$ rpki-client -vvf repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/3230322e38302e3131322e302f32302d3234203d3e203233363939.roa File: 3230322e38302e3131322e302f32302d3234203d3e203233363939.roa (raw, json) Hash identifier: pu6/UsxjccuW1i483s8+VcEVhXPDGUX2MOdonN1OKvI= Subject key identifier: B7:9C:76:2E:1F:36:EB:E2:53:D1:3B:8F:37:F9:5E:48:0E:4B:2D:0B Certificate issuer: /CN=BE69E9E299CE2DFF176C7EFAB145442D3C790DC8 Certificate serial: 01FF7E722CB2E473E6618CF34F99224EC7990599 Authority key identifier: BE:69:E9:E2:99:CE:2D:FF:17:6C:7E:FA:B1:45:44:2D:3C:79:0D:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/3230322e38302e3131322e302f32302d3234203d3e203233363939.roa Signing time: Thu 10 Oct 2024 05:00:01 +0000 ROA not before: Thu 10 Oct 2024 04:55:01 +0000 ROA not after: Thu 09 Oct 2025 05:00:01 +0000 asID: 23699 IP address blocks: 202.80.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.crl rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ff:7e:72:2c:b2:e4:73:e6:61:8c:f3:4f:99:22:4e:c7:99:05:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE69E9E299CE2DFF176C7EFAB145442D3C790DC8 Validity Not Before: Oct 10 04:55:01 2024 GMT Not After : Oct 9 05:00:01 2025 GMT Subject: CN=B79C762E1F36EBE253D13B8F37F95E480E4B2D0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:98:36:1d:13:f4:cb:17:d1:a9:c2:b8:7f:e7: 73:e3:69:90:9c:25:d0:5d:6b:a3:5d:62:d2:a6:2e: d4:66:61:54:0d:94:9d:fe:6d:07:5c:b5:00:ff:09: fa:bb:dc:18:79:d1:55:cc:1e:96:2d:f8:f4:ab:32: 90:bc:03:50:22:42:3e:06:08:ba:00:c0:bf:05:f6: df:a9:01:38:4b:ce:ea:63:0d:0c:d2:3d:f2:5d:0c: 35:68:af:fc:8b:3a:b4:97:87:b7:5a:0f:9e:b8:8e: b5:2e:3f:16:af:8c:72:cf:0f:37:7c:8d:38:85:ca: e9:8a:6b:e8:58:bb:a6:57:4b:cc:67:d4:57:3e:9b: 9b:27:c0:86:40:ed:1d:a7:83:e3:36:b6:83:da:a1: 11:82:aa:f7:a2:39:89:a6:4b:2a:8f:2d:b7:56:57: 0b:ce:af:91:5c:07:41:60:b3:57:b4:84:10:53:c6: e3:4d:cd:89:f3:22:42:db:c0:ef:da:a5:de:d9:dd: dd:25:ef:05:29:67:c5:f9:83:32:ba:d7:0d:1f:fd: 08:f0:b7:ac:49:51:94:ac:93:4d:4f:0f:37:8d:1a: 11:1e:15:e3:3e:f1:e3:d0:a8:c1:b0:ec:cd:42:26: 36:41:a0:2c:e3:85:82:ef:ae:95:db:f9:28:d7:06: 0a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:9C:76:2E:1F:36:EB:E2:53:D1:3B:8F:37:F9:5E:48:0E:4B:2D:0B X509v3 Authority Key Identifier: keyid:BE:69:E9:E2:99:CE:2D:FF:17:6C:7E:FA:B1:45:44:2D:3C:79:0D:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/3230322e38302e3131322e302f32302d3234203d3e203233363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.80.112.0/20 Signature Algorithm: sha256WithRSAEncryption a0:ff:66:70:34:b4:28:7c:31:86:01:fd:a1:9e:1a:62:99:44: ac:51:a0:1e:1d:01:3a:7d:e0:bb:f1:47:97:51:f3:e5:5d:0b: 6d:57:7f:9d:b8:8f:51:a8:07:96:e4:4e:5b:97:76:c2:21:3d: 12:72:a1:e5:9e:8f:b0:60:03:55:c7:86:b3:88:ec:81:d1:5e: 75:20:ec:5c:de:94:44:1b:29:fa:e9:c0:55:db:1d:e6:7c:1f: 1f:b9:38:1a:68:43:71:d2:78:bc:de:ed:fb:73:3a:9a:79:ef: fd:be:96:c0:07:29:c5:a6:43:e1:8d:9e:1c:4d:e3:27:99:50: 3a:a8:37:88:6e:7c:47:66:51:27:7c:d4:e3:23:db:7a:00:21: 90:b5:15:9f:5c:a3:88:c6:13:28:50:b3:21:7b:ce:83:20:34: 36:3c:ce:97:33:52:29:66:06:5c:cb:e1:20:68:e8:e2:7e:30: a1:53:02:c5:22:07:10:e9:14:b3:17:f1:06:ca:e6:24:d5:d3: 69:df:4f:bb:9d:e6:9d:61:20:16:94:f7:92:37:ae:d1:ae:58: 3f:84:d5:ca:d0:5f:95:25:65:1c:e2:33:f0:9f:d7:a1:03:91: cc:10:ce:ed:e0:3e:a8:f1:fe:db:1d:52:d7:eb:e4:88:10:cb: 42:d0:0d:6f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAf9+ciyy5HPmYYzzT5kiTseZBZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU2OUU5RTI5OUNFMkRGRjE3NkM3RUZBQjE0NTQ0MkQz Qzc5MERDODAeFw0yNDEwMTAwNDU1MDFaFw0yNTEwMDkwNTAwMDFaMDMxMTAvBgNV BAMTKEI3OUM3NjJFMUYzNkVCRTI1M0QxM0I4RjM3Rjk1RTQ4MEU0QjJEMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwmDYdE/TLF9Gpwrh/53PjaZCc JdBda6NdYtKmLtRmYVQNlJ3+bQdctQD/Cfq73Bh50VXMHpYt+PSrMpC8A1AiQj4G CLoAwL8F9t+pAThLzupjDQzSPfJdDDVor/yLOrSXh7daD564jrUuPxavjHLPDzd8 jTiFyumKa+hYu6ZXS8xn1Fc+m5snwIZA7R2ng+M2toPaoRGCqveiOYmmSyqPLbdW VwvOr5FcB0Fgs1e0hBBTxuNNzYnzIkLbwO/apd7Z3d0l7wUpZ8X5gzK61w0f/Qjw t6xJUZSsk01PDzeNGhEeFeM+8ePQqMGw7M1CJjZBoCzjhYLvrpXb+SjXBgpbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUt5x2Lh826+JT0TuPN/leSA5LLQswHwYDVR0j BBgwFoAUvmnp4pnOLf8XbH76sUVELTx5DcgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzhhMjMxOS1iNGZmLTQ5NzMtOGRhOS1jNDFhZDJmNzMxZjMvMC9CRTY5RTlFMjk5 Q0UyREZGMTc2QzdFRkFCMTQ1NDQyRDNDNzkwREM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU2OUU5RTI5OUNFMkRGRjE3NkM3RUZBQjE0NTQ0MkQzQzc5 MERDOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzOGEyMzE5LWI0ZmYtNDk3My04 ZGE5LWM0MWFkMmY3MzFmMy8wLzMyMzAzMjJlMzgzMDJlMzEzMTMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpQcDANBgkqhkiG 9w0BAQsFAAOCAQEAoP9mcDS0KHwxhgH9oZ4aYplErFGgHh0BOn3gu/FHl1Hz5V0L bVd/nbiPUagHluROW5d2wiE9EnKh5Z6PsGADVceGs4jsgdFedSDsXN6URBsp+unA Vdsd5nwfH7k4GmhDcdJ4vN7t+3M6mnnv/b6WwAcpxaZD4Y2eHE3jJ5lQOqg3iG58 R2ZRJ3zU4yPbegAhkLUVn1yjiMYTKFCzIXvOgyA0NjzOlzNSKWYGXMvhIGjo4n4w oVMCxSIHEOkUsxfxBsrmJNXTad9Pu53mnWEgFpT3kjeu0a5YP4TVytBflSVlHOIz 8J/XoQORzBDO7eA+qPH+2x1S1+vkiBDLQtANbw== -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:58 2024 by rpki-client on console-ams.rpki-client.org