$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e2039373835.roa File: 3230322e36392e39362e302f32302d3234203d3e2039373835.roa (raw, json) Hash identifier: TqLgh4lvf6MIJbOUBm/DC+FwZISh4asalbl6cNHb4VQ= Subject key identifier: 59:D3:CE:7F:4D:77:A5:66:5D:95:0A:12:A2:01:8B:C2:D4:DD:FB:42 Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 4B0CF6A35FF2E851836B5C1D1E1901E33728BF51 Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e2039373835.roa Signing time: Mon 31 Jul 2023 00:13:34 +0000 ROA not before: Mon 31 Jul 2023 00:08:34 +0000 ROA not after: Mon 29 Jul 2024 00:13:34 +0000 asID: 9785 IP address blocks: 202.69.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 06:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:0c:f6:a3:5f:f2:e8:51:83:6b:5c:1d:1e:19:01:e3:37:28:bf:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Jul 31 00:08:34 2023 GMT Not After : Jul 29 00:13:34 2024 GMT Subject: CN=59D3CE7F4D77A5665D950A12A2018BC2D4DDFB42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:21:d8:36:9b:a6:52:67:c7:ec:c0:e7:d9:86: bc:f3:fa:b6:b3:3d:d1:26:3e:fe:72:2b:8c:c4:3a: b9:6e:59:09:31:2d:3e:1e:2c:33:9a:bb:bb:b8:dd: 86:bd:18:c1:fe:63:ec:82:76:00:e6:7e:79:2b:e9: 21:5b:73:23:ab:2c:54:b4:d6:42:26:c1:47:99:d7: c0:ee:9e:cf:70:3e:8c:aa:8e:34:e1:93:07:75:4b: 34:5b:84:fb:54:1a:1a:8d:6d:d3:ba:22:1a:a2:10: a0:1f:21:07:eb:73:d3:34:50:82:55:a2:64:dd:c8: 96:06:b9:73:06:1a:39:76:2a:d1:4b:8b:cc:d8:ec: f5:a8:e8:2a:42:2f:aa:e3:f6:8b:f0:13:f4:80:ee: db:fb:2c:84:0b:0a:d7:34:13:be:6a:55:b1:7a:70: 1c:7c:73:38:9c:2c:22:bc:8e:8e:ec:a0:d5:5d:12: 2a:34:86:be:77:5a:18:f7:ef:5d:4d:fa:9c:34:76: 11:42:85:23:d9:28:79:20:9c:06:4f:0b:ed:30:69: f8:1f:bb:eb:64:88:73:98:0c:ca:83:cc:24:55:1a: 84:8b:dc:58:f2:fd:86:61:6b:df:21:da:a5:fd:20: 3d:67:dd:ff:dc:69:d4:ca:b5:5c:36:c9:db:3d:12: ce:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D3:CE:7F:4D:77:A5:66:5D:95:0A:12:A2:01:8B:C2:D4:DD:FB:42 X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/3230322e36392e39362e302f32302d3234203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.69.96.0/20 Signature Algorithm: sha256WithRSAEncryption 55:19:27:a3:21:d8:42:e7:a5:20:e7:c7:ad:89:98:ef:c5:85: ce:58:8e:cb:03:cd:82:00:79:66:73:42:43:8a:4c:92:76:22: 22:af:a0:32:ec:93:62:f3:5b:f4:ee:5b:bb:bf:f7:10:b3:2e: 84:62:be:fa:15:b5:95:8f:11:96:08:26:f7:e5:58:cc:1b:5b: cf:ba:27:07:e6:50:76:9d:df:1f:49:51:42:8c:ff:d6:81:5d: 98:48:cb:0f:74:15:df:0b:82:8b:d2:19:aa:b1:2c:5b:ad:2a: 99:cb:88:36:0b:19:79:30:0b:5a:98:4c:16:72:71:c5:df:84: 0c:24:b9:c2:6d:7d:24:91:0a:10:ff:97:60:ef:fe:f9:3c:64: 8f:2b:b3:c0:55:1b:90:7f:47:9e:a4:a1:75:8b:89:af:e0:b9: cf:57:24:98:34:06:a8:7f:c9:73:54:3f:74:8f:ed:f0:3b:47: e9:8a:47:62:1c:58:98:ab:b0:aa:43:32:e7:43:01:0e:2f:cd: 17:72:9a:c4:be:69:4e:e0:35:e1:7a:91:9d:e6:c8:d3:f2:23: d6:e9:22:49:82:a0:b8:8a:b4:18:e2:72:1f:4a:8c:d1:fa:91: 8b:d0:2d:dc:c4:76:18:4e:0e:92:53:4f:f1:74:4c:a9:b3:8b: a6:d6:09:87 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUSwz2o1/y6FGDa1wdHhkB4zcov1EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yMzA3MzEwMDA4MzRaFw0yNDA3MjkwMDEzMzRaMDMxMTAvBgNV BAMTKDU5RDNDRTdGNEQ3N0E1NjY1RDk1MEExMkEyMDE4QkMyRDREREZCNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSIdg2m6ZSZ8fswOfZhrzz+raz PdEmPv5yK4zEOrluWQkxLT4eLDOau7u43Ya9GMH+Y+yCdgDmfnkr6SFbcyOrLFS0 1kImwUeZ18Duns9wPoyqjjThkwd1SzRbhPtUGhqNbdO6IhqiEKAfIQfrc9M0UIJV omTdyJYGuXMGGjl2KtFLi8zY7PWo6CpCL6rj9ovwE/SA7tv7LIQLCtc0E75qVbF6 cBx8czicLCK8jo7soNVdEio0hr53Whj3711N+pw0dhFChSPZKHkgnAZPC+0wafgf u+tkiHOYDMqDzCRVGoSL3Fjy/YZha98h2qX9ID1n3f/cadTKtVw2yds9Es5XAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUWdPOf013pWZdlQoSogGLwtTd+0IwHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjkwYzkwMDktYWQ1My00ZmE2LWEx ODMtMzRiMzQ1N2JlYTAzLzAvMzIzMDMyMmUzNjM5MmUzOTM2MmUzMDJmMzIzMDJk MzIzNDIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKRWAwDQYJKoZIhvcNAQEL BQADggEBAFUZJ6Mh2ELnpSDnx62JmO/Fhc5YjssDzYIAeWZzQkOKTJJ2IiKvoDLs k2LzW/TuW7u/9xCzLoRivvoVtZWPEZYIJvflWMwbW8+6JwfmUHad3x9JUUKM/9aB XZhIyw90Fd8LgovSGaqxLFutKpnLiDYLGXkwC1qYTBZyccXfhAwkucJtfSSRChD/ l2Dv/vk8ZI8rs8BVG5B/R56koXWLia/guc9XJJg0Bqh/yXNUP3SP7fA7R+mKR2Ic WJirsKpDMudDAQ4vzRdymsS+aU7gNeF6kZ3myNPyI9bpIkmCoLiKtBjich9KjNH6 kYvQLdzEdhhODpJTT/F0TKmzi6bWCYc= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:42 2024 by rpki-client on console-fra.rpki-client.org