$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa File: 3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: 6ME5QTjkTinuZoTSQZskrSrHlZpDtGPm7uBBExjEH3Y= Subject key identifier: 72:0C:49:62:FA:87:A8:77:ED:B1:12:56:E9:4D:F5:7C:5A:51:48:56 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 3CB9F2D0C1D5AC9164E56269E319FE4048B1B180 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa Signing time: Thu 22 Jun 2023 02:47:30 +0000 ROA not before: Thu 22 Jun 2023 02:42:30 +0000 ROA not after: Thu 20 Jun 2024 02:47:30 +0000 asID: 140443 IP address blocks: 202.70.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 08:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:b9:f2:d0:c1:d5:ac:91:64:e5:62:69:e3:19:fe:40:48:b1:b1:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Jun 22 02:42:30 2023 GMT Not After : Jun 20 02:47:30 2024 GMT Subject: CN=720C4962FA87A877EDB11256E94DF57C5A514856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:99:4e:d2:cc:eb:52:0b:43:39:e7:1b:28:5e: 92:d4:f9:a1:cc:e0:08:87:1f:4b:09:62:3e:69:44: 57:33:ac:ae:e4:86:90:f2:02:1d:3b:3d:f8:5f:1b: 6c:5e:a8:27:95:41:d9:c0:c0:96:35:2f:b8:a9:cf: 81:82:b3:fb:cf:37:b1:1c:cc:9e:65:31:c0:33:8a: 39:59:33:89:fc:0a:99:c5:64:79:2e:63:88:26:a4: de:cd:38:4c:67:2a:ad:bd:96:3b:54:fc:ff:dc:e2: 7f:83:12:f3:ed:45:dc:92:5c:1b:65:a2:91:fe:67: 86:45:2c:a5:4e:e8:75:7c:4b:b2:d9:00:8b:12:24: f0:4c:a6:6b:94:37:73:36:75:cd:e5:b6:3c:d2:61: 74:ad:86:07:d8:70:94:15:96:37:ee:93:c3:04:7b: 41:32:a3:4c:80:2a:56:49:39:82:1b:ac:e1:d9:81: 4f:66:a1:92:c5:fa:22:96:7d:88:91:19:05:6e:43: be:da:31:ca:fa:bb:76:82:bf:96:99:9f:09:aa:91: 9b:7e:cc:8f:47:75:45:38:67:76:f8:ce:f5:f8:da: 12:a6:77:30:09:ac:89:3e:70:ab:ae:ee:d3:2d:f2: bb:c1:a2:ec:97:e3:66:d7:ab:41:a3:6c:b6:b1:81: bf:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:0C:49:62:FA:87:A8:77:ED:B1:12:56:E9:4D:F5:7C:5A:51:48:56 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.133.0/24 Signature Algorithm: sha256WithRSAEncryption 96:92:7a:98:07:8a:a6:80:9b:f9:02:f5:d1:00:2a:73:31:2a: 27:13:f0:1e:39:54:41:f7:5e:88:a1:46:35:e8:66:7b:a6:bc: 1d:9f:3c:3e:82:01:0a:9f:1f:66:24:53:a7:2a:e6:2d:9b:60: 36:fb:d8:18:28:4e:69:2c:1a:27:c3:e8:4a:16:14:ce:32:17: 52:0f:5b:ed:44:eb:22:f5:7a:7e:86:a2:7d:28:25:e4:e3:e6: 0d:94:bd:3c:08:a7:02:50:c8:ec:c3:09:cb:21:aa:f6:84:49: c0:8d:aa:f5:a7:4f:03:82:95:a5:45:03:62:ec:7a:fe:b3:35: d0:cd:5d:de:49:d5:3c:8a:d7:ca:ef:3a:5d:06:ad:94:8f:49: b3:9b:07:89:d4:01:80:ed:dc:a7:a0:20:20:dd:97:36:fd:62: 70:4e:a3:41:1d:62:79:a4:63:3f:7d:e0:3e:f5:cf:6d:46:7a: 76:4e:65:a0:bb:e8:f9:a4:56:b6:83:57:29:a4:bf:04:18:4b: f1:ef:c7:46:99:e1:28:d0:6d:63:da:e7:ab:52:4f:73:d1:f1: 08:17:42:fa:4d:f2:4d:6b:26:a6:51:41:2b:ab:b0:cd:29:58: 64:1c:aa:71:48:2b:47:df:54:57:f7:18:fb:42:32:a4:f1:34: 5c:b7:cd:28 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPLny0MHVrJFk5WJp4xn+QEixsYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yMzA2MjIwMjQyMzBaFw0yNDA2MjAwMjQ3MzBaMDMxMTAvBgNV BAMTKDcyMEM0OTYyRkE4N0E4NzdFREIxMTI1NkU5NERGNTdDNUE1MTQ4NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClmU7SzOtSC0M55xsoXpLU+aHM 4AiHH0sJYj5pRFczrK7khpDyAh07PfhfG2xeqCeVQdnAwJY1L7ipz4GCs/vPN7Ec zJ5lMcAzijlZM4n8CpnFZHkuY4gmpN7NOExnKq29ljtU/P/c4n+DEvPtRdySXBtl opH+Z4ZFLKVO6HV8S7LZAIsSJPBMpmuUN3M2dc3ltjzSYXSthgfYcJQVljfuk8ME e0Eyo0yAKlZJOYIbrOHZgU9moZLF+iKWfYiRGQVuQ77aMcr6u3aCv5aZnwmqkZt+ zI9HdUU4Z3b4zvX42hKmdzAJrIk+cKuu7tMt8rvBouyX42bXq0GjbLaxgb8FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcgxJYvqHqHftsRJW6U31fFpRSFYwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykaFMA0GCSqG SIb3DQEBCwUAA4IBAQCWknqYB4qmgJv5AvXRACpzMSonE/AeOVRB916IoUY16GZ7 prwdnzw+ggEKnx9mJFOnKuYtm2A2+9gYKE5pLBonw+hKFhTOMhdSD1vtROsi9Xp+ hqJ9KCXk4+YNlL08CKcCUMjswwnLIar2hEnAjar1p08DgpWlRQNi7Hr+szXQzV3e SdU8itfK7zpdBq2Uj0mzmweJ1AGA7dynoCAg3Zc2/WJwTqNBHWJ5pGM/feA+9c9t Rnp2TmWgu+j5pFa2g1cppL8EGEvx78dGmeEo0G1j2uerUk9z0fEIF0L6TfJNayam UUErq7DNKVhkHKpxSCtH31RX9xj7QjKk8TRct80o -----END CERTIFICATE-----Generated at Sun May 5 04:39:12 2024 by rpki-client on console-ams.rpki-client.org