$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134302e302f32342d3234203d3e203234323036.roa File: 3230332e38342e3134302e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: S/9syW9khcbf9+6If/3+TwwhxY5Wrs88XjnqLJBSatA= Subject key identifier: 1D:D1:D2:81:1F:90:CF:75:4C:DA:23:66:6C:ED:73:9C:55:9A:2E:72 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 3C7D7EFB2E02082B23CD7437B889138256805582 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134302e302f32342d3234203d3e203234323036.roa Signing time: Fri 29 Sep 2023 15:16:46 +0000 ROA not before: Fri 29 Sep 2023 15:11:46 +0000 ROA not after: Fri 27 Sep 2024 15:16:46 +0000 asID: 24206 IP address blocks: 203.84.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:7d:7e:fb:2e:02:08:2b:23:cd:74:37:b8:89:13:82:56:80:55:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Sep 29 15:11:46 2023 GMT Not After : Sep 27 15:16:46 2024 GMT Subject: CN=1DD1D2811F90CF754CDA23666CED739C559A2E72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:25:5f:0c:7f:03:0e:c1:1c:92:d9:cb:fe:e3: 6f:78:d1:22:14:a5:5a:0f:43:d8:39:68:55:dd:31: 8c:93:1a:fe:05:f7:64:f6:2c:5c:84:be:51:d8:c2: 42:00:44:f2:dc:4e:f6:28:76:8b:c4:ca:4d:19:99: 63:ba:34:4d:77:6e:3b:e0:00:33:65:8b:12:be:a6: dd:d1:5c:77:ba:e3:51:2d:cb:85:c2:0f:2b:3b:3f: 9a:bd:93:11:a2:ae:16:36:6b:cf:dc:2a:c7:51:e1: 86:85:77:b5:41:e6:23:b2:ae:e6:b0:da:28:40:04: 15:94:ef:aa:73:f7:09:89:bc:eb:8c:11:a2:0a:a1: ad:27:8a:6a:93:ad:73:3a:d0:14:d5:4a:4d:09:a0: 8e:0e:5d:ec:01:64:17:7e:3f:d5:a1:8f:0e:05:aa: 5a:e3:23:b5:0b:2d:cc:7e:a1:2b:d2:76:da:32:ca: 61:a1:07:e7:82:2a:3e:da:01:fd:81:ed:2f:d6:9e: f1:df:d1:88:c7:32:8e:05:74:7c:0d:e1:5b:d7:43: 2d:1b:a2:cf:f4:b3:31:33:df:cb:eb:b4:57:ce:14: 37:b8:ae:75:60:47:6e:35:2e:10:74:87:11:2b:ec: 3f:8f:bd:01:97:61:f0:3c:d0:a2:aa:86:65:2a:78: bf:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D1:D2:81:1F:90:CF:75:4C:DA:23:66:6C:ED:73:9C:55:9A:2E:72 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134302e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.140.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:26:d5:24:d2:c8:3b:38:cd:53:d0:82:a5:75:51:33:ed:17: 83:22:26:38:90:a8:fe:1e:5c:97:a4:0b:74:7c:5c:68:45:c8: 85:85:60:32:08:81:45:bf:1e:65:3b:31:bc:c1:2c:f5:92:bf: 9a:c9:74:4b:81:65:0e:09:56:70:85:43:d8:ee:33:bf:44:b2: d1:f0:8d:6b:61:55:35:d6:02:c0:d7:41:01:ab:b9:2b:4e:af: 80:80:65:7f:97:c7:d5:eb:36:24:b3:a4:97:98:73:34:d4:a9: 9b:70:15:ca:64:58:26:92:7e:3b:f0:36:1e:50:05:d7:12:d8: 17:02:78:15:b3:85:e8:b7:c1:34:32:21:d8:83:0a:b6:ca:6d: 16:34:e6:e2:52:07:e4:a3:e7:15:e2:5b:93:66:3e:7a:bd:d8: 21:98:9d:5f:e3:52:ee:df:85:bc:7c:68:15:17:cd:c7:56:b6: ce:ee:ae:4d:ee:ca:e6:d6:94:63:99:98:05:3c:bb:f4:5a:b7: 60:ee:b5:7d:d9:c2:cd:c9:1a:98:d0:b9:72:8d:a2:71:95:31: b4:f2:b6:0d:29:d5:94:3c:e0:86:c5:0f:a1:98:4f:6e:7a:a0: 56:21:9d:c7:bc:df:2e:c7:fc:72:3b:e1:28:34:f9:ff:e3:9c: d6:a2:de:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPH1++y4CCCsjzXQ3uIkTglaAVYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yMzA5MjkxNTExNDZaFw0yNDA5MjcxNTE2NDZaMDMxMTAvBgNV BAMTKDFERDFEMjgxMUY5MENGNzU0Q0RBMjM2NjZDRUQ3MzlDNTU5QTJFNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpJV8MfwMOwRyS2cv+42940SIU pVoPQ9g5aFXdMYyTGv4F92T2LFyEvlHYwkIARPLcTvYodovEyk0ZmWO6NE13bjvg ADNlixK+pt3RXHe641Ety4XCDys7P5q9kxGirhY2a8/cKsdR4YaFd7VB5iOyruaw 2ihABBWU76pz9wmJvOuMEaIKoa0nimqTrXM60BTVSk0JoI4OXewBZBd+P9Whjw4F qlrjI7ULLcx+oSvSdtoyymGhB+eCKj7aAf2B7S/WnvHf0YjHMo4FdHwN4VvXQy0b os/0szEz38vrtFfOFDe4rnVgR241LhB0hxEr7D+PvQGXYfA80KKqhmUqeL8nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHdHSgR+Qz3VM2iNmbO1znFWaLnIwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtUjDANBgkqhkiG 9w0BAQsFAAOCAQEALibVJNLIOzjNU9CCpXVRM+0XgyImOJCo/h5cl6QLdHxcaEXI hYVgMgiBRb8eZTsxvMEs9ZK/msl0S4FlDglWcIVD2O4zv0Sy0fCNa2FVNdYCwNdB Aau5K06vgIBlf5fH1es2JLOkl5hzNNSpm3AVymRYJpJ+O/A2HlAF1xLYFwJ4FbOF 6LfBNDIh2IMKtsptFjTm4lIH5KPnFeJbk2Y+er3YIZidX+NS7t+FvHxoFRfNx1a2 zu6uTe7K5taUY5mYBTy79Fq3YO61fdnCzckamNC5co2icZUxtPK2DSnVlDzghsUP oZhPbnqgViGdx7zfLsf8cjvhKDT5/+Oc1qLepA== -----END CERTIFICATE-----Generated at Thu May 2 10:17:06 2024 by rpki-client on console-ams.rpki-client.org