$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133362e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3133362e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: tcRivbWY+PubzBNqOaYNJEFUYrAuiHnxIsdqiVRA718= Subject key identifier: 65:12:0D:F0:FE:0D:EE:3A:2F:87:85:B0:87:7C:D1:85:94:95:7E:93 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 4752F751C22624ED32BD6107C80D5ADE105C0849 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133362e302f32342d3234203d3e2034333832.roa Signing time: Wed 20 Sep 2023 13:00:16 +0000 ROA not before: Wed 20 Sep 2023 12:55:16 +0000 ROA not after: Wed 18 Sep 2024 13:00:16 +0000 asID: 4382 IP address blocks: 202.93.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 15:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:52:f7:51:c2:26:24:ed:32:bd:61:07:c8:0d:5a:de:10:5c:08:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Sep 20 12:55:16 2023 GMT Not After : Sep 18 13:00:16 2024 GMT Subject: CN=65120DF0FE0DEE3A2F8785B0877CD18594957E93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9c:c0:c7:78:a5:76:2d:55:e4:8a:2e:ab:8b: d9:11:f0:d5:e6:b3:b4:6f:36:cf:73:d6:1f:51:58: 16:2b:d9:66:5e:53:2b:c4:f5:57:85:f0:e7:c4:eb: 1e:7a:6a:83:f9:57:da:59:d4:1d:a0:62:15:cc:b1: 2e:db:b2:6a:f1:33:72:2c:ca:e8:ea:fb:63:72:1a: a3:10:c6:28:d4:75:5f:2d:36:1e:38:bb:40:76:b8: 2f:e7:c0:15:d3:2f:0d:50:9f:b6:3e:a9:d3:84:90: 2b:ad:82:7b:77:ca:44:0f:9a:a2:16:c3:a2:b2:34: 00:09:9d:92:08:bb:f7:0e:3f:00:e0:5f:a4:7c:27: 73:14:46:13:a1:e6:64:79:7d:47:4e:f1:a3:45:10: 30:40:ea:bf:db:75:a4:8e:c8:41:79:8f:79:3f:ca: bd:2c:e9:27:a9:5c:38:6d:46:70:a9:ec:ee:06:8f: a9:c1:f0:23:a5:7b:f4:18:fd:61:99:f9:58:b5:e4: ad:e2:74:97:e8:86:22:0f:c0:4c:97:46:e1:62:c2: d9:f6:1a:4b:d5:19:5e:5d:00:5a:35:e0:6f:51:91: 99:f2:5b:7e:3b:39:f9:86:68:e2:7e:dc:7d:55:40: a6:bf:64:eb:70:1f:05:c4:2f:e0:10:92:cd:2f:ba: 41:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:12:0D:F0:FE:0D:EE:3A:2F:87:85:B0:87:7C:D1:85:94:95:7E:93 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133362e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.136.0/24 Signature Algorithm: sha256WithRSAEncryption 40:fb:fd:c1:9d:32:b4:74:7d:83:e1:a2:af:97:4f:bb:44:11: 64:fe:35:c3:83:24:e3:3e:62:1f:ad:24:df:18:74:aa:4d:87: 11:b2:64:44:22:a0:26:e3:e9:d7:f1:98:ab:d3:99:7f:03:a6: 8e:63:66:50:2e:85:97:33:e2:cc:97:ba:5f:05:3c:dd:aa:fc: 06:76:97:75:36:4b:a2:5f:7f:05:7a:0a:07:5f:28:3e:ee:eb: e7:08:07:ab:85:37:d9:60:f9:d2:fa:9e:22:80:29:e5:b3:8a: ca:89:84:eb:b4:e2:d9:2f:1c:7c:d4:80:14:70:43:61:ef:65: 35:ba:50:81:7b:e6:a6:56:df:72:10:6b:ec:67:37:c9:b9:d7: 45:48:61:62:25:25:dc:d5:ff:fb:f8:af:2f:eb:09:38:c3:a0: 38:85:8f:9c:1f:06:14:cc:5c:33:78:8c:ea:8b:bd:24:6f:e5: 7c:2d:f4:1e:27:e5:22:5f:60:39:ed:98:67:1c:11:86:c0:e6: 97:42:30:d3:f7:a8:15:ab:cf:0a:8d:86:bc:d9:14:20:e5:7f: 53:bc:23:5a:42:b5:46:d1:91:ea:65:95:95:e2:73:30:f2:3d: f4:0e:f2:1f:35:83:73:db:70:3b:a4:10:64:21:a8:ef:4d:95: 5b:10:b4:8a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUR1L3UcImJO0yvWEHyA1a3hBcCEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yMzA5MjAxMjU1MTZaFw0yNDA5MTgxMzAwMTZaMDMxMTAvBgNV BAMTKDY1MTIwREYwRkUwREVFM0EyRjg3ODVCMDg3N0NEMTg1OTQ5NTdFOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTnMDHeKV2LVXkii6ri9kR8NXm s7RvNs9z1h9RWBYr2WZeUyvE9VeF8OfE6x56aoP5V9pZ1B2gYhXMsS7bsmrxM3Is yujq+2NyGqMQxijUdV8tNh44u0B2uC/nwBXTLw1Qn7Y+qdOEkCutgnt3ykQPmqIW w6KyNAAJnZIIu/cOPwDgX6R8J3MURhOh5mR5fUdO8aNFEDBA6r/bdaSOyEF5j3k/ yr0s6SepXDhtRnCp7O4Gj6nB8COle/QY/WGZ+Vi15K3idJfohiIPwEyXRuFiwtn2 GkvVGV5dAFo14G9RkZnyW347OfmGaOJ+3H1VQKa/ZOtwHwXEL+AQks0vukH5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZRIN8P4N7jovh4Wwh3zRhZSVfpMwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYgwDQYJKoZIhvcN AQELBQADggEBAED7/cGdMrR0fYPhoq+XT7tEEWT+NcODJOM+Yh+tJN8YdKpNhxGy ZEQioCbj6dfxmKvTmX8Dpo5jZlAuhZcz4syXul8FPN2q/AZ2l3U2S6JffwV6Cgdf KD7u6+cIB6uFN9lg+dL6niKAKeWzisqJhOu04tkvHHzUgBRwQ2HvZTW6UIF75qZW 33IQa+xnN8m510VIYWIlJdzV//v4ry/rCTjDoDiFj5wfBhTMXDN4jOqLvSRv5Xwt 9B4n5SJfYDntmGccEYbA5pdCMNP3qBWrzwqNhrzZFCDlf1O8I1pCtUbRkepllZXi czDyPfQO8h81g3PbcDukEGQhqO9NlVsQtIo= -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:50 2024 by rpki-client on console-ams.rpki-client.org