$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133362e302f32342d3234203d3e203234323036.roa File: 3230332e38342e3133362e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: nnQ9ffDFbKs09J6Tr4oWjjXubYQwisaycRCxhZhxrtE= Subject key identifier: C9:56:9D:2B:1F:14:8F:F4:4E:72:41:23:3B:B2:05:C4:D8:46:88:D7 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 734336648233455CBA908E919D5F37DF976628AB Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133362e302f32342d3234203d3e203234323036.roa Signing time: Wed 02 Aug 2023 03:00:20 +0000 ROA not before: Wed 02 Aug 2023 02:55:20 +0000 ROA not after: Wed 31 Jul 2024 03:00:20 +0000 asID: 24206 IP address blocks: 203.84.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:43:36:64:82:33:45:5c:ba:90:8e:91:9d:5f:37:df:97:66:28:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 2 02:55:20 2023 GMT Not After : Jul 31 03:00:20 2024 GMT Subject: CN=C9569D2B1F148FF44E7241233BB205C4D84688D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:da:45:2e:ab:83:5b:25:f0:52:37:b2:30:30: 85:af:2c:49:98:d3:4d:8d:2b:79:b7:51:14:c3:31: f0:c7:45:48:0a:0e:42:56:67:bb:23:5d:88:03:a7: 8d:e2:46:15:90:16:3c:bd:dd:11:3d:6f:1a:68:66: 23:13:2c:e8:19:79:23:34:12:b1:c5:20:a0:1c:76: 7e:29:b8:95:19:e7:03:64:a1:e4:d5:97:fd:fd:b6: a0:ed:7b:46:76:7d:d8:1f:40:4f:23:7f:3d:1d:35: 58:cc:97:b9:2a:28:55:c0:8f:d0:a3:07:00:a0:3f: 84:39:d1:65:9f:e5:0b:76:05:31:d8:8f:86:ea:e9: fe:9a:23:97:7f:eb:15:5d:53:be:b1:ed:b4:62:42: fa:d1:e3:e0:3d:8e:6f:b8:f7:49:52:78:5f:9a:f1: 12:ce:c3:1a:7d:6d:ce:e2:bf:6e:18:11:dd:e4:56: 46:e2:52:c0:61:af:65:c6:ec:0e:f9:a1:a2:00:8f: b8:06:3e:07:92:ea:19:e1:f1:47:5d:e8:9a:a3:04: 07:36:58:b0:28:c0:b5:d7:b2:ae:c3:16:7d:09:ae: d3:35:5a:00:20:86:a6:fb:e4:00:3f:d6:11:b5:24: e2:ca:b0:1a:6e:f0:6e:ca:38:80:52:5e:28:e9:71: 61:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:56:9D:2B:1F:14:8F:F4:4E:72:41:23:3B:B2:05:C4:D8:46:88:D7 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133362e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.136.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:e0:32:e8:16:b4:da:9d:42:d8:2c:7c:c9:91:47:00:e8:12: d2:84:37:a3:d4:1f:1c:87:5d:48:db:28:a9:df:2d:a2:ed:e3: 9a:e8:25:51:6c:25:41:ff:56:88:80:18:ac:1b:7e:66:f0:53: d4:dd:91:2a:51:0c:38:76:dd:58:d3:e9:f0:1a:4b:38:15:94: 07:78:ec:59:e7:7c:9a:8f:ce:1e:fd:ce:d6:98:ed:3f:24:27: fa:9d:db:95:e0:47:ba:e8:78:22:df:74:b0:bb:c2:83:9e:bd: 5b:0e:9a:9b:8e:33:b3:43:ad:83:9d:83:59:3e:db:d1:73:73: 47:5c:05:2d:08:fa:2f:51:42:6f:e9:1b:e3:5e:bb:ff:8c:b6: 99:09:04:60:7c:d2:a7:d0:a2:19:be:13:df:e4:61:29:cd:f6: 5a:88:1b:21:96:ba:d3:ab:bd:e2:2f:df:78:38:a7:ab:7a:19: 92:ff:d2:5f:9f:60:09:9d:42:ad:56:57:6c:c9:62:92:d1:80: 50:42:b4:a8:39:1e:40:8a:91:b0:13:2e:f8:dc:05:b1:09:45: ed:c3:dd:c5:b8:6a:a8:c7:16:ad:a9:aa:c2:92:ba:ab:93:ee: ed:b3:cc:f3:46:c2:dc:b9:80:e1:f1:21:02:a3:6f:09:6d:88: 57:9b:f6:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUc0M2ZIIzRVy6kI6RnV8335dmKKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yMzA4MDIwMjU1MjBaFw0yNDA3MzEwMzAwMjBaMDMxMTAvBgNV BAMTKEM5NTY5RDJCMUYxNDhGRjQ0RTcyNDEyMzNCQjIwNUM0RDg0Njg4RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC92kUuq4NbJfBSN7IwMIWvLEmY 002NK3m3URTDMfDHRUgKDkJWZ7sjXYgDp43iRhWQFjy93RE9bxpoZiMTLOgZeSM0 ErHFIKAcdn4puJUZ5wNkoeTVl/39tqDte0Z2fdgfQE8jfz0dNVjMl7kqKFXAj9Cj BwCgP4Q50WWf5Qt2BTHYj4bq6f6aI5d/6xVdU76x7bRiQvrR4+A9jm+490lSeF+a 8RLOwxp9bc7iv24YEd3kVkbiUsBhr2XG7A75oaIAj7gGPgeS6hnh8Udd6JqjBAc2 WLAowLXXsq7DFn0JrtM1WgAghqb75AA/1hG1JOLKsBpu8G7KOIBSXijpcWE9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyVadKx8Uj/ROckEjO7IFxNhGiNcwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtUiDANBgkqhkiG 9w0BAQsFAAOCAQEAC+Ay6Ba02p1C2Cx8yZFHAOgS0oQ3o9QfHIddSNsoqd8tou3j muglUWwlQf9WiIAYrBt+ZvBT1N2RKlEMOHbdWNPp8BpLOBWUB3jsWed8mo/OHv3O 1pjtPyQn+p3bleBHuuh4It90sLvCg569Ww6am44zs0Otg52DWT7b0XNzR1wFLQj6 L1FCb+kb4167/4y2mQkEYHzSp9CiGb4T3+RhKc32WogbIZa606u94i/feDinq3oZ kv/SX59gCZ1CrVZXbMliktGAUEK0qDkeQIqRsBMu+NwFsQlF7cPdxbhqqMcWramq wpK6q5Pu7bPM80bC3LmA4fEhAqNvCW2IV5v27g== -----END CERTIFICATE-----Generated at Thu May 2 10:17:06 2024 by rpki-client on console-ams.rpki-client.org