$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139382e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3139382e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: 6uCI7L6akhK07by26Q09iYhwHV+lHYCtb6jAIsgAih0= Subject key identifier: 33:41:05:14:1D:42:BF:D8:F7:32:29:CB:5A:33:3A:4E:84:BE:49:57 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 32C92FA9AF5797CF046B0559C5886B8AFBED63DF Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139382e302f32342d3234203d3e203538353532.roa Signing time: Mon 31 Jul 2023 00:05:45 +0000 ROA not before: Mon 31 Jul 2023 00:00:45 +0000 ROA not after: Mon 29 Jul 2024 00:05:45 +0000 asID: 58552 IP address blocks: 202.72.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c9:2f:a9:af:57:97:cf:04:6b:05:59:c5:88:6b:8a:fb:ed:63:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jul 31 00:00:45 2023 GMT Not After : Jul 29 00:05:45 2024 GMT Subject: CN=334105141D42BFD8F73229CB5A333A4E84BE4957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:74:55:2e:97:8c:f0:f4:48:86:9a:3b:e2:8d: 70:9d:56:de:39:97:5c:31:44:ff:51:77:83:27:46: 75:da:56:88:1e:3b:c6:6f:3a:d6:50:d2:54:85:95: d4:fd:3b:65:70:46:9e:25:1a:5b:00:0e:53:3e:f1: 0e:35:3e:65:35:2d:21:cf:a8:81:01:c7:2a:88:f5: ff:d7:02:ca:99:d7:f3:81:b0:c0:31:d9:cb:75:29: 6c:eb:cf:4d:99:fc:c1:71:b4:8f:9a:2c:03:67:16: 2c:0b:5f:3f:f7:42:0b:a9:4d:01:ad:a8:51:32:9b: 1c:d4:ad:fd:39:e9:88:59:6e:a7:06:30:8c:f9:7c: 4d:c4:f1:5d:f6:38:a2:10:96:28:cc:6f:6e:45:59: 95:d4:51:00:b3:ac:ae:a3:19:e8:7e:18:51:02:69: 8e:53:59:bf:c5:93:3d:22:ed:96:ae:ac:05:9f:bf: 0d:e3:74:98:94:02:b6:ac:da:49:f1:51:21:40:0a: a8:d1:94:4a:d7:a9:ad:d7:f5:9a:19:aa:fa:5b:64: 9c:1a:ae:b9:e5:79:ea:4c:f4:20:dd:26:36:02:71: 77:70:58:22:b4:d8:3d:07:35:1b:48:f8:0c:b4:bb: dd:f4:c8:59:c1:3a:ce:70:fc:b9:2c:29:dc:38:fc: ae:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:41:05:14:1D:42:BF:D8:F7:32:29:CB:5A:33:3A:4E:84:BE:49:57 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139382e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.198.0/24 Signature Algorithm: sha256WithRSAEncryption 23:df:dd:bf:f2:b6:ed:93:36:b7:5f:59:93:e8:35:6d:0d:c0: 3b:3c:4c:8c:3a:1c:3a:ed:0d:b3:ee:7d:a1:1d:b8:39:bd:09: 6a:cb:a2:06:d5:0b:b8:32:67:14:b5:88:8d:1c:52:b2:9e:c1: 88:6d:a0:13:b2:cd:8d:66:3e:b4:d3:d8:48:18:99:f7:c4:62: e6:99:48:7b:9a:f4:ee:a8:3a:5c:96:aa:52:3e:65:93:bc:81: d6:20:79:dc:e2:55:4e:bb:70:12:94:b0:22:17:71:c2:64:72: 5b:c4:ac:a7:35:3c:17:f2:f6:7d:3b:7f:97:c1:7f:60:cd:25: 75:87:28:68:db:ff:8b:94:19:8f:95:35:fb:91:10:09:25:3e: 0b:46:a2:8c:da:9d:59:20:1a:80:09:2b:7a:80:ad:8a:52:0d: 8b:9c:82:44:7e:2f:58:ab:19:73:26:9a:77:f0:a1:22:25:7d: 61:2a:78:a6:0d:ab:f8:82:15:d7:97:96:de:a0:6b:95:9b:d4: cb:30:14:c9:b7:0a:f0:a5:0e:72:6d:4c:e0:79:42:53:6d:13: 78:07:01:7a:e6:6d:2c:fb:4a:dc:65:c8:ce:ae:a5:dc:64:40: 42:6f:56:8d:fa:60:93:62:7b:ce:04:39:59:7a:c1:3a:61:5d: f4:49:db:07 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMskvqa9Xl88EawVZxYhrivvtY98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yMzA3MzEwMDAwNDVaFw0yNDA3MjkwMDA1NDVaMDMxMTAvBgNV BAMTKDMzNDEwNTE0MUQ0MkJGRDhGNzMyMjlDQjVBMzMzQTRFODRCRTQ5NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2dFUul4zw9EiGmjvijXCdVt45 l1wxRP9Rd4MnRnXaVogeO8ZvOtZQ0lSFldT9O2VwRp4lGlsADlM+8Q41PmU1LSHP qIEBxyqI9f/XAsqZ1/OBsMAx2ct1KWzrz02Z/MFxtI+aLANnFiwLXz/3QgupTQGt qFEymxzUrf056YhZbqcGMIz5fE3E8V32OKIQlijMb25FWZXUUQCzrK6jGeh+GFEC aY5TWb/Fkz0i7ZaurAWfvw3jdJiUAras2knxUSFACqjRlErXqa3X9ZoZqvpbZJwa rrnleepM9CDdJjYCcXdwWCK02D0HNRtI+Ay0u930yFnBOs5w/LksKdw4/K5ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUM0EFFB1Cv9j3MinLWjM6ToS+SVcwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIxjANBgkqhkiG 9w0BAQsFAAOCAQEAI9/dv/K27ZM2t19Zk+g1bQ3AOzxMjDocOu0Ns+59oR24Ob0J asuiBtULuDJnFLWIjRxSsp7BiG2gE7LNjWY+tNPYSBiZ98Ri5plIe5r07qg6XJaq Uj5lk7yB1iB53OJVTrtwEpSwIhdxwmRyW8SspzU8F/L2fTt/l8F/YM0ldYcoaNv/ i5QZj5U1+5EQCSU+C0aijNqdWSAagAkreoCtilINi5yCRH4vWKsZcyaad/ChIiV9 YSp4pg2r+IIV15eW3qBrlZvUyzAUybcK8KUOcm1M4HlCU20TeAcBeuZtLPtK3GXI zq6l3GRAQm9Wjfpgk2J7zgQ5WXrBOmFd9EnbBw== -----END CERTIFICATE-----Generated at Thu Apr 25 04:06:01 2024 by rpki-client on console-ams.rpki-client.org