$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3137382e302f32342d3234203d3e203338373638.roa File: 3230322e38372e3137382e302f32342d3234203d3e203338373638.roa (raw, json) Hash identifier: TRk2AisFpP8QQx5Cx1dvDaYYXDZzDeL2c1+LkHK59Xs= Subject key identifier: 8A:8A:FB:3F:46:C4:85:D5:BD:E1:81:75:4E:AF:F4:58:35:DD:49:27 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 1FF7D63921B1B9A74C29A2FFA42838142A841B66 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3137382e302f32342d3234203d3e203338373638.roa Signing time: Tue 22 Oct 2024 03:19:01 +0000 ROA not before: Tue 22 Oct 2024 03:14:01 +0000 ROA not after: Tue 21 Oct 2025 03:19:01 +0000 asID: 38768 IP address blocks: 202.87.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f7:d6:39:21:b1:b9:a7:4c:29:a2:ff:a4:28:38:14:2a:84:1b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Oct 22 03:14:01 2024 GMT Not After : Oct 21 03:19:01 2025 GMT Subject: CN=8A8AFB3F46C485D5BDE181754EAFF45835DD4927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:30:7a:88:b0:c0:bb:f9:bd:9b:a1:62:24:bd: 8c:bc:d5:99:23:16:ee:9c:99:9b:37:8b:ce:25:49: 31:44:2d:8c:ef:18:aa:e4:f8:a3:a2:71:30:03:ff: 78:47:3f:d3:44:16:ab:44:ea:f7:26:7e:83:f8:19: be:d1:0b:e9:79:9f:0b:29:c9:85:4c:27:04:c6:af: 5c:f3:33:1b:2c:f8:bd:14:e1:59:26:dd:42:4c:e9: 83:8f:9f:18:63:32:95:c9:15:5c:9c:32:5c:ce:62: f7:13:94:96:46:b8:f5:2c:25:0a:af:37:53:f2:1b: 9b:d5:17:20:94:e7:47:0e:0e:81:16:8c:49:38:93: c8:af:20:80:c0:13:f3:8c:a7:52:f7:a5:74:16:b7: cb:68:65:9a:7f:d6:96:4c:b9:5f:c7:0d:1e:e2:0a: 85:58:0c:3c:db:87:50:93:d3:7d:a9:7d:15:a7:aa: a8:f2:dd:82:0e:b9:fa:8b:34:50:27:c6:64:a4:25: fe:8a:60:0f:c1:6a:3b:8b:8c:e6:06:2a:c1:dc:c3: 22:5f:cf:0a:d4:91:f5:6a:aa:26:b7:75:f3:7d:32: ca:a2:14:f1:a1:80:4b:46:d3:57:c1:04:0a:60:c1: 63:a0:ca:61:65:de:f6:91:61:b9:d3:37:35:56:96: 7a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:8A:FB:3F:46:C4:85:D5:BD:E1:81:75:4E:AF:F4:58:35:DD:49:27 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3137382e302f32342d3234203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.87.178.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:62:f2:95:34:ad:12:ba:9b:0b:a8:10:d0:67:1d:36:7c:67: 45:a8:48:e9:95:b4:bd:80:c9:ad:ff:94:0d:46:d7:13:1b:fd: 9d:76:69:8c:f3:4f:2f:b8:0e:1e:45:01:72:de:24:83:91:1b: f4:b5:b1:bf:f9:7b:a0:f7:73:1d:f3:aa:93:2e:39:e7:e5:77: 54:5d:08:82:05:23:f6:b7:69:8c:dc:d0:cb:b4:95:57:ad:40: 1d:d5:21:47:8b:68:7b:7e:a9:16:7e:7d:dc:ff:14:2a:a2:ad: 25:c7:66:c7:a1:a0:4b:be:55:90:39:f9:1b:a2:e8:d1:f3:9c: 36:82:5c:41:99:ea:93:23:25:82:bb:98:8d:72:08:52:c5:5f: b6:84:8b:be:8c:7b:38:3e:47:9e:97:71:f3:50:d0:a9:27:2c: dc:b8:07:81:7f:0b:1a:84:21:56:a4:39:60:83:52:ca:86:31: a8:54:55:47:73:f0:d1:0e:bc:45:a7:7b:90:e9:86:ee:11:92: 50:b5:82:25:c8:99:03:42:8b:d6:55:3c:d5:50:85:b9:0c:e9: c8:f5:86:56:72:4e:26:56:61:db:eb:24:a7:60:19:22:2a:df: 71:2d:9c:2f:b2:1e:b2:12:03:4d:8e:27:8d:32:f9:80:2c:f5: db:1c:f2:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH/fWOSGxuadMKaL/pCg4FCqEG2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDEwMjIwMzE0MDFaFw0yNTEwMjEwMzE5MDFaMDMxMTAvBgNV BAMTKDhBOEFGQjNGNDZDNDg1RDVCREUxODE3NTRFQUZGNDU4MzVERDQ5MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpMHqIsMC7+b2boWIkvYy81Zkj Fu6cmZs3i84lSTFELYzvGKrk+KOicTAD/3hHP9NEFqtE6vcmfoP4Gb7RC+l5nwsp yYVMJwTGr1zzMxss+L0U4Vkm3UJM6YOPnxhjMpXJFVycMlzOYvcTlJZGuPUsJQqv N1PyG5vVFyCU50cODoEWjEk4k8ivIIDAE/OMp1L3pXQWt8toZZp/1pZMuV/HDR7i CoVYDDzbh1CT032pfRWnqqjy3YIOufqLNFAnxmSkJf6KYA/BajuLjOYGKsHcwyJf zwrUkfVqqia3dfN9MsqiFPGhgEtG01fBBApgwWOgymFl3vaRYbnTNzVWlnp3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUior7P0bEhdW94YF1Tq/0WDXdSScwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzAzMjJlMzgzNzJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpXsjANBgkqhkiG 9w0BAQsFAAOCAQEALmLylTStErqbC6gQ0GcdNnxnRahI6ZW0vYDJrf+UDUbXExv9 nXZpjPNPL7gOHkUBct4kg5Eb9LWxv/l7oPdzHfOqky455+V3VF0IggUj9rdpjNzQ y7SVV61AHdUhR4toe36pFn593P8UKqKtJcdmx6GgS75VkDn5G6Lo0fOcNoJcQZnq kyMlgruYjXIIUsVftoSLvox7OD5Hnpdx81DQqScs3LgHgX8LGoQhVqQ5YINSyoYx qFRVR3Pw0Q68Rad7kOmG7hGSULWCJciZA0KL1lU81VCFuQzpyPWGVnJOJlZh2+sk p2AZIirfcS2cL7IeshIDTY4njTL5gCz12xzy5g== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:47 2024 by rpki-client on console-ams.rpki-client.org