$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e31362e302f32302d3234203d3e203233393438.roa File: 3230322e37352e31362e302f32302d3234203d3e203233393438.roa (raw, json) Hash identifier: SDDT76sB5fD/qwKD2c7jZ56T2/zb4XIJfGohnMvEips= Subject key identifier: 46:E9:54:9D:8D:8F:28:83:39:EB:BE:79:E2:5B:F0:37:DF:60:A4:A8 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 2786921A5F5DDA1160AC156FC6C3423AB8F9EED5 Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e31362e302f32302d3234203d3e203233393438.roa Signing time: Wed 27 Nov 2024 10:00:32 +0000 ROA not before: Wed 27 Nov 2024 09:55:32 +0000 ROA not after: Wed 26 Nov 2025 10:00:32 +0000 asID: 23948 IP address blocks: 202.75.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:86:92:1a:5f:5d:da:11:60:ac:15:6f:c6:c3:42:3a:b8:f9:ee:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Nov 27 09:55:32 2024 GMT Not After : Nov 26 10:00:32 2025 GMT Subject: CN=46E9549D8D8F288339EBBE79E25BF037DF60A4A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3e:7e:80:e5:d9:40:aa:14:3d:9a:fb:1a:d4: 9b:46:b0:4d:ff:f2:09:e1:e7:7a:a3:ff:93:e1:bd: 0b:b5:0f:a3:cc:c2:ff:53:c8:ee:0e:e5:92:4f:2b: 8a:af:b5:8e:9c:c7:8b:e6:6c:05:c2:f9:41:28:19: f6:f8:21:5d:b8:d2:82:8d:89:1f:36:98:1f:4e:12: 3e:10:de:26:be:63:7e:31:9b:fa:ab:c7:ea:ed:c8: de:9a:46:f0:29:de:8a:3b:87:53:c0:9e:9c:01:65: 03:0e:0a:87:81:e6:8b:1d:78:4e:9e:d3:eb:ef:c7: d4:9a:cf:41:bb:13:12:eb:6e:ef:3f:1e:7f:2d:f5: cb:de:e7:56:35:44:29:05:16:a2:e3:fb:7b:ef:93: 00:a9:5c:ab:11:f3:5c:fe:2c:d8:a0:73:ab:be:f1: 38:14:ed:d0:9b:cd:d8:85:cf:92:6a:f6:88:4f:72: 45:4b:6e:e2:f7:25:5b:6b:68:58:3b:86:be:41:bc: c7:d8:91:1e:a4:60:c4:f0:2b:12:84:d3:31:f6:be: 7d:61:dd:5e:30:10:f9:4a:34:e9:2c:6f:69:60:e8: 19:36:b6:3f:62:ed:b7:f8:93:6b:8b:76:ee:9f:0f: a9:4c:37:5b:e2:fd:9b:b2:95:91:0c:41:1a:cc:fe: db:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E9:54:9D:8D:8F:28:83:39:EB:BE:79:E2:5B:F0:37:DF:60:A4:A8 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e31362e302f32302d3234203d3e203233393438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.75.16.0/20 Signature Algorithm: sha256WithRSAEncryption 2b:8b:c9:79:d3:8f:f2:ff:43:6c:e3:04:9d:96:8d:8f:64:31: 37:16:42:73:d3:c9:53:f8:ad:db:1e:01:64:ef:83:d9:d6:fa: 0a:5c:ef:e3:00:db:35:a0:e6:b3:c7:91:47:2d:55:08:ee:74: 09:fc:a5:f1:ff:be:49:14:be:e5:52:be:05:c6:89:70:ea:92: 79:0d:dd:cd:95:c8:e3:f3:d7:db:b3:b4:2c:35:3d:98:e7:d4: bd:ec:55:0c:8d:8b:b6:27:cf:75:3b:00:ed:e2:82:84:70:2e: 3e:f1:f6:58:57:ba:41:c1:0c:8a:22:45:30:c5:64:e1:ef:57: 67:22:b9:07:c8:08:c8:5f:12:bd:16:39:60:6b:62:2e:a8:d4: fc:03:f7:47:b5:86:1b:0e:7d:ce:3e:d8:23:fd:85:bc:de:81: d4:ab:c0:f9:57:4d:e2:43:b2:04:3b:4f:72:53:21:e9:8b:b5: f9:2b:26:c6:ae:14:dd:65:82:72:a3:a9:45:c8:30:93:d1:83: 5d:ce:ff:03:4f:d5:c6:4d:83:ff:e4:14:04:c5:6f:a0:08:d1: 1d:59:bc:3b:3b:49:60:7f:5e:39:6d:4c:66:61:06:a7:04:f4: 61:56:f3:c6:da:fe:5d:c9:f0:45:56:cb:b0:0f:3c:d7:02:bc: 5d:21:77:79 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJ4aSGl9d2hFgrBVvxsNCOrj57tUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yNDExMjcwOTU1MzJaFw0yNTExMjYxMDAwMzJaMDMxMTAvBgNV BAMTKDQ2RTk1NDlEOEQ4RjI4ODMzOUVCQkU3OUUyNUJGMDM3REY2MEE0QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVPn6A5dlAqhQ9mvsa1JtGsE3/ 8gnh53qj/5PhvQu1D6PMwv9TyO4O5ZJPK4qvtY6cx4vmbAXC+UEoGfb4IV240oKN iR82mB9OEj4Q3ia+Y34xm/qrx+rtyN6aRvAp3oo7h1PAnpwBZQMOCoeB5osdeE6e 0+vvx9Saz0G7ExLrbu8/Hn8t9cve51Y1RCkFFqLj+3vvkwCpXKsR81z+LNigc6u+ 8TgU7dCbzdiFz5Jq9ohPckVLbuL3JVtraFg7hr5BvMfYkR6kYMTwKxKE0zH2vn1h 3V4wEPlKNOksb2lg6Bk2tj9i7bf4k2uLdu6fD6lMN1vi/ZuylZEMQRrM/ttDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQURulUnY2PKIM567554lvwN99gpKgwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0NTQ3MTA0LTkzOWUtNDBlMy04 ZmM4LTQyNTIyNjQyMDQ0Yi8wLzMyMzAzMjJlMzczNTJlMzEzNjJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMyMzMzOTM0Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKSxAwDQYJKoZIhvcN AQELBQADggEBACuLyXnTj/L/Q2zjBJ2WjY9kMTcWQnPTyVP4rdseAWTvg9nW+gpc 7+MA2zWg5rPHkUctVQjudAn8pfH/vkkUvuVSvgXGiXDqknkN3c2VyOPz19uztCw1 PZjn1L3sVQyNi7Ynz3U7AO3igoRwLj7x9lhXukHBDIoiRTDFZOHvV2ciuQfICMhf Er0WOWBrYi6o1PwD90e1hhsOfc4+2CP9hbzegdSrwPlXTeJDsgQ7T3JTIemLtfkr JsauFN1lgnKjqUXIMJPRg13O/wNP1cZNg//kFATFb6AI0R1ZvDs7SWB/XjltTGZh BqcE9GFW88ba/l3J8EVWy7APPNcCvF0hd3k= -----END CERTIFICATE-----Generated at Mon Apr 28 15:17:12 2025 by rpki-client