$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31302e302f32342d3234203d3e203234323034.roa File: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (raw, json) Hash identifier: IH72DTP1OUOtU5wqW1xVvXj/E0hd99j6kGl6PQ2vQro= Subject key identifier: 88:F2:43:FD:4A:1F:05:AD:25:31:15:52:32:B6:64:1C:E1:B0:0F:C7 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 33B0ECB9D8A63FA722EB52D28474F3374A32D6EA Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31302e302f32342d3234203d3e203234323034.roa Signing time: Mon 31 Jul 2023 00:07:22 +0000 ROA not before: Mon 31 Jul 2023 00:02:22 +0000 ROA not after: Mon 29 Jul 2024 00:07:22 +0000 asID: 24204 IP address blocks: 203.80.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 12:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:b0:ec:b9:d8:a6:3f:a7:22:eb:52:d2:84:74:f3:37:4a:32:d6:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 31 00:02:22 2023 GMT Not After : Jul 29 00:07:22 2024 GMT Subject: CN=88F243FD4A1F05AD2531155232B6641CE1B00FC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d2:44:73:a7:d2:7f:a6:a8:fe:2f:01:a2:76: 12:5f:ce:47:63:0b:10:2e:b8:1e:73:b7:13:e8:58: c3:01:11:32:4f:bc:ab:cb:5d:e6:5f:47:fc:17:ff: 00:1f:3d:60:c5:3a:8a:d4:22:2c:55:43:e3:8e:6e: 14:4c:cc:34:4c:5e:d8:60:5c:e9:9f:6b:cc:3a:bb: f9:de:ec:58:c4:6f:54:ea:52:c3:c8:46:1a:23:0d: 69:fb:1f:0c:16:59:e0:cb:ff:6d:40:a1:43:33:8d: 10:79:fe:1b:fe:44:0d:dd:4f:a7:16:d4:b8:31:25: 00:ab:4c:50:56:fe:0b:cd:90:5d:fb:51:bb:ec:4e: b8:f6:1e:71:12:54:e0:83:17:02:ca:4a:ae:e5:3b: 1f:5a:55:8c:5f:88:e6:c2:4e:41:25:03:7f:72:9f: a7:80:7f:24:54:5d:0c:44:1b:78:4e:1a:a8:43:16: 52:b5:b5:ce:07:11:ab:0c:05:00:42:04:67:62:45: 9a:16:98:6e:d0:0b:87:63:dd:a9:58:42:63:4f:9b: ab:cf:a9:a2:d1:32:ed:c8:13:c6:af:03:94:51:98: 99:38:b9:b6:80:3b:09:70:04:79:b4:8f:94:55:a8: 7a:81:4f:1d:06:cc:5c:09:68:2f:cb:a2:fc:aa:a3: fb:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F2:43:FD:4A:1F:05:AD:25:31:15:52:32:B6:64:1C:E1:B0:0F:C7 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31302e302f32342d3234203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.80.10.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:7f:d6:fa:6a:d9:4b:50:95:45:71:c0:a9:0a:64:3b:7d:2a: 21:d1:d4:df:64:a3:e6:42:0f:d2:bc:80:93:ef:e5:c5:98:20: 62:a5:60:2f:f1:1e:76:9a:35:b2:70:8f:a8:57:e7:40:c4:fe: e4:e2:14:d7:0c:73:23:28:c1:79:9e:ef:5f:09:c4:77:07:60: 2d:9d:0a:3c:4f:bb:53:a1:58:ba:07:49:d4:7c:69:73:36:81: c3:04:ce:53:bf:a7:14:19:8d:43:93:e2:d8:d2:00:e3:bf:4a: 34:e4:f7:1d:e7:d9:c3:2a:5c:f4:72:6f:86:73:64:66:41:65: 12:0a:cc:b2:f5:92:92:b4:40:30:a0:2d:97:6d:da:26:db:f7: fa:3d:e7:dc:0a:2f:62:0b:71:32:6c:76:69:9d:b0:81:6d:e9: ca:b2:2e:ee:29:41:62:97:19:4b:a3:06:49:ef:fc:f0:e2:39: 77:1e:bf:59:8e:10:4d:06:22:f2:ec:0a:e2:d7:7a:99:d6:1b: b6:d7:3d:ea:88:f5:9a:3a:00:a2:0b:d7:f2:b1:89:6a:3d:cd: 4b:80:28:62:a1:83:f5:1c:cf:af:86:1c:b8:9b:cb:b3:7c:e3: c2:f9:c2:97:bd:02:a4:b4:5d:4e:b7:06:85:4a:3b:3f:45:fe: ff:b9:30:57 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUM7DsudimP6ci61LShHTzN0oy1uowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yMzA3MzEwMDAyMjJaFw0yNDA3MjkwMDA3MjJaMDMxMTAvBgNV BAMTKDg4RjI0M0ZENEExRjA1QUQyNTMxMTU1MjMyQjY2NDFDRTFCMDBGQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl0kRzp9J/pqj+LwGidhJfzkdj CxAuuB5ztxPoWMMBETJPvKvLXeZfR/wX/wAfPWDFOorUIixVQ+OObhRMzDRMXthg XOmfa8w6u/ne7FjEb1TqUsPIRhojDWn7HwwWWeDL/21AoUMzjRB5/hv+RA3dT6cW 1LgxJQCrTFBW/gvNkF37UbvsTrj2HnESVOCDFwLKSq7lOx9aVYxfiObCTkElA39y n6eAfyRUXQxEG3hOGqhDFlK1tc4HEasMBQBCBGdiRZoWmG7QC4dj3alYQmNPm6vP qaLRMu3IE8avA5RRmJk4ubaAOwlwBHm0j5RVqHqBTx0GzFwJaC/Lovyqo/sFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUiPJD/UofBa0lMRVSMrZkHOGwD8cwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNGE5MTA1LThkMmEtNGIzOC1h NmFlLTA1ZWFkNjk3MTlhMy8wLzMyMzAzMzJlMzgzMDJlMzEzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLUAowDQYJKoZIhvcN AQELBQADggEBAD1/1vpq2UtQlUVxwKkKZDt9KiHR1N9ko+ZCD9K8gJPv5cWYIGKl YC/xHnaaNbJwj6hX50DE/uTiFNcMcyMowXme718JxHcHYC2dCjxPu1OhWLoHSdR8 aXM2gcMEzlO/pxQZjUOT4tjSAOO/SjTk9x3n2cMqXPRyb4ZzZGZBZRIKzLL1kpK0 QDCgLZdt2ibb9/o959wKL2ILcTJsdmmdsIFt6cqyLu4pQWKXGUujBknv/PDiOXce v1mOEE0GIvLsCuLXepnWG7bXPeqI9Zo6AKIL1/KxiWo9zUuAKGKhg/Ucz6+GHLib y7N848L5wpe9AqS0XU63BoVKOz9F/v+5MFc= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:38 2024 by rpki-client on console-fra.rpki-client.org