$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31342e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31342e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: G2ZztnDdKwiaplDqiuhniBFNp8XnGZIOV+q5lfFOBPg= Subject key identifier: 3D:AB:81:16:68:A6:C2:57:D1:19:9C:EC:44:1C:E3:5B:C2:4D:3E:A4 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 094550FE0FC53AA063D558959DB72FCB8D8EE358 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31342e302f32342d3234203d3e203338313530.roa Signing time: Mon 31 Jul 2023 00:05:07 +0000 ROA not before: Mon 31 Jul 2023 00:00:07 +0000 ROA not after: Mon 29 Jul 2024 00:05:07 +0000 asID: 38150 IP address blocks: 202.91.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 19:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:45:50:fe:0f:c5:3a:a0:63:d5:58:95:9d:b7:2f:cb:8d:8e:e3:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 31 00:00:07 2023 GMT Not After : Jul 29 00:05:07 2024 GMT Subject: CN=3DAB811668A6C257D1199CEC441CE35BC24D3EA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a5:de:56:4c:b3:31:5c:1b:62:94:6d:be:c1: 6a:54:1b:65:23:1b:a8:2f:6a:27:e8:5e:22:c8:bd: ad:bf:6b:4e:71:eb:f5:54:a5:42:85:1f:72:a0:75: 08:1b:07:27:41:f9:36:92:6a:da:cf:fe:0e:25:af: 54:fb:b4:4a:13:7a:ef:df:fb:ab:eb:49:c5:8a:1b: 8c:02:6d:66:78:78:78:ce:90:51:75:e2:c1:07:54: f1:3c:7e:7f:57:9f:39:13:c7:a4:11:76:b6:46:92: d5:04:c1:34:fd:a2:ee:ec:2a:5b:f9:9c:cd:7f:4b: 74:e7:97:19:24:82:44:4b:d8:cc:50:8e:78:96:72: 3e:4d:fc:28:93:0c:8f:74:db:9e:3b:27:18:a4:b2: bd:8e:e0:7f:9d:44:78:60:ee:05:bb:2f:12:ca:23: b6:54:c4:c9:29:4f:59:bb:48:35:b6:f8:00:cb:c7: a0:21:d3:fe:c9:e9:b2:d9:11:45:eb:08:0f:ac:21: 84:88:00:4d:a5:c9:9a:fe:de:34:52:4d:5f:50:ae: 11:a8:e1:31:3b:fc:7a:cc:f1:19:71:38:ed:aa:2c: b6:8f:85:d1:67:fb:bd:ea:ff:d0:68:01:79:a6:29: 93:b7:d6:b6:44:f9:c3:56:30:41:12:f6:b7:45:4a: fb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:AB:81:16:68:A6:C2:57:D1:19:9C:EC:44:1C:E3:5B:C2:4D:3E:A4 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31342e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.14.0/24 Signature Algorithm: sha256WithRSAEncryption 78:b9:07:ea:5b:84:70:b6:ea:50:ee:c5:10:c9:12:29:2e:36: 26:6d:09:dd:6d:c5:ee:0b:b8:ca:30:60:a5:4f:a1:3c:04:d4: c7:be:32:fe:00:de:4a:51:e7:24:44:2d:de:8e:d0:49:c8:1d: 6b:54:d4:2c:71:87:eb:b1:eb:0b:18:78:18:a4:9a:4c:eb:8b: 97:92:70:a1:87:2b:9a:ad:15:4a:1a:02:e0:3d:9e:6b:e1:b5: 2a:09:bf:97:4e:0d:b1:10:c8:57:25:33:9f:1d:a6:c2:18:3f: 56:6d:82:ad:c5:01:b9:c4:53:c1:df:ac:93:bd:db:53:2f:05: 5e:92:2b:c4:49:e1:a7:d5:0f:be:3c:6b:a9:01:5e:ec:b7:62: 8a:59:b4:e3:66:61:dc:a3:a0:1f:1f:fb:a5:63:7a:27:4d:5d: 78:43:a8:ab:78:b9:05:c9:13:a3:ad:b3:11:9a:32:75:e7:73: e9:dd:4b:6b:41:1e:4b:17:50:30:46:e7:5c:6a:a2:8b:9c:45: 5b:e3:eb:4d:5b:93:29:e6:4e:1a:9c:f9:9d:96:cd:e4:59:42: f4:27:ae:3c:d3:69:ec:67:22:ba:10:ce:aa:50:fe:26:13:03: 84:5f:b9:3d:3c:fc:a6:a3:44:7d:e6:80:e3:9a:6d:02:51:e9: 20:f3:6c:a1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCUVQ/g/FOqBj1ViVnbcvy42O41gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yMzA3MzEwMDAwMDdaFw0yNDA3MjkwMDA1MDdaMDMxMTAvBgNV BAMTKDNEQUI4MTE2NjhBNkMyNTdEMTE5OUNFQzQ0MUNFMzVCQzI0RDNFQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQpd5WTLMxXBtilG2+wWpUG2Uj G6gvaifoXiLIva2/a05x6/VUpUKFH3KgdQgbBydB+TaSatrP/g4lr1T7tEoTeu/f +6vrScWKG4wCbWZ4eHjOkFF14sEHVPE8fn9XnzkTx6QRdrZGktUEwTT9ou7sKlv5 nM1/S3TnlxkkgkRL2MxQjniWcj5N/CiTDI902547Jxiksr2O4H+dRHhg7gW7LxLK I7ZUxMkpT1m7SDW2+ADLx6Ah0/7J6bLZEUXrCA+sIYSIAE2lyZr+3jRSTV9QrhGo 4TE7/HrM8RlxOO2qLLaPhdFn+73q/9BoAXmmKZO31rZE+cNWMEES9rdFSvu9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUPauBFmimwlfRGZzsRBzjW8JNPqQwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWw4wDQYJKoZIhvcN AQELBQADggEBAHi5B+pbhHC26lDuxRDJEikuNiZtCd1txe4LuMowYKVPoTwE1Me+ Mv4A3kpR5yRELd6O0EnIHWtU1Cxxh+ux6wsYeBikmkzri5eScKGHK5qtFUoaAuA9 nmvhtSoJv5dODbEQyFclM58dpsIYP1Ztgq3FAbnEU8HfrJO921MvBV6SK8RJ4afV D748a6kBXuy3YopZtONmYdyjoB8f+6VjeidNXXhDqKt4uQXJE6OtsxGaMnXnc+nd S2tBHksXUDBG51xqooucRVvj601bkynmThqc+Z2WzeRZQvQnrjzTaexnIroQzqpQ /iYTA4RfuT08/KajRH3mgOOabQJR6SDzbKE= -----END CERTIFICATE-----Generated at Thu Apr 18 14:06:39 2024 by rpki-client on console-fra.rpki-client.org