$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa File: 3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: buYWDCE8UJBcZJoyeJnsNDfnYYFVjXw+Lv6q3oMYBf8= Subject key identifier: 9F:E7:CB:04:4E:24:36:0B:AF:1A:E2:53:C0:BA:A1:A5:B7:DA:86:89 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 412C668E44BDE1BB99AF4AD75014A47E318AFBCF Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa Signing time: Mon 09 Oct 2023 14:00:00 +0000 ROA not before: Mon 09 Oct 2023 13:55:00 +0000 ROA not after: Mon 07 Oct 2024 14:00:00 +0000 asID: 140443 IP address blocks: 202.70.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:2c:66:8e:44:bd:e1:bb:99:af:4a:d7:50:14:a4:7e:31:8a:fb:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Oct 9 13:55:00 2023 GMT Not After : Oct 7 14:00:00 2024 GMT Subject: CN=9FE7CB044E24360BAF1AE253C0BAA1A5B7DA8689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d2:be:56:8d:95:d5:4c:96:5d:f5:29:3b:45: b6:bd:c3:f4:f0:1a:c7:09:71:6b:1e:8e:21:12:68: 5a:01:f4:90:4a:55:f6:81:9e:eb:e9:a3:dc:3a:7a: 82:27:7c:39:b1:56:dc:8c:12:b0:b9:f4:aa:0d:32: 5c:3a:4b:dd:5f:c1:5f:f8:f3:0d:25:4e:4d:55:6b: 93:b2:cf:11:4f:65:36:40:57:f7:e1:fc:cf:b9:f6: 54:fa:f6:13:d9:db:28:53:20:ca:57:fa:19:9d:c7: 08:e7:01:52:f4:06:3c:5d:1a:7f:ca:30:9f:db:2a: 9a:a8:0a:e6:f3:1c:a0:ff:7a:5c:25:d4:6b:65:de: 17:cf:0c:1e:da:97:c4:30:cb:45:25:6f:9a:70:f6: 79:86:6b:c2:59:d3:ed:9c:fa:ee:0d:65:7d:4b:4e: b7:55:c4:95:cb:4d:a7:c0:b5:27:bd:ca:a0:7e:c8: e1:5d:01:11:87:27:4e:2e:27:da:81:cf:4d:db:10: 94:3a:85:9c:9d:73:85:be:31:9f:d9:c2:87:6b:6f: 44:e1:f6:48:ca:2c:bd:6f:78:38:74:4b:9f:8e:5f: da:eb:a5:c5:9e:e5:bf:88:3c:da:27:ce:97:95:b8: 47:ab:a1:63:67:63:75:f6:44:cd:c5:86:4d:03:10: 51:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E7:CB:04:4E:24:36:0B:AF:1A:E2:53:C0:BA:A1:A5:B7:DA:86:89 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133322e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.132.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:04:5c:5c:ef:06:ae:ba:88:4d:08:9a:46:34:84:0c:01:31: ea:06:26:76:aa:a4:41:1e:6d:8c:e2:1f:77:fe:aa:a9:ba:36: da:b4:40:24:0a:e2:50:90:65:12:45:0e:44:5b:0d:ad:5d:91: 81:ae:8a:7b:64:70:28:d3:37:70:3c:48:0a:62:80:78:7a:7b: ae:4d:67:d9:30:cc:85:b6:91:2a:70:ca:32:2e:75:49:a2:85: f0:00:82:80:ae:d8:f8:df:d3:43:bd:67:a0:e8:f6:0f:db:b3: 88:0f:ac:66:db:22:0d:b6:c8:2c:83:c1:97:a4:b4:51:c4:5b: 74:2c:b9:93:15:d6:ff:6c:33:5d:76:f9:88:6f:43:43:57:3f: 5b:fb:f5:2e:82:47:fd:17:9a:33:c8:d5:6d:83:02:1e:bd:88: 40:0d:13:a3:7c:4e:0b:a0:fc:c5:e8:05:06:58:40:32:68:40: 6f:fd:dd:58:6d:f2:7e:3e:2f:e1:87:76:9a:16:80:4f:19:2b: 3a:04:60:d4:1b:04:7a:a1:51:f1:d3:36:a4:c9:18:1c:d6:9a: 74:c6:13:4e:82:e6:b6:0e:23:46:88:97:bd:d8:c0:0d:b2:99: 0c:33:0d:5e:61:c7:67:b3:55:6a:3a:14:25:d5:13:3b:58:b2: c1:13:76:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQSxmjkS94buZr0rXUBSkfjGK+88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yMzEwMDkxMzU1MDBaFw0yNDEwMDcxNDAwMDBaMDMxMTAvBgNV BAMTKDlGRTdDQjA0NEUyNDM2MEJBRjFBRTI1M0MwQkFBMUE1QjdEQTg2ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv0r5WjZXVTJZd9Sk7Rba9w/Tw GscJcWsejiESaFoB9JBKVfaBnuvpo9w6eoInfDmxVtyMErC59KoNMlw6S91fwV/4 8w0lTk1Va5OyzxFPZTZAV/fh/M+59lT69hPZ2yhTIMpX+hmdxwjnAVL0BjxdGn/K MJ/bKpqoCubzHKD/elwl1Gtl3hfPDB7al8Qwy0Ulb5pw9nmGa8JZ0+2c+u4NZX1L TrdVxJXLTafAtSe9yqB+yOFdARGHJ04uJ9qBz03bEJQ6hZydc4W+MZ/Zwodrb0Th 9kjKLL1veDh0S5+OX9rrpcWe5b+IPNonzpeVuEeroWNnY3X2RM3Fhk0DEFHJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn+fLBE4kNguvGuJTwLqhpbfahokwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykaEMA0GCSqG SIb3DQEBCwUAA4IBAQAaBFxc7wauuohNCJpGNIQMATHqBiZ2qqRBHm2M4h93/qqp ujbatEAkCuJQkGUSRQ5EWw2tXZGBrop7ZHAo0zdwPEgKYoB4enuuTWfZMMyFtpEq cMoyLnVJooXwAIKArtj439NDvWeg6PYP27OID6xm2yINtsgsg8GXpLRRxFt0LLmT Fdb/bDNddvmIb0NDVz9b+/Uugkf9F5ozyNVtgwIevYhADROjfE4LoPzF6AUGWEAy aEBv/d1YbfJ+Pi/hh3aaFoBPGSs6BGDUGwR6oVHx0zakyRgc1pp0xhNOgua2DiNG iJe92MANspkMMw1eYcdns1VqOhQl1RM7WLLBE3Y1 -----END CERTIFICATE-----Generated at Sun May 5 04:33:59 2024 by rpki-client on console-fra.rpki-client.org