$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa File: 3230332e3231302e38342e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: 6GcCWJWbcmijM7AKwOnsidk+S0XxfuEDWZTDWQbZ7XE= Subject key identifier: 14:4C:78:B0:4F:BB:A3:73:5F:16:56:68:DA:76:8E:F8:42:7E:B7:0F Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 228D87212C4CFAAF6D92F0ED5CC9206C11093B34 Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa Signing time: Mon 31 Jul 2023 00:06:18 +0000 ROA not before: Mon 31 Jul 2023 00:01:18 +0000 ROA not after: Mon 29 Jul 2024 00:06:18 +0000 asID: 55699 IP address blocks: 203.210.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:8d:87:21:2c:4c:fa:af:6d:92:f0:ed:5c:c9:20:6c:11:09:3b:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 31 00:01:18 2023 GMT Not After : Jul 29 00:06:18 2024 GMT Subject: CN=144C78B04FBBA3735F165668DA768EF8427EB70F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:af:0e:98:55:68:be:a5:90:35:29:8a:5a:d2: 44:4b:75:cb:03:56:90:d1:e8:6b:9f:f9:bb:97:99: 70:60:ac:10:ff:a2:4b:f6:fd:33:14:97:99:b7:a3: 3f:28:30:56:5e:b6:93:fe:da:2e:94:e4:b1:61:a2: dc:c9:cb:a9:78:49:9b:f4:4b:cc:45:c6:33:c1:90: cc:e8:eb:99:1c:2b:a7:95:6d:87:9f:ac:ac:bf:20: 62:93:8a:79:20:1b:fc:d6:8a:c5:43:9b:c6:dc:be: 60:16:4b:a9:0e:cd:b0:ac:e9:0e:df:51:71:34:91: 03:3a:f5:ea:8f:1a:24:9b:c1:01:3a:9d:4f:5e:52: 5e:3b:9c:07:58:d7:54:d5:fc:08:e8:d8:98:d0:01: e4:4f:76:c8:57:eb:a4:a8:95:c4:05:23:ff:8d:f0: 3e:50:dd:fe:74:b5:d5:76:43:f7:4e:c7:01:be:3f: 21:36:9e:31:f0:1b:c6:85:c4:ec:ff:2b:32:5a:fa: 19:ce:05:f5:d3:f8:7f:87:66:26:3f:c7:9e:77:09: 10:85:94:10:ff:e7:f9:40:4b:d1:10:b1:13:39:ff: 46:78:d5:91:f0:c1:2f:dd:c6:b6:39:77:92:ec:03: 26:a8:f1:46:8b:31:e9:88:ed:60:3c:d6:cb:a4:88: a7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:4C:78:B0:4F:BB:A3:73:5F:16:56:68:DA:76:8E:F8:42:7E:B7:0F X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.210.84.0/22 Signature Algorithm: sha256WithRSAEncryption 53:29:8d:3f:51:d1:6b:b7:42:8c:1c:3d:3c:df:21:56:86:7c: 0f:80:7b:39:76:ef:1a:1b:91:2e:0a:ad:57:b7:95:64:d7:9b: 99:bf:4b:d7:af:f4:69:5f:e7:cf:55:13:c5:24:51:09:8e:44: 8c:44:ea:9d:d6:4f:90:bd:72:8a:d0:9b:94:96:da:89:3c:13: 74:51:fc:11:56:73:16:18:f9:be:c6:00:e4:a9:44:ec:18:2b: 9d:ff:09:b7:11:ad:19:0e:70:61:af:04:e6:8e:69:bf:db:81: fe:1d:d4:a0:4b:1d:39:da:17:5c:e6:24:73:3d:16:22:3a:a6: b6:4c:6d:58:df:15:98:65:19:2e:7a:57:f7:0c:14:9a:0b:3f: 13:ba:76:25:29:28:0d:6b:8a:0d:c9:07:22:53:2e:3e:1b:e0: 46:1b:df:16:c3:a6:3d:0c:26:08:e0:a4:e4:b1:7e:bd:32:eb: 6d:7c:45:e3:bb:ca:57:36:7d:c1:d6:1f:62:ac:f5:e8:44:cc: 1e:00:69:68:7c:a1:4a:72:03:f4:d4:99:2b:d2:ec:d6:5b:2e: 69:b4:2b:24:14:b3:99:5d:f0:ba:65:6b:c4:5d:7a:ac:5a:72: 75:6e:69:2d:32:22:af:35:c3:47:c7:60:29:33:ea:73:e8:e8: 53:61:2b:e2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIo2HISxM+q9tkvDtXMkgbBEJOzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yMzA3MzEwMDAxMThaFw0yNDA3MjkwMDA2MThaMDMxMTAvBgNV BAMTKDE0NEM3OEIwNEZCQkEzNzM1RjE2NTY2OERBNzY4RUY4NDI3RUI3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCirw6YVWi+pZA1KYpa0kRLdcsD VpDR6Guf+buXmXBgrBD/okv2/TMUl5m3oz8oMFZetpP+2i6U5LFhotzJy6l4SZv0 S8xFxjPBkMzo65kcK6eVbYefrKy/IGKTinkgG/zWisVDm8bcvmAWS6kOzbCs6Q7f UXE0kQM69eqPGiSbwQE6nU9eUl47nAdY11TV/Ajo2JjQAeRPdshX66SolcQFI/+N 8D5Q3f50tdV2Q/dOxwG+PyE2njHwG8aFxOz/KzJa+hnOBfXT+H+HZiY/x553CRCF lBD/5/lAS9EQsRM5/0Z41ZHwwS/dxrY5d5LsAyao8UaLMemI7WA81sukiKe3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFEx4sE+7o3NfFlZo2naO+EJ+tw8wHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMyMzAzMzJlMzIzMTMwMmUzODM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsvSVDANBgkqhkiG 9w0BAQsFAAOCAQEAUymNP1HRa7dCjBw9PN8hVoZ8D4B7OXbvGhuRLgqtV7eVZNeb mb9L16/0aV/nz1UTxSRRCY5EjETqndZPkL1yitCblJbaiTwTdFH8EVZzFhj5vsYA 5KlE7Bgrnf8JtxGtGQ5wYa8E5o5pv9uB/h3UoEsdOdoXXOYkcz0WIjqmtkxtWN8V mGUZLnpX9wwUmgs/E7p2JSkoDWuKDckHIlMuPhvgRhvfFsOmPQwmCOCk5LF+vTLr bXxF47vKVzZ9wdYfYqz16ETMHgBpaHyhSnID9NSZK9Ls1lsuabQrJBSzmV3wumVr xF16rFpydW5pLTIirzXDR8dgKTPqc+joU2Er4g== -----END CERTIFICATE-----Generated at Wed Apr 24 10:29:46 2024 by rpki-client on console-fra.rpki-client.org