$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35342e302f32342d3234203d3e203338313435.roa File: 3230322e3138302e35342e302f32342d3234203d3e203338313435.roa (raw, json) Hash identifier: csqmFGT2WsvOTqTZvlpI5FVNv3w2+vKfLbILYbRXW7I= Subject key identifier: AA:29:3E:F7:A8:54:E3:A5:CB:F1:12:D3:8D:3B:4B:3A:36:D3:62:D9 Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1 Certificate serial: 7B062146C30994EFF4500B1F67395892A90BC19E Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35342e302f32342d3234203d3e203338313435.roa Signing time: Thu 12 Oct 2023 06:00:00 +0000 ROA not before: Thu 12 Oct 2023 05:55:00 +0000 ROA not after: Thu 10 Oct 2024 06:00:00 +0000 asID: 38145 IP address blocks: 202.180.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 12:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:06:21:46:c3:09:94:ef:f4:50:0b:1f:67:39:58:92:a9:0b:c1:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1 Validity Not Before: Oct 12 05:55:00 2023 GMT Not After : Oct 10 06:00:00 2024 GMT Subject: CN=AA293EF7A854E3A5CBF112D38D3B4B3A36D362D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9d:84:71:81:6c:b1:f1:f5:2a:65:28:ed:29: 28:98:d4:5d:b1:59:ca:be:d8:16:61:ae:81:5d:b2: 82:da:49:a4:90:6b:fc:da:ab:52:6a:77:00:60:9b: 39:1e:4f:85:3b:76:35:f7:a6:c8:19:d6:34:f7:c7: 8a:3a:01:97:45:1b:60:53:49:36:f8:c2:56:a3:30: 66:15:5c:b6:7f:b6:b6:d1:2f:01:34:45:fc:c4:57: 39:d6:78:d5:38:ca:93:0a:4f:8e:33:59:a8:91:1c: 11:21:3f:cc:c3:11:40:28:fa:f7:42:72:29:4c:61: 36:7b:64:55:6f:89:2a:d3:95:28:32:07:c9:cd:48: 4d:8f:5d:c6:7f:3a:04:a2:31:52:f4:dd:d7:41:ae: 38:64:d7:5d:f1:1d:d5:af:c7:52:cd:bc:ff:af:ca: 4e:d1:74:54:44:07:fc:39:b3:3d:5a:65:fd:bc:7c: 90:11:aa:f0:1c:0c:4e:87:d3:e4:62:8e:7b:47:0b: ac:e5:6a:74:19:4c:56:6d:63:23:36:18:71:7c:39: a8:c9:42:dd:45:6a:8b:f4:d3:df:fd:3b:23:e0:01: a2:bb:ec:ff:94:d3:99:39:66:cc:e3:e9:42:ed:9a: 46:86:c2:78:c6:84:b3:c2:a3:bd:cc:9e:63:05:4d: 0d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:29:3E:F7:A8:54:E3:A5:CB:F1:12:D3:8D:3B:4B:3A:36:D3:62:D9 X509v3 Authority Key Identifier: keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35342e302f32342d3234203d3e203338313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.54.0/24 Signature Algorithm: sha256WithRSAEncryption 33:7b:a6:47:be:f3:a3:39:ef:de:28:f0:4f:35:4e:02:e3:a5: b9:32:55:15:86:a3:47:d2:80:c8:2a:93:31:17:8f:d0:fc:c4: 69:ee:53:5d:d5:91:91:d8:5b:fd:0d:92:7a:c0:d1:79:46:1f: ab:3c:78:ce:6a:3e:75:24:ad:bf:74:34:21:c6:fd:56:36:a3: 14:c7:52:22:ac:5e:39:1f:33:4d:2c:86:d9:7a:63:fd:29:02: 48:36:30:f0:a8:73:f8:d3:35:f6:7c:48:a2:73:a8:a6:aa:4b: 2d:e9:f7:ce:b6:cd:07:c0:30:e2:64:e4:3e:2d:ce:7c:ea:8d: a3:d5:d0:b0:eb:60:f6:3f:ff:e4:4b:3b:d5:1c:ba:a1:0e:7e: 2e:40:bc:5f:85:ec:88:89:28:56:e3:37:da:7c:22:80:cc:89: f5:cf:1e:49:54:e5:11:35:c3:d4:53:80:95:de:4d:a3:63:c8: 37:84:40:41:7b:92:74:4c:01:fc:c7:11:40:a0:9f:18:81:46: 05:2c:a5:72:52:6a:c9:5c:9a:42:40:68:b0:31:0a:2f:bc:34: fc:77:3f:a6:c8:5a:2e:bf:cd:2f:f4:37:71:d4:e3:b0:4c:1a: ef:50:7b:5b:0b:9e:62:53:99:1c:ff:4a:7f:eb:bb:1e:e4:d4: 5a:a6:fd:92 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUewYhRsMJlO/0UAsfZzlYkqkLwZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEy Rjc0NDdEMTAeFw0yMzEwMTIwNTU1MDBaFw0yNDEwMTAwNjAwMDBaMDMxMTAvBgNV BAMTKEFBMjkzRUY3QTg1NEUzQTVDQkYxMTJEMzhEM0I0QjNBMzZEMzYyRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVnYRxgWyx8fUqZSjtKSiY1F2x Wcq+2BZhroFdsoLaSaSQa/zaq1JqdwBgmzkeT4U7djX3psgZ1jT3x4o6AZdFG2BT STb4wlajMGYVXLZ/trbRLwE0RfzEVznWeNU4ypMKT44zWaiRHBEhP8zDEUAo+vdC cilMYTZ7ZFVviSrTlSgyB8nNSE2PXcZ/OgSiMVL03ddBrjhk113xHdWvx1LNvP+v yk7RdFREB/w5sz1aZf28fJARqvAcDE6H0+RijntHC6zlanQZTFZtYyM2GHF8OajJ Qt1Faov009/9OyPgAaK77P+U05k5Zszj6ULtmkaGwnjGhLPCo73MnmMFTQ09AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqik+96hU46XL8RLTjTtLOjbTYtkwHwYDVR0j BBgwFoAUNlRUrwCQ+eYjhhryEghVQS90R9EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Nzk4NGUzYS00OGY5LTRjZGEtYmU2Yy00MDA2YzA4ZjhmZDIvMC8zNjU0NTRBRjAw OTBGOUU2MjM4NjFBRjIxMjA4NTU0MTJGNzQ0N0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY1NDU0QUYwMDkwRjlFNjIzODYxQUYyMTIwODU1NDEyRjc0 NDdEMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3OTg0ZTNhLTQ4ZjktNGNkYS1i ZTZjLTQwMDZjMDhmOGZkMi8wLzMyMzAzMjJlMzEzODMwMmUzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMq0NjANBgkqhkiG 9w0BAQsFAAOCAQEAM3umR77zoznv3ijwTzVOAuOluTJVFYajR9KAyCqTMReP0PzE ae5TXdWRkdhb/Q2SesDReUYfqzx4zmo+dSStv3Q0Icb9VjajFMdSIqxeOR8zTSyG 2Xpj/SkCSDYw8Khz+NM19nxIonOopqpLLen3zrbNB8Aw4mTkPi3OfOqNo9XQsOtg 9j//5Es71Ry6oQ5+LkC8X4XsiIkoVuM32nwigMyJ9c8eSVTlETXD1FOAld5No2PI N4RAQXuSdEwB/McRQKCfGIFGBSylclJqyVyaQkBosDEKL7w0/Hc/pshaLr/NL/Q3 cdTjsEwa71B7WwueYlOZHP9Kf+u7HuTUWqb9kg== -----END CERTIFICATE-----Generated at Wed May 1 07:05:33 2024 by rpki-client on console-fra.rpki-client.org