$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e392e302f32342d3234203d3e203234323034.roa File: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (raw, json) Hash identifier: 8TSAFwAwazBqhy+GPHIR6ftOiuCtYAP9k8BxJqKNcD0= Subject key identifier: 63:38:AC:2E:C0:53:2E:22:8F:83:FF:60:50:59:D2:C7:C8:24:0B:A4 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 57EA22A7C0DF24A16264710DD42A64A30C2EB9DC Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e392e302f32342d3234203d3e203234323034.roa Signing time: Mon 31 Jul 2023 00:07:22 +0000 ROA not before: Mon 31 Jul 2023 00:02:22 +0000 ROA not after: Mon 29 Jul 2024 00:07:22 +0000 asID: 24204 IP address blocks: 203.80.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 12:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ea:22:a7:c0:df:24:a1:62:64:71:0d:d4:2a:64:a3:0c:2e:b9:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 31 00:02:22 2023 GMT Not After : Jul 29 00:07:22 2024 GMT Subject: CN=6338AC2EC0532E228F83FF605059D2C7C8240BA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3f:05:0b:44:ed:13:52:f6:6e:95:d6:7b:07: 1c:f0:ed:2e:72:77:5e:a0:89:20:79:80:a9:23:5f: 52:79:6c:d9:80:8d:f7:fb:4e:3f:cd:ca:3f:99:ab: 8b:a3:37:87:d3:22:b4:13:12:41:e6:e4:92:d1:d8: ff:54:bf:49:f4:8a:4c:6c:5c:36:e5:7b:0a:c4:4e: 49:b9:0f:5c:a2:2e:fa:d6:6e:c7:5c:33:62:eb:62: 77:cd:e6:f5:a2:1c:5b:ec:2e:6e:7a:56:b5:5d:ed: 28:dd:2f:c9:ea:91:25:95:58:49:11:39:ef:c1:e0: 85:4b:7b:c3:71:5c:e9:6f:e2:01:92:ad:cc:f6:98: 5e:37:b5:a4:12:8e:39:5f:c5:a2:8a:26:e8:8c:58: 03:6e:b4:d3:ae:de:fa:7a:8a:f8:c3:2e:af:c3:0f: 04:86:8c:65:79:91:c8:c0:66:a9:b4:ee:96:37:9c: 6e:1c:38:9e:9c:cb:6a:90:fe:1e:1b:a6:00:37:38: 20:bd:ec:19:76:98:d1:68:60:00:72:55:ca:80:f6: 2f:a6:a2:cf:c2:01:41:65:63:e8:3b:7e:3b:28:17: e7:ed:9e:d2:48:7b:ab:be:87:b5:ac:c1:18:9f:23: 98:9e:cf:69:be:48:e3:c4:47:69:31:60:1e:5b:0f: 40:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:38:AC:2E:C0:53:2E:22:8F:83:FF:60:50:59:D2:C7:C8:24:0B:A4 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e392e302f32342d3234203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.80.9.0/24 Signature Algorithm: sha256WithRSAEncryption 82:12:49:48:92:89:85:31:cb:c7:06:31:42:12:4b:c1:3e:e1: f3:4f:ea:1e:99:7e:ab:d4:ee:04:2a:3e:82:e5:bd:b2:74:f6: 01:90:1e:83:a5:1d:ca:c6:01:78:db:e7:a0:1a:b8:84:ad:41: 75:7e:21:06:08:8f:3a:8c:54:67:ac:a3:07:94:b8:ed:d6:ad: 01:f4:2b:fb:25:11:b2:3f:39:ae:61:fa:6f:84:12:64:7f:e9: d5:c5:f0:dd:17:1e:08:0a:0a:37:83:a5:01:99:47:8b:57:54: da:e4:d6:b1:45:b2:ce:03:93:0c:b7:0e:61:22:22:13:94:57: 22:df:b7:0b:85:e4:6b:77:a0:6a:53:40:ed:fa:5f:fb:87:4c: 95:be:8e:16:b2:d2:bd:73:4c:a7:dc:3c:ca:c6:0d:5b:34:52: a6:41:5d:67:78:c1:78:ef:a9:fa:ee:a7:9a:62:71:3e:46:56: d2:38:83:34:3d:0b:ee:26:78:c8:4d:ee:cf:74:7b:5a:93:b3: 9b:c7:46:37:6b:2a:7e:af:f0:cb:c2:7b:39:0d:1a:a8:37:11: 2c:24:c8:a5:52:69:18:e5:06:3e:f6:cc:d0:64:70:59:fd:82: 9b:d0:0e:74:e7:e6:21:4f:15:70:dd:0b:42:9c:85:de:e8:bb: 2c:4b:a1:97 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUV+oip8DfJKFiZHEN1CpkowwuudwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yMzA3MzEwMDAyMjJaFw0yNDA3MjkwMDA3MjJaMDMxMTAvBgNV BAMTKDYzMzhBQzJFQzA1MzJFMjI4RjgzRkY2MDUwNTlEMkM3QzgyNDBCQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIPwULRO0TUvZuldZ7Bxzw7S5y d16giSB5gKkjX1J5bNmAjff7Tj/Nyj+Zq4ujN4fTIrQTEkHm5JLR2P9Uv0n0ikxs XDblewrETkm5D1yiLvrWbsdcM2LrYnfN5vWiHFvsLm56VrVd7SjdL8nqkSWVWEkR Oe/B4IVLe8NxXOlv4gGSrcz2mF43taQSjjlfxaKKJuiMWANutNOu3vp6ivjDLq/D DwSGjGV5kcjAZqm07pY3nG4cOJ6cy2qQ/h4bpgA3OCC97Bl2mNFoYAByVcqA9i+m os/CAUFlY+g7fjsoF+ftntJIe6u+h7WswRifI5iez2m+SOPER2kxYB5bD0D3AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUYzisLsBTLiKPg/9gUFnSx8gkC6QwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMzIzMDMzMmUzODMwMmUzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLUAkwDQYJKoZIhvcNAQEL BQADggEBAIISSUiSiYUxy8cGMUISS8E+4fNP6h6ZfqvU7gQqPoLlvbJ09gGQHoOl HcrGAXjb56AauIStQXV+IQYIjzqMVGesoweUuO3WrQH0K/slEbI/Oa5h+m+EEmR/ 6dXF8N0XHggKCjeDpQGZR4tXVNrk1rFFss4Dkwy3DmEiIhOUVyLftwuF5Gt3oGpT QO36X/uHTJW+jhay0r1zTKfcPMrGDVs0UqZBXWd4wXjvqfrup5picT5GVtI4gzQ9 C+4meMhN7s90e1qTs5vHRjdrKn6v8MvCezkNGqg3ESwkyKVSaRjlBj72zNBkcFn9 gpvQDnTn5iFPFXDdC0Kchd7ouyxLoZc= -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:00 2024 by rpki-client on console-ams.rpki-client.org