$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233362e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233362e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: mfGBMsMzXhnif2BtX7LaVrLYlvyWwy465oKmqLtgFns= Subject key identifier: B3:90:34:66:22:47:5E:A6:34:70:45:18:7B:88:11:A9:55:90:B6:78 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 21EA62CC3A64A572FF55A3EE24DC8354F0688B69 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233362e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 04:07:30 +0000 ROA not before: Fri 24 Nov 2023 04:02:30 +0000 ROA not after: Fri 22 Nov 2024 04:07:30 +0000 asID: 18059 IP address blocks: 203.134.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ea:62:cc:3a:64:a5:72:ff:55:a3:ee:24:dc:83:54:f0:68:8b:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 04:02:30 2023 GMT Not After : Nov 22 04:07:30 2024 GMT Subject: CN=B390346622475EA6347045187B8811A95590B678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:69:4b:ea:3e:b0:71:24:f5:6f:5c:56:10:16: 07:9b:c1:15:00:f4:57:d3:7d:47:a9:e0:ec:43:3b: 14:c4:44:1f:a5:be:3e:bc:4f:2e:99:5f:74:18:89: cc:02:12:da:a1:0a:83:b6:35:db:da:ad:e7:d0:b9: 34:43:6e:66:a8:13:e3:a5:83:75:05:d1:4a:a3:e5: 93:c2:e5:65:6c:48:c1:ff:40:cd:c6:d5:33:ce:93: dc:77:77:95:9d:51:a4:d7:c6:6d:cf:ed:16:b8:61: fb:7e:ad:49:fa:75:13:b2:74:4a:f0:96:7b:1d:05: b9:8a:7d:7e:bc:30:a2:e0:f0:f1:d5:fb:82:69:2f: d5:a0:60:13:90:59:a7:2b:c9:a9:ef:45:00:bd:1e: 4a:ec:29:65:87:6d:87:87:be:4d:56:58:cd:10:d3: 8b:80:3d:ee:bf:dd:b3:a7:03:94:df:9d:ec:43:a2: 0d:14:9b:9f:36:c6:a6:fa:3f:4c:bf:c3:6b:eb:e7: a0:83:1c:c9:03:13:f9:ce:96:69:5b:5f:6b:4a:b6: 7e:90:74:b6:5c:10:1d:34:7a:a1:f5:97:6e:fe:68: 38:41:da:c6:2d:db:d7:de:1b:a4:0a:fa:a2:1f:86: b3:cc:8b:92:9e:1d:13:a7:ca:b4:a1:36:ca:59:8f: 67:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:90:34:66:22:47:5E:A6:34:70:45:18:7B:88:11:A9:55:90:B6:78 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233362e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.236.0/24 Signature Algorithm: sha256WithRSAEncryption 45:88:7d:d8:6d:67:a0:ec:8b:e2:d0:4b:31:5a:1a:9f:a0:f0: dc:54:cc:06:0d:0b:a0:62:89:44:15:18:76:50:61:1f:a3:a3: e8:2a:17:82:bf:39:ca:db:86:11:95:85:f5:1d:eb:fe:08:f2: c4:53:9b:23:e0:68:3f:70:d4:36:dd:68:fd:e2:07:39:70:34: eb:48:2a:46:3e:3c:92:5f:d4:aa:14:c4:6b:98:4e:d9:d9:8b: 03:a9:ea:b5:83:f2:f4:d2:91:c6:9f:54:34:fa:a1:f3:e1:b5: 52:19:aa:78:c9:ee:a2:19:6c:44:50:8a:37:e7:e4:d3:28:a9: 38:88:f3:1f:7d:09:fa:5d:ac:25:08:9a:97:7d:1f:14:5e:d6: e3:77:fc:e4:0d:2b:1b:92:91:e3:c2:5a:6a:a2:fa:79:1b:c4: 4c:b2:95:ba:69:4a:63:0a:bb:01:1b:30:3e:84:11:0b:c6:c5: 0c:a9:c8:32:62:9e:cb:07:d7:23:80:2c:12:68:34:ce:87:d4: 56:5f:08:ec:b7:5f:d2:da:8e:59:56:fa:c3:90:02:98:38:6b: f5:c8:43:e7:07:46:3b:96:1e:91:1a:e1:55:41:5d:26:a4:ed: 5c:d6:91:09:04:fd:a7:89:15:e3:e8:7d:dd:f4:62:9d:4f:aa: 01:3e:59:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIepizDpkpXL/VaPuJNyDVPBoi2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwNDAyMzBaFw0yNDExMjIwNDA3MzBaMDMxMTAvBgNV BAMTKEIzOTAzNDY2MjI0NzVFQTYzNDcwNDUxODdCODgxMUE5NTU5MEI2NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyaUvqPrBxJPVvXFYQFgebwRUA 9FfTfUep4OxDOxTERB+lvj68Ty6ZX3QYicwCEtqhCoO2NdvarefQuTRDbmaoE+Ol g3UF0Uqj5ZPC5WVsSMH/QM3G1TPOk9x3d5WdUaTXxm3P7Ra4Yft+rUn6dROydErw lnsdBbmKfX68MKLg8PHV+4JpL9WgYBOQWacryanvRQC9HkrsKWWHbYeHvk1WWM0Q 04uAPe6/3bOnA5TfnexDog0Um582xqb6P0y/w2vr56CDHMkDE/nOlmlbX2tKtn6Q dLZcEB00eqH1l27+aDhB2sYt29feG6QK+qIfhrPMi5KeHROnyrShNspZj2eZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUs5A0ZiJHXqY0cEUYe4gRqVWQtngwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4bsMA0GCSqG SIb3DQEBCwUAA4IBAQBFiH3YbWeg7Ivi0EsxWhqfoPDcVMwGDQugYolEFRh2UGEf o6PoKheCvznK24YRlYX1Hev+CPLEU5sj4Gg/cNQ23Wj94gc5cDTrSCpGPjySX9Sq FMRrmE7Z2YsDqeq1g/L00pHGn1Q0+qHz4bVSGap4ye6iGWxEUIo35+TTKKk4iPMf fQn6XawlCJqXfR8UXtbjd/zkDSsbkpHjwlpqovp5G8RMspW6aUpjCrsBGzA+hBEL xsUMqcgyYp7LB9cjgCwSaDTOh9RWXwjst1/S2o5ZVvrDkAKYOGv1yEPnB0Y7lh6R GuFVQV0mpO1c1pEJBP2niRXj6H3d9GKdT6oBPlnt -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:55 2024 by rpki-client on console-fra.rpki-client.org