$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38332e302f32342d3234203d3e20313430343433.roa File: 3230322e3132352e38332e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: r52MQgfzQbhHmNjaYpLEID3VPGnR0OubDyf33ZtoQOE= Subject key identifier: 9C:76:41:5B:17:2F:87:AA:2C:87:44:04:F0:4A:CD:4A:58:0B:D0:9E Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 76B5B6C91F5F088A9A4267DB6264EB311725CBCB Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38332e302f32342d3234203d3e20313430343433.roa Signing time: Tue 13 Jun 2023 05:00:00 +0000 ROA not before: Tue 13 Jun 2023 04:55:00 +0000 ROA not after: Tue 11 Jun 2024 05:00:00 +0000 asID: 140443 IP address blocks: 202.125.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b5:b6:c9:1f:5f:08:8a:9a:42:67:db:62:64:eb:31:17:25:cb:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Jun 13 04:55:00 2023 GMT Not After : Jun 11 05:00:00 2024 GMT Subject: CN=9C76415B172F87AA2C874404F04ACD4A580BD09E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ac:79:d0:88:e3:14:f4:2f:ed:28:67:c5:2a: 8b:4d:05:59:96:da:bb:01:2d:a1:48:1b:04:0f:f7: ab:7b:6c:f3:d7:64:08:21:32:6c:4c:c4:df:1e:4e: fd:5e:05:d9:73:13:93:1c:47:5d:50:6d:a7:04:2c: 9d:30:a6:36:dc:72:cb:3e:ab:b5:66:db:3a:70:27: 4b:23:71:b9:a6:95:b1:88:9b:a3:73:a8:03:01:db: 7c:79:92:dd:de:33:05:19:49:61:22:20:c7:d4:36: 57:a1:ba:da:2e:07:78:11:44:e9:9f:06:b3:03:40: 02:ba:ab:37:6c:09:5c:8a:3d:f1:48:ee:dc:f6:86: 30:47:f4:25:e7:25:7e:81:b8:72:8a:9b:86:e2:c9: a9:06:8b:a5:4e:b3:41:eb:bb:cf:cb:f9:15:4a:50: 66:c5:8e:de:9d:fa:10:3e:86:51:0e:1f:f2:52:a8: 2a:15:4b:bf:fc:a3:0c:21:13:2d:41:c8:bc:53:ac: ea:2d:fa:80:81:3a:db:8f:6c:30:95:26:a0:4e:59: d3:2f:70:d4:d3:96:2a:de:ca:c5:1c:5c:78:aa:fc: 9f:64:4f:55:e1:e7:15:1c:3a:e9:d8:bd:0f:c2:e0: aa:a1:36:09:d3:7b:e6:34:50:13:47:c9:69:78:ba: b6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:76:41:5B:17:2F:87:AA:2C:87:44:04:F0:4A:CD:4A:58:0B:D0:9E X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38332e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.125.83.0/24 Signature Algorithm: sha256WithRSAEncryption aa:2a:9d:27:6e:3e:53:1a:51:60:68:96:8e:80:20:45:0c:67: 36:82:1d:ff:cc:04:6c:6b:57:c8:9b:cc:19:3a:66:a8:d9:dd: 10:21:7c:39:08:9a:d6:87:32:a5:dc:05:40:72:8f:43:b6:03: 82:04:10:40:ac:69:52:27:ea:1f:76:13:a4:a5:c5:56:30:e6: f6:cd:a3:3e:fd:fa:1e:d1:79:7d:10:64:04:db:0e:a7:a7:42: 61:48:ca:6c:bc:e9:7c:27:39:3d:57:40:e5:6e:c1:c8:7a:8e: 59:9c:bc:c6:8f:2e:58:73:b3:e8:26:03:59:96:4c:08:06:5f: 92:89:69:5b:fb:d4:4f:b6:ce:8e:f3:82:77:50:0a:c9:98:87: 56:13:4c:fb:de:d4:e8:ae:c4:e5:7b:c6:69:92:b3:e7:ee:99: cd:3f:62:98:8c:f0:c4:70:2d:0a:39:c7:48:bc:c3:8e:43:2c: 00:54:69:df:d7:9b:92:19:ff:65:33:7e:50:3b:53:c6:46:69: 4e:02:4e:e8:61:5e:44:fb:1e:ff:f3:7f:69:c8:4c:ef:4a:b1: fe:4d:c4:a7:34:3b:df:c1:f3:19:f2:90:ef:01:fb:bd:72:88: 8d:d0:e6:2a:88:82:c9:52:57:27:6d:3e:21:b4:c4:ef:51:90: 8b:9a:59:b2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdrW2yR9fCIqaQmfbYmTrMRcly8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yMzA2MTMwNDU1MDBaFw0yNDA2MTEwNTAwMDBaMDMxMTAvBgNV BAMTKDlDNzY0MTVCMTcyRjg3QUEyQzg3NDQwNEYwNEFDRDRBNTgwQkQwOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsrHnQiOMU9C/tKGfFKotNBVmW 2rsBLaFIGwQP96t7bPPXZAghMmxMxN8eTv1eBdlzE5McR11QbacELJ0wpjbccss+ q7Vm2zpwJ0sjcbmmlbGIm6NzqAMB23x5kt3eMwUZSWEiIMfUNlehutouB3gRROmf BrMDQAK6qzdsCVyKPfFI7tz2hjBH9CXnJX6BuHKKm4biyakGi6VOs0Hru8/L+RVK UGbFjt6d+hA+hlEOH/JSqCoVS7/8owwhEy1ByLxTrOot+oCBOtuPbDCVJqBOWdMv cNTTlireysUcXHiq/J9kT1Xh5xUcOunYvQ/C4KqhNgnTe+Y0UBNHyWl4urY7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnHZBWxcvh6osh0QE8ErNSlgL0J4wHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzEzMjM1MmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyn1TMA0GCSqG SIb3DQEBCwUAA4IBAQCqKp0nbj5TGlFgaJaOgCBFDGc2gh3/zARsa1fIm8wZOmao 2d0QIXw5CJrWhzKl3AVAco9DtgOCBBBArGlSJ+ofdhOkpcVWMOb2zaM+/foe0Xl9 EGQE2w6np0JhSMpsvOl8Jzk9V0DlbsHIeo5ZnLzGjy5Yc7PoJgNZlkwIBl+SiWlb +9RPts6O84J3UArJmIdWE0z73tTorsTle8ZpkrPn7pnNP2KYjPDEcC0KOcdIvMOO QywAVGnf15uSGf9lM35QO1PGRmlOAk7oYV5E+x7/839pyEzvSrH+TcSnNDvfwfMZ 8pDvAfu9coiN0OYqiILJUlcnbT4htMTvUZCLmlmy -----END CERTIFICATE-----Generated at Sun May 5 04:33:59 2024 by rpki-client on console-fra.rpki-client.org