$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: Frpy/H+ua1Ax/3Ldkqwz1ny7McpioUWu7h+NqFyjr1A= Subject key identifier: 7C:98:41:B5:34:59:95:0F:F5:C8:C6:BA:D9:54:64:5B:15:6E:70:7A Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 35BC9736B325806AF856DCAF7BA3964002FF1314 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa Signing time: Mon 31 Jul 2023 00:08:32 +0000 ROA not before: Mon 31 Jul 2023 00:03:32 +0000 ROA not after: Mon 29 Jul 2024 00:08:32 +0000 asID: 38156 IP address blocks: 203.190.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 23:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:bc:97:36:b3:25:80:6a:f8:56:dc:af:7b:a3:96:40:02:ff:13:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 31 00:03:32 2023 GMT Not After : Jul 29 00:08:32 2024 GMT Subject: CN=7C9841B53459950FF5C8C6BAD954645B156E707A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:50:db:dc:20:d7:e3:8f:8a:5c:19:6d:02:64: 89:bc:9d:ee:5a:66:c0:c0:79:12:87:22:59:3b:80: 3a:bf:e1:a6:00:ac:12:ea:16:39:f5:e7:1c:87:0f: a9:25:e3:41:8a:92:e0:75:e7:98:57:b5:c4:9a:85: c0:4a:fc:9e:67:ed:a2:e6:81:91:d1:44:f1:89:c7: f3:88:c3:23:a3:c8:dd:50:b9:97:fa:38:7e:e3:0f: 2f:e1:ec:0b:e2:e8:3e:11:3e:ed:01:b5:32:07:0a: 39:6a:ec:ee:92:0b:49:21:d3:e3:a7:dd:87:a9:e7: f8:eb:30:b6:3e:ac:b8:64:d2:a0:24:09:46:21:f7: 6c:37:47:56:6c:ae:78:4a:67:eb:24:83:5d:ae:e0: 5b:80:41:a2:d8:3d:11:1d:a6:df:dc:c1:ba:50:8b: 68:0c:d7:1b:02:3d:6b:58:5d:cc:f0:9d:2d:72:5a: a1:bc:4c:37:a0:4c:1b:d5:78:b3:b3:f7:31:d5:58: d7:fe:b4:61:bd:82:eb:81:e0:24:57:4c:05:5d:e3: db:d6:18:aa:10:57:4a:ff:63:4e:de:78:01:a3:48: f1:a4:4a:69:92:b8:87:eb:b7:23:67:eb:c4:b0:e1: ed:75:4d:02:03:af:7f:28:26:2a:15:75:29:ba:ae: 45:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:98:41:B5:34:59:95:0F:F5:C8:C6:BA:D9:54:64:5B:15:6E:70:7A X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.112.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:f1:a1:f7:00:b9:12:56:98:9c:42:04:1b:87:c9:9a:80:7e: 9d:d0:e4:88:92:e1:43:aa:c1:04:95:51:3d:0a:55:8a:97:48: 98:10:02:cc:3e:32:9b:e1:80:3d:a6:1f:52:82:fc:2d:46:eb: f1:a5:4e:14:d5:4f:88:ae:08:a2:06:fd:35:9a:41:ec:ec:7d: 20:4a:72:a2:5e:82:17:f0:28:fd:36:8d:a1:af:46:52:ad:5c: 19:d0:ef:1a:9c:e6:38:fb:4d:39:a2:86:67:52:2b:fc:a5:dc: 2a:29:11:85:b6:bb:25:f1:3b:29:70:f4:77:11:7b:ce:2f:04: c1:fc:bd:1c:45:96:51:f6:dd:d2:5e:3f:e5:bd:45:bf:06:84: 04:aa:72:a3:24:fc:95:2c:02:57:bd:c9:63:75:18:53:d6:bc: 82:a0:4a:67:9c:09:67:a8:3d:98:eb:92:cb:f5:4e:81:af:76: db:98:a1:cf:cb:59:6c:25:6c:86:c5:af:b7:17:e2:0d:c2:4c: a0:86:99:38:8a:8b:3e:7b:4a:94:7a:97:3e:50:6a:77:39:60: 18:fb:97:b2:92:df:f7:09:c3:6b:28:7d:16:11:61:7a:e8:80: d3:db:83:5e:7a:b6:b2:50:03:26:5b:d1:6b:11:27:61:83:68: 21:13:87:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNbyXNrMlgGr4Vtyve6OWQAL/ExQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA3MzEwMDAzMzJaFw0yNDA3MjkwMDA4MzJaMDMxMTAvBgNV BAMTKDdDOTg0MUI1MzQ1OTk1MEZGNUM4QzZCQUQ5NTQ2NDVCMTU2RTcwN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjUNvcINfjj4pcGW0CZIm8ne5a ZsDAeRKHIlk7gDq/4aYArBLqFjn15xyHD6kl40GKkuB155hXtcSahcBK/J5n7aLm gZHRRPGJx/OIwyOjyN1QuZf6OH7jDy/h7Avi6D4RPu0BtTIHCjlq7O6SC0kh0+On 3Yep5/jrMLY+rLhk0qAkCUYh92w3R1ZsrnhKZ+skg12u4FuAQaLYPREdpt/cwbpQ i2gM1xsCPWtYXczwnS1yWqG8TDegTBvVeLOz9zHVWNf+tGG9guuB4CRXTAVd49vW GKoQV0r/Y07eeAGjSPGkSmmSuIfrtyNn68Sw4e11TQIDr38oJioVdSm6rkV1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfJhBtTRZlQ/1yMa62VRkWxVucHowHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75wMA0GCSqG SIb3DQEBCwUAA4IBAQAc8aH3ALkSVpicQgQbh8magH6d0OSIkuFDqsEElVE9ClWK l0iYEALMPjKb4YA9ph9SgvwtRuvxpU4U1U+IrgiiBv01mkHs7H0gSnKiXoIX8Cj9 No2hr0ZSrVwZ0O8anOY4+005ooZnUiv8pdwqKRGFtrsl8TspcPR3EXvOLwTB/L0c RZZR9t3SXj/lvUW/BoQEqnKjJPyVLAJXvcljdRhT1ryCoEpnnAlnqD2Y65LL9U6B r3bbmKHPy1lsJWyGxa+3F+INwkyghpk4ios+e0qUepc+UGp3OWAY+5eykt/3CcNr KH0WEWF66IDT24NeerayUAMmW9FrESdhg2ghE4dd -----END CERTIFICATE-----Generated at Fri Apr 19 16:11:25 2024 by rpki-client on console-ams.rpki-client.org