$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa File: 3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: V0aUekXqpNxxikpTKAsWNB9lkkPPH9Qe/CByazm+7eI= Subject key identifier: 25:4D:2C:D4:17:6D:DC:C5:44:C0:FB:20:61:41:F3:D1:5B:5A:A7:6A Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 6A56CCBF703871D9B99DB95C78E98DBD8AEE3976 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa Signing time: Mon 09 Oct 2023 14:00:00 +0000 ROA not before: Mon 09 Oct 2023 13:55:00 +0000 ROA not after: Mon 07 Oct 2024 14:00:00 +0000 asID: 140443 IP address blocks: 202.70.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:56:cc:bf:70:38:71:d9:b9:9d:b9:5c:78:e9:8d:bd:8a:ee:39:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Oct 9 13:55:00 2023 GMT Not After : Oct 7 14:00:00 2024 GMT Subject: CN=254D2CD4176DDCC544C0FB206141F3D15B5AA76A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e3:0f:02:2a:5f:0c:e5:44:d5:48:cd:a9:96: 74:e3:f9:ab:c0:d5:7c:ff:f5:7a:b8:be:08:6a:5c: 6c:35:f0:e7:08:fc:89:5a:69:eb:66:fc:9f:b4:b5: 70:3f:e7:e9:dd:79:80:74:db:e9:4d:29:37:94:c8: 5e:49:16:29:d7:29:1e:c5:61:74:85:51:77:ba:b3: 8d:2c:de:22:27:4d:8c:4b:13:8a:7b:8f:72:3e:ba: 2d:84:04:9b:8b:5a:7f:3e:cc:4d:40:a6:f2:ca:fc: 7a:e3:7a:e0:08:8c:92:a7:a5:b6:91:f4:77:5c:0e: 98:70:20:44:9e:15:e0:ff:5f:6e:cc:8b:a5:a8:f2: 3c:2e:58:08:37:68:30:fd:81:33:96:df:6e:43:f3: 5c:bc:ed:fd:8f:b6:91:f3:11:aa:68:5e:e1:2a:d5: 72:94:ba:bb:82:5d:6e:fe:2f:8f:83:1a:b1:41:75: 60:89:86:c0:a3:b0:b1:08:1e:eb:9c:ac:dc:1e:03: 63:f1:08:ec:71:f9:de:01:9e:92:13:d5:e6:60:de: 00:d5:23:7e:54:d4:0f:75:2f:8c:7f:0d:15:b7:d0: 87:97:b1:28:b1:3b:a5:5c:d9:f6:a9:b5:24:d7:ef: 94:6c:af:8e:7a:17:48:0f:74:a7:7c:b0:01:a0:19: 4e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4D:2C:D4:17:6D:DC:C5:44:C0:FB:20:61:41:F3:D1:5B:5A:A7:6A X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.132.0/23 Signature Algorithm: sha256WithRSAEncryption 52:31:33:5a:ac:00:97:63:38:37:ae:d2:70:51:68:8b:41:83: 94:b9:8f:06:88:06:a7:4a:1a:ae:5c:c0:41:04:67:bb:16:9a: 28:67:25:c3:e4:6b:62:b7:d9:a3:0f:7d:ff:4b:b7:f6:8b:b8: f0:3f:83:12:44:3c:5d:7b:8a:42:cb:81:fc:e6:49:f1:ee:7e: e3:a7:14:78:b2:6c:34:77:65:16:fd:b2:a2:a4:4e:4f:68:cd: ea:c0:d0:9c:76:f3:1c:8c:74:b0:f6:4a:1b:74:a0:25:59:9e: 89:bf:17:13:35:7d:4a:1d:26:13:e4:b2:d6:ad:b4:ac:4f:9e: 36:f3:85:b0:9b:d3:ad:2f:99:5e:18:2b:73:48:fd:db:53:28: d3:d9:2a:b3:84:ec:03:03:ef:ec:43:f3:d6:69:a8:c6:16:ee: 76:89:f0:af:8b:c1:f8:d8:c3:69:64:b1:a0:54:03:c2:c6:3b: d1:ce:d7:9c:8f:d7:30:c1:38:99:b6:f6:6b:ba:8f:14:80:91: 07:ad:53:b6:4a:8a:ab:77:ad:6a:68:53:f2:14:45:92:13:84: bb:ba:22:ed:ce:df:b7:2b:14:25:ae:2d:6a:53:08:f8:83:b8: ba:ce:4e:44:1e:bd:ce:04:1b:87:4f:03:a1:38:be:42:12:ff: 3c:5a:58:3b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUalbMv3A4cdm5nblceOmNvYruOXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yMzEwMDkxMzU1MDBaFw0yNDEwMDcxNDAwMDBaMDMxMTAvBgNV BAMTKDI1NEQyQ0Q0MTc2RERDQzU0NEMwRkIyMDYxNDFGM0QxNUI1QUE3NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg4w8CKl8M5UTVSM2plnTj+avA 1Xz/9Xq4vghqXGw18OcI/Ilaaetm/J+0tXA/5+ndeYB02+lNKTeUyF5JFinXKR7F YXSFUXe6s40s3iInTYxLE4p7j3I+ui2EBJuLWn8+zE1ApvLK/HrjeuAIjJKnpbaR 9HdcDphwIESeFeD/X27Mi6Wo8jwuWAg3aDD9gTOW325D81y87f2PtpHzEapoXuEq 1XKUuruCXW7+L4+DGrFBdWCJhsCjsLEIHuucrNweA2PxCOxx+d4BnpIT1eZg3gDV I35U1A91L4x/DRW30IeXsSixO6Vc2faptSTX75Rsr456F0gPdKd8sAGgGU6HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJU0s1Bdt3MVEwPsgYUHz0Vtap2owHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBykaEMA0GCSqG SIb3DQEBCwUAA4IBAQBSMTNarACXYzg3rtJwUWiLQYOUuY8GiAanShquXMBBBGe7 FpooZyXD5Gtit9mjD33/S7f2i7jwP4MSRDxde4pCy4H85knx7n7jpxR4smw0d2UW /bKipE5PaM3qwNCcdvMcjHSw9kobdKAlWZ6JvxcTNX1KHSYT5LLWrbSsT54284Ww m9OtL5leGCtzSP3bUyjT2SqzhOwDA+/sQ/PWaajGFu52ifCvi8H42MNpZLGgVAPC xjvRztecj9cwwTiZtvZruo8UgJEHrVO2Soqrd61qaFPyFEWSE4S7uiLtzt+3KxQl ri1qUwj4g7i6zk5EHr3OBBuHTwOhOL5CEv88Wlg7 -----END CERTIFICATE-----Generated at Sun May 5 04:33:59 2024 by rpki-client on console-fra.rpki-client.org