$ rpki-client -vvf repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3230322e362e3230382e302f32302d3234203d3e203137343530.roa File: 3230322e362e3230382e302f32302d3234203d3e203137343530.roa (raw, json) Hash identifier: Qk8IA75d8pfvyntKMnhMG3UoUrbTIKAVSS8hjIagbuA= Subject key identifier: 74:82:1D:39:80:36:D4:AE:21:D0:00:20:41:F4:C6:5B:49:35:F3:30 Certificate issuer: /CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Certificate serial: 27E5913F19A8FD550735FE47C629FF85ECDCC724 Authority key identifier: 4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject info access: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3230322e362e3230382e302f32302d3234203d3e203137343530.roa Signing time: Tue 14 Nov 2023 02:32:12 +0000 ROA not before: Tue 14 Nov 2023 02:27:12 +0000 ROA not after: Tue 12 Nov 2024 02:32:12 +0000 asID: 17450 IP address blocks: 202.6.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 09:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:e5:91:3f:19:a8:fd:55:07:35:fe:47:c6:29:ff:85:ec:dc:c7:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Validity Not Before: Nov 14 02:27:12 2023 GMT Not After : Nov 12 02:32:12 2024 GMT Subject: CN=74821D398036D4AE21D0002041F4C65B4935F330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0f:dc:2e:94:74:79:dd:67:5a:10:d6:db:85: dd:a3:de:09:6b:db:5d:3e:41:d0:fb:75:93:d2:2d: 57:41:f2:32:70:64:2d:ce:7c:4f:a4:99:56:61:01: 91:e3:57:6f:a0:91:75:3c:82:57:d3:e1:85:5b:81: 87:c6:27:58:84:69:33:c9:18:b2:22:e2:59:ef:d5: a4:d9:fd:a4:53:77:ce:ae:39:31:8f:be:72:02:40: a0:a8:22:ad:a5:36:e7:c7:1c:06:46:9b:11:53:77: 13:15:45:5a:a6:e9:8d:7b:d0:6a:4b:02:0b:f8:21: 2f:ee:b3:95:5f:5e:a2:c1:a3:c7:c8:14:96:85:dd: fc:32:d3:24:f8:4d:f8:83:49:10:1f:d4:30:c6:89: 15:50:73:a8:37:93:ec:e3:1a:05:04:67:d7:43:1a: 4c:9f:29:fe:ee:19:45:6a:97:87:4e:94:bf:f4:cc: 27:52:7a:e9:45:35:a8:a9:93:92:91:97:ab:02:50: 28:b5:56:4d:ac:f7:b1:2b:e0:4f:c5:0b:9e:8c:63: 12:be:b3:e9:86:98:06:dc:b6:9d:93:82:a1:a6:17: 07:03:a1:51:c5:d9:ef:d8:c2:5f:32:56:7c:a2:60: 13:ad:05:69:07:a9:17:3f:8d:66:0f:36:61:3d:72: d7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:82:1D:39:80:36:D4:AE:21:D0:00:20:41:F4:C6:5B:49:35:F3:30 X509v3 Authority Key Identifier: keyid:4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/3230322e362e3230382e302f32302d3234203d3e203137343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.6.208.0/20 Signature Algorithm: sha256WithRSAEncryption 89:76:d5:b3:0f:24:50:04:f2:14:9d:3b:9f:79:01:c8:97:c0: a3:ac:7c:52:87:70:b8:1b:41:1d:12:19:d3:40:2e:9b:70:dd: 77:bc:1e:ac:a6:1e:18:62:ad:63:f7:c4:b7:b9:4b:20:13:93: b9:06:52:2e:c5:d2:a9:fe:8f:a9:00:d3:54:c0:6d:71:81:19: 90:68:4f:3c:f7:8a:a0:a7:51:db:f1:37:1e:f8:21:b3:8c:8a: d8:98:ab:4d:5f:80:3b:9e:e4:7a:e1:a1:2d:22:91:b5:19:36: fc:94:d1:1f:b8:63:50:88:da:ab:6e:72:2d:9b:87:a1:13:57: 17:22:35:77:47:58:62:e3:53:8b:fd:e0:fe:fd:45:44:55:28: 63:77:f2:03:95:9e:eb:38:a6:3f:32:95:9d:23:db:99:e8:81: 73:3b:59:37:e9:66:72:79:dd:a3:d8:4c:35:27:0e:1c:f7:2d: 13:16:c2:54:a9:b7:e6:43:b2:b1:38:1f:96:03:5a:a3:40:43: 8c:3d:81:d9:6d:87:c6:a6:9c:d1:dd:d0:a0:a6:be:71:d9:df: 5f:e2:5a:a4:d7:f8:aa:d6:1b:db:82:93:5b:61:41:a5:97:a0: 24:86:89:e7:89:b8:ab:f5:76:60:a3:48:b7:43:77:2d:6d:3a: ea:e6:5b:63 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJ+WRPxmo/VUHNf5Hxin/hezcxyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4Njkx NjM4QTcwNzAeFw0yMzExMTQwMjI3MTJaFw0yNDExMTIwMjMyMTJaMDMxMTAvBgNV BAMTKDc0ODIxRDM5ODAzNkQ0QUUyMUQwMDAyMDQxRjRDNjVCNDkzNUYzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6D9wulHR53WdaENbbhd2j3glr 210+QdD7dZPSLVdB8jJwZC3OfE+kmVZhAZHjV2+gkXU8glfT4YVbgYfGJ1iEaTPJ GLIi4lnv1aTZ/aRTd86uOTGPvnICQKCoIq2lNufHHAZGmxFTdxMVRVqm6Y170GpL Agv4IS/us5VfXqLBo8fIFJaF3fwy0yT4TfiDSRAf1DDGiRVQc6g3k+zjGgUEZ9dD GkyfKf7uGUVql4dOlL/0zCdSeulFNaipk5KRl6sCUCi1Vk2s97Er4E/FC56MYxK+ s+mGmAbctp2TgqGmFwcDoVHF2e/Ywl8yVnyiYBOtBWkHqRc/jWYPNmE9ctfpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdIIdOYA21K4h0AAgQfTGW0k18zAwHwYDVR0j BBgwFoAUSsfc2OsSNK3EJ66+OUnoaRY4pwcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzgwNjFmMS1mYTMwLTRiZDYtODFhMC0yZWM2NzA4MzZjNDIvMC80QUM3RENEOEVC MTIzNEFEQzQyN0FFQkUzOTQ5RTg2OTE2MzhBNzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4NjkxNjM4 QTcwNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzODA2MWYxLWZhMzAtNGJkNi04 MWEwLTJlYzY3MDgzNmM0Mi8wLzMyMzAzMjJlMzYyZTMyMzAzODJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzczNDM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKBtAwDQYJKoZIhvcN AQELBQADggEBAIl21bMPJFAE8hSdO595AciXwKOsfFKHcLgbQR0SGdNALptw3Xe8 HqymHhhirWP3xLe5SyATk7kGUi7F0qn+j6kA01TAbXGBGZBoTzz3iqCnUdvxNx74 IbOMitiYq01fgDue5HrhoS0ikbUZNvyU0R+4Y1CI2qtuci2bh6ETVxciNXdHWGLj U4v94P79RURVKGN38gOVnus4pj8ylZ0j25nogXM7WTfpZnJ53aPYTDUnDhz3LRMW wlSpt+ZDsrE4H5YDWqNAQ4w9gdlth8amnNHd0KCmvnHZ31/iWqTX+KrWG9uCk1th QaWXoCSGieeJuKv1dmCjSLdDdy1tOurmW2M= -----END CERTIFICATE-----Generated at Sat May 25 15:38:30 2024 by rpki-client on console-ams.rpki-client.org