$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e203234323036.roa File: 3230332e38342e3133382e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: PUkxp1WzTkhyrJhkIiPxr3Rk8tAvGHSUhx4J1wtsoVA= Subject key identifier: F4:59:1E:76:EB:CE:9B:1D:63:20:8B:B7:C0:AD:F9:8F:33:86:AA:D7 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 34EE6B76D1211E2BE08E5EAEEAE420562A0B9681 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e203234323036.roa Signing time: Fri 29 Sep 2023 15:16:10 +0000 ROA not before: Fri 29 Sep 2023 15:11:10 +0000 ROA not after: Fri 27 Sep 2024 15:16:10 +0000 asID: 24206 IP address blocks: 203.84.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ee:6b:76:d1:21:1e:2b:e0:8e:5e:ae:ea:e4:20:56:2a:0b:96:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Sep 29 15:11:10 2023 GMT Not After : Sep 27 15:16:10 2024 GMT Subject: CN=F4591E76EBCE9B1D63208BB7C0ADF98F3386AAD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9f:0a:f8:1d:75:db:e2:00:7e:af:d4:8b:35: 29:43:b4:39:7c:98:51:c7:ea:49:30:ac:f2:09:1d: 95:53:69:d2:55:5e:fb:5c:fc:da:ac:d7:35:8d:63: b3:a6:80:e3:ab:a5:ab:63:f8:e7:39:b7:d2:cf:ea: e1:ea:ba:01:05:23:c8:0d:ac:5c:e8:81:43:98:d5: b0:8b:0f:b3:a6:15:ef:b6:84:a3:ca:07:65:83:ae: 3d:cf:c6:c6:f4:4e:dc:cb:e2:94:ee:1c:a9:d0:fe: e4:a4:66:84:e5:04:a9:3f:71:ca:40:d2:74:64:b8: 07:63:63:2d:5a:bb:e2:95:4b:82:6c:6d:97:21:e3: 81:b8:b2:1e:95:91:6b:94:8e:bb:44:42:1b:dc:85: 38:e2:a1:4a:91:9d:a9:cc:e9:ec:24:a1:7f:ec:c9: 22:b2:5c:d9:53:2e:d6:d9:90:2f:c6:ca:59:ae:c8: 37:fc:e6:16:54:b7:e4:2c:f5:dc:32:88:3a:a6:aa: 05:e2:ef:8e:6d:52:1d:9b:41:a4:d0:b6:a5:18:6f: 95:e2:70:03:1a:a9:57:6d:e4:58:c8:c8:23:bb:6c: ac:0f:6b:22:fa:0d:13:2b:e0:f5:d0:54:5b:a9:06: 4c:7f:d7:c5:10:72:6e:9c:36:33:d7:2e:b7:b7:53: 4d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:59:1E:76:EB:CE:9B:1D:63:20:8B:B7:C0:AD:F9:8F:33:86:AA:D7 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3133382e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.138.0/24 Signature Algorithm: sha256WithRSAEncryption 81:69:47:98:59:fc:3f:26:7d:0a:de:12:d8:e3:1f:5f:18:7c: 49:55:a0:ef:0e:70:32:ee:a7:fd:30:da:3f:c7:8b:57:3a:cc: c6:2d:ab:07:b7:d9:40:50:45:e2:2b:83:66:c3:44:ac:6a:ee: 3d:bc:61:ac:fc:2a:5c:b2:f7:8a:e4:45:f0:b9:ea:02:f7:bf: e4:cb:04:70:c2:7a:30:ea:69:ba:83:73:94:68:0a:1b:f0:c2: f6:bb:34:bc:c7:e3:9f:e2:33:65:81:84:70:53:a2:d0:f0:a4: 12:76:21:80:5d:2f:18:9b:de:89:a9:e4:2c:f2:00:2a:c4:ec: 24:3c:33:29:f5:85:3a:ba:ed:cf:76:a3:08:3b:c5:68:f4:bc: 82:a5:35:43:78:ca:68:f2:63:60:55:65:a4:7e:c5:41:3d:d3: 83:1a:0c:19:b2:af:68:54:f4:45:6a:59:95:05:1e:07:fc:25: 99:78:06:20:21:12:d3:07:ec:83:da:7f:4f:87:5f:21:50:65: 8c:b1:b9:0c:90:a4:52:48:54:9b:f0:e5:20:5b:a5:c6:60:3e: 5e:2e:57:14:fb:30:ae:ef:ae:cb:1a:9c:aa:9f:06:50:c1:0d: e2:44:71:de:a7:3e:a1:19:e1:11:7e:1c:70:69:f1:36:7b:25: 5f:fa:2a:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNO5rdtEhHivgjl6u6uQgVioLloEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yMzA5MjkxNTExMTBaFw0yNDA5MjcxNTE2MTBaMDMxMTAvBgNV BAMTKEY0NTkxRTc2RUJDRTlCMUQ2MzIwOEJCN0MwQURGOThGMzM4NkFBRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDInwr4HXXb4gB+r9SLNSlDtDl8 mFHH6kkwrPIJHZVTadJVXvtc/Nqs1zWNY7OmgOOrpatj+Oc5t9LP6uHqugEFI8gN rFzogUOY1bCLD7OmFe+2hKPKB2WDrj3Pxsb0TtzL4pTuHKnQ/uSkZoTlBKk/ccpA 0nRkuAdjYy1au+KVS4JsbZch44G4sh6VkWuUjrtEQhvchTjioUqRnanM6ewkoX/s ySKyXNlTLtbZkC/GylmuyDf85hZUt+Qs9dwyiDqmqgXi745tUh2bQaTQtqUYb5Xi cAMaqVdt5FjIyCO7bKwPayL6DRMr4PXQVFupBkx/18UQcm6cNjPXLre3U02NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9FkeduvOmx1jIIu3wK35jzOGqtcwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtUijANBgkqhkiG 9w0BAQsFAAOCAQEAgWlHmFn8PyZ9Ct4S2OMfXxh8SVWg7w5wMu6n/TDaP8eLVzrM xi2rB7fZQFBF4iuDZsNErGruPbxhrPwqXLL3iuRF8LnqAve/5MsEcMJ6MOppuoNz lGgKG/DC9rs0vMfjn+IzZYGEcFOi0PCkEnYhgF0vGJveiankLPIAKsTsJDwzKfWF Orrtz3ajCDvFaPS8gqU1Q3jKaPJjYFVlpH7FQT3TgxoMGbKvaFT0RWpZlQUeB/wl mXgGICES0wfsg9p/T4dfIVBljLG5DJCkUkhUm/DlIFulxmA+Xi5XFPswru+uyxqc qp8GUMEN4kRx3qc+oRnhEX4ccGnxNnslX/oqwA== -----END CERTIFICATE-----Generated at Thu May 2 08:50:11 2024 by rpki-client on console-fra.rpki-client.org