$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313337333633.roa File: 3230322e31302e36322e302f32342d3234203d3e20313337333633.roa (raw, json) Hash identifier: BWBkvGKJVEUR6qigx4mSlNse0k2gPu0zhVhYn27u/5c= Subject key identifier: 60:A3:23:70:62:53:E1:B8:15:7D:C1:F1:1C:09:2B:6C:AE:F9:FB:C6 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 2EBFAA1D522BB3ABCEC080E6021BC5474019FD38 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313337333633.roa Signing time: Wed 17 Apr 2024 10:00:00 +0000 ROA not before: Wed 17 Apr 2024 09:55:00 +0000 ROA not after: Wed 16 Apr 2025 10:00:00 +0000 asID: 137363 IP address blocks: 202.10.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:bf:aa:1d:52:2b:b3:ab:ce:c0:80:e6:02:1b:c5:47:40:19:fd:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Apr 17 09:55:00 2024 GMT Not After : Apr 16 10:00:00 2025 GMT Subject: CN=60A323706253E1B8157DC1F11C092B6CAEF9FBC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:75:55:7b:09:6e:b1:ab:95:ec:a6:6f:51:0b: 01:66:9d:20:8c:2f:77:23:26:91:26:86:b8:a4:bf: 0e:cb:5f:a4:fb:3c:d1:b0:4a:e6:f7:47:f4:49:56: 3b:d5:45:5e:ce:a9:a0:a3:17:c1:5e:79:19:b7:6c: 09:01:a1:ed:1d:2e:b1:05:99:45:b0:72:dc:23:79: fe:40:af:bf:f1:55:4d:13:98:db:0d:2c:83:a0:e3: e4:f9:2b:ac:7c:74:b5:b7:52:05:0e:13:af:e1:d3: f1:24:e7:97:8c:17:21:c9:ca:d4:73:96:00:60:3b: f6:6c:b9:cc:37:41:07:7d:c2:f7:21:52:b4:68:c7: ec:6b:cd:90:95:e7:d8:95:81:8f:c9:bf:4b:55:77: 96:d6:9d:31:5b:21:33:b3:06:fc:a5:74:78:37:9d: af:93:cb:7a:48:27:71:2f:87:e1:07:e6:32:63:dc: 89:f5:8f:39:df:06:81:00:db:22:af:6a:4f:ba:52: b3:fc:1e:43:e2:c0:b3:ac:34:7b:a0:fe:36:ef:d0: f2:62:8e:c4:5e:af:18:de:c9:cb:13:bf:2b:31:04: 48:21:82:e9:9f:76:23:c7:fd:73:67:2e:8f:0f:1e: a6:8a:cc:8d:03:c8:49:e7:98:21:3b:8c:87:09:82: ae:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A3:23:70:62:53:E1:B8:15:7D:C1:F1:1C:09:2B:6C:AE:F9:FB:C6 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.62.0/24 Signature Algorithm: sha256WithRSAEncryption b6:4b:94:87:18:49:0c:51:86:3d:af:40:72:b1:0f:03:82:80: 28:63:83:e6:4b:0d:77:9b:52:31:1b:f1:4c:77:e9:7f:72:9c: 91:8b:12:a8:99:d0:47:7d:41:c9:35:c5:c0:fa:74:1b:89:3a: 5b:fd:98:8c:d9:6e:33:94:27:a6:3d:e7:ef:60:2b:08:1c:6f: 02:39:51:d1:50:53:0e:06:9d:11:a6:66:a5:ee:1e:0f:64:97: 7e:75:ff:27:95:69:59:df:2a:76:01:4c:f2:6a:c9:e8:c7:79: 74:bc:36:cb:50:0a:09:57:92:67:bc:0b:36:92:82:45:c5:18: f0:c0:27:98:93:61:e8:42:65:62:64:2b:12:5f:11:aa:ac:8e: ca:f6:d3:d7:2f:4a:34:49:49:a4:ba:cb:6f:b7:bb:ff:a5:f1: c2:bf:4a:41:cd:e5:31:65:d7:16:af:49:fe:4b:43:d0:25:ec: 79:ac:71:95:4f:0d:1e:86:ad:b3:3b:a8:11:6e:64:61:85:2a: 27:5f:2f:e1:f6:55:22:3a:e9:7c:0b:36:cc:cc:99:e6:71:13: df:63:7d:35:a7:e0:70:45:80:ad:3c:8f:3e:0c:27:ff:56:29: 09:08:5c:43:3f:03:e7:d0:5c:c2:aa:c3:71:cb:da:e6:05:bc: a3:f2:f7:f2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULr+qHVIrs6vOwIDmAhvFR0AZ/TgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNDA0MTcwOTU1MDBaFw0yNTA0MTYxMDAwMDBaMDMxMTAvBgNV BAMTKDYwQTMyMzcwNjI1M0UxQjgxNTdEQzFGMTFDMDkyQjZDQUVGOUZCQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBdVV7CW6xq5Xspm9RCwFmnSCM L3cjJpEmhrikvw7LX6T7PNGwSub3R/RJVjvVRV7OqaCjF8FeeRm3bAkBoe0dLrEF mUWwctwjef5Ar7/xVU0TmNsNLIOg4+T5K6x8dLW3UgUOE6/h0/Ek55eMFyHJytRz lgBgO/Zsucw3QQd9wvchUrRox+xrzZCV59iVgY/Jv0tVd5bWnTFbITOzBvyldHg3 na+Ty3pIJ3Evh+EH5jJj3In1jznfBoEA2yKvak+6UrP8HkPiwLOsNHug/jbv0PJi jsRerxjeycsTvysxBEghgumfdiPH/XNnLo8PHqaKzI0DyEnnmCE7jIcJgq7dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYKMjcGJT4bgVfcHxHAkrbK75+8YwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzAzMjJlMzEzMDJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNzMzMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKPjANBgkqhkiG 9w0BAQsFAAOCAQEAtkuUhxhJDFGGPa9AcrEPA4KAKGOD5ksNd5tSMRvxTHfpf3Kc kYsSqJnQR31ByTXFwPp0G4k6W/2YjNluM5Qnpj3n72ArCBxvAjlR0VBTDgadEaZm pe4eD2SXfnX/J5VpWd8qdgFM8mrJ6Md5dLw2y1AKCVeSZ7wLNpKCRcUY8MAnmJNh 6EJlYmQrEl8RqqyOyvbT1y9KNElJpLrLb7e7/6Xxwr9KQc3lMWXXFq9J/ktD0CXs eaxxlU8NHoatszuoEW5kYYUqJ18v4fZVIjrpfAs2zMyZ5nET32N9NafgcEWArTyP Pgwn/1YpCQhcQz8D59BcwqrDccva5gW8o/L38g== -----END CERTIFICATE-----Generated at Sat Jun 22 11:26:38 2024 by rpki-client on console-ams.rpki-client.org