$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa File: 3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa (raw, json) Hash identifier: hvOmoUYfb06lSSll22mRhqcIPFc9XMD9mS4oIxxR+RU= Subject key identifier: B8:2A:99:5A:B0:B5:66:CE:99:B2:86:6C:D7:AA:C4:E8:28:64:ED:05 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 5A17F2B8D0296038C455C307C55A3F620607F254 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa Signing time: Mon 01 Jul 2024 01:03:23 +0000 ROA not before: Mon 01 Jul 2024 00:58:23 +0000 ROA not after: Mon 30 Jun 2025 01:03:23 +0000 asID: 23671 IP address blocks: 202.169.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:17:f2:b8:d0:29:60:38:c4:55:c3:07:c5:5a:3f:62:06:07:f2:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Jul 1 00:58:23 2024 GMT Not After : Jun 30 01:03:23 2025 GMT Subject: CN=B82A995AB0B566CE99B2866CD7AAC4E82864ED05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:20:17:6c:52:19:93:ba:82:b0:1e:84:ba:b4: 63:42:fb:ac:2c:f1:03:bb:b0:5a:b8:0c:fa:01:ee: eb:ff:02:91:de:03:9a:7e:b0:4f:4a:b4:b5:b9:86: 76:f4:38:aa:96:c3:63:cb:c8:7c:33:b5:9c:76:cf: f4:1c:28:82:93:7f:8c:18:9c:7f:16:ba:01:d4:df: 68:60:af:08:0a:98:13:b6:ee:da:a7:9c:4a:1b:df: 4d:82:7a:a4:04:ab:58:09:d8:35:08:8e:27:de:de: f4:f8:e5:a4:ee:c1:c2:ad:aa:3b:45:aa:80:ff:6e: 82:75:df:04:23:23:23:21:a9:a0:ec:e1:27:be:84: fc:4b:a5:d0:75:a3:26:ba:b8:8f:de:d6:06:0f:34: b6:12:74:9a:8b:38:2f:e4:27:da:3d:4a:9f:5b:73: 98:42:ff:c1:1f:0d:83:d5:1c:2a:6e:6b:08:16:09: 45:ec:cb:5c:a2:c9:f9:53:09:ca:6b:48:1d:94:38: 6b:ff:82:91:94:4c:6c:88:20:a1:81:72:98:f9:bf: 50:f0:b7:93:78:6e:29:d7:a8:68:ab:b1:42:2d:5a: 43:04:39:4c:84:08:18:b6:bd:05:dd:12:42:68:4a: 37:79:3b:6c:9b:75:43:7f:ce:d6:85:87:d9:cd:47: e8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:2A:99:5A:B0:B5:66:CE:99:B2:86:6C:D7:AA:C4:E8:28:64:ED:05 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3230322e3136392e3232342e302f32302d3234203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.224.0/20 Signature Algorithm: sha256WithRSAEncryption 75:e0:d5:51:84:a0:62:66:cb:d1:92:bc:2b:8e:4a:65:51:02: ab:b9:d9:28:37:f0:24:52:6e:52:28:7c:c4:7a:0d:68:f0:87: 65:73:7a:d6:35:34:3b:e7:27:7a:5f:a3:f6:3f:58:cf:f2:76: 6c:9d:8c:c3:6a:6e:ab:d9:1c:16:35:03:fc:e4:eb:5d:a7:7c: f8:3f:48:88:88:3b:e0:54:45:ab:55:de:87:c3:41:6b:e2:81: d4:3f:fc:2d:5e:01:70:ca:b1:10:57:e3:a4:69:1b:1f:5b:47: 60:f2:21:e1:24:16:05:59:22:10:83:94:58:02:79:51:12:36: f3:36:7f:41:87:47:c0:3d:6e:22:a2:2b:ca:73:1d:d2:13:4e: ae:fb:d2:15:7c:cb:e8:d6:e2:46:d8:9c:49:53:bf:45:c8:8f: 1a:df:4c:3b:ba:12:4f:87:d9:9f:39:9a:cc:be:d3:ac:25:62: 1d:da:a1:4c:c0:53:89:5b:9f:10:f6:62:a0:bf:a7:14:ab:05: 73:34:56:9f:76:6e:b7:c3:6a:34:37:1b:24:0e:76:9f:75:23: 94:5b:87:d3:2a:18:10:d6:8b:d9:18:99:6e:98:0e:fe:0b:41: 56:58:d1:6e:ce:aa:db:84:5b:7a:ed:0a:21:5f:de:82:a6:39: af:c5:5d:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWhfyuNApYDjEVcMHxVo/YgYH8lQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDA3MDEwMDU4MjNaFw0yNTA2MzAwMTAzMjNaMDMxMTAvBgNV BAMTKEI4MkE5OTVBQjBCNTY2Q0U5OUIyODY2Q0Q3QUFDNEU4Mjg2NEVEMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzIBdsUhmTuoKwHoS6tGNC+6ws 8QO7sFq4DPoB7uv/ApHeA5p+sE9KtLW5hnb0OKqWw2PLyHwztZx2z/QcKIKTf4wY nH8WugHU32hgrwgKmBO27tqnnEob302CeqQEq1gJ2DUIjife3vT45aTuwcKtqjtF qoD/boJ13wQjIyMhqaDs4Se+hPxLpdB1oya6uI/e1gYPNLYSdJqLOC/kJ9o9Sp9b c5hC/8EfDYPVHCpuawgWCUXsy1yiyflTCcprSB2UOGv/gpGUTGyIIKGBcpj5v1Dw t5N4binXqGirsUItWkMEOUyECBi2vQXdEkJoSjd5O2ybdUN/ztaFh9nNR+hfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuCqZWrC1Zs6ZsoZs16rE6Chk7QUwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzAzMjJlMzEzNjM5MmUzMjMyMzQyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzMjMzMzYzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyqngMA0GCSqG SIb3DQEBCwUAA4IBAQB14NVRhKBiZsvRkrwrjkplUQKrudkoN/AkUm5SKHzEeg1o 8Idlc3rWNTQ75yd6X6P2P1jP8nZsnYzDam6r2RwWNQP85Otdp3z4P0iIiDvgVEWr Vd6Hw0Fr4oHUP/wtXgFwyrEQV+OkaRsfW0dg8iHhJBYFWSIQg5RYAnlREjbzNn9B h0fAPW4ioivKcx3SE06u+9IVfMvo1uJG2JxJU79FyI8a30w7uhJPh9mfOZrMvtOs JWId2qFMwFOJW58Q9mKgv6cUqwVzNFafdm63w2o0NxskDnafdSOUW4fTKhgQ1ovZ GJlumA7+C0FWWNFuzqrbhFt67QohX96CpjmvxV37 -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org