$ rpki-client -vvf repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa File: 3230322e35312e39362e302f31392d3234203d3e203137393935.roa (raw, json) Hash identifier: t2alKiZjDA1+zxf82Y5vzG66s0Pr6yduYvkFApksISI= Subject key identifier: 3E:68:0E:6B:06:6C:4D:FB:DE:48:38:2A:AE:EE:E5:CB:D6:66:04:10 Certificate issuer: /CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE Certificate serial: 2B2923F5BA8A695EE52DBB376829593088F452A6 Authority key identifier: 3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa Signing time: Mon 31 Jul 2023 00:09:34 +0000 ROA not before: Mon 31 Jul 2023 00:04:34 +0000 ROA not after: Mon 29 Jul 2024 00:09:34 +0000 asID: 17995 IP address blocks: 202.51.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.crl rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 11:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:29:23:f5:ba:8a:69:5e:e5:2d:bb:37:68:29:59:30:88:f4:52:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE Validity Not Before: Jul 31 00:04:34 2023 GMT Not After : Jul 29 00:09:34 2024 GMT Subject: CN=3E680E6B066C4DFBDE48382AAEEEE5CBD6660410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e1:a7:72:22:50:d2:ff:de:56:28:97:d7:3e: a9:a0:5f:52:93:93:33:a3:dd:c4:95:9b:5e:be:1b: d1:04:d8:4a:76:ff:aa:dc:4d:9a:ae:e4:44:46:cc: 23:7c:23:55:bb:e2:fb:33:22:ae:47:25:e4:01:39: e5:e7:b6:26:4c:2d:42:d9:05:33:47:b2:07:3d:0e: a5:e0:e9:fc:37:a8:f9:f9:80:19:8f:57:ff:b5:76: d7:c0:13:16:fe:6f:24:be:7f:f3:61:12:64:c3:9d: 7b:8f:d1:1b:ff:ba:ca:1f:38:f7:c3:ad:d6:04:48: fe:d9:1f:f7:ec:43:af:e3:6f:74:e6:d2:58:05:a3: ff:d2:bc:66:84:32:2a:47:39:06:03:14:a9:7d:aa: 89:6e:8a:be:32:08:57:df:52:0b:ab:b8:1d:a0:11: da:7a:b6:b1:2f:13:a2:e8:22:42:c3:c6:97:14:5a: c0:af:d2:41:d5:ff:44:d6:64:71:c3:ef:98:cc:3f: fb:33:b2:89:ea:d4:0e:a8:c1:6f:e6:25:9c:25:f5: 22:c9:14:88:b1:cd:2d:e9:51:a0:e0:ed:29:78:41: 7c:9d:70:68:fc:e7:bf:2a:f9:de:5e:21:52:5f:24: 31:18:8c:41:0b:4a:6a:b6:9d:b7:64:d3:5f:0b:73: e6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:68:0E:6B:06:6C:4D:FB:DE:48:38:2A:AE:EE:E5:CB:D6:66:04:10 X509v3 Authority Key Identifier: keyid:3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.96.0/19 Signature Algorithm: sha256WithRSAEncryption 14:f9:b3:5a:6c:c4:22:03:eb:e0:43:b6:7f:46:3a:15:4c:d3: 98:f8:41:12:00:92:f7:db:eb:24:e0:11:37:be:cc:c6:e3:b8: e6:e4:48:65:4f:33:15:d6:b4:9b:70:47:cc:03:44:a5:94:96: 78:41:fd:c4:5a:26:dd:72:b0:76:a5:6b:88:2b:95:44:0a:c7: 13:03:ef:8b:60:5c:a7:a1:6a:07:63:24:26:09:69:09:62:d3: 93:f9:64:70:6f:96:92:cb:79:a0:fe:0e:e3:28:44:7d:bf:11: c5:14:17:91:df:2b:ae:d3:10:1f:6a:16:d2:e3:ba:86:fc:99: bb:31:d3:12:85:88:47:1b:c9:00:69:95:97:b2:33:98:ec:26: 77:e3:35:c8:f1:80:39:7b:c7:08:04:0a:e6:31:3c:21:8b:5f: 0d:b5:04:a6:ec:00:ae:a6:b4:1f:43:29:d8:e4:db:2e:c6:12: 31:48:30:12:52:00:f5:3c:b0:b3:6e:1c:73:28:c9:ca:cb:b5: eb:8c:85:05:dc:99:f0:06:b0:b5:ac:9b:df:0b:23:0d:24:2c: 44:93:eb:1e:b4:26:21:94:70:dc:bc:68:60:4b:9b:61:4c:90: 2e:a1:d0:12:a1:7f:e4:db:a3:82:26:b6:97:6a:11:ef:4a:ed: eb:ae:40:18 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKykj9bqKaV7lLbs3aClZMIj0UqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VEQkI3ODQ0NzE0QzU0NUNFRDcyNDEyMEVEMEU1QTM0 RUZCNDVFRTAeFw0yMzA3MzEwMDA0MzRaFw0yNDA3MjkwMDA5MzRaMDMxMTAvBgNV BAMTKDNFNjgwRTZCMDY2QzRERkJERTQ4MzgyQUFFRUVFNUNCRDY2NjA0MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL4adyIlDS/95WKJfXPqmgX1KT kzOj3cSVm16+G9EE2Ep2/6rcTZqu5ERGzCN8I1W74vszIq5HJeQBOeXntiZMLULZ BTNHsgc9DqXg6fw3qPn5gBmPV/+1dtfAExb+byS+f/NhEmTDnXuP0Rv/usofOPfD rdYESP7ZH/fsQ6/jb3Tm0lgFo//SvGaEMipHOQYDFKl9qoluir4yCFffUguruB2g Edp6trEvE6LoIkLDxpcUWsCv0kHV/0TWZHHD75jMP/szsonq1A6owW/mJZwl9SLJ FIixzS3pUaDg7Sl4QXydcGj8578q+d5eIVJfJDEYjEELSmq2nbdk018Lc+alAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUPmgOawZsTfveSDgqru7ly9ZmBBAwHwYDVR0j BBgwFoAUPtu3hEcUxUXO1yQSDtDlo077Re4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWQ5NTVjOC1lNmQzLTQ5YzItYWJkOC1lMGY5MmMwODEyNDcvMC8zRURCQjc4NDQ3 MTRDNTQ1Q0VENzI0MTIwRUQwRTVBMzRFRkI0NUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VEQkI3ODQ0NzE0QzU0NUNFRDcyNDEyMEVEMEU1QTM0RUZC NDVFRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllZDk1NWM4LWU2ZDMtNDljMi1h YmQ4LWUwZjkyYzA4MTI0Ny8wLzMyMzAzMjJlMzUzMTJlMzkzNjJlMzAyZjMxMzky ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXKM2AwDQYJKoZIhvcN AQELBQADggEBABT5s1psxCID6+BDtn9GOhVM05j4QRIAkvfb6yTgETe+zMbjuObk SGVPMxXWtJtwR8wDRKWUlnhB/cRaJt1ysHala4grlUQKxxMD74tgXKehagdjJCYJ aQli05P5ZHBvlpLLeaD+DuMoRH2/EcUUF5HfK67TEB9qFtLjuob8mbsx0xKFiEcb yQBplZeyM5jsJnfjNcjxgDl7xwgECuYxPCGLXw21BKbsAK6mtB9DKdjk2y7GEjFI MBJSAPU8sLNuHHMoycrLteuMhQXcmfAGsLWsm98LIw0kLEST6x60JiGUcNy8aGBL m2FMkC6h0BKhf+Tbo4ImtpdqEe9K7euuQBg= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:47 2024 by rpki-client on console-fra.rpki-client.org