$ rpki-client -vvf repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/3230322e35312e3232342e302f32302d3234203d3e203338313434.roa File: 3230322e35312e3232342e302f32302d3234203d3e203338313434.roa (raw, json) Hash identifier: ftWHEPt8khlPW77XWF580trh/VMiM4pzaRRRyvL9hO8= Subject key identifier: 65:08:EC:F6:1E:0D:F2:E5:95:39:42:F7:6F:52:80:F3:CC:63:CC:1E Certificate issuer: /CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Certificate serial: 198A738090129396E8A20B0EB31F18810C5634BE Authority key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/3230322e35312e3232342e302f32302d3234203d3e203338313434.roa Signing time: Mon 31 Jul 2023 00:09:32 +0000 ROA not before: Mon 31 Jul 2023 00:04:32 +0000 ROA not after: Mon 29 Jul 2024 00:09:32 +0000 asID: 38144 IP address blocks: 202.51.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:8a:73:80:90:12:93:96:e8:a2:0b:0e:b3:1f:18:81:0c:56:34:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Validity Not Before: Jul 31 00:04:32 2023 GMT Not After : Jul 29 00:09:32 2024 GMT Subject: CN=6508ECF61E0DF2E5953942F76F5280F3CC63CC1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:df:de:7f:f0:9f:7b:a4:5c:20:f3:91:9d:ae: e5:e3:7d:a6:42:ee:eb:2d:56:fd:07:3e:34:17:2b: b1:18:0f:05:6e:8c:00:8f:5d:2e:fc:91:5e:53:b9: 35:e3:be:8f:b7:e9:a9:b1:45:e4:01:eb:20:f7:82: ce:49:97:57:47:f6:51:b5:67:ae:7d:19:da:51:ee: c7:f6:86:a9:38:ac:bf:d0:3f:a5:64:81:fd:48:a5: 26:04:99:4b:2b:95:cd:61:27:14:ec:fd:13:12:5e: c8:27:bc:59:5f:8f:35:6b:92:4e:8d:72:19:de:db: 89:e5:91:14:cc:c0:b5:60:31:f7:92:ba:40:d2:21: 28:4c:5d:8b:e1:ce:ed:c6:6e:a6:57:30:80:d5:c3: f3:0d:cf:8c:2c:e8:0f:e6:d9:71:fd:57:14:27:dd: 89:be:d4:5f:07:a0:1d:b4:67:da:f6:29:83:a2:bc: 01:da:dc:4e:1b:8b:81:7a:17:61:38:ed:94:51:45: 8f:0a:b0:0f:58:66:b0:59:a1:4d:d8:aa:4a:b2:56: e5:d2:26:f8:bc:c0:f8:08:b7:3e:6e:72:47:b1:20: df:ed:7b:2f:be:4d:29:ed:8d:76:a7:0f:b3:49:57: 7c:e4:e2:cc:a7:aa:54:d2:83:e0:71:5a:c7:05:31: 7a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:08:EC:F6:1E:0D:F2:E5:95:39:42:F7:6F:52:80:F3:CC:63:CC:1E X509v3 Authority Key Identifier: keyid:25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/3230322e35312e3232342e302f32302d3234203d3e203338313434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.224.0/20 Signature Algorithm: sha256WithRSAEncryption 1a:fb:8d:05:d4:e4:40:96:84:24:4d:71:48:1f:c0:1c:cd:99: 62:e8:fd:1b:87:02:a8:2b:0f:09:87:db:92:8c:ed:e6:83:35: 4d:5e:84:4a:69:f0:c2:6b:62:48:3d:7b:1d:09:df:85:01:e8: aa:c2:9a:3e:3e:09:08:68:68:1c:fe:7e:dd:57:63:96:13:28: ea:5a:b5:91:bf:7e:02:4c:a2:26:e5:90:1d:88:a0:33:f6:4c: ab:bb:6d:7f:de:3c:72:13:da:75:7c:8a:91:76:f2:44:fe:8e: a7:52:77:d8:7d:46:92:25:39:68:52:84:c5:ae:77:97:d9:59: 95:c4:f5:41:ca:01:8c:9d:f5:06:bd:3f:39:cd:43:a3:c0:b5: 8a:74:3f:1a:d6:57:e3:02:6a:56:ef:0d:58:14:2a:29:06:ba: be:66:b1:ba:e3:ae:3b:6d:d3:f4:9b:4c:94:88:27:7c:d0:21: ee:84:04:61:47:20:21:f0:ec:cf:23:8e:9a:e2:9e:23:3f:e4: 76:85:49:c0:81:2b:1e:4f:97:06:c5:41:2f:4f:b7:0b:54:24: 5f:34:99:e9:f9:fd:3a:fc:be:73:78:63:48:80:e6:12:99:76: c1:e9:31:34:73:c2:e2:2a:19:9d:38:31:37:36:c9:a2:04:f6: 88:ef:4c:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGYpzgJASk5boogsOsx8YgQxWNL4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQw NThEQTEwMTAeFw0yMzA3MzEwMDA0MzJaFw0yNDA3MjkwMDA5MzJaMDMxMTAvBgNV BAMTKDY1MDhFQ0Y2MUUwREYyRTU5NTM5NDJGNzZGNTI4MEYzQ0M2M0NDMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb395/8J97pFwg85GdruXjfaZC 7ustVv0HPjQXK7EYDwVujACPXS78kV5TuTXjvo+36amxReQB6yD3gs5Jl1dH9lG1 Z659GdpR7sf2hqk4rL/QP6Vkgf1IpSYEmUsrlc1hJxTs/RMSXsgnvFlfjzVrkk6N chne24nlkRTMwLVgMfeSukDSIShMXYvhzu3GbqZXMIDVw/MNz4ws6A/m2XH9VxQn 3Ym+1F8HoB20Z9r2KYOivAHa3E4bi4F6F2E47ZRRRY8KsA9YZrBZoU3YqkqyVuXS Jvi8wPgItz5uckexIN/tey++TSntjXanD7NJV3zk4synqlTSg+BxWscFMXqlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZQjs9h4N8uWVOUL3b1KA88xjzB4wHwYDVR0j BBgwFoAUJT4rtN5GevCPGRr3Yy7jvQWNoQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2Q3NTM2ZC05ZTEwLTRkNDktYjZjYS0wNDFjYzlhNTkxNGUvMC8yNTNFMkJCNERF NDY3QUYwOEYxOTFBRjc2MzJFRTNCRDA1OERBMTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQwNThE QTEwMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjZDc1MzZkLTllMTAtNGQ0OS1i NmNhLTA0MWNjOWE1OTE0ZS8wLzMyMzAzMjJlMzUzMTJlMzIzMjM0MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMoz4DANBgkqhkiG 9w0BAQsFAAOCAQEAGvuNBdTkQJaEJE1xSB/AHM2ZYuj9G4cCqCsPCYfbkozt5oM1 TV6ESmnwwmtiSD17HQnfhQHoqsKaPj4JCGhoHP5+3VdjlhMo6lq1kb9+AkyiJuWQ HYigM/ZMq7ttf948chPadXyKkXbyRP6Op1J32H1GkiU5aFKExa53l9lZlcT1QcoB jJ31Br0/Oc1Do8C1inQ/GtZX4wJqVu8NWBQqKQa6vmaxuuOuO23T9JtMlIgnfNAh 7oQEYUcgIfDszyOOmuKeIz/kdoVJwIErHk+XBsVBL0+3C1QkXzSZ6fn9Ovy+c3hj SIDmEpl2wekxNHPC4ioZnTgxNzbJogT2iO9MKw== -----END CERTIFICATE-----Generated at Fri Apr 19 01:43:22 2024 by rpki-client on console-ams.rpki-client.org