$ rpki-client -vvf repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/3230322e36312e3130302e302f32332d3234203d3e203435373836.roa File: 3230322e36312e3130302e302f32332d3234203d3e203435373836.roa (raw, json) Hash identifier: 2uhmj0dfbqVvDGktakJ5oY8OeRuRcTikYjNHLnaMjxQ= Subject key identifier: 41:B7:8E:F9:58:B7:C1:78:AC:CC:70:D2:4A:61:87:92:E7:2F:24:2F Certificate issuer: /CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Certificate serial: 6D8D9980AB48F2039DF4DBE7BD2A3980207A3BCB Authority key identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/3230322e36312e3130302e302f32332d3234203d3e203435373836.roa Signing time: Mon 01 Jul 2024 01:04:01 +0000 ROA not before: Mon 01 Jul 2024 00:59:01 +0000 ROA not after: Mon 30 Jun 2025 01:04:01 +0000 asID: 45786 IP address blocks: 202.61.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 10:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:8d:99:80:ab:48:f2:03:9d:f4:db:e7:bd:2a:39:80:20:7a:3b:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Validity Not Before: Jul 1 00:59:01 2024 GMT Not After : Jun 30 01:04:01 2025 GMT Subject: CN=41B78EF958B7C178ACCC70D24A618792E72F242F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f9:f2:8d:24:b7:19:8a:b7:9b:00:d9:7a:a8: 77:35:32:81:f8:62:b3:03:62:79:58:04:0a:fb:45: 80:b0:4d:ea:2e:4f:7f:54:60:b6:29:7c:6a:25:11: 26:e0:94:96:f6:85:3d:38:1b:82:c3:28:e3:0c:18: 01:44:36:21:85:be:7c:0d:3a:46:17:b7:05:01:43: 5b:01:3e:7b:98:af:52:da:d7:12:ff:e7:e4:8c:6b: 0f:5d:c1:fd:04:d7:56:92:e5:ed:7f:b6:5a:ed:a8: c7:0a:15:b0:7d:17:7b:3f:fb:0f:84:69:33:fe:3a: 1a:b0:c3:ad:01:a0:2f:4b:8b:b7:e3:7f:e2:e0:37: fd:66:f0:f6:53:22:08:e2:39:d9:e1:33:35:b4:d5: 9b:e5:6e:db:94:60:4b:63:3a:1e:7f:c1:1a:b5:84: e9:26:93:07:60:7d:8a:87:05:26:d5:5d:4a:1f:5a: 96:39:83:fe:dc:15:f2:c3:e8:8c:6e:fc:4d:94:fe: ed:f3:8a:71:fa:c0:60:b2:8f:ff:2d:6d:4c:ef:cd: 0d:d5:cd:11:df:54:cf:b5:b5:52:04:a1:92:a9:48: fc:7b:e6:cd:73:d0:c9:fb:bc:27:5a:37:74:b2:ba: 1c:4e:cd:50:c1:a1:db:a1:c0:fd:51:84:c0:69:b6: 70:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B7:8E:F9:58:B7:C1:78:AC:CC:70:D2:4A:61:87:92:E7:2F:24:2F X509v3 Authority Key Identifier: keyid:BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/3230322e36312e3130302e302f32332d3234203d3e203435373836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.61.100.0/23 Signature Algorithm: sha256WithRSAEncryption 65:da:ad:7f:a9:34:cb:b6:f4:2b:f3:5b:6f:8a:55:f4:b5:14: fb:1f:50:48:9c:1c:74:50:da:d6:94:6b:19:e7:c0:ac:84:20: de:1b:bb:4e:dc:5e:31:57:f2:8f:f3:17:d0:28:61:5b:ef:6f: d0:76:50:44:a7:81:e4:97:0f:99:59:55:52:b1:fb:b4:cf:f9: 4f:ba:4a:92:dd:af:e4:d1:e6:04:a7:0d:fe:ff:b6:51:f8:1e: 10:b0:e5:1e:41:ba:16:fc:27:71:c2:dc:25:3b:3b:77:ab:72: 9d:b9:0a:3c:52:c2:32:7d:ea:ed:12:da:27:13:6d:af:59:36: 8d:38:34:cf:d8:77:e2:59:c1:a5:15:b1:88:3d:fd:34:08:69: 02:0d:38:ec:b2:85:71:d5:8c:c4:7b:5e:4e:73:f4:eb:5c:93: 99:c2:31:1d:d2:1b:7a:66:4c:32:0d:9e:24:92:d9:b4:39:98: 2a:74:ac:cb:67:04:13:b7:83:11:d1:79:b5:2a:62:dd:85:e6: 0a:be:b8:59:a4:a8:44:bf:ad:61:8e:1f:fe:53:05:cf:97:c9: a2:96:05:69:f7:70:bf:2a:60:5c:e2:59:81:d8:ed:23:ab:ae: b8:97:58:64:8d:32:4c:a6:21:0d:69:8d:6b:24:79:e4:e5:4c: 8b:c2:b5:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbY2ZgKtI8gOd9NvnvSo5gCB6O8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJB RkU4QUEyQjAeFw0yNDA3MDEwMDU5MDFaFw0yNTA2MzAwMTA0MDFaMDMxMTAvBgNV BAMTKDQxQjc4RUY5NThCN0MxNzhBQ0NDNzBEMjRBNjE4NzkyRTcyRjI0MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH+fKNJLcZirebANl6qHc1MoH4 YrMDYnlYBAr7RYCwTeouT39UYLYpfGolESbglJb2hT04G4LDKOMMGAFENiGFvnwN OkYXtwUBQ1sBPnuYr1La1xL/5+SMaw9dwf0E11aS5e1/tlrtqMcKFbB9F3s/+w+E aTP+Ohqww60BoC9Li7fjf+LgN/1m8PZTIgjiOdnhMzW01ZvlbtuUYEtjOh5/wRq1 hOkmkwdgfYqHBSbVXUofWpY5g/7cFfLD6Ixu/E2U/u3zinH6wGCyj/8tbUzvzQ3V zRHfVM+1tVIEoZKpSPx75s1z0Mn7vCdaN3SyuhxOzVDBoduhwP1RhMBptnBNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQbeO+Vi3wXiszHDSSmGHkucvJC8wHwYDVR0j BBgwFoAUvwduokpozxUsMjx6Pf0/kq/oqiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTBkYTQ0Ny1hMTM4LTQ2MjUtYTQyMC1hNzExYWMyNDM1MTkvMC9CRjA3NkVBMjRB NjhDRjE1MkMzMjNDN0EzREZEM0Y5MkFGRThBQTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJBRkU4 QUEyQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MGRhNDQ3LWExMzgtNDYyNS1h NDIwLWE3MTFhYzI0MzUxOS8wLzMyMzAzMjJlMzYzMTJlMzEzMDMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTM3MzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco9ZDANBgkqhkiG 9w0BAQsFAAOCAQEAZdqtf6k0y7b0K/Nbb4pV9LUU+x9QSJwcdFDa1pRrGefArIQg 3hu7TtxeMVfyj/MX0ChhW+9v0HZQRKeB5JcPmVlVUrH7tM/5T7pKkt2v5NHmBKcN /v+2UfgeELDlHkG6FvwnccLcJTs7d6tynbkKPFLCMn3q7RLaJxNtr1k2jTg0z9h3 4lnBpRWxiD39NAhpAg047LKFcdWMxHteTnP061yTmcIxHdIbemZMMg2eJJLZtDmY KnSsy2cEE7eDEdF5tSpi3YXmCr64WaSoRL+tYY4f/lMFz5fJopYFafdwvypgXOJZ gdjtI6uuuJdYZI0yTKYhDWmNayR55OVMi8K1dg== -----END CERTIFICATE-----Generated at Sat Mar 15 05:49:14 2025 by rpki-client