$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: gtkgyvIEF6UEBJDTB3wcKGP0cpTpipgHddB2Hc714RQ= Subject key identifier: 3A:DE:40:23:4A:5E:BE:1B:81:8A:9C:1B:C5:15:C2:FF:79:AB:7F:EF Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 7E577EE5CB9EB508EC265760D34771B1ABFC3574 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa Signing time: Mon 31 Jul 2023 00:08:32 +0000 ROA not before: Mon 31 Jul 2023 00:03:32 +0000 ROA not after: Mon 29 Jul 2024 00:08:32 +0000 asID: 38156 IP address blocks: 203.190.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Apr 2024 14:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:57:7e:e5:cb:9e:b5:08:ec:26:57:60:d3:47:71:b1:ab:fc:35:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 31 00:03:32 2023 GMT Not After : Jul 29 00:08:32 2024 GMT Subject: CN=3ADE40234A5EBE1B818A9C1BC515C2FF79AB7FEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:75:02:4c:9a:6a:b5:37:bc:26:39:15:fd:7a: 01:97:3c:40:c2:10:80:03:ed:e7:84:97:b8:f8:b6: ac:20:af:d8:78:48:8f:f4:1b:79:04:41:72:18:61: 40:7b:a1:66:d1:31:2b:6f:4c:a8:9f:db:e8:93:4e: 89:f7:c2:19:1a:0e:fc:f6:9e:dc:3c:61:5e:fb:37: 53:c0:a3:80:22:6b:34:bc:62:d2:d8:d0:b7:01:95: f1:80:5b:5f:5d:4e:0d:00:21:d8:ec:6b:d1:f6:de: 6e:a9:eb:b1:f0:65:95:19:25:2b:69:38:a9:4b:5c: 0a:03:b8:6c:dc:33:01:bd:24:e0:22:69:84:1c:fb: 4e:2c:bd:9e:d6:28:6d:bf:da:9c:ae:f7:7f:e5:79: 06:67:df:de:67:8a:09:24:93:17:8b:02:1d:61:bb: b3:6b:3c:21:f4:5b:c0:d0:24:be:af:83:8e:71:14: 56:c4:d4:23:0f:02:de:b1:37:51:31:e9:2b:7e:f9: c6:65:47:a1:52:b7:c6:3a:cd:5d:db:25:9b:07:48: a3:56:e4:96:53:3c:e5:eb:3b:6b:ce:c2:05:98:b6: 1e:47:af:c8:84:4e:5a:07:b6:34:b6:61:bc:16:aa: cf:14:aa:05:46:18:6c:e2:ed:89:1d:2a:33:25:f4: f9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:DE:40:23:4A:5E:BE:1B:81:8A:9C:1B:C5:15:C2:FF:79:AB:7F:EF X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131332e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.113.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:f2:a3:a4:df:85:30:6d:e4:72:66:b7:e9:51:51:8b:0a:b8: 1d:cb:a0:b1:aa:d1:32:ce:a8:c7:7e:c0:57:56:9b:91:44:00: 60:13:65:65:27:87:7f:0a:56:a6:3f:38:51:76:09:c5:40:ff: fa:76:35:44:1e:17:9d:24:96:3e:4c:9b:37:1c:c7:9c:71:08: ea:aa:2b:8c:92:1b:31:7d:82:17:83:d7:75:ad:b1:2e:79:91: 44:ff:6f:ad:54:af:09:61:61:d1:35:90:e4:71:81:a5:74:bf: 4e:d2:15:a2:9e:55:ad:0e:d7:bb:45:53:05:1a:47:fd:a0:0e: f8:f4:d5:eb:36:43:3a:ec:5e:4b:12:ed:e9:70:c3:f9:be:cb: d1:7f:c1:db:67:01:af:63:75:d8:57:4d:81:bc:f5:3f:93:e9: 79:e2:b7:72:82:3f:bb:fe:40:53:0a:8f:fe:18:57:d5:f3:16: fa:07:78:56:24:7e:da:dc:15:e8:56:c1:d7:3f:a7:38:97:df: e1:f8:95:b9:b6:b0:c4:c1:2d:06:78:fc:10:cb:54:fc:f0:7c: 4f:71:1d:1c:12:67:50:66:81:cb:47:72:db:06:bf:db:02:30: a6:a1:37:8f:49:d0:ed:9c:bc:1b:b9:af:04:c7:b1:34:f3:ac: 28:cc:1e:fc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfld+5cuetQjsJldg00dxsav8NXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA3MzEwMDAzMzJaFw0yNDA3MjkwMDA4MzJaMDMxMTAvBgNV BAMTKDNBREU0MDIzNEE1RUJFMUI4MThBOUMxQkM1MTVDMkZGNzlBQjdGRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrdQJMmmq1N7wmORX9egGXPEDC EIAD7eeEl7j4tqwgr9h4SI/0G3kEQXIYYUB7oWbRMStvTKif2+iTTon3whkaDvz2 ntw8YV77N1PAo4AiazS8YtLY0LcBlfGAW19dTg0AIdjsa9H23m6p67HwZZUZJStp OKlLXAoDuGzcMwG9JOAiaYQc+04svZ7WKG2/2pyu93/leQZn395nigkkkxeLAh1h u7NrPCH0W8DQJL6vg45xFFbE1CMPAt6xN1Ex6St++cZlR6FSt8Y6zV3bJZsHSKNW 5JZTPOXrO2vOwgWYth5Hr8iETloHtjS2YbwWqs8UqgVGGGzi7YkdKjMl9PmDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOt5AI0pevhuBipwbxRXC/3mrf+8wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy75xMA0GCSqG SIb3DQEBCwUAA4IBAQB88qOk34UwbeRyZrfpUVGLCrgdy6CxqtEyzqjHfsBXVpuR RABgE2VlJ4d/ClamPzhRdgnFQP/6djVEHhedJJY+TJs3HMeccQjqqiuMkhsxfYIX g9d1rbEueZFE/2+tVK8JYWHRNZDkcYGldL9O0hWinlWtDte7RVMFGkf9oA749NXr NkM67F5LEu3pcMP5vsvRf8HbZwGvY3XYV02BvPU/k+l54rdygj+7/kBTCo/+GFfV 8xb6B3hWJH7a3BXoVsHXP6c4l9/h+JW5trDEwS0GePwQy1T88HxPcR0cEmdQZoHL R3LbBr/bAjCmoTePSdDtnLwbua8Ex7E086wozB78 -----END CERTIFICATE-----Generated at Wed Apr 17 09:39:53 2024 by rpki-client on console-fra.rpki-client.org