$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233382e302f32342d3234203d3e203138303539.roa File: 3230332e3133342e3233382e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: /VVyhMKi4uSnBv61pzGi5ckAYk1jvWec5gnvm7mvsdM= Subject key identifier: 85:39:F7:95:CA:6A:0F:A1:AC:4F:78:3B:6D:C2:AE:72:F5:83:37:F0 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 0EFD294E2A7D09637E0564B311F9A5A6891AABE6 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233382e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 04:07:57 +0000 ROA not before: Fri 24 Nov 2023 04:02:57 +0000 ROA not after: Fri 22 Nov 2024 04:07:57 +0000 asID: 18059 IP address blocks: 203.134.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fd:29:4e:2a:7d:09:63:7e:05:64:b3:11:f9:a5:a6:89:1a:ab:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 04:02:57 2023 GMT Not After : Nov 22 04:07:57 2024 GMT Subject: CN=8539F795CA6A0FA1AC4F783B6DC2AE72F58337F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4e:05:b0:4f:68:2e:07:48:00:c7:02:73:da: 55:26:7e:25:37:bd:ea:84:d5:3b:be:42:6e:e2:be: 45:a3:af:a4:fe:50:a6:81:fc:20:34:99:80:17:aa: 21:52:27:48:6c:f7:38:db:cd:90:da:88:1d:57:d3: 97:d0:89:96:81:4d:eb:e1:2f:4f:64:5f:25:ae:3a: 79:a7:78:59:91:fb:76:41:75:06:58:cc:33:6b:4a: 12:b6:d0:c9:98:9e:6b:dc:3b:c5:a9:cb:05:af:20: f2:f6:b8:3d:bf:ac:f1:58:67:35:83:06:f8:36:c3: e2:62:d5:7d:a4:4d:7d:52:ae:b7:16:b2:03:6f:b9: 95:15:4e:16:7b:36:6d:7d:59:3d:68:d6:87:e6:29: 86:27:b4:12:6e:2e:72:97:f7:e2:c7:21:f8:b9:5b: d8:0b:e0:f9:a7:7d:b2:21:e3:fc:db:38:38:dd:8e: 08:8d:f5:68:89:75:a6:53:98:68:9a:99:9e:46:3f: 3e:7d:f5:ae:90:2e:e3:b6:00:47:44:a8:0f:c9:6b: 63:b6:ed:c1:dc:61:00:a9:8d:6e:d2:1c:f7:89:f9: 0e:38:04:86:86:0d:61:9f:9e:bf:bc:b0:18:7d:dd: 46:f6:b0:37:e2:24:57:4b:4d:8c:8c:78:23:c9:db: 98:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:39:F7:95:CA:6A:0F:A1:AC:4F:78:3B:6D:C2:AE:72:F5:83:37:F0 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230332e3133342e3233382e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.134.238.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:b5:7c:b4:ab:e1:2e:5f:ad:d3:c3:e8:d9:a9:11:67:dd:22: 3b:0c:5e:cd:9b:50:0b:45:a7:9e:f2:d5:96:da:aa:fd:05:78: 00:61:8e:e6:a4:97:ce:8f:12:7d:b8:f9:23:09:2b:fc:2d:21: 9d:c2:fe:b4:f2:7e:5d:6f:69:44:c6:55:f1:a1:05:9d:b2:7c: 3c:5c:31:1a:7e:d8:39:c0:ac:4f:d6:1f:76:28:32:f7:03:a0: dc:38:29:de:e7:04:88:39:44:fa:e9:22:78:78:d5:cb:df:10: 48:e2:b7:a5:0f:a9:e5:d8:17:6d:53:62:6b:ae:d1:55:08:8e: ee:eb:b1:17:3b:b8:6e:01:1e:e1:2e:5f:ca:5d:ef:55:d4:1e: 2d:f2:56:85:ef:25:52:4c:36:17:e8:8c:17:8e:a7:54:20:2c: fe:c7:d2:56:e5:e2:48:7a:43:7a:8b:6a:a3:11:77:4d:1a:21: 65:f8:34:b2:6b:23:f5:b7:0e:01:b9:02:7f:d0:6b:7d:84:56: 0a:c5:3d:4d:b9:c6:61:e6:40:3f:9d:fd:ba:c6:ae:ec:fb:3c: c6:65:ea:5f:43:2b:4a:10:97:d8:c1:b5:d1:d9:2c:3a:fb:a9: fa:a6:33:75:50:67:cd:65:3f:3c:d7:08:00:5e:86:2d:13:ac: d3:70:ec:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDv0pTip9CWN+BWSzEfmlpokaq+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwNDAyNTdaFw0yNDExMjIwNDA3NTdaMDMxMTAvBgNV BAMTKDg1MzlGNzk1Q0E2QTBGQTFBQzRGNzgzQjZEQzJBRTcyRjU4MzM3RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcTgWwT2guB0gAxwJz2lUmfiU3 veqE1Tu+Qm7ivkWjr6T+UKaB/CA0mYAXqiFSJ0hs9zjbzZDaiB1X05fQiZaBTevh L09kXyWuOnmneFmR+3ZBdQZYzDNrShK20MmYnmvcO8WpywWvIPL2uD2/rPFYZzWD Bvg2w+Ji1X2kTX1SrrcWsgNvuZUVThZ7Nm19WT1o1ofmKYYntBJuLnKX9+LHIfi5 W9gL4PmnfbIh4/zbODjdjgiN9WiJdaZTmGiamZ5GPz599a6QLuO2AEdEqA/Ja2O2 7cHcYQCpjW7SHPeJ+Q44BIaGDWGfnr+8sBh93Ub2sDfiJFdLTYyMeCPJ25jrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhTn3lcpqD6GsT3g7bcKucvWDN/AwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMzJlMzEzMzM0MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy4buMA0GCSqG SIb3DQEBCwUAA4IBAQCKtXy0q+EuX63Tw+jZqRFn3SI7DF7Nm1ALRaee8tWW2qr9 BXgAYY7mpJfOjxJ9uPkjCSv8LSGdwv608n5db2lExlXxoQWdsnw8XDEaftg5wKxP 1h92KDL3A6DcOCne5wSIOUT66SJ4eNXL3xBI4relD6nl2BdtU2JrrtFVCI7u67EX O7huAR7hLl/KXe9V1B4t8laF7yVSTDYX6IwXjqdUICz+x9JW5eJIekN6i2qjEXdN GiFl+DSyayP1tw4BuQJ/0Gt9hFYKxT1NucZh5kA/nf26xq7s+zzGZepfQytKEJfY wbXR2Sw6+6n6pjN1UGfNZT881wgAXoYtE6zTcOya -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:55 2024 by rpki-client on console-fra.rpki-client.org