$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230332e39392e3133302e302f32332d3234203d3e203435323837.roa File: 3230332e39392e3133302e302f32332d3234203d3e203435323837.roa (raw, json) Hash identifier: oi3i0T/DGnsrkj9V/nmlXKbyA+8x0nN3xH+cnRDEqqw= Subject key identifier: F3:61:7E:01:83:D9:0F:35:F9:FE:44:E4:89:E6:AB:C2:ED:1E:3B:5F Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 4FDEEE5E9E98316922A2C828F8C2A15EC995CF1F Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230332e39392e3133302e302f32332d3234203d3e203435323837.roa Signing time: Mon 31 Jul 2023 00:02:34 +0000 ROA not before: Sun 30 Jul 2023 23:57:34 +0000 ROA not after: Mon 29 Jul 2024 00:02:34 +0000 asID: 45287 IP address blocks: 203.99.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 19:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:de:ee:5e:9e:98:31:69:22:a2:c8:28:f8:c2:a1:5e:c9:95:cf:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: Jul 30 23:57:34 2023 GMT Not After : Jul 29 00:02:34 2024 GMT Subject: CN=F3617E0183D90F35F9FE44E489E6ABC2ED1E3B5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0f:9c:ad:93:8d:c9:1b:66:28:43:3b:84:56: b4:f3:f3:8e:f1:ba:e3:00:b4:a1:e2:b4:78:ee:bf: ff:8f:f0:29:26:ea:a3:26:fd:bd:f1:8e:83:48:71: 1f:9f:59:c9:d8:5d:7b:0b:28:de:79:de:58:e5:3e: 4f:d3:c5:5b:c7:5d:11:a6:9a:86:47:90:d3:59:01: ab:c9:a8:83:c1:69:eb:80:6f:af:32:b0:8c:36:fd: 8c:b3:67:3b:22:b8:e6:f0:71:a6:dd:ae:f5:ea:10: e3:65:c7:2a:0f:be:18:f0:96:93:3c:17:a6:25:a3: 75:fd:d8:99:de:ff:6a:96:b9:12:d4:3d:a7:ea:e3: 63:02:0d:05:af:2b:58:e7:1b:7c:79:c5:1d:ca:e9: 98:c3:cf:7c:d2:fd:65:8b:58:87:41:e3:0b:d1:89: 40:ac:bb:7c:37:77:9a:d3:17:c9:54:2d:27:da:9f: 2f:f6:43:df:65:f1:ad:ea:9f:81:4e:2b:e4:3d:f9: 80:8d:8f:90:29:b5:6d:63:77:2f:11:ec:14:e5:cf: 70:b2:ef:4d:17:05:43:04:86:ac:2e:0c:c2:84:59: 49:35:b2:28:1d:96:1a:c7:1a:65:a3:0c:a5:c2:3b: 7a:69:33:9f:83:cf:c0:a0:ab:4c:87:19:62:89:e2: ea:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:61:7E:01:83:D9:0F:35:F9:FE:44:E4:89:E6:AB:C2:ED:1E:3B:5F X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3230332e39392e3133302e302f32332d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.130.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:2c:bc:f7:83:3f:df:b3:3b:e6:38:be:9c:44:97:d4:cf:2d: be:a3:89:11:75:62:23:9a:37:26:0a:9d:cf:c1:3c:89:b7:d2: 28:f2:13:65:5e:cc:7b:99:93:f1:46:1f:ea:0a:b5:ff:a7:84: 10:02:c7:89:fb:36:f4:90:53:8c:f8:4c:ee:cb:13:d8:c8:08: 50:b2:da:11:67:72:01:55:61:84:41:8d:43:ea:e9:a7:3b:88: 56:0c:fa:17:3a:d5:67:1e:49:90:2b:b7:8a:a3:ef:4c:bd:70: 67:12:90:e3:95:f7:1b:00:f3:2e:f5:b6:e6:75:05:12:0a:46: 01:ff:75:d6:94:77:a8:14:8b:cf:fa:ad:ef:e5:e9:da:c0:36: 79:08:43:8a:29:ae:12:10:77:fc:b9:17:a1:c8:f6:8c:39:e2: ae:d7:fa:d3:24:3a:f6:a6:0e:8e:43:b6:1d:22:fd:6c:74:7b: ac:1e:11:85:52:ba:5d:29:40:b8:f7:f8:67:87:2d:08:b6:01: 3c:c0:70:83:ce:be:99:a6:64:2a:3c:74:75:8e:78:af:5f:14: 68:8e:22:c1:20:18:56:dc:02:3d:01:eb:06:d3:3d:79:6d:d2: 83:85:12:c7:c8:11:5c:9e:18:33:41:a5:62:da:9f:6b:2a:e8: d5:bf:5f:4e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT97uXp6YMWkiosgo+MKhXsmVzx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yMzA3MzAyMzU3MzRaFw0yNDA3MjkwMDAyMzRaMDMxMTAvBgNV BAMTKEYzNjE3RTAxODNEOTBGMzVGOUZFNDRFNDg5RTZBQkMyRUQxRTNCNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2D5ytk43JG2YoQzuEVrTz847x uuMAtKHitHjuv/+P8Ckm6qMm/b3xjoNIcR+fWcnYXXsLKN553ljlPk/TxVvHXRGm moZHkNNZAavJqIPBaeuAb68ysIw2/YyzZzsiuObwcabdrvXqEONlxyoPvhjwlpM8 F6Ylo3X92Jne/2qWuRLUPafq42MCDQWvK1jnG3x5xR3K6ZjDz3zS/WWLWIdB4wvR iUCsu3w3d5rTF8lULSfany/2Q99l8a3qn4FOK+Q9+YCNj5AptW1jdy8R7BTlz3Cy 700XBUMEhqwuDMKEWUk1sigdlhrHGmWjDKXCO3ppM5+Dz8Cgq0yHGWKJ4urfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU82F+AYPZDzX5/kTkiearwu0eO18wHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMyMzAzMzJlMzkzOTJlMzEzMzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMyMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEActjgjANBgkqhkiG 9w0BAQsFAAOCAQEAnyy894M/37M75ji+nESX1M8tvqOJEXViI5o3Jgqdz8E8ibfS KPITZV7Me5mT8UYf6gq1/6eEEALHifs29JBTjPhM7ssT2MgIULLaEWdyAVVhhEGN Q+rppzuIVgz6FzrVZx5JkCu3iqPvTL1wZxKQ45X3GwDzLvW25nUFEgpGAf911pR3 qBSLz/qt7+Xp2sA2eQhDiimuEhB3/LkXocj2jDnirtf60yQ69qYOjkO2HSL9bHR7 rB4RhVK6XSlAuPf4Z4ctCLYBPMBwg86+maZkKjx0dY54r18UaI4iwSAYVtwCPQHr BtM9eW3Sg4USx8gRXJ4YM0GlYtqfayro1b9fTg== -----END CERTIFICATE-----Generated at Thu Apr 18 12:00:58 2024 by rpki-client on console-fra.rpki-client.org