$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230322e35362e3136302e302f32322d3234203d3e203435323837.roa File: 3230322e35362e3136302e302f32322d3234203d3e203435323837.roa (raw, json) Hash identifier: Lif6BHoucrE/Y7Tf/dY+Tgj2gjuc5W4Kc3zC1rLXT1Y= Subject key identifier: C4:DB:33:FF:B0:18:CF:9F:F5:53:EC:BA:BE:85:AA:9B:80:EC:84:D9 Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 5690EEBB546D0A78767DF6697A927A71970AA223 Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230322e35362e3136302e302f32322d3234203d3e203435323837.roa Signing time: Mon 31 Jul 2023 00:02:33 +0000 ROA not before: Sun 30 Jul 2023 23:57:33 +0000 ROA not after: Mon 29 Jul 2024 00:02:33 +0000 asID: 45287 IP address blocks: 202.56.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 19:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:90:ee:bb:54:6d:0a:78:76:7d:f6:69:7a:92:7a:71:97:0a:a2:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jul 30 23:57:33 2023 GMT Not After : Jul 29 00:02:33 2024 GMT Subject: CN=C4DB33FFB018CF9FF553ECBABE85AA9B80EC84D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4d:bd:b4:34:82:f0:cd:8b:bd:03:08:f8:50: 5a:df:ea:e5:2f:49:e2:9c:1a:9d:00:38:8d:45:99: bd:56:29:ae:cd:5a:e1:51:7b:a9:c0:45:7b:92:da: 0c:7f:49:59:60:f6:ba:3e:7d:1e:47:a6:7b:39:46: e5:96:8b:5a:c8:09:0a:08:d7:0e:1a:bb:76:88:b2: de:92:78:db:9e:b9:50:58:ca:40:bd:a6:1a:c5:5c: 79:b3:38:fe:69:b3:84:5d:a4:cc:2c:9c:b4:d3:79: c4:1d:aa:e1:ef:ba:91:7e:8e:00:b3:0a:03:e7:ee: 5b:95:89:7a:99:fb:11:42:fe:89:6e:39:fe:fc:ea: a3:26:87:90:c0:d0:71:3b:b0:41:fa:db:07:8d:f4: 3b:fc:fa:5c:45:f8:71:33:eb:5e:40:d6:03:a8:b0: eb:5a:fe:8a:8d:64:6e:01:2c:84:63:45:fd:10:28: 61:3d:80:6e:e5:b2:57:84:5b:3c:d6:0f:41:63:38: 25:d2:1f:d3:cc:5c:96:bd:5e:b0:11:b9:10:82:24: 23:74:0b:22:72:75:e3:ea:8d:24:af:25:d8:3b:b1: 12:01:75:11:bc:68:01:de:a3:0e:fc:0d:02:80:5e: d0:b2:eb:6d:b6:8a:df:f6:c9:9b:bc:2a:8e:6c:a5: 4b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:DB:33:FF:B0:18:CF:9F:F5:53:EC:BA:BE:85:AA:9B:80:EC:84:D9 X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230322e35362e3136302e302f32322d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.56.160.0/22 Signature Algorithm: sha256WithRSAEncryption 61:da:25:e5:bc:34:ad:1e:40:47:9c:bc:98:a7:5b:10:79:41: 20:91:1e:bb:0a:5b:17:d8:20:73:d7:7e:f1:4f:0d:26:a7:76: 5c:0c:b9:b5:8e:06:22:97:6c:4a:d3:b8:4f:e3:d5:3f:22:ea: ce:12:84:78:c8:ad:73:b5:c4:1d:91:b7:f0:0b:bf:62:f1:d8: ed:ea:cb:a1:ac:c3:c8:0c:95:5b:b3:05:ec:b4:87:69:6e:17: ad:08:81:7d:53:6c:d3:74:42:a7:71:35:29:80:87:be:e8:0c: 57:2e:8d:8c:33:61:a2:5b:b0:d4:e8:2c:84:1c:52:2b:8e:43: 6b:c1:b1:91:b7:3b:40:0c:b4:0c:d0:b3:1c:2f:42:7f:11:b2: d7:e9:d4:4d:fa:37:f2:ec:55:03:54:62:25:bf:0f:26:44:11: 4f:93:05:41:03:83:88:d2:50:c1:97:f5:8a:67:3f:ec:87:0d: 50:cf:d1:64:17:51:da:be:4d:1d:2f:68:fc:38:7c:df:a2:0b: 65:51:84:91:1a:e6:5a:05:72:87:70:02:57:72:f5:c3:1f:b7: cd:11:f7:7c:3c:00:7d:b7:40:eb:91:13:a5:ec:cc:8d:b4:7b: 7d:d0:55:82:95:db:bd:25:2b:b8:f6:b4:67:bb:f1:54:7e:b9: 66:1e:33:3a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVpDuu1RtCnh2ffZpepJ6cZcKoiMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yMzA3MzAyMzU3MzNaFw0yNDA3MjkwMDAyMzNaMDMxMTAvBgNV BAMTKEM0REIzM0ZGQjAxOENGOUZGNTUzRUNCQUJFODVBQTlCODBFQzg0RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaTb20NILwzYu9Awj4UFrf6uUv SeKcGp0AOI1Fmb1WKa7NWuFRe6nARXuS2gx/SVlg9ro+fR5Hpns5RuWWi1rICQoI 1w4au3aIst6SeNueuVBYykC9phrFXHmzOP5ps4RdpMwsnLTTecQdquHvupF+jgCz CgPn7luViXqZ+xFC/oluOf786qMmh5DA0HE7sEH62weN9Dv8+lxF+HEz615A1gOo sOta/oqNZG4BLIRjRf0QKGE9gG7lsleEWzzWD0FjOCXSH9PMXJa9XrARuRCCJCN0 CyJydePqjSSvJdg7sRIBdRG8aAHeow78DQKAXtCy6222it/2yZu8Ko5spUvbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxNsz/7AYz5/1U+y6voWqm4DshNkwHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMyMzAzMjJlMzUzNjJlMzEzNjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTMyMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAso4oDANBgkqhkiG 9w0BAQsFAAOCAQEAYdol5bw0rR5AR5y8mKdbEHlBIJEeuwpbF9ggc9d+8U8NJqd2 XAy5tY4GIpdsStO4T+PVPyLqzhKEeMitc7XEHZG38Au/YvHY7erLoazDyAyVW7MF 7LSHaW4XrQiBfVNs03RCp3E1KYCHvugMVy6NjDNholuw1OgshBxSK45Da8Gxkbc7 QAy0DNCzHC9CfxGy1+nUTfo38uxVA1RiJb8PJkQRT5MFQQODiNJQwZf1imc/7IcN UM/RZBdR2r5NHS9o/Dh836ILZVGEkRrmWgVyh3ACV3L1wx+3zRH3fDwAfbdA65ET pezMjbR7fdBVgpXbvSUruPa0Z7vxVH65Zh4zOg== -----END CERTIFICATE-----Generated at Thu Apr 18 12:00:58 2024 by rpki-client on console-fra.rpki-client.org