$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230322e302f32342d3234203d3e203338343936.roa File: 3131362e36362e3230322e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: dyaYHBv4qaVCsc0hchMbgrbcUgX7z3cASHvL7odAzRg= Subject key identifier: 42:33:AE:6A:BA:13:5B:11:D9:AC:DA:8E:6F:57:F8:65:E5:45:80:79 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 486E39A88EE2267F3B8A3CF368EEFDF96AAB0256 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230322e302f32342d3234203d3e203338343936.roa Signing time: Fri 24 May 2024 04:00:02 +0000 ROA not before: Fri 24 May 2024 03:55:02 +0000 ROA not after: Fri 23 May 2025 04:00:02 +0000 asID: 38496 IP address blocks: 116.66.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:6e:39:a8:8e:e2:26:7f:3b:8a:3c:f3:68:ee:fd:f9:6a:ab:02:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: May 24 03:55:02 2024 GMT Not After : May 23 04:00:02 2025 GMT Subject: CN=4233AE6ABA135B11D9ACDA8E6F57F865E5458079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3e:e2:40:90:4b:fa:18:96:cc:1a:8b:05:f1: c8:f6:69:4a:58:50:a8:83:b9:20:d9:9a:9c:aa:83: a8:a5:b4:9e:2e:64:ec:83:c9:ce:b1:e3:19:9e:03: 7c:cc:58:fb:ff:94:b5:f1:2d:5d:4a:23:8e:76:14: 9a:af:2f:50:7e:f3:e6:71:56:57:5e:73:e6:71:dc: 68:da:88:e8:f4:57:82:ad:92:86:3f:90:a0:22:81: e2:9a:87:b9:0f:93:2e:85:39:47:d8:44:03:5e:3b: a7:ab:73:87:81:e0:34:c1:0d:d5:07:54:d4:15:b3: 2f:3a:ee:cc:a6:dd:66:16:1a:10:e4:ce:97:cc:f4: 2a:31:6a:d3:63:20:ff:0c:d3:b2:7a:f4:2f:1d:56: 54:5f:e3:46:ac:23:64:a6:d1:91:35:0a:44:0d:76: b5:a2:23:dd:a3:4e:fb:46:b2:a8:c4:d2:7a:21:de: 62:e7:d0:78:03:1a:94:a0:02:0f:bc:1f:e9:0e:24: d9:4a:47:2a:a7:ac:9d:22:6c:3b:f6:65:0b:b8:1d: 94:bf:9b:21:04:2c:1c:1f:eb:3f:04:6b:60:92:6e: 18:d7:37:41:71:61:99:ab:a7:ce:f8:cd:aa:14:7c: 94:5a:37:ed:0f:63:50:63:f5:fe:21:54:01:8f:4f: 32:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:33:AE:6A:BA:13:5B:11:D9:AC:DA:8E:6F:57:F8:65:E5:45:80:79 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230322e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.66.202.0/24 Signature Algorithm: sha256WithRSAEncryption a8:5f:2e:19:81:2e:69:30:e7:94:d5:bd:8b:a5:59:95:3b:f9: 02:04:c9:7e:21:6c:4a:42:75:5a:35:32:47:fb:ce:66:bf:8b: 8d:ea:d7:17:bf:78:83:c3:6a:51:92:ec:fa:ab:51:76:2a:d9: 07:08:d7:1f:b3:ed:fb:1e:88:ac:ae:d9:25:c9:0b:30:56:b7: ef:bd:b1:3b:6b:ed:46:61:db:3c:18:f0:fd:68:2a:7f:a5:e6: f0:db:21:50:6d:e5:6b:fa:42:cc:55:79:fa:dc:c6:26:48:1e: 79:17:6f:1d:22:58:0e:43:f0:95:50:1e:70:65:b1:9d:57:8d: 14:98:d5:e1:52:81:33:f0:d9:1c:b2:8c:e1:8f:6c:74:56:68: 9f:3e:92:a7:04:7d:f3:6a:46:5c:3d:0a:df:48:4a:a2:c1:a5: f2:84:b2:e9:d2:ff:59:f1:14:7e:45:59:07:10:39:ed:4c:22: ab:bd:62:5d:71:0f:ca:fa:c0:34:5a:1d:b3:97:10:cc:81:ff: da:bf:47:9c:d5:28:ac:51:1d:ec:bf:fa:f7:e3:ae:27:d1:8f: ab:9d:32:a8:ae:7a:a6:d0:b8:47:c9:12:66:43:b5:75:e7:76: 29:19:47:0b:73:71:5b:9f:2a:dd:2b:fa:a4:cd:e0:21:02:8b: 0c:bc:50:88 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSG45qI7iJn87ijzzaO79+WqrAlYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA1MjQwMzU1MDJaFw0yNTA1MjMwNDAwMDJaMDMxMTAvBgNV BAMTKDQyMzNBRTZBQkExMzVCMTFEOUFDREE4RTZGNTdGODY1RTU0NTgwNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaPuJAkEv6GJbMGosF8cj2aUpY UKiDuSDZmpyqg6iltJ4uZOyDyc6x4xmeA3zMWPv/lLXxLV1KI452FJqvL1B+8+Zx Vldec+Zx3GjaiOj0V4KtkoY/kKAigeKah7kPky6FOUfYRANeO6erc4eB4DTBDdUH VNQVsy867sym3WYWGhDkzpfM9CoxatNjIP8M07J69C8dVlRf40asI2Sm0ZE1CkQN drWiI92jTvtGsqjE0noh3mLn0HgDGpSgAg+8H+kOJNlKRyqnrJ0ibDv2ZQu4HZS/ myEELBwf6z8Ea2CSbhjXN0FxYZmrp874zaoUfJRaN+0PY1Bj9f4hVAGPTzJvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQjOuaroTWxHZrNqOb1f4ZeVFgHkwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNjJlMzYzNjJlMzIzMDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHRCyjANBgkqhkiG 9w0BAQsFAAOCAQEAqF8uGYEuaTDnlNW9i6VZlTv5AgTJfiFsSkJ1WjUyR/vOZr+L jerXF794g8NqUZLs+qtRdirZBwjXH7Pt+x6IrK7ZJckLMFa3772xO2vtRmHbPBjw /Wgqf6Xm8NshUG3la/pCzFV5+tzGJkgeeRdvHSJYDkPwlVAecGWxnVeNFJjV4VKB M/DZHLKM4Y9sdFZonz6SpwR982pGXD0K30hKosGl8oSy6dL/WfEUfkVZBxA57Uwi q71iXXEPyvrANFods5cQzIH/2r9HnNUorFEd7L/69+OuJ9GPq50yqK56ptC4R8kS ZkO1ded2KRlHC3NxW58q3Sv6pM3gIQKLDLxQiA== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:47 2024 by rpki-client on console-ams.rpki-client.org