$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31392e302f32342d3234203d3e203535363835.roa File: 3230332e3136312e31392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: NGtGWjgWqhpNpT+ClvLAwjAVtmgo3/NqvqWavmIHdlo= Subject key identifier: FF:B1:3F:C9:C1:F7:A2:61:93:3C:4E:06:20:55:15:28:F1:88:53:D5 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 5CFB62EF1D0A8C524DA25E420511E65B56700A14 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31392e302f32342d3234203d3e203535363835.roa Signing time: Mon 25 Mar 2024 06:00:02 +0000 ROA not before: Mon 25 Mar 2024 05:55:02 +0000 ROA not after: Mon 24 Mar 2025 06:00:02 +0000 asID: 55685 IP address blocks: 203.161.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 16:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:fb:62:ef:1d:0a:8c:52:4d:a2:5e:42:05:11:e6:5b:56:70:0a:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Mar 25 05:55:02 2024 GMT Not After : Mar 24 06:00:02 2025 GMT Subject: CN=FFB13FC9C1F7A261933C4E0620551528F18853D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:48:69:f2:e8:6c:a0:59:42:40:21:8e:80:2f: 8a:b5:29:79:be:b8:bf:18:7a:a2:98:53:bc:f3:c2: 63:be:f2:b9:2a:ab:d6:4f:7a:6f:6f:7f:fd:52:64: 9c:bf:9f:ec:40:92:6c:93:9b:e6:14:39:a1:88:b1: b4:94:8e:97:36:b7:5c:6f:63:56:18:5f:f9:68:9d: 32:d2:73:78:04:b8:cc:aa:5e:58:64:87:06:b3:6f: c8:5c:ae:35:18:39:fa:88:ce:fe:4e:ba:c5:e5:cf: d3:82:30:2a:dc:cb:77:49:cd:38:75:1d:1c:d2:94: bb:56:8a:03:6d:92:42:6a:47:4a:17:71:f5:b9:d9: 46:4e:50:55:ec:8e:14:57:6e:d8:86:8d:a7:7c:5c: 4f:b3:55:ff:60:1b:28:ee:c7:ac:99:30:95:76:85: 1f:c8:37:2c:64:a3:1f:58:33:3b:a3:df:e1:ff:d7: 59:74:df:c4:f0:81:08:2f:37:ff:fb:f0:9d:a7:d9: 7e:01:ee:9b:2a:53:53:70:ca:1f:bc:89:ee:aa:82: 14:f2:80:82:a3:15:9a:a6:a7:be:4d:ff:64:b8:67: b9:e1:ca:2b:db:cf:f2:0c:f0:a6:7d:06:5c:eb:5f: 96:66:ac:66:21:39:65:9e:0e:20:ff:a4:ab:1f:50: da:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B1:3F:C9:C1:F7:A2:61:93:3C:4E:06:20:55:15:28:F1:88:53:D5 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.19.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:4f:33:94:71:45:01:6b:cb:07:89:82:f5:ac:78:10:f9:c4: bd:40:03:98:88:85:40:b4:c1:7f:30:94:a3:2c:29:31:65:b4: 34:33:5d:37:39:1b:f9:84:c7:77:a0:48:56:22:f4:51:70:4e: ca:30:ae:f9:6f:58:73:6b:3c:af:e9:8c:17:93:a2:61:bd:a4: 6c:ea:db:2b:a6:d6:b5:1f:3d:01:24:d7:bc:cc:09:72:ba:d4: a6:a1:fe:50:a5:c5:47:d1:e0:33:a4:ca:66:a8:72:e9:af:17: 80:ac:97:10:07:60:73:67:2c:0d:1a:e7:8e:31:ca:af:46:2e: 8d:f0:29:88:3e:de:68:3a:10:cc:d9:d5:b7:44:86:d0:bb:0f: 60:92:de:71:5f:92:b8:d4:10:2c:7c:f2:5d:b9:58:16:63:bd: 2a:44:25:a7:23:cd:cd:27:ea:f0:49:59:47:13:40:e4:19:44: 08:f4:19:dc:1c:92:e1:44:dc:f1:31:05:6c:6a:e7:c8:11:61: 7f:6a:3e:b9:80:1f:4f:51:4a:f1:38:b3:9c:0b:7f:45:8d:79: 11:07:82:8d:1d:fb:86:04:f6:63:c3:5d:aa:67:94:12:b6:ed: a1:64:70:0f:85:25:76:fa:39:24:22:f5:25:ba:56:e2:67:3f: 65:0b:dd:bb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXPti7x0KjFJNol5CBRHmW1ZwChQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDAzMjUwNTU1MDJaFw0yNTAzMjQwNjAwMDJaMDMxMTAvBgNV BAMTKEZGQjEzRkM5QzFGN0EyNjE5MzNDNEUwNjIwNTUxNTI4RjE4ODUzRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDySGny6GygWUJAIY6AL4q1KXm+ uL8YeqKYU7zzwmO+8rkqq9ZPem9vf/1SZJy/n+xAkmyTm+YUOaGIsbSUjpc2t1xv Y1YYX/lonTLSc3gEuMyqXlhkhwazb8hcrjUYOfqIzv5OusXlz9OCMCrcy3dJzTh1 HRzSlLtWigNtkkJqR0oXcfW52UZOUFXsjhRXbtiGjad8XE+zVf9gGyjux6yZMJV2 hR/INyxkox9YMzuj3+H/11l038TwgQgvN//78J2n2X4B7psqU1Nwyh+8ie6qghTy gIKjFZqmp75N/2S4Z7nhyivbz/IM8KZ9BlzrX5ZmrGYhOWWeDiD/pKsfUNq9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/7E/ycH3omGTPE4GIFUVKPGIU9UwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMzJlMzEzNjMxMmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuhEzANBgkqhkiG 9w0BAQsFAAOCAQEALE8zlHFFAWvLB4mC9ax4EPnEvUADmIiFQLTBfzCUoywpMWW0 NDNdNzkb+YTHd6BIViL0UXBOyjCu+W9Yc2s8r+mMF5OiYb2kbOrbK6bWtR89ASTX vMwJcrrUpqH+UKXFR9HgM6TKZqhy6a8XgKyXEAdgc2csDRrnjjHKr0YujfApiD7e aDoQzNnVt0SG0LsPYJLecV+SuNQQLHzyXblYFmO9KkQlpyPNzSfq8ElZRxNA5BlE CPQZ3ByS4UTc8TEFbGrnyBFhf2o+uYAfT1FK8TiznAt/RY15EQeCjR37hgT2Y8Nd qmeUErbtoWRwD4Uldvo5JCL1JbpW4mc/ZQvduw== -----END CERTIFICATE-----Generated at Fri Apr 19 10:26:11 2024 by rpki-client on console-ams.rpki-client.org