$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139352e302f32342d3234203d3e203138313533.roa File: 3230322e37322e3139352e302f32342d3234203d3e203138313533.roa (raw, json) Hash identifier: k2b/oUfgY6lKTkY1tLWFpNrQkUG1OX0icWzO+8NnCfQ= Subject key identifier: 0D:93:6F:1E:EC:EA:C4:B8:CE:CD:02:F9:7D:32:ED:23:36:17:FC:47 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 18710A8DDBB372D3FB00A8AE1BA1CA74D1FF5B8E Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139352e302f32342d3234203d3e203138313533.roa Signing time: Mon 31 Jul 2023 00:05:46 +0000 ROA not before: Mon 31 Jul 2023 00:00:46 +0000 ROA not after: Mon 29 Jul 2024 00:05:46 +0000 asID: 18153 IP address blocks: 202.72.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:71:0a:8d:db:b3:72:d3:fb:00:a8:ae:1b:a1:ca:74:d1:ff:5b:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jul 31 00:00:46 2023 GMT Not After : Jul 29 00:05:46 2024 GMT Subject: CN=0D936F1EECEAC4B8CECD02F97D32ED233617FC47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7a:e8:2c:8d:11:d9:67:3b:2a:7a:92:d3:bb: 50:6f:ba:04:1e:a6:ea:84:19:36:8e:51:94:10:e8: a5:d6:c0:c3:ee:92:e3:06:d6:af:d3:d5:86:65:b3: d7:3e:71:01:8d:e7:73:0e:24:33:03:e3:ab:bc:9d: 58:9c:59:0d:b6:96:da:1c:f2:f2:c9:86:d3:e8:97: 15:ef:56:53:91:4f:ba:b8:7b:0a:88:46:7d:d0:ea: 3c:70:02:04:6c:57:5c:87:4b:5f:cb:9b:39:ca:44: 04:c4:45:46:a0:7c:74:83:5b:81:51:a5:de:6d:a1: c1:90:f7:b3:14:e0:47:29:07:64:fd:f9:3b:95:47: 47:90:24:85:7f:01:78:c0:16:a4:22:80:ba:9f:e1: 5e:a7:ad:49:02:62:e2:bd:53:62:a5:d4:52:93:d7: 94:75:39:a7:56:d5:a7:e6:f9:6e:e9:cf:4b:3c:89: d4:37:79:c5:35:07:ed:b0:24:79:ee:62:cd:65:36: 63:9e:2c:29:36:ad:44:d6:18:32:3f:9b:61:19:c9: 63:75:c5:ba:7b:cf:2f:21:4c:16:b5:15:af:e7:44: e2:b2:5f:cc:46:b6:9a:7c:a0:37:a1:fe:e6:ce:b0: a3:59:7a:1c:a2:76:74:98:ca:66:d7:1d:9d:25:31: af:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:93:6F:1E:EC:EA:C4:B8:CE:CD:02:F9:7D:32:ED:23:36:17:FC:47 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139352e302f32342d3234203d3e203138313533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.195.0/24 Signature Algorithm: sha256WithRSAEncryption 66:bb:35:c8:36:e8:c0:b5:04:25:d9:67:7a:d0:49:d5:94:ad: cf:4c:bc:f9:29:41:72:ff:14:47:29:9b:85:a1:ca:40:69:c6: 13:cf:dd:da:fe:2a:a0:e9:f2:c7:7a:b5:1e:af:9f:ab:5e:e3: 15:e0:23:fa:da:27:42:61:71:6e:b4:2e:75:a4:38:59:c9:3a: e8:26:75:fc:ae:c5:15:83:7b:52:65:93:e6:16:5a:4e:c7:95: 6f:7a:96:ec:de:4f:8f:b4:70:3b:b5:fb:fa:47:ac:dc:9a:de: c1:34:e8:71:b7:47:26:78:0e:90:14:78:26:86:50:ce:a1:b2: b8:cc:eb:f6:9f:46:bd:a9:77:16:9c:e5:4c:3c:df:dc:35:aa: 3f:9d:e9:b5:c5:7a:6d:92:78:77:20:1e:68:c4:2e:3e:82:36: d0:17:8f:00:46:1e:fb:f1:cd:b1:50:0e:41:75:0f:96:ee:26: 07:a2:4e:d4:74:1f:43:72:9b:fc:2c:d2:f7:46:e0:5a:cc:db: fa:df:7c:4d:c2:fa:4d:e2:e9:f1:d3:39:07:bd:b9:77:d7:60: a4:5c:35:37:05:89:70:a7:4c:67:47:5c:0f:fc:62:21:51:8f: 1d:82:e3:a1:fa:90:7f:63:02:be:f2:56:f3:6b:51:8c:0d:ba: 60:21:75:e0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGHEKjduzctP7AKiuG6HKdNH/W44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yMzA3MzEwMDAwNDZaFw0yNDA3MjkwMDA1NDZaMDMxMTAvBgNV BAMTKDBEOTM2RjFFRUNFQUM0QjhDRUNEMDJGOTdEMzJFRDIzMzYxN0ZDNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdeugsjRHZZzsqepLTu1BvugQe puqEGTaOUZQQ6KXWwMPukuMG1q/T1YZls9c+cQGN53MOJDMD46u8nVicWQ22ltoc 8vLJhtPolxXvVlORT7q4ewqIRn3Q6jxwAgRsV1yHS1/LmznKRATERUagfHSDW4FR pd5tocGQ97MU4EcpB2T9+TuVR0eQJIV/AXjAFqQigLqf4V6nrUkCYuK9U2Kl1FKT 15R1OadW1afm+W7pz0s8idQ3ecU1B+2wJHnuYs1lNmOeLCk2rUTWGDI/m2EZyWN1 xbp7zy8hTBa1Fa/nROKyX8xGtpp8oDeh/ubOsKNZehyidnSYymbXHZ0lMa8DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDZNvHuzqxLjOzQL5fTLtIzYX/EcwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzEzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMxMzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIwzANBgkqhkiG 9w0BAQsFAAOCAQEAZrs1yDbowLUEJdlnetBJ1ZStz0y8+SlBcv8URymbhaHKQGnG E8/d2v4qoOnyx3q1Hq+fq17jFeAj+tonQmFxbrQudaQ4Wck66CZ1/K7FFYN7UmWT 5hZaTseVb3qW7N5Pj7RwO7X7+kes3JrewTTocbdHJngOkBR4JoZQzqGyuMzr9p9G val3FpzlTDzf3DWqP53ptcV6bZJ4dyAeaMQuPoI20BePAEYe+/HNsVAOQXUPlu4m B6JO1HQfQ3Kb/CzS90bgWszb+t98TcL6TeLp8dM5B725d9dgpFw1NwWJcKdMZ0dc D/xiIVGPHYLjofqQf2MCvvJW82tRjA26YCF14A== -----END CERTIFICATE-----Generated at Thu Apr 25 04:06:01 2024 by rpki-client on console-ams.rpki-client.org