$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e203234323036.roa File: 3230332e38342e3134322e302f32342d3234203d3e203234323036.roa (raw, json) Hash identifier: jZZ39u75iKRH+lnsQy8PDmIMYhEPGwOJd2VpgdkPTlw= Subject key identifier: 52:E8:18:8B:1C:E2:8F:3B:B0:E2:DA:53:84:53:E7:9A:EB:3B:27:0C Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 1F20D27032037E52CEA1AF3EF86549274C483F73 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e203234323036.roa Signing time: Fri 29 Sep 2023 15:17:17 +0000 ROA not before: Fri 29 Sep 2023 15:12:17 +0000 ROA not after: Fri 27 Sep 2024 15:17:17 +0000 asID: 24206 IP address blocks: 203.84.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:20:d2:70:32:03:7e:52:ce:a1:af:3e:f8:65:49:27:4c:48:3f:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Sep 29 15:12:17 2023 GMT Not After : Sep 27 15:17:17 2024 GMT Subject: CN=52E8188B1CE28F3BB0E2DA538453E79AEB3B270C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ea:f3:6b:78:92:67:4d:05:87:eb:be:02:22: 1e:3c:0b:aa:83:bf:03:9c:6f:d8:37:d5:f8:f9:ea: a4:46:b1:4c:5d:34:bf:6e:ca:3f:64:5f:4c:c6:c8: a4:1e:4d:b5:55:3d:c5:18:07:4b:80:c9:a9:5f:3a: 62:0d:bf:7d:ee:a7:b1:d0:70:d2:2d:f9:b4:69:04: b6:b2:83:80:85:f6:bd:90:d9:74:bb:53:ff:69:bd: e1:50:37:ad:16:c6:a7:4f:42:09:38:8b:a2:91:36: 55:d1:30:07:64:ba:7c:48:bd:61:b1:ef:ce:b9:55: 92:3e:ea:96:38:c4:83:16:98:e7:f2:e2:41:b1:e3: cb:2d:f8:13:7c:60:54:0d:f6:1b:f4:48:d8:0f:a9: 4d:b9:7e:22:65:db:77:94:2e:9d:dc:07:e2:57:7a: ea:50:8b:4b:20:e6:90:93:21:32:19:c0:b7:f5:d7: 26:3d:0a:71:16:61:c6:15:a7:61:89:22:ca:eb:43: 19:27:fd:2f:96:18:89:72:a0:7b:32:ae:2d:53:06: 7a:60:4f:af:cf:c8:56:79:9a:7e:9e:77:df:0e:b0: 67:4f:9f:60:f5:ff:02:e7:b8:7f:78:44:11:b9:68: a6:d0:29:96:cd:0b:69:c4:dd:aa:cf:5a:4c:d9:70: af:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E8:18:8B:1C:E2:8F:3B:B0:E2:DA:53:84:53:E7:9A:EB:3B:27:0C X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.84.142.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:f4:66:54:55:eb:94:eb:53:07:6c:74:34:ca:57:f1:24:18: c0:2b:36:a2:59:60:f8:5e:5c:87:dc:f7:ae:06:f8:c0:ec:28: d4:17:a5:80:d9:7d:bb:c8:e4:e3:77:30:14:5a:af:74:61:95: fd:9c:c7:48:80:27:a8:e9:3f:4c:eb:c7:44:7f:88:23:2d:75: d0:df:30:c3:2e:14:a5:be:82:11:be:bb:dc:b6:3f:70:77:db: bc:5b:79:a9:4f:e6:0e:85:8b:ec:b3:6f:9f:b5:db:84:ef:73: f2:a3:96:f0:e1:4b:1f:50:a2:ac:15:2e:72:b0:52:b0:f8:b8: 03:0f:1e:3a:e4:b4:c9:21:39:47:c7:33:04:61:30:2b:79:69: 7d:47:a9:f3:3b:9f:12:a8:de:19:be:e1:82:fd:c4:7d:7b:7f: ce:0d:d4:a1:bf:92:11:a2:89:ff:62:2a:1b:ad:b9:4f:03:f6: f2:88:f7:b4:3e:0e:76:9d:1a:96:bb:39:8e:4f:8b:6b:c8:61: 1a:da:df:ca:c1:2e:78:86:2e:75:da:41:c0:91:3d:4a:23:07: f6:8d:f1:5f:6b:c6:da:94:07:1d:67:2f:2b:8c:a1:c8:0c:51: cd:9e:8f:bf:3a:aa:8f:f0:be:52:77:af:b5:ef:c6:3d:56:ee: 27:b1:b6:46 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHyDScDIDflLOoa8++GVJJ0xIP3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yMzA5MjkxNTEyMTdaFw0yNDA5MjcxNTE3MTdaMDMxMTAvBgNV BAMTKDUyRTgxODhCMUNFMjhGM0JCMEUyREE1Mzg0NTNFNzlBRUIzQjI3MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA6vNreJJnTQWH674CIh48C6qD vwOcb9g31fj56qRGsUxdNL9uyj9kX0zGyKQeTbVVPcUYB0uAyalfOmINv33up7HQ cNIt+bRpBLayg4CF9r2Q2XS7U/9pveFQN60WxqdPQgk4i6KRNlXRMAdkunxIvWGx 7865VZI+6pY4xIMWmOfy4kGx48st+BN8YFQN9hv0SNgPqU25fiJl23eULp3cB+JX eupQi0sg5pCTITIZwLf11yY9CnEWYcYVp2GJIsrrQxkn/S+WGIlyoHsyri1TBnpg T6/PyFZ5mn6ed98OsGdPn2D1/wLnuH94RBG5aKbQKZbNC2nE3arPWkzZcK/lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUugYixzijzuw4tpThFPnmus7JwwwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzAzMzJlMzgzNDJlMzEzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtUjjANBgkqhkiG 9w0BAQsFAAOCAQEAe/RmVFXrlOtTB2x0NMpX8SQYwCs2ollg+F5ch9z3rgb4wOwo 1BelgNl9u8jk43cwFFqvdGGV/ZzHSIAnqOk/TOvHRH+IIy110N8wwy4Upb6CEb67 3LY/cHfbvFt5qU/mDoWL7LNvn7XbhO9z8qOW8OFLH1CirBUucrBSsPi4Aw8eOuS0 ySE5R8czBGEwK3lpfUep8zufEqjeGb7hgv3EfXt/zg3Uob+SEaKJ/2IqG625TwP2 8oj3tD4Odp0alrs5jk+La8hhGtrfysEueIYuddpBwJE9SiMH9o3xX2vG2pQHHWcv K4yhyAxRzZ6Pvzqqj/C+Unevte/GPVbuJ7G2Rg== -----END CERTIFICATE-----Generated at Thu May 2 08:50:11 2024 by rpki-client on console-fra.rpki-client.org