$ rpki-client -vvf repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/3230322e3135302e3132382e302f31392d3234203d3e203233393439.roa File: 3230322e3135302e3132382e302f31392d3234203d3e203233393439.roa (raw, json) Hash identifier: UydQJ6XXAI2sl5u0/QFePjNsPcnJajkGCHbIStNnGQM= Subject key identifier: 1E:8F:72:2E:6A:91:46:23:A3:68:9F:C2:24:4F:D9:C6:65:11:5A:EF Certificate issuer: /CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Certificate serial: 1E1EFB7FDC3761E91E8696EEA387F7DFFBAAFF73 Authority key identifier: 8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/3230322e3135302e3132382e302f31392d3234203d3e203233393439.roa Signing time: Wed 02 Aug 2023 05:00:00 +0000 ROA not before: Wed 02 Aug 2023 04:55:00 +0000 ROA not after: Wed 31 Jul 2024 05:00:00 +0000 asID: 23949 IP address blocks: 202.150.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 14:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:1e:fb:7f:dc:37:61:e9:1e:86:96:ee:a3:87:f7:df:fb:aa:ff:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Validity Not Before: Aug 2 04:55:00 2023 GMT Not After : Jul 31 05:00:00 2024 GMT Subject: CN=1E8F722E6A914623A3689FC2244FD9C665115AEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cf:79:ef:68:87:eb:0e:3e:ea:ad:50:93:5e: fb:f1:e0:fe:dd:b6:4a:74:1d:5e:9a:85:dd:43:a6: 4e:b9:e2:3a:ac:ce:5a:28:0e:94:94:56:6a:e0:09: b3:70:0d:fb:14:9d:d0:40:f8:d7:4a:c1:4c:76:48: dd:51:9b:63:95:6c:ea:a8:68:94:ab:a3:cc:b7:23: 3b:c4:64:a8:52:8a:df:b2:ba:da:67:0f:b1:3a:13: 92:5d:7a:0a:c6:c1:47:84:f3:3a:07:c4:1a:fb:87: c9:b6:98:9e:ee:d5:e9:b6:61:53:2c:e3:a5:d1:ac: aa:a6:ef:8f:24:7e:68:49:db:92:9b:d0:bd:fc:39: 06:2b:7e:a9:03:87:d3:c0:c2:29:2f:b2:8d:99:bb: 76:2c:29:7a:9a:81:23:d3:f1:ae:04:a1:41:99:ad: 2f:18:9a:6f:d5:4b:42:d0:c4:85:67:83:d1:dc:72: 7b:a9:3d:29:af:69:c9:cf:39:22:e4:47:31:52:20: 11:76:a6:e2:15:63:d8:fb:dc:1f:d1:5f:4e:c0:0a: a1:73:07:09:3e:e4:84:d3:ae:ca:96:82:e6:d6:fb: f1:69:8a:d9:63:19:c5:e0:42:98:30:fa:5c:85:1d: cb:6b:bf:94:ad:32:87:b5:dc:4f:8a:b6:cd:84:6a: 74:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:8F:72:2E:6A:91:46:23:A3:68:9F:C2:24:4F:D9:C6:65:11:5A:EF X509v3 Authority Key Identifier: keyid:8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/3230322e3135302e3132382e302f31392d3234203d3e203233393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.150.128.0/19 Signature Algorithm: sha256WithRSAEncryption 17:22:fe:86:5f:f1:36:4e:ea:2c:cb:46:12:69:20:f7:bc:8c: 7c:fe:73:c9:53:d6:16:72:4a:a8:3c:a8:07:fc:f8:15:28:96: 82:7a:37:cb:84:96:3c:63:1a:b0:ee:d9:2c:36:ee:2d:b0:38: 73:31:79:0e:49:e9:42:c8:72:66:9b:3d:3c:d1:50:b6:72:8b: 2e:84:43:6a:76:db:40:df:c7:68:d6:65:ad:46:1c:9f:a4:91: 84:08:47:26:dc:c9:2b:29:8d:9a:f6:4c:f3:cc:cc:62:23:73: 96:ef:f5:8a:65:55:db:73:f8:4a:9a:d1:9c:00:c8:b2:4d:b1: e3:ff:93:c4:0c:f1:96:8d:3a:d8:9e:8e:fa:b9:7c:52:c0:9c: d5:85:8e:12:a4:12:c3:78:9d:fa:fd:86:0d:5c:0b:52:82:30: b5:f3:72:61:6a:9d:40:fd:a2:05:28:cd:6d:5c:f6:72:f3:1f: 4e:f5:cd:32:55:59:10:79:53:ce:63:ec:f8:34:45:26:30:a3: ab:80:ac:8e:49:a0:82:de:3b:ad:44:07:f3:50:41:08:94:40: 13:be:79:07:87:b1:ed:07:d8:28:19:82:c3:cc:68:20:86:35: 57:cf:ff:42:ad:07:8b:29:6e:27:97:1b:26:73:9c:66:7d:ea: 58:45:d6:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHh77f9w3Yekehpbuo4f33/uq/3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0 NEY3RjRFNTAeFw0yMzA4MDIwNDU1MDBaFw0yNDA3MzEwNTAwMDBaMDMxMTAvBgNV BAMTKDFFOEY3MjJFNkE5MTQ2MjNBMzY4OUZDMjI0NEZEOUM2NjUxMTVBRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaz3nvaIfrDj7qrVCTXvvx4P7d tkp0HV6ahd1Dpk654jqszlooDpSUVmrgCbNwDfsUndBA+NdKwUx2SN1Rm2OVbOqo aJSro8y3IzvEZKhSit+yutpnD7E6E5JdegrGwUeE8zoHxBr7h8m2mJ7u1em2YVMs 46XRrKqm748kfmhJ25Kb0L38OQYrfqkDh9PAwikvso2Zu3YsKXqagSPT8a4EoUGZ rS8Ymm/VS0LQxIVng9HccnupPSmvacnPOSLkRzFSIBF2puIVY9j73B/RX07ACqFz Bwk+5ITTrsqWgubW+/FpitljGcXgQpgw+lyFHctrv5StMoe13E+Kts2EanQlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHo9yLmqRRiOjaJ/CJE/ZxmURWu8wHwYDVR0j BBgwFoAUj7F3roNSbXE8EkDVzvr3OET39OUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YjY5ODIyYy0yZTIyLTQ4YmUtOGJhMi02MzRmNTgyYzJlY2IvMC84RkIxNzdBRTgz NTI2RDcxM0MxMjQwRDVDRUZBRjczODQ0RjdGNEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0NEY3 RjRFNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiNjk4MjJjLTJlMjItNDhiZS04 YmEyLTYzNGY1ODJjMmVjYi8wLzMyMzAzMjJlMzEzNTMwMmUzMTMyMzgyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMjMzMzkzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFypaAMA0GCSqG SIb3DQEBCwUAA4IBAQAXIv6GX/E2Tuosy0YSaSD3vIx8/nPJU9YWckqoPKgH/PgV KJaCejfLhJY8Yxqw7tksNu4tsDhzMXkOSelCyHJmmz080VC2cosuhENqdttA38do 1mWtRhyfpJGECEcm3MkrKY2a9kzzzMxiI3OW7/WKZVXbc/hKmtGcAMiyTbHj/5PE DPGWjTrYno76uXxSwJzVhY4SpBLDeJ36/YYNXAtSgjC183Jhap1A/aIFKM1tXPZy 8x9O9c0yVVkQeVPOY+z4NEUmMKOrgKyOSaCC3jutRAfzUEEIlEATvnkHh7HtB9go GYLDzGgghjVXz/9CrQeLKW4nlxsmc5xmfepYRdZ3 -----END CERTIFICATE-----Generated at Tue Apr 16 09:38:40 2024 by rpki-client on console-ams.rpki-client.org