$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230312e302f32342d3234203d3e203138313533.roa File: 3230322e37322e3230312e302f32342d3234203d3e203138313533.roa (raw, json) Hash identifier: OwJtj/x9oFx/Z+wLs0WAoenVsDhXM5w5XJVKrcgRCTg= Subject key identifier: CB:1E:90:D0:23:02:17:AF:E8:5E:BF:7C:F4:13:4E:34:F4:DA:8A:E4 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 4C5CA4410838F80A686CEC49AF9662BB13B83C54 Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230312e302f32342d3234203d3e203138313533.roa Signing time: Mon 31 Jul 2023 00:05:47 +0000 ROA not before: Mon 31 Jul 2023 00:00:47 +0000 ROA not after: Mon 29 Jul 2024 00:05:47 +0000 asID: 18153 IP address blocks: 202.72.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:5c:a4:41:08:38:f8:0a:68:6c:ec:49:af:96:62:bb:13:b8:3c:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jul 31 00:00:47 2023 GMT Not After : Jul 29 00:05:47 2024 GMT Subject: CN=CB1E90D0230217AFE85EBF7CF4134E34F4DA8AE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:88:64:d0:7c:64:ad:0a:9d:d2:2a:95:11:0b: f8:cc:e3:68:e6:32:0e:64:4d:3a:2a:a7:45:74:67: fe:bb:03:b8:ee:10:4b:64:ee:21:6a:ba:f0:c7:dc: 0f:69:82:89:f8:7b:e9:39:d0:8c:a4:f0:87:3d:fb: c0:f4:0b:fc:6a:6f:be:97:bc:01:03:a4:29:98:b3: 67:96:f6:ad:cb:b5:2b:65:a7:76:c5:d0:c7:d4:c2: 29:3b:e9:d8:b2:d6:37:88:f8:4f:cb:14:b7:3e:8e: 93:af:bf:38:87:d6:b9:c8:2a:3c:96:c7:b9:55:22: 35:90:ce:b2:4d:e6:ba:6c:95:e7:7c:d9:a8:e3:d3: 8e:5e:6c:ae:44:e2:af:e0:12:80:bc:b1:1c:4a:d3: 74:bf:4f:02:6f:af:a5:f0:1c:99:be:68:aa:c8:75: a4:12:b0:75:c2:d3:f6:ef:00:a4:db:86:11:fe:a0: f7:1b:a5:c0:e3:ec:21:59:39:f8:2e:65:33:48:b6: 99:d6:0a:a1:98:c1:b3:14:b4:25:3c:bd:5b:c5:9e: 94:6a:33:26:f5:1c:ae:25:37:f0:ef:ce:d0:05:0a: ae:e4:fe:91:cc:5b:a7:ae:5d:c6:3f:a6:e0:f5:94: e4:83:7a:42:c4:32:d3:e8:53:23:40:ae:0a:1f:d3: 0e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1E:90:D0:23:02:17:AF:E8:5E:BF:7C:F4:13:4E:34:F4:DA:8A:E4 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230312e302f32342d3234203d3e203138313533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.201.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:c4:79:ce:0e:02:df:e3:f5:95:f6:21:81:82:88:8b:bc:b8: bb:2f:cd:e1:23:b2:28:4d:c8:0f:1f:d5:5f:a5:a7:8c:03:69: e5:c5:d1:47:c9:66:25:5c:b0:0d:1b:1a:2f:1c:2a:8f:1f:80: f5:ca:6f:d4:c1:aa:05:5b:7f:8d:5f:f4:8a:23:7e:4d:3c:b6: a6:67:ff:00:35:c1:90:f0:69:71:fa:3d:91:d6:d6:58:25:2a: e5:76:3f:f1:a7:11:c0:49:11:16:94:b1:6a:86:e9:e1:25:97: 12:d2:33:71:a4:a3:84:ac:75:59:f6:9a:73:ab:36:4b:3f:2d: 90:6c:2b:a6:e6:09:49:cb:2d:b8:0b:44:4b:2a:f6:88:31:b6: 75:5f:cd:4d:83:a3:98:07:a6:4f:cc:00:7d:dd:49:1f:6d:1e: 0c:97:5d:a2:3a:7b:d5:09:ba:d3:a9:87:cc:7d:d4:bc:a3:bd: c8:c4:5b:07:46:a7:6d:e7:49:02:d5:eb:22:32:b2:2a:b3:e3: bf:83:52:24:31:72:55:0b:0b:9d:64:4b:3c:be:fd:35:de:de: b2:bb:89:95:3f:4c:80:72:7d:ff:63:24:ca:70:d0:7a:b1:50: 4f:ad:08:c7:77:e7:59:6f:3f:51:1d:8e:0a:ce:52:eb:72:8d: 84:40:28:e2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTFykQQg4+ApobOxJr5ZiuxO4PFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yMzA3MzEwMDAwNDdaFw0yNDA3MjkwMDA1NDdaMDMxMTAvBgNV BAMTKENCMUU5MEQwMjMwMjE3QUZFODVFQkY3Q0Y0MTM0RTM0RjREQThBRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2iGTQfGStCp3SKpURC/jM42jm Mg5kTToqp0V0Z/67A7juEEtk7iFquvDH3A9pgon4e+k50Iyk8Ic9+8D0C/xqb76X vAEDpCmYs2eW9q3LtStlp3bF0MfUwik76diy1jeI+E/LFLc+jpOvvziH1rnIKjyW x7lVIjWQzrJN5rpsled82ajj045ebK5E4q/gEoC8sRxK03S/TwJvr6XwHJm+aKrI daQSsHXC0/bvAKTbhhH+oPcbpcDj7CFZOfguZTNItpnWCqGYwbMUtCU8vVvFnpRq Myb1HK4lN/DvztAFCq7k/pHMW6euXcY/puD1lOSDekLEMtPoUyNArgof0w77AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyx6Q0CMCF6/oXr989BNONPTaiuQwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzIzMDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMxMzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIyTANBgkqhkiG 9w0BAQsFAAOCAQEAPMR5zg4C3+P1lfYhgYKIi7y4uy/N4SOyKE3IDx/VX6WnjANp 5cXRR8lmJVywDRsaLxwqjx+A9cpv1MGqBVt/jV/0iiN+TTy2pmf/ADXBkPBpcfo9 kdbWWCUq5XY/8acRwEkRFpSxaobp4SWXEtIzcaSjhKx1Wfaac6s2Sz8tkGwrpuYJ ScstuAtESyr2iDG2dV/NTYOjmAemT8wAfd1JH20eDJddojp71Qm606mHzH3UvKO9 yMRbB0anbedJAtXrIjKyKrPjv4NSJDFyVQsLnWRLPL79Nd7esruJlT9MgHJ9/2Mk ynDQerFQT60Ix3fnWW8/UR2OCs5S63KNhEAo4g== -----END CERTIFICATE-----Generated at Thu Apr 25 04:06:01 2024 by rpki-client on console-ams.rpki-client.org