$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32322d3234203d3e20313337333633.roa File: 3230322e31302e35322e302f32322d3234203d3e20313337333633.roa (raw, json) Hash identifier: 76i6JqRPOwnHfz2nalB/Pr/llZmjsHVWEK8YM+4BlfI= Subject key identifier: BF:D0:22:72:49:F5:2D:DE:FB:56:8A:A0:2D:1D:DE:84:EF:96:B9:FF Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 77581F0FC0C735AD8B345D6AE28E3499C44EE197 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32322d3234203d3e20313337333633.roa Signing time: Wed 17 Apr 2024 10:00:00 +0000 ROA not before: Wed 17 Apr 2024 09:55:00 +0000 ROA not after: Wed 16 Apr 2025 10:00:00 +0000 asID: 137363 IP address blocks: 202.10.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:58:1f:0f:c0:c7:35:ad:8b:34:5d:6a:e2:8e:34:99:c4:4e:e1:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Apr 17 09:55:00 2024 GMT Not After : Apr 16 10:00:00 2025 GMT Subject: CN=BFD0227249F52DDEFB568AA02D1DDE84EF96B9FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:92:99:28:f2:92:d3:3e:cf:78:de:d8:e1:c6: c7:fb:e0:cc:a6:ab:79:6d:ef:f5:d3:7b:39:81:14: b2:97:72:c4:ac:aa:9a:90:43:54:44:1a:02:86:9d: 9e:28:74:1c:6f:3e:59:f9:a8:a3:39:fa:74:fd:06: 2f:c7:83:60:e5:41:53:a8:a3:5f:7d:4d:92:0c:62: c5:eb:73:7a:3a:06:6c:74:49:d0:8c:4c:d9:6a:f2: 70:ae:48:a7:54:03:a0:31:d9:f2:8a:42:84:4d:6c: 5d:f0:eb:62:02:88:18:3d:21:f1:91:2a:13:3e:e6: d8:b3:73:a6:a8:37:dc:15:d8:84:55:df:5d:4d:e2: 7f:85:6d:ba:41:15:26:ba:b6:c7:e5:07:5f:39:94: bd:cd:f8:5d:15:26:9e:b7:81:28:32:00:0f:46:d4: 0d:0b:3a:50:0d:1e:7b:54:e7:75:75:ac:c9:ff:29: 34:03:38:f1:6d:08:1f:07:fc:6d:b9:f5:f7:57:43: f9:55:ed:4d:4e:2d:16:5f:75:ea:07:25:67:39:7b: 9f:4d:31:c8:8a:87:09:e5:c4:45:00:f0:f5:7b:93: bb:ee:01:3f:87:76:d1:a6:a5:1f:f7:21:28:a6:71: 0e:41:2c:36:f6:47:60:f6:4b:0e:8f:3f:63:90:1d: d3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D0:22:72:49:F5:2D:DE:FB:56:8A:A0:2D:1D:DE:84:EF:96:B9:FF X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35322e302f32322d3234203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.52.0/22 Signature Algorithm: sha256WithRSAEncryption 76:90:78:48:6c:a6:29:7b:e8:63:06:46:f1:a6:02:2c:ef:0d: d7:7e:e1:0f:67:1e:8c:a3:18:08:1f:1d:52:a4:94:55:0c:1c: 9f:45:33:a3:a0:88:9c:59:f8:8c:2f:ce:be:c0:09:a7:54:ff: 65:82:d2:53:6f:5e:67:5b:57:e5:8e:9f:70:61:64:e5:86:5d: d5:df:45:11:3f:aa:4d:bb:78:57:2b:60:e9:42:f5:0f:bb:da: 47:54:ed:35:62:08:4f:02:70:7e:21:75:dc:52:36:bb:11:83: 75:6c:8b:df:2e:32:17:27:59:23:da:4b:33:21:1a:77:eb:47: f8:23:e3:36:6c:32:9f:ae:6d:0c:28:59:4b:52:81:e9:a5:11: 66:18:5b:85:77:3d:c2:a9:6b:1b:28:6c:9a:f4:18:16:70:ed: 1c:cf:c6:ee:94:f8:1d:cc:4b:f1:af:be:44:c4:6b:3b:e1:fc: a5:9e:c4:26:cd:95:68:ca:9e:75:5b:a9:a1:a8:ad:55:e0:22: a2:ab:4a:5c:f7:a5:c7:89:ab:fa:d2:dd:04:ad:d6:97:5e:e2: 7b:ad:5f:72:c3:c4:a1:18:4e:95:46:f0:45:1d:66:ec:ac:56: b2:5c:19:fe:c8:9f:71:eb:58:64:53:a3:f9:84:fb:0b:5e:b5: dc:d0:5b:50 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd1gfD8DHNa2LNF1q4o40mcRO4ZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNDA0MTcwOTU1MDBaFw0yNTA0MTYxMDAwMDBaMDMxMTAvBgNV BAMTKEJGRDAyMjcyNDlGNTJEREVGQjU2OEFBMDJEMURERTg0RUY5NkI5RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHkpko8pLTPs943tjhxsf74Mym q3lt7/XTezmBFLKXcsSsqpqQQ1REGgKGnZ4odBxvPln5qKM5+nT9Bi/Hg2DlQVOo o199TZIMYsXrc3o6Bmx0SdCMTNlq8nCuSKdUA6Ax2fKKQoRNbF3w62ICiBg9IfGR KhM+5tizc6aoN9wV2IRV311N4n+FbbpBFSa6tsflB185lL3N+F0VJp63gSgyAA9G 1A0LOlANHntU53V1rMn/KTQDOPFtCB8H/G259fdXQ/lV7U1OLRZfdeoHJWc5e59N MciKhwnlxEUA8PV7k7vuAT+HdtGmpR/3ISimcQ5BLDb2R2D2Sw6PP2OQHdNXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUv9Aickn1Ld77VoqgLR3ehO+Wuf8wHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzUzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzNzMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsoKNDANBgkqhkiG 9w0BAQsFAAOCAQEAdpB4SGymKXvoYwZG8aYCLO8N137hD2cejKMYCB8dUqSUVQwc n0Uzo6CInFn4jC/OvsAJp1T/ZYLSU29eZ1tX5Y6fcGFk5YZd1d9FET+qTbt4Vytg 6UL1D7vaR1TtNWIITwJwfiF13FI2uxGDdWyL3y4yFydZI9pLMyEad+tH+CPjNmwy n65tDChZS1KB6aURZhhbhXc9wqlrGyhsmvQYFnDtHM/G7pT4HcxL8a++RMRrO+H8 pZ7EJs2VaMqedVupoaitVeAioqtKXPelx4mr+tLdBK3Wl17ie61fcsPEoRhOlUbw RR1m7KxWslwZ/sifcetYZFOj+YT7C1613NBbUA== -----END CERTIFICATE-----Generated at Fri Nov 22 09:39:13 2024 by rpki-client on console-ams.rpki-client.org