$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131372e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131372e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: fyjwbgQ1yScMZUPwlS0Ktc19IpJJnpyCU4sfhOH6eD0= Subject key identifier: 71:2C:1A:0A:0F:F2:CA:54:71:12:39:A0:5D:F6:05:F9:A4:DC:A7:DC Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 4E2ABF17B8C3A99F5B074E2321BF07F6AB075569 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131372e302f32342d3234203d3e203338313536.roa Signing time: Mon 31 Jul 2023 00:08:31 +0000 ROA not before: Mon 31 Jul 2023 00:03:31 +0000 ROA not after: Mon 29 Jul 2024 00:08:31 +0000 asID: 38156 IP address blocks: 203.190.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 08:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:2a:bf:17:b8:c3:a9:9f:5b:07:4e:23:21:bf:07:f6:ab:07:55:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 31 00:03:31 2023 GMT Not After : Jul 29 00:08:31 2024 GMT Subject: CN=712C1A0A0FF2CA54711239A05DF605F9A4DCA7DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ed:e3:91:9e:65:4e:28:76:e5:36:51:a4:41: a0:94:d0:43:5c:bc:b0:ec:de:ed:48:07:52:34:86: 00:a9:c4:f1:33:59:fd:6a:fb:aa:e8:d1:71:1a:32: 15:fc:bc:de:82:5a:79:70:e9:91:cc:d7:1a:0d:d1: ba:c3:52:ae:e6:63:2c:45:ab:ef:21:db:96:52:e9: 4e:47:3f:5d:c0:07:f3:e2:0b:3a:c5:60:c2:ed:03: 55:a1:ca:1d:09:2e:44:ce:42:88:1d:f1:1f:69:a4: 9f:69:29:5b:9f:59:d1:0b:e8:43:41:f7:b7:52:04: c9:4f:f3:2c:3e:48:49:03:23:42:a7:fb:df:aa:2d: 2d:5b:ca:ea:0f:a6:e6:b5:a6:56:57:c4:de:1b:d0: c7:2c:53:be:1d:08:a8:4b:f5:b8:75:ac:fe:88:9f: fe:4b:18:04:9a:51:c5:49:05:41:4b:cf:6f:3d:a1: 7a:d2:e2:ff:bf:23:e7:87:4c:2e:b4:06:69:75:f4: 3c:9b:dc:3a:ed:c0:29:d6:62:f7:c7:33:12:76:70: cc:1e:1a:97:7d:6e:ff:c9:59:40:f5:70:18:88:dc: 6a:63:d5:1d:39:e0:84:b5:9f:3f:31:6c:c1:02:fe: c6:a5:ad:76:d7:99:65:d0:ea:88:de:47:16:bd:bd: 89:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2C:1A:0A:0F:F2:CA:54:71:12:39:A0:5D:F6:05:F9:A4:DC:A7:DC X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131372e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.117.0/24 Signature Algorithm: sha256WithRSAEncryption 89:8a:9c:1a:5b:4e:38:34:0e:a5:e5:85:31:00:94:76:d2:40: 82:6b:80:e0:c7:66:06:02:70:ca:01:f3:5d:9e:a1:6e:f5:ca: 83:c0:b4:78:0b:72:5c:53:f0:8f:6c:70:0d:c4:6a:c8:0e:d0: 73:ae:2c:54:c9:7f:9e:be:67:81:5e:e3:f6:f5:86:be:ad:56: d5:80:46:2f:16:90:ab:62:f5:14:2f:90:b2:2f:d1:ed:01:29: 92:73:39:30:59:88:65:dd:7c:c0:03:27:94:13:73:64:38:0e: 7d:15:06:f8:ff:66:02:85:4f:36:5a:93:b7:c8:fa:9d:20:5f: dc:f9:e0:27:d3:fa:26:9f:bc:e6:a4:f4:0c:f5:01:29:24:f4: 47:dc:b9:05:7f:8e:f1:ac:28:e5:c1:a4:a5:2f:ce:7b:25:19: 3a:e7:58:ec:3a:d5:f0:ed:cc:ac:04:99:45:03:d1:1c:78:45: f7:16:0e:cb:07:74:3f:2e:e4:3a:ab:0c:05:92:66:48:03:41: d3:29:0e:ca:bb:89:43:d9:6b:0d:62:11:74:61:61:76:00:54: aa:40:e5:76:a8:15:3a:10:48:32:bc:3b:f1:cd:8e:5f:b8:f6: 4d:02:20:24:cc:80:9e:b7:1c:9b:e9:0d:9d:98:96:46:e6:03: 58:c9:47:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTiq/F7jDqZ9bB04jIb8H9qsHVWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA3MzEwMDAzMzFaFw0yNDA3MjkwMDA4MzFaMDMxMTAvBgNV BAMTKDcxMkMxQTBBMEZGMkNBNTQ3MTEyMzlBMDVERjYwNUY5QTREQ0E3REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+7eORnmVOKHblNlGkQaCU0ENc vLDs3u1IB1I0hgCpxPEzWf1q+6ro0XEaMhX8vN6CWnlw6ZHM1xoN0brDUq7mYyxF q+8h25ZS6U5HP13AB/PiCzrFYMLtA1Whyh0JLkTOQogd8R9ppJ9pKVufWdEL6ENB 97dSBMlP8yw+SEkDI0Kn+9+qLS1byuoPpua1plZXxN4b0McsU74dCKhL9bh1rP6I n/5LGASaUcVJBUFLz289oXrS4v+/I+eHTC60Bml19Dyb3DrtwCnWYvfHMxJ2cMwe Gpd9bv/JWUD1cBiI3Gpj1R054IS1nz8xbMEC/salrXbXmWXQ6ojeRxa9vYlVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcSwaCg/yylRxEjmgXfYF+aTcp9wwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy751MA0GCSqG SIb3DQEBCwUAA4IBAQCJipwaW044NA6l5YUxAJR20kCCa4Dgx2YGAnDKAfNdnqFu 9cqDwLR4C3JcU/CPbHANxGrIDtBzrixUyX+evmeBXuP29Ya+rVbVgEYvFpCrYvUU L5CyL9HtASmSczkwWYhl3XzAAyeUE3NkOA59FQb4/2YChU82WpO3yPqdIF/c+eAn 0/omn7zmpPQM9QEpJPRH3LkFf47xrCjlwaSlL857JRk651jsOtXw7cysBJlFA9Ec eEX3Fg7LB3Q/LuQ6qwwFkmZIA0HTKQ7Ku4lD2WsNYhF0YWF2AFSqQOV2qBU6EEgy vDvxzY5fuPZNAiAkzICetxyb6Q2dmJZG5gNYyUe5 -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:33 2024 by rpki-client on console-ams.rpki-client.org