$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134332e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3134332e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: NVJIu6hUY4X7f1nWei5pFxQ4UP3Rv9A5A1xjhrZ/thU= Subject key identifier: 69:14:74:3C:2E:5C:82:85:A4:CE:56:ED:B6:08:AC:21:F0:CD:70:6B Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 1A19648822FECF688E0B6B9A3409AF7A11DE0004 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134332e302f32342d3234203d3e2034333832.roa Signing time: Wed 20 Sep 2023 13:00:14 +0000 ROA not before: Wed 20 Sep 2023 12:55:14 +0000 ROA not after: Wed 18 Sep 2024 13:00:14 +0000 asID: 4382 IP address blocks: 202.93.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 19:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:19:64:88:22:fe:cf:68:8e:0b:6b:9a:34:09:af:7a:11:de:00:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Sep 20 12:55:14 2023 GMT Not After : Sep 18 13:00:14 2024 GMT Subject: CN=6914743C2E5C8285A4CE56EDB608AC21F0CD706B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4b:41:fc:29:c2:cf:f3:66:31:57:a4:88:ef: 5a:e5:70:a0:cd:ca:0c:45:47:82:95:74:b0:d1:85: 2a:33:34:4f:09:3b:19:c1:01:28:68:9c:23:07:2b: dd:db:09:d7:ca:ed:0a:58:bb:23:f9:ca:ee:38:fb: e5:f5:c1:d0:d2:a3:41:28:a0:b2:b6:ec:c7:00:79: 97:ef:74:c2:4e:8d:40:3d:34:97:52:e2:4b:59:75: 01:c5:40:ea:ff:99:92:e9:9b:c8:6d:cd:eb:09:c2: e2:fa:72:ad:9b:e0:c8:99:d2:3e:79:1e:63:14:d7: 06:f4:8b:fa:b7:45:26:6e:a2:c1:7f:67:10:ed:17: 83:63:5a:7d:4c:73:66:3c:bf:29:5d:92:ea:2a:51: 3a:1b:5e:8e:8c:a9:6e:ca:93:38:68:94:cc:fe:5f: 6d:ba:2f:69:db:18:fa:69:ee:ae:31:64:b7:0f:c5: 0a:44:0b:53:60:a6:f8:ce:8c:ea:57:4a:c4:63:26: eb:be:69:55:5f:ae:65:b7:74:93:16:54:2a:62:19: d2:05:86:71:ae:23:d9:fb:73:ea:7f:c3:ba:44:27: 4e:72:fb:dc:11:a6:84:59:38:1a:08:51:3b:7f:f4: 39:43:17:54:9e:8f:e2:ce:00:9a:16:c2:2b:8b:60: cf:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:14:74:3C:2E:5C:82:85:A4:CE:56:ED:B6:08:AC:21:F0:CD:70:6B X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3134332e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.143.0/24 Signature Algorithm: sha256WithRSAEncryption 49:65:00:c5:2b:9e:b7:45:f4:13:08:57:9e:16:0d:20:39:66: 57:ec:ac:0c:d6:5e:eb:ff:70:4f:a1:21:fd:5e:8c:36:22:c4: d5:b2:85:1d:da:f0:08:cb:86:67:96:dc:13:60:b1:87:cd:f2: 9c:d1:a8:29:19:16:93:99:99:0b:3e:92:bf:ef:d1:62:23:78: 07:5c:55:8a:b1:bf:8d:1d:42:80:22:35:34:50:e3:6c:c0:c1: b7:ff:28:cf:64:52:72:36:43:62:59:42:c5:7b:5e:f3:78:87: a6:de:ca:94:d8:e6:a6:43:a6:fe:31:b0:f1:b9:b1:09:e3:6d: 50:95:73:ee:f1:0d:f3:06:5f:0a:a1:c2:e2:c6:84:ae:c8:18: 03:0d:ed:01:3e:aa:a2:91:76:c5:fe:b8:49:87:53:b0:00:01: b4:5d:e2:be:02:f6:4f:f9:68:5e:5e:b9:51:c5:4f:38:87:7b: 3a:48:c3:be:fd:d8:98:13:8d:38:e2:55:c5:8f:12:54:da:a6: 97:91:82:a0:35:93:d4:61:bf:6b:c9:59:b6:27:be:4c:d5:e9: b5:b6:4f:9a:9d:e4:f0:96:1c:64:e1:6c:cd:6e:b1:51:49:9b: e7:68:bf:f6:74:45:df:c2:f9:d6:3f:0e:06:e5:da:f5:7e:a5: e2:2e:44:8e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGhlkiCL+z2iOC2uaNAmvehHeAAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yMzA5MjAxMjU1MTRaFw0yNDA5MTgxMzAwMTRaMDMxMTAvBgNV BAMTKDY5MTQ3NDNDMkU1QzgyODVBNENFNTZFREI2MDhBQzIxRjBDRDcwNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0S0H8KcLP82YxV6SI71rlcKDN ygxFR4KVdLDRhSozNE8JOxnBAShonCMHK93bCdfK7QpYuyP5yu44++X1wdDSo0Eo oLK27McAeZfvdMJOjUA9NJdS4ktZdQHFQOr/mZLpm8htzesJwuL6cq2b4MiZ0j55 HmMU1wb0i/q3RSZuosF/ZxDtF4NjWn1Mc2Y8vyldkuoqUTobXo6MqW7KkzholMz+ X226L2nbGPpp7q4xZLcPxQpEC1NgpvjOjOpXSsRjJuu+aVVfrmW3dJMWVCpiGdIF hnGuI9n7c+p/w7pEJ05y+9wRpoRZOBoIUTt/9DlDF1Sej+LOAJoWwiuLYM+vAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUaRR0PC5cgoWkzlbttgisIfDNcGswHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXY8wDQYJKoZIhvcN AQELBQADggEBAEllAMUrnrdF9BMIV54WDSA5ZlfsrAzWXuv/cE+hIf1ejDYixNWy hR3a8AjLhmeW3BNgsYfN8pzRqCkZFpOZmQs+kr/v0WIjeAdcVYqxv40dQoAiNTRQ 42zAwbf/KM9kUnI2Q2JZQsV7XvN4h6beypTY5qZDpv4xsPG5sQnjbVCVc+7xDfMG XwqhwuLGhK7IGAMN7QE+qqKRdsX+uEmHU7AAAbRd4r4C9k/5aF5euVHFTziHezpI w7792JgTjTjiVcWPElTappeRgqA1k9Rhv2vJWbYnvkzV6bW2T5qd5PCWHGThbM1u sVFJm+dov/Z0Rd/C+dY/Dgbl2vV+peIuRI4= -----END CERTIFICATE-----Generated at Thu Apr 18 17:41:01 2024 by rpki-client on console-ams.rpki-client.org