$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138332e302f32342d3234203d3e20313430343231.roa File: 3230322e38372e3138332e302f32342d3234203d3e20313430343231.roa (raw, json) Hash identifier: wulnCarY0p7ljRXyaLqDYTMu1yfM+CiupNM8z6wCWnU= Subject key identifier: 42:8D:7E:02:BA:62:59:7A:52:46:66:B4:65:12:AB:87:29:20:23:AA Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 03241F4B2B121C8D6F9A42B200C4FCC3223B822F Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138332e302f32342d3234203d3e20313430343231.roa Signing time: Fri 09 Aug 2024 04:33:19 +0000 ROA not before: Fri 09 Aug 2024 04:28:19 +0000 ROA not after: Fri 08 Aug 2025 04:33:19 +0000 asID: 140421 IP address blocks: 202.87.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:24:1f:4b:2b:12:1c:8d:6f:9a:42:b2:00:c4:fc:c3:22:3b:82:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Aug 9 04:28:19 2024 GMT Not After : Aug 8 04:33:19 2025 GMT Subject: CN=428D7E02BA62597A524666B46512AB87292023AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:85:8c:91:20:a6:ea:00:ad:07:a7:33:9b:21: 0d:19:3c:bf:b9:18:d4:38:97:bd:d9:96:57:41:aa: 8a:24:44:06:b6:a0:0a:fc:fc:21:97:ab:ac:b9:b8: 18:bc:6c:05:b5:4a:a6:db:91:2d:8f:06:b8:fe:13: ce:a8:07:8d:6a:42:31:a0:68:70:52:26:52:81:bc: e3:b0:ea:60:57:8e:00:fb:c9:5d:c9:a4:45:81:35: dd:00:71:78:ae:28:73:94:48:cb:f5:59:69:f7:d8: a8:5c:6d:61:95:c0:55:fb:b9:44:7d:e4:f5:3b:84: c7:5d:dc:34:89:ae:77:d3:4f:c4:af:bb:45:78:40: 8c:f4:fa:d5:27:f7:7f:4f:17:1b:2b:33:56:e7:1e: 3b:a2:bc:67:40:8b:91:f9:e4:62:8e:de:cd:73:a3: 9f:f2:66:2c:da:76:56:ce:11:d2:61:ce:b0:1c:2b: a1:c4:3f:2d:df:ca:b6:94:30:22:49:32:6a:39:fe: f6:cd:e7:86:71:91:48:6e:e9:af:e1:bf:3d:20:82: 40:6b:d4:e2:a7:db:1c:53:25:9f:f7:91:c1:90:5b: 1b:d1:20:7a:0f:5d:0a:e1:1a:4d:be:60:70:06:ba: 60:8c:ba:c4:c5:97:63:c7:df:63:cb:67:2c:d0:31: 94:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8D:7E:02:BA:62:59:7A:52:46:66:B4:65:12:AB:87:29:20:23:AA X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138332e302f32342d3234203d3e20313430343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.87.183.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:9e:c2:87:81:20:f5:8e:07:fd:22:62:c5:0b:fa:bc:64:b9: 23:ee:a1:27:cf:56:a9:63:a8:24:f2:08:95:d0:67:77:6f:8f: ee:b6:aa:64:a4:b9:92:d4:66:5c:c5:d4:26:a2:f2:d9:4c:07: 1e:d1:0c:f9:30:ca:4f:2d:dd:9d:07:e1:cd:72:9f:0a:93:ab: 96:d4:9c:e5:56:8b:40:6c:bb:81:2f:78:15:28:27:94:e2:6c: d2:85:53:22:14:da:8a:ee:7d:66:b8:2b:44:99:44:f0:98:d7: d8:3f:c1:56:15:21:b0:ea:4d:85:92:ce:41:05:d9:73:ae:32: dd:3d:7f:e5:a2:b9:0d:05:03:e0:d8:aa:52:3c:e2:aa:d0:d9: 31:b8:7e:80:db:11:25:2f:b3:50:b9:16:92:b8:cf:3d:63:97: d0:d5:77:8c:59:48:cc:9e:2b:3a:f5:97:95:26:db:c8:58:01: b2:4f:f2:b0:51:ed:48:59:84:0d:2c:99:4b:aa:58:14:07:3e: 83:0d:ee:f3:78:35:f5:58:92:fb:ff:ba:74:31:8a:1a:f1:85: 9a:1a:92:09:b9:61:f1:83:32:33:ad:84:c8:89:2e:5e:fe:41: c2:67:26:1b:72:01:f9:d3:43:35:80:70:d9:cb:47:a7:ca:3c: 15:6c:24:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAyQfSysSHI1vmkKyAMT8wyI7gi8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA4MDkwNDI4MTlaFw0yNTA4MDgwNDMzMTlaMDMxMTAvBgNV BAMTKDQyOEQ3RTAyQkE2MjU5N0E1MjQ2NjZCNDY1MTJBQjg3MjkyMDIzQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQhYyRIKbqAK0HpzObIQ0ZPL+5 GNQ4l73ZlldBqookRAa2oAr8/CGXq6y5uBi8bAW1SqbbkS2PBrj+E86oB41qQjGg aHBSJlKBvOOw6mBXjgD7yV3JpEWBNd0AcXiuKHOUSMv1WWn32KhcbWGVwFX7uUR9 5PU7hMdd3DSJrnfTT8Svu0V4QIz0+tUn939PFxsrM1bnHjuivGdAi5H55GKO3s1z o5/yZizadlbOEdJhzrAcK6HEPy3fyraUMCJJMmo5/vbN54ZxkUhu6a/hvz0ggkBr 1OKn2xxTJZ/3kcGQWxvRIHoPXQrhGk2+YHAGumCMusTFl2PH32PLZyzQMZRzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQo1+ArpiWXpSRma0ZRKrhykgI6owHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzAzMjJlMzgzNzJlMzEzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyle3MA0GCSqG SIb3DQEBCwUAA4IBAQAMnsKHgSD1jgf9ImLFC/q8ZLkj7qEnz1apY6gk8giV0Gd3 b4/utqpkpLmS1GZcxdQmovLZTAce0Qz5MMpPLd2dB+HNcp8Kk6uW1JzlVotAbLuB L3gVKCeU4mzShVMiFNqK7n1muCtEmUTwmNfYP8FWFSGw6k2Fks5BBdlzrjLdPX/l orkNBQPg2KpSPOKq0NkxuH6A2xElL7NQuRaSuM89Y5fQ1XeMWUjMnis69ZeVJtvI WAGyT/KwUe1IWYQNLJlLqlgUBz6DDe7zeDX1WJL7/7p0MYoa8YWaGpIJuWHxgzIz rYTIiS5e/kHCZyYbcgH500M1gHDZy0enyjwVbCQy -----END CERTIFICATE-----Generated at Sun Nov 24 00:14:31 2024 by rpki-client on console-ams.rpki-client.org