$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138372e302f32342d3234203d3e20313337333436.roa File: 3230322e38372e3138372e302f32342d3234203d3e20313337333436.roa (raw, json) Hash identifier: gdreoUy+o7GB/2ep7mrPKPyn8u71AUc5hzKJtavJI44= Subject key identifier: BD:B9:0B:57:25:1C:73:55:68:DE:0E:F9:4E:B5:04:CE:19:91:F3:41 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 4A515125287EE950A1AF831F3B4CADDD224A5004 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138372e302f32342d3234203d3e20313337333436.roa Signing time: Mon 21 Oct 2024 08:00:02 +0000 ROA not before: Mon 21 Oct 2024 07:55:02 +0000 ROA not after: Mon 20 Oct 2025 08:00:02 +0000 asID: 137346 IP address blocks: 202.87.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:51:51:25:28:7e:e9:50:a1:af:83:1f:3b:4c:ad:dd:22:4a:50:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Oct 21 07:55:02 2024 GMT Not After : Oct 20 08:00:02 2025 GMT Subject: CN=BDB90B57251C735568DE0EF94EB504CE1991F341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:19:cd:ec:94:b7:8e:0b:53:d6:37:0e:20:02: e5:dd:78:92:2c:0b:ba:a4:f0:0e:5a:d9:86:9e:27: 73:1a:c7:35:27:dd:b7:4d:18:a5:b0:9e:e5:c1:67: 66:b9:0a:39:a9:8c:be:56:02:a2:8e:a2:20:13:bb: 54:ab:7f:8a:e3:ad:fe:e0:5e:d4:c1:8b:cd:9f:3e: 58:11:a4:a1:03:f9:fa:ba:a0:d0:5e:1c:63:d0:2c: b6:4c:86:4b:45:bc:55:e0:c7:a3:8e:ef:2e:64:9c: 61:bd:30:59:57:2e:74:6b:b6:d9:4f:80:83:e8:0a: c5:87:16:f1:a5:36:e5:2c:a2:1f:9f:70:a5:6f:54: 1d:45:9e:3c:fc:75:62:12:24:eb:af:57:42:eb:38: 95:61:0d:fb:ee:dc:3a:40:9c:bc:90:72:23:08:d6: db:e6:ab:e4:51:d2:ce:70:9e:97:1b:de:29:d1:8f: 45:87:00:d0:94:a4:51:5a:ee:0e:ae:1e:33:0c:24: 79:b4:f9:53:46:27:95:91:aa:ed:58:13:99:4e:32: 56:7a:68:10:61:78:67:53:41:c9:28:ed:53:14:e8: d7:52:a0:ad:30:16:52:eb:f5:d8:f2:77:f5:eb:71: 0a:d6:67:80:ce:aa:f5:f6:40:72:cf:da:0f:49:77: dd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B9:0B:57:25:1C:73:55:68:DE:0E:F9:4E:B5:04:CE:19:91:F3:41 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138372e302f32342d3234203d3e20313337333436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.87.187.0/24 Signature Algorithm: sha256WithRSAEncryption 99:c2:ba:89:26:f9:81:1f:99:86:a3:c9:fc:a1:85:b4:95:20: cc:f9:dc:17:1e:8e:cc:14:fe:da:db:08:0b:c8:77:43:4b:d4: e8:c5:12:38:ff:13:bb:e3:21:d1:6a:ed:89:04:0b:e4:3f:0d: 69:b2:b9:0a:87:71:87:fb:b7:2c:68:d3:f8:fa:32:ff:ae:a0: 8e:be:41:d4:ad:bc:31:13:dc:5b:39:07:5f:4c:48:e3:45:5e: 50:9f:10:19:95:7e:ad:8b:f6:8d:a7:14:28:d9:13:58:bc:b1: 05:74:cf:d0:7c:f5:a0:6b:2c:00:41:9e:90:80:b7:0b:1f:6d: 92:21:2f:16:26:36:cf:1c:38:7a:64:de:72:31:e3:fb:48:a7: ea:a0:09:12:07:b2:d9:55:03:5b:ea:8f:2d:29:da:39:df:a5: 7d:e9:6d:91:24:90:67:3d:2f:dc:8a:ea:dd:00:bb:01:a8:e8: 93:f4:a9:69:99:11:c9:c1:6c:be:cb:e8:15:23:a6:e6:54:f2: 66:b9:91:69:cc:d2:56:e3:47:f6:45:51:d7:59:fa:ba:c6:ea: 03:ea:4b:78:60:b3:ea:75:a9:31:97:89:9f:09:8c:71:e2:6a: 4b:1c:5b:a9:a1:58:7e:98:06:3d:43:1b:c1:4b:9e:ad:3e:09: 5e:04:78:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSlFRJSh+6VChr4MfO0yt3SJKUAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDEwMjEwNzU1MDJaFw0yNTEwMjAwODAwMDJaMDMxMTAvBgNV BAMTKEJEQjkwQjU3MjUxQzczNTU2OERFMEVGOTRFQjUwNENFMTk5MUYzNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Gc3slLeOC1PWNw4gAuXdeJIs C7qk8A5a2YaeJ3MaxzUn3bdNGKWwnuXBZ2a5CjmpjL5WAqKOoiATu1Srf4rjrf7g XtTBi82fPlgRpKED+fq6oNBeHGPQLLZMhktFvFXgx6OO7y5knGG9MFlXLnRrttlP gIPoCsWHFvGlNuUsoh+fcKVvVB1Fnjz8dWISJOuvV0LrOJVhDfvu3DpAnLyQciMI 1tvmq+RR0s5wnpcb3inRj0WHANCUpFFa7g6uHjMMJHm0+VNGJ5WRqu1YE5lOMlZ6 aBBheGdTQcko7VMU6NdSoK0wFlLr9djyd/XrcQrWZ4DOqvX2QHLP2g9Jd92jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvbkLVyUcc1Vo3g75TrUEzhmR80EwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzAzMjJlMzgzNzJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyle7MA0GCSqG SIb3DQEBCwUAA4IBAQCZwrqJJvmBH5mGo8n8oYW0lSDM+dwXHo7MFP7a2wgLyHdD S9ToxRI4/xO74yHRau2JBAvkPw1psrkKh3GH+7csaNP4+jL/rqCOvkHUrbwxE9xb OQdfTEjjRV5QnxAZlX6ti/aNpxQo2RNYvLEFdM/QfPWgaywAQZ6QgLcLH22SIS8W JjbPHDh6ZN5yMeP7SKfqoAkSB7LZVQNb6o8tKdo536V96W2RJJBnPS/ciurdALsB qOiT9KlpmRHJwWy+y+gVI6bmVPJmuZFpzNJW40f2RVHXWfq6xuoD6kt4YLPqdakx l4mfCYxx4mpLHFupoVh+mAY9QxvBS56tPgleBHiD -----END CERTIFICATE-----Generated at Sat Nov 23 23:38:10 2024 by rpki-client on console-fra.rpki-client.org