$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: keoisxkg+nckK4cbIqj1aomM9Pz9k0TOAVXXYzqfkPA= Subject key identifier: D8:E3:79:88:14:F6:9F:EE:98:8B:88:BF:65:0E:5C:EF:13:58:33:E7 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 7282B344B06DA7FB4E0135934B68D5E4FEE42CC1 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa Signing time: Mon 31 Jul 2023 00:08:31 +0000 ROA not before: Mon 31 Jul 2023 00:03:31 +0000 ROA not after: Mon 29 Jul 2024 00:08:31 +0000 asID: 38156 IP address blocks: 203.190.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:82:b3:44:b0:6d:a7:fb:4e:01:35:93:4b:68:d5:e4:fe:e4:2c:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 31 00:03:31 2023 GMT Not After : Jul 29 00:08:31 2024 GMT Subject: CN=D8E3798814F69FEE988B88BF650E5CEF135833E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b8:18:57:6c:03:86:03:18:88:8a:83:6c:1f: 91:cc:22:5e:f5:fb:c2:ab:b3:80:22:bc:40:32:89: 44:6a:5a:80:17:72:f5:d0:a8:02:90:28:9b:c9:c9: 1b:d2:2e:8c:fb:16:45:68:ad:c7:12:04:5b:48:7c: 93:cc:8d:89:bd:1d:9e:34:8a:8f:de:78:27:47:c9: 62:a0:b3:db:6c:20:d0:65:91:13:ca:0e:e1:6d:ef: 4b:64:55:df:44:91:f1:09:56:d9:d7:e4:e8:5e:f9: fa:dd:31:c4:a1:55:a1:36:af:23:0f:64:6d:87:df: db:ce:ee:fc:38:5f:e0:a6:bd:8e:98:87:0a:ca:89: e3:dc:ad:2f:22:cd:9e:0c:64:2d:08:df:8e:c2:6c: 33:cc:0a:4c:0e:b2:4e:db:f2:ca:90:6a:c3:26:ec: fe:95:d5:0d:70:8d:da:05:88:e0:5a:88:ff:80:eb: 7a:f0:d8:f7:34:4d:28:ec:e1:5b:00:9d:6c:48:f8: 80:8b:7c:a0:04:05:2e:b4:57:0f:3b:de:d5:3a:20: 0a:83:c3:bf:76:65:d9:dd:49:a7:fc:ce:12:6b:9c: 05:dc:e4:fa:5d:6b:60:7e:98:d3:cd:81:be:a5:db: d4:4e:38:76:1e:d8:36:56:b0:15:66:bb:7a:1f:6c: b8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E3:79:88:14:F6:9F:EE:98:8B:88:BF:65:0E:5C:EF:13:58:33:E7 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131362e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.116.0/24 Signature Algorithm: sha256WithRSAEncryption 74:33:ba:e5:37:d8:02:4a:65:06:b9:68:87:d2:04:d9:30:38: 10:12:ca:c6:fe:a1:78:4c:55:98:ab:d3:55:ab:c6:bc:9d:9b: 4e:2b:ca:e4:e9:58:05:56:aa:a9:8c:2c:86:55:28:7e:5a:99: 6d:5b:1d:4a:e0:10:75:5f:1c:5c:3c:30:a1:7c:54:78:cc:9e: 82:75:79:5b:f9:3d:71:2c:3f:a9:db:95:60:0a:5e:e1:ff:3b: f7:a8:5f:05:9d:eb:d6:ca:51:81:c8:d5:5c:41:cc:06:a9:d9: c8:37:4e:e6:94:37:64:43:35:bf:5f:bd:d5:8f:e9:69:c9:c9: 36:ce:29:13:d9:93:b7:08:93:fb:4d:24:3d:5e:30:40:3a:52: 77:f7:1e:2a:4d:c2:28:b2:45:1b:52:03:90:8f:c4:80:ca:a8: 0e:e4:d8:8e:a5:12:f7:d7:aa:a4:ff:69:56:7a:ed:99:08:d0: 3b:dc:93:c4:1a:b7:10:07:45:ea:30:87:98:c2:1e:71:0a:44: 3d:cf:b9:cd:47:5c:fb:da:2b:f5:14:3e:35:5e:46:2a:4c:29: d0:d4:da:e7:15:55:87:65:e2:51:17:96:42:db:eb:a3:c7:9c: 89:7a:ff:c4:89:69:58:a4:29:c6:2d:ee:7b:59:2f:50:7a:8c: c5:4c:6a:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcoKzRLBtp/tOATWTS2jV5P7kLMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA3MzEwMDAzMzFaFw0yNDA3MjkwMDA4MzFaMDMxMTAvBgNV BAMTKEQ4RTM3OTg4MTRGNjlGRUU5ODhCODhCRjY1MEU1Q0VGMTM1ODMzRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuuBhXbAOGAxiIioNsH5HMIl71 +8Krs4AivEAyiURqWoAXcvXQqAKQKJvJyRvSLoz7FkVorccSBFtIfJPMjYm9HZ40 io/eeCdHyWKgs9tsINBlkRPKDuFt70tkVd9EkfEJVtnX5Ohe+frdMcShVaE2ryMP ZG2H39vO7vw4X+CmvY6YhwrKiePcrS8izZ4MZC0I347CbDPMCkwOsk7b8sqQasMm 7P6V1Q1wjdoFiOBaiP+A63rw2Pc0TSjs4VsAnWxI+ICLfKAEBS60Vw873tU6IAqD w792ZdndSaf8zhJrnAXc5Ppda2B+mNPNgb6l29ROOHYe2DZWsBVmu3ofbLiJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2ON5iBT2n+6Yi4i/ZQ5c7xNYM+cwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy750MA0GCSqG SIb3DQEBCwUAA4IBAQB0M7rlN9gCSmUGuWiH0gTZMDgQEsrG/qF4TFWYq9NVq8a8 nZtOK8rk6VgFVqqpjCyGVSh+WpltWx1K4BB1XxxcPDChfFR4zJ6CdXlb+T1xLD+p 25VgCl7h/zv3qF8FnevWylGByNVcQcwGqdnIN07mlDdkQzW/X73Vj+lpyck2zikT 2ZO3CJP7TSQ9XjBAOlJ39x4qTcIoskUbUgOQj8SAyqgO5NiOpRL316qk/2lWeu2Z CNA73JPEGrcQB0XqMIeYwh5xCkQ9z7nNR1z72iv1FD41XkYqTCnQ1NrnFVWHZeJR F5ZC2+ujx5yJev/EiWlYpCnGLe57WS9QeozFTGrH -----END CERTIFICATE-----Generated at Wed Apr 24 11:01:38 2024 by rpki-client on console-ams.rpki-client.org