$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35312e302f32342d3234203d3e20313332363334.roa File: 3230322e31302e35312e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: L6dSkkCsiCoJbK+04j9JGpYmTG14V9uM0EdZN8tkccU= Subject key identifier: D6:6B:EB:5A:68:0D:EE:42:3F:BC:F0:D4:72:11:F1:E2:CB:4C:2C:F8 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 37962233B92E103EDD204B568D5693A27050FDA3 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35312e302f32342d3234203d3e20313332363334.roa Signing time: Mon 25 Nov 2024 03:00:00 +0000 ROA not before: Mon 25 Nov 2024 02:55:00 +0000 ROA not after: Mon 24 Nov 2025 03:00:00 +0000 asID: 132634 IP address blocks: 202.10.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:96:22:33:b9:2e:10:3e:dd:20:4b:56:8d:56:93:a2:70:50:fd:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Nov 25 02:55:00 2024 GMT Not After : Nov 24 03:00:00 2025 GMT Subject: CN=D66BEB5A680DEE423FBCF0D47211F1E2CB4C2CF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:72:42:87:d0:0f:b6:e5:6f:a2:93:49:e7:ac: 07:93:e0:5d:26:ae:9d:04:b4:ee:bf:d3:08:c8:fa: d5:39:10:d9:d7:33:72:f1:21:3a:66:f9:61:90:75: 60:3e:b6:84:11:e4:77:b8:11:ca:7c:fd:f7:00:7e: 7c:93:c4:b0:ec:2a:dd:16:16:2c:77:17:27:e8:6a: ec:70:f3:16:41:aa:09:d5:60:4d:55:c5:69:f2:bc: 0e:45:50:c3:06:6f:e5:2f:41:13:52:84:5c:d3:e3: 1a:ba:42:9e:ef:17:92:8f:9d:22:9f:73:d0:ce:fc: fe:6f:07:f2:32:04:d4:89:b8:9f:c4:7e:8f:39:12: c5:7e:be:24:5c:53:b0:d5:cc:96:ba:18:14:91:84: ee:30:1c:4d:1d:d5:f6:e3:91:b0:19:ae:3f:8b:f4: 49:c2:02:b4:ee:61:83:bd:ba:32:e4:9d:47:41:28: 80:d4:18:58:64:8c:f2:a1:e5:23:68:b5:e7:55:8c: 05:dc:b4:a8:2a:6e:11:73:a7:97:b9:bb:28:da:b3: 56:aa:08:09:88:e5:4d:71:a9:8e:68:01:17:fe:59: 34:8a:a4:87:67:48:f7:53:04:50:25:75:ef:5e:e2: 36:8a:db:61:8a:fa:e0:d2:0a:6d:a3:81:b7:c4:19: 9b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:6B:EB:5A:68:0D:EE:42:3F:BC:F0:D4:72:11:F1:E2:CB:4C:2C:F8 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35312e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.51.0/24 Signature Algorithm: sha256WithRSAEncryption a0:2a:89:0c:f4:57:c0:89:5e:c5:eb:6e:be:5c:f7:c1:c4:b1: b4:45:f6:60:e9:56:db:e7:02:cf:bd:9d:18:4a:00:63:6c:9d: 69:42:90:12:ae:fa:8f:f4:a1:5f:4d:9c:f7:f6:19:95:13:dd: c5:19:a9:9e:41:09:e3:e4:b2:47:f2:69:88:9a:0c:40:1a:b4: f9:1d:0e:1e:ac:30:3c:6e:4c:c9:5e:8c:19:d4:71:7e:f2:5f: c5:e7:f5:40:3f:95:c9:1d:91:db:8a:1b:00:f4:b3:99:ca:a5: d5:0c:d2:5e:c1:2e:16:ac:15:be:56:7a:27:f2:54:0f:60:82: 03:d6:10:f2:ca:7e:5b:16:9c:0e:22:95:b4:e0:3c:5b:f4:3c: cc:96:f8:5f:7e:b2:2f:ad:ec:e4:ec:f8:df:d9:1b:27:0b:d2: f2:cf:87:17:d8:84:c2:64:43:8e:22:fa:e7:92:5f:4f:b6:7b: ad:69:92:ee:f0:a2:bc:9b:0a:d1:74:de:4f:b8:05:48:4e:da: f8:ca:ad:7e:19:22:64:53:2a:d4:2c:7c:c2:54:39:14:71:71: b9:37:09:80:5e:9f:cb:38:3c:e8:57:2d:05:8b:08:95:ea:14: 60:eb:c8:35:fb:18:8f:f6:12:6b:a0:f2:ba:1a:f3:6e:fa:11: df:98:04:6e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN5YiM7kuED7dIEtWjVaTonBQ/aMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNDExMjUwMjU1MDBaFw0yNTExMjQwMzAwMDBaMDMxMTAvBgNV BAMTKEQ2NkJFQjVBNjgwREVFNDIzRkJDRjBENDcyMTFGMUUyQ0I0QzJDRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgckKH0A+25W+ik0nnrAeT4F0m rp0EtO6/0wjI+tU5ENnXM3LxITpm+WGQdWA+toQR5He4Ecp8/fcAfnyTxLDsKt0W Fix3Fyfoauxw8xZBqgnVYE1VxWnyvA5FUMMGb+UvQRNShFzT4xq6Qp7vF5KPnSKf c9DO/P5vB/IyBNSJuJ/Efo85EsV+viRcU7DVzJa6GBSRhO4wHE0d1fbjkbAZrj+L 9EnCArTuYYO9ujLknUdBKIDUGFhkjPKh5SNotedVjAXctKgqbhFzp5e5uyjas1aq CAmI5U1xqY5oARf+WTSKpIdnSPdTBFAlde9e4jaK22GK+uDSCm2jgbfEGZsjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1mvrWmgN7kI/vPDUchHx4stMLPgwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKMzANBgkqhkiG 9w0BAQsFAAOCAQEAoCqJDPRXwIlexetuvlz3wcSxtEX2YOlW2+cCz72dGEoAY2yd aUKQEq76j/ShX02c9/YZlRPdxRmpnkEJ4+SyR/JpiJoMQBq0+R0OHqwwPG5MyV6M GdRxfvJfxef1QD+VyR2R24obAPSzmcql1QzSXsEuFqwVvlZ6J/JUD2CCA9YQ8sp+ WxacDiKVtOA8W/Q8zJb4X36yL63s5Oz439kbJwvS8s+HF9iEwmRDjiL655JfT7Z7 rWmS7vCivJsK0XTeT7gFSE7a+MqtfhkiZFMq1Cx8wlQ5FHFxuTcJgF6fyzg86Fct BYsIleoUYOvINfsYj/YSa6DyuhrzbvoR35gEbg== -----END CERTIFICATE-----Generated at Sun Apr 6 09:37:40 2025 by rpki-client