$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31342e302f32342d3234203d3e203234323034.roa File: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (raw, json) Hash identifier: TjxBZprK+4c1VdoLERulYDZI7f7CTinOUgTlqvOLgCI= Subject key identifier: EF:7C:69:6E:92:4B:74:14:42:AB:CC:C7:3C:1A:68:24:4C:5B:0A:16 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 32D1B6DB0898B3DAC95BDCE1C279801418F43C4C Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31342e302f32342d3234203d3e203234323034.roa Signing time: Mon 31 Jul 2023 00:07:22 +0000 ROA not before: Mon 31 Jul 2023 00:02:22 +0000 ROA not after: Mon 29 Jul 2024 00:07:22 +0000 asID: 24204 IP address blocks: 203.80.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:d1:b6:db:08:98:b3:da:c9:5b:dc:e1:c2:79:80:14:18:f4:3c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 31 00:02:22 2023 GMT Not After : Jul 29 00:07:22 2024 GMT Subject: CN=EF7C696E924B741442ABCCC73C1A68244C5B0A16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b1:47:3e:6b:e0:45:47:1b:e8:0e:51:ca:07: ed:76:bc:00:ea:2c:6c:00:57:3e:f2:27:3f:61:95: 17:05:7b:bc:db:b5:bc:d3:6f:00:25:b3:bf:2b:a8: 17:a9:bd:0a:20:30:3b:ff:3d:3c:e3:6b:cc:ca:b6: 0f:a1:cb:b4:df:d4:1a:a9:53:9d:ac:a0:30:b6:cd: 15:f9:12:c0:2c:08:af:90:6a:e8:88:f8:c1:66:08: 56:2f:0a:3b:a6:52:e4:cc:2d:3d:b5:d7:12:b2:e5: cd:88:17:10:86:7e:1a:d1:d0:2b:e9:ce:c7:42:3d: be:da:d4:78:e7:77:f8:26:7a:cf:08:c7:75:67:d4: 17:87:cc:5b:db:42:ad:bb:b6:06:01:06:61:87:16: c5:01:68:4b:cf:41:07:2e:40:df:05:9e:b3:16:f6: 7e:8e:79:3e:2c:fd:08:83:73:72:c5:14:42:1d:52: 98:98:99:55:69:fe:b4:2c:34:ab:7a:48:29:11:42: 34:55:c1:11:ab:a2:7e:dd:5f:34:eb:e8:2e:3f:aa: a0:f3:05:3e:b7:cd:f5:e6:84:0b:8e:f5:a6:fd:d5: 2f:cf:9b:bb:61:db:76:4a:96:63:51:f7:85:14:b5: 6d:04:1d:27:07:52:0e:db:ae:dd:f7:ec:6c:da:31: 9c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:7C:69:6E:92:4B:74:14:42:AB:CC:C7:3C:1A:68:24:4C:5B:0A:16 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31342e302f32342d3234203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.80.14.0/24 Signature Algorithm: sha256WithRSAEncryption b2:f0:65:89:30:e0:a0:ad:3d:28:fc:4a:12:58:b1:a2:02:6a: e0:6c:7d:bf:84:16:ce:b9:1c:63:e5:74:66:eb:05:d8:7f:bd: 0e:bc:3b:c6:64:3a:08:8c:67:59:1d:9b:20:9c:d3:7e:83:2a: ca:9c:1d:80:e7:84:b5:a6:49:70:7b:f7:c0:eb:d8:45:8e:a1: 1d:7e:d1:f4:fa:dc:f2:90:d5:d8:37:46:07:54:87:32:d1:fb: 9d:d1:fd:b1:20:97:2b:20:c4:18:a2:d6:e5:b3:f1:eb:51:2d: 26:c8:e6:6c:02:7d:34:bf:70:a6:96:fc:50:df:ff:c0:f9:a7: 95:44:4e:61:34:02:c5:99:6b:be:9d:27:93:09:05:57:c4:e0: 7a:ed:b6:25:72:16:bf:9e:be:07:71:55:f1:7d:4f:9c:64:9f: d9:1a:fd:c3:e9:09:0c:60:58:69:66:e5:e7:78:c5:4b:1a:05: 62:7a:50:bf:97:09:ba:b6:cf:1b:96:23:1b:e0:4d:67:ef:7f: 12:a7:fa:40:b4:1c:37:1a:43:1a:ad:f9:65:cb:68:1e:7b:e0: 23:2f:5a:b9:65:d4:c5:db:2b:d7:cb:b4:5c:82:4c:ab:bd:be: f0:09:7c:13:2f:a4:ac:9e:87:9e:9b:a7:c2:f7:dc:c3:76:81: de:85:29:1e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMtG22wiYs9rJW9zhwnmAFBj0PEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yMzA3MzEwMDAyMjJaFw0yNDA3MjkwMDA3MjJaMDMxMTAvBgNV BAMTKEVGN0M2OTZFOTI0Qjc0MTQ0MkFCQ0NDNzNDMUE2ODI0NEM1QjBBMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwsUc+a+BFRxvoDlHKB+12vADq LGwAVz7yJz9hlRcFe7zbtbzTbwAls78rqBepvQogMDv/PTzja8zKtg+hy7Tf1Bqp U52soDC2zRX5EsAsCK+QauiI+MFmCFYvCjumUuTMLT211xKy5c2IFxCGfhrR0Cvp zsdCPb7a1Hjnd/gmes8Ix3Vn1BeHzFvbQq27tgYBBmGHFsUBaEvPQQcuQN8FnrMW 9n6OeT4s/QiDc3LFFEIdUpiYmVVp/rQsNKt6SCkRQjRVwRGron7dXzTr6C4/qqDz BT63zfXmhAuO9ab91S/Pm7th23ZKlmNR94UUtW0EHScHUg7brt337GzaMZzJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU73xpbpJLdBRCq8zHPBpoJExbChYwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNGE5MTA1LThkMmEtNGIzOC1h NmFlLTA1ZWFkNjk3MTlhMy8wLzMyMzAzMzJlMzgzMDJlMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLUA4wDQYJKoZIhvcN AQELBQADggEBALLwZYkw4KCtPSj8ShJYsaICauBsfb+EFs65HGPldGbrBdh/vQ68 O8ZkOgiMZ1kdmyCc036DKsqcHYDnhLWmSXB798Dr2EWOoR1+0fT63PKQ1dg3RgdU hzLR+53R/bEglysgxBii1uWz8etRLSbI5mwCfTS/cKaW/FDf/8D5p5VETmE0AsWZ a76dJ5MJBVfE4HrttiVyFr+evgdxVfF9T5xkn9ka/cPpCQxgWGlm5ed4xUsaBWJ6 UL+XCbq2zxuWIxvgTWfvfxKn+kC0HDcaQxqt+WXLaB574CMvWrll1MXbK9fLtFyC TKu9vvAJfBMvpKyeh56bp8L33MN2gd6FKR4= -----END CERTIFICATE-----Generated at Fri Apr 19 02:00:59 2024 by rpki-client on console-fra.rpki-client.org