$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35392e302f32342d3234203d3e20313336313139.roa File: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (raw, json) Hash identifier: U0r5M5QKpIV07hyrK8XcZx+RiwaaVYR70kI5FooPpDM= Subject key identifier: A9:27:4B:DC:90:ED:57:D5:00:F2:E5:77:82:08:6B:B0:81:CB:98:31 Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 2B15F416D90BBA4F60A2C7D4715B84D62434C933 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35392e302f32342d3234203d3e20313336313139.roa Signing time: Wed 18 Oct 2023 07:54:21 +0000 ROA not before: Wed 18 Oct 2023 07:49:21 +0000 ROA not after: Wed 16 Oct 2024 07:54:21 +0000 asID: 136119 IP address blocks: 202.10.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:15:f4:16:d9:0b:ba:4f:60:a2:c7:d4:71:5b:84:d6:24:34:c9:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Oct 18 07:49:21 2023 GMT Not After : Oct 16 07:54:21 2024 GMT Subject: CN=A9274BDC90ED57D500F2E57782086BB081CB9831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fb:06:ee:2e:e9:3e:5e:5f:9c:a9:74:ff:08: 08:ec:e6:02:96:8f:ee:f1:95:92:d3:65:28:48:19: 75:b1:6f:ad:56:59:ec:55:ca:28:9a:05:83:40:f6: c2:94:1a:18:38:1c:99:c9:72:39:a5:b0:a7:65:81: 1d:c4:0f:71:e9:81:a8:2b:65:76:b1:8b:28:0a:fe: 2d:a4:35:ff:cb:fc:1a:60:63:91:b8:d1:fd:77:33: e8:d2:3c:73:20:9d:9e:8d:4d:3d:9f:6b:16:2b:be: 6e:2a:72:e5:2c:58:b0:fe:68:8c:82:52:63:09:fe: cb:d0:d0:bf:b7:80:5d:7b:a1:07:03:f1:fb:68:47: 41:9c:5b:8c:8e:00:54:ba:f2:eb:08:a0:93:16:00: 2f:8e:79:77:1e:03:93:69:17:d7:da:46:35:e1:90: a5:06:09:13:a7:e1:f8:f0:ff:51:8d:5a:1c:d7:54: 7d:2e:e1:aa:2b:46:e0:d6:f7:fa:89:fc:bc:06:40: 33:ef:32:e4:fc:3a:07:43:14:05:f1:15:6d:72:60: d2:26:9f:9a:42:99:d9:67:2e:d6:47:09:73:e3:c0: dc:1d:4f:cd:20:5c:a8:c3:df:df:81:a0:34:41:e8: 26:b0:76:46:8a:1d:2c:5c:21:7f:cd:f8:fa:ad:57: 0e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:27:4B:DC:90:ED:57:D5:00:F2:E5:77:82:08:6B:B0:81:CB:98:31 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3230322e31302e35392e302f32342d3234203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.10.59.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:1a:5a:66:42:77:58:7f:08:7f:52:9d:5c:49:c2:a7:91:30: 61:85:a8:f5:1d:a0:04:c2:97:b0:de:9f:be:01:ab:0d:af:38: 9e:ed:8d:63:0e:98:f9:10:f9:d7:31:cc:16:36:57:82:73:d1: ae:13:64:b2:5e:73:b2:ee:30:ad:cb:34:62:98:f2:3f:93:c9: 23:47:54:11:d1:e2:47:a4:a2:40:e8:32:2e:d1:93:be:05:7e: f3:24:e8:6b:c2:05:53:f4:e3:d2:9f:08:5c:f0:cc:80:29:d9: 76:e3:dd:7a:c5:9b:9f:33:e6:cf:43:45:f3:51:a2:5d:ff:75: 07:2a:07:5f:73:c7:07:e4:54:ca:1e:34:9e:24:11:83:f2:50: 8c:a9:18:3b:3d:36:bd:5c:c0:ba:a1:6d:00:82:a9:11:e8:e5: 21:78:c4:16:2d:b5:1a:da:60:d9:74:ca:59:e9:8d:2d:51:56: e5:0b:7c:14:96:d2:93:e4:0b:fa:d5:df:5d:ba:d2:a4:6d:3e: ba:b0:9c:7e:27:ea:b3:6f:e2:c5:86:59:1a:d1:63:27:36:be: 63:5a:6c:df:fe:7c:48:e0:3e:a9:ac:42:33:5d:aa:27:cc:ef: f3:25:86:83:6e:0e:9e:3a:15:c5:b6:cf:06:79:41:ff:f9:ba: de:38:79:eb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKxX0FtkLuk9gosfUcVuE1iQ0yTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yMzEwMTgwNzQ5MjFaFw0yNDEwMTYwNzU0MjFaMDMxMTAvBgNV BAMTKEE5Mjc0QkRDOTBFRDU3RDUwMEYyRTU3NzgyMDg2QkIwODFDQjk4MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8+wbuLuk+Xl+cqXT/CAjs5gKW j+7xlZLTZShIGXWxb61WWexVyiiaBYNA9sKUGhg4HJnJcjmlsKdlgR3ED3Hpgagr ZXaxiygK/i2kNf/L/BpgY5G40f13M+jSPHMgnZ6NTT2faxYrvm4qcuUsWLD+aIyC UmMJ/svQ0L+3gF17oQcD8ftoR0GcW4yOAFS68usIoJMWAC+OeXceA5NpF9faRjXh kKUGCROn4fjw/1GNWhzXVH0u4aorRuDW9/qJ/LwGQDPvMuT8OgdDFAXxFW1yYNIm n5pCmdlnLtZHCXPjwNwdT80gXKjD39+BoDRB6CawdkaKHSxcIX/N+PqtVw7NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqSdL3JDtV9UA8uV3gghrsIHLmDEwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMyMzAzMjJlMzEzMDJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoKOzANBgkqhkiG 9w0BAQsFAAOCAQEAjxpaZkJ3WH8If1KdXEnCp5EwYYWo9R2gBMKXsN6fvgGrDa84 nu2NYw6Y+RD51zHMFjZXgnPRrhNksl5zsu4wrcs0YpjyP5PJI0dUEdHiR6SiQOgy LtGTvgV+8yToa8IFU/Tj0p8IXPDMgCnZduPdesWbnzPmz0NF81GiXf91ByoHX3PH B+RUyh40niQRg/JQjKkYOz02vVzAuqFtAIKpEejlIXjEFi21Gtpg2XTKWemNLVFW 5Qt8FJbSk+QL+tXfXbrSpG0+urCcfifqs2/ixYZZGtFjJza+Y1ps3/58SOA+qaxC M12qJ8zv8yWGg24OnjoVxbbPBnlB//m63jh56w== -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:15 2024 by rpki-client on console-ams.rpki-client.org