88:1d:b8:a2:67:cd:59:79:61:46:e7:c0:e2:c4:a4:3b:47:3f: bc:b0:02:8e:31:55:d2:ab:93:6f:27:f8:c8:66:72:88:d9:84: 93:55:2f:66:ff:b3:d7:39:66:f5:c4:5c:8b:8c:d8:b5:e2:dd: 68:06:4b:5d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUq+xP67Xh9lrX0i+DG/jRBE0yaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yMzEyMjUwMjI4MzdaFw0yNDEyMjMwMjMzMzdaMDMxMTAvBgNV BAMTKDJGNTVDQkVDNEZCNzVGM0QxNUUzNDA5NTZGNjFEODE5QjI5MTk2NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCujoiHLwg8eGMf87OXj/jvTw4y X7YAnGpZIkRlHC3cmgHAcc/a9TYkqwp/+OoRFJc0ywzCnvaPALI0gbhxIdftHqXu Kj0naRb1V/g9hNIALTnnibLpSL8gz5gsjF33uYWBTzLppB4pU528ZvSc+NUXCWUA CyKsDCdhT9YtRQLDgJ8cvFdIkLF0nKfS6Bjd6tMEk3cuD5mkrNfp15ZZrhu86Pef 5vhhh7KuQKbOmcovYVD0vC+cCw2MRsBgFaJ0rrQE6PrCFaYMNE5VLCiO2l0V6D0I TOOLFdwuNzFglP2GfUE76/SdN/LB0Xfi5oKPTPUmdviM/MG+33/b7NFeq3pNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUL1XL7E+3Xz0V40CVb2HYGbKRlmUwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKMzANBgkqhkiG 9w0BAQsFAAOCAQEAoYQw+OL9veQY8ii2tgEZTNndpzyF57JFaBUFzNaZs/FcqEbf V31pY1+dSJnCvmLjJEpucQE32b30gjpWq4ocmDD9ijmopmIlVGDGmZbb+rWm6ZM3 A7wDojuhwrqbJSpAFgvAZzK1zUdVdoXgvi1TAx6PRlyXZLw1NGRLHFVrZgoh0rR2 PdC3XKK84AYpCCOkdFDGoxejMQX8ekRXyN+COcvZPifk7HKQf4LwJlFmxOxTVR55 dnBSQbt4z6AT2dgHMgYlocnkiB24omfNWXlhRufA4sSkO0c/vLACjjFV0quTbyf4 yGZyiNmEk1UvZv+z1zlm9cRci4zYteLdaAZLXQ== -----END CERTIFICATE-----Generated at Sat Jun 22 10:58:26 2024 by rpki-client on console-fra.rpki-client.org