$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31372e302f32342d3234203d3e20313333383430.roa File: 3230332e3136312e31372e302f32342d3234203d3e20313333383430.roa (raw, json) Hash identifier: 2b2c1n8ZEjbBpOtKDkIxBUXlYMiOGuKpUn927TiHGYk= Subject key identifier: 53:08:A5:4D:F4:4C:44:5D:DE:9E:71:D4:FC:7E:D5:6A:D3:6F:99:96 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 28A3915331252C92BF6C1509066945CB0C3CB8B4 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31372e302f32342d3234203d3e20313333383430.roa Signing time: Thu 14 Sep 2023 04:02:31 +0000 ROA not before: Thu 14 Sep 2023 03:57:31 +0000 ROA not after: Thu 12 Sep 2024 04:02:31 +0000 asID: 133840 IP address blocks: 203.161.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:a3:91:53:31:25:2c:92:bf:6c:15:09:06:69:45:cb:0c:3c:b8:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Sep 14 03:57:31 2023 GMT Not After : Sep 12 04:02:31 2024 GMT Subject: CN=5308A54DF44C445DDE9E71D4FC7ED56AD36F9996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:91:65:6e:3f:f7:66:8e:ea:fb:b5:73:66:52: 45:8d:8e:bf:79:58:4e:ec:f8:35:e9:cf:5f:a8:b2: 45:fc:0d:bb:e7:b1:4c:87:01:3a:d8:76:82:f3:b7: ec:f9:27:c9:9d:fd:32:2f:65:4f:ef:76:0f:e3:e5: 94:05:7c:90:83:42:6a:57:2a:78:3f:57:b7:18:05: 27:f4:20:c8:05:25:c7:53:90:30:f2:50:83:00:58: b8:f5:81:1d:01:e9:00:e5:5f:e1:4d:a4:3b:81:af: 2e:c4:66:7e:58:48:53:ae:66:37:bc:59:ee:f2:9f: 3e:f1:f2:b2:05:c7:06:18:d1:e2:a7:5e:e2:eb:c5: f2:23:9f:89:88:b1:61:f0:f2:1a:9f:31:8b:ea:c8: 57:7c:eb:cc:fa:5c:8c:d2:bb:bd:35:3f:1f:65:4b: 43:e8:44:e1:62:35:67:4a:39:29:f0:ac:ab:ab:9d: 21:df:cf:0f:f0:2b:1d:df:c6:6e:50:c7:8e:18:dc: b4:29:1a:dc:4e:73:ad:d4:83:f9:32:fd:74:87:93: 40:b6:cc:ac:4a:f3:34:55:b6:f9:b4:5c:a4:0e:4e: 5e:dc:3a:15:37:e7:3f:84:a3:52:75:b0:6b:04:21: ae:98:23:44:c8:bc:0f:68:d2:7f:8d:91:95:b7:f6: dc:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:08:A5:4D:F4:4C:44:5D:DE:9E:71:D4:FC:7E:D5:6A:D3:6F:99:96 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31372e302f32342d3234203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.17.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:4a:ca:d1:90:f4:1d:26:b1:ae:4f:7d:bf:96:c9:91:58:df: 02:8d:fc:16:ee:9c:ea:d9:02:1e:7f:59:f0:dc:c5:88:e8:36: fc:4b:06:35:11:74:36:b0:bc:92:bd:49:cd:37:73:22:e7:02: 84:3b:f7:6e:05:65:b3:4b:e7:cc:ac:55:37:8b:9d:24:92:97: db:33:15:74:cf:08:9f:91:c5:73:de:40:c5:7d:55:bd:87:d3: 9f:e5:a5:b3:4f:51:1c:56:87:b1:bf:4f:0d:37:62:16:8d:ce: 2b:81:b1:dc:ca:0a:75:95:3b:99:88:da:77:a1:ed:49:8a:b6: c1:36:f8:7d:69:0d:d1:39:11:0f:ef:51:7b:a4:2f:86:a8:93: 0d:8e:21:6b:4e:6a:36:e7:2a:7e:87:fa:a0:92:b4:60:7f:99: de:bb:5a:e6:87:a0:52:37:58:e7:c8:ec:9c:f5:8f:4f:74:45: 06:03:1d:9b:49:79:96:7a:94:bc:80:c1:c8:94:9a:54:fb:7a: 99:27:68:d3:86:2c:4f:a9:3f:3d:36:2a:ab:de:45:7f:35:58: df:04:8f:21:ab:43:80:3a:3b:14:5e:95:37:6a:3b:ef:97:69: 28:0f:72:f8:ef:99:eb:f5:18:08:69:cb:1d:12:61:c0:59:68: 30:9c:f4:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKKORUzElLJK/bBUJBmlFyww8uLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzA5MTQwMzU3MzFaFw0yNDA5MTIwNDAyMzFaMDMxMTAvBgNV BAMTKDUzMDhBNTRERjQ0QzQ0NURERTlFNzFENEZDN0VENTZBRDM2Rjk5OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCkWVuP/dmjur7tXNmUkWNjr95 WE7s+DXpz1+oskX8DbvnsUyHATrYdoLzt+z5J8md/TIvZU/vdg/j5ZQFfJCDQmpX Kng/V7cYBSf0IMgFJcdTkDDyUIMAWLj1gR0B6QDlX+FNpDuBry7EZn5YSFOuZje8 We7ynz7x8rIFxwYY0eKnXuLrxfIjn4mIsWHw8hqfMYvqyFd868z6XIzSu701Px9l S0PoROFiNWdKOSnwrKurnSHfzw/wKx3fxm5Qx44Y3LQpGtxOc63Ug/ky/XSHk0C2 zKxK8zRVtvm0XKQOTl7cOhU35z+Eo1J1sGsEIa6YI0TIvA9o0n+NkZW39tyPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUwilTfRMRF3ennHU/H7VatNvmZYwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMzJlMzEzNjMxMmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6ERMA0GCSqG SIb3DQEBCwUAA4IBAQB7SsrRkPQdJrGuT32/lsmRWN8CjfwW7pzq2QIef1nw3MWI 6Db8SwY1EXQ2sLySvUnNN3Mi5wKEO/duBWWzS+fMrFU3i50kkpfbMxV0zwifkcVz 3kDFfVW9h9Of5aWzT1EcVoexv08NN2IWjc4rgbHcygp1lTuZiNp3oe1JirbBNvh9 aQ3ROREP71F7pC+GqJMNjiFrTmo25yp+h/qgkrRgf5neu1rmh6BSN1jnyOyc9Y9P dEUGAx2bSXmWepS8gMHIlJpU+3qZJ2jThixPqT89Niqr3kV/NVjfBI8hq0OAOjsU XpU3ajvvl2koD3L475nr9RgIacsdEmHAWWgwnPSB -----END CERTIFICATE-----Generated at Tue May 7 21:41:02 2024 by rpki-client on console-fra.rpki-client.org