$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa File: 3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa (raw, json) Hash identifier: MAho/jRAr4P0kSWQ0kTnB1XnqMPqlvV3wKlJ9xubEzc= Subject key identifier: BB:35:BC:36:33:E1:F0:D3:C5:90:65:56:27:B2:70:A1:7F:A7:48:CE Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 73C72BC62FDCCDC022E41873C76C225517D5CC73 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa Signing time: Mon 31 Jul 2023 00:08:32 +0000 ROA not before: Mon 31 Jul 2023 00:03:32 +0000 ROA not after: Mon 29 Jul 2024 00:08:32 +0000 asID: 38156 IP address blocks: 203.190.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Apr 2024 14:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:c7:2b:c6:2f:dc:cd:c0:22:e4:18:73:c7:6c:22:55:17:d5:cc:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 31 00:03:32 2023 GMT Not After : Jul 29 00:08:32 2024 GMT Subject: CN=BB35BC3633E1F0D3C590655627B270A17FA748CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a0:95:b4:e6:b0:0b:58:7c:8e:03:a7:f6:82: 08:c8:99:0a:8e:d7:94:50:22:26:8e:64:96:02:76: b6:b5:9d:a7:d1:03:d6:ed:ed:6b:6a:12:9a:f7:9e: 3a:4f:d1:4f:a8:e8:41:c0:f4:a2:79:6b:97:e0:10: fa:3c:78:87:78:ee:a5:b9:de:70:84:85:c5:1f:d6: b5:31:c6:be:b7:30:51:cf:8f:dc:35:34:e8:d3:8e: 16:84:38:87:a7:95:44:46:07:b7:11:08:e9:0f:d6: ff:bf:2f:ee:c3:3e:26:71:c5:3f:21:9e:67:22:38: e3:41:a0:e5:dc:38:38:0a:c1:19:ae:93:1d:8d:1b: bc:a1:9a:66:7e:40:43:ea:de:9c:2b:84:7a:35:cd: 43:6c:e4:a3:9b:4f:24:14:f7:b6:23:0d:1e:cd:f1: b6:c7:78:d8:63:f8:ce:14:fa:28:e5:47:f5:81:19: bd:7a:09:f6:f4:3c:e3:da:64:93:5a:b9:ee:4a:bf: 4f:33:43:b7:f1:93:1b:d7:da:5e:94:f9:57:c2:e1: 38:57:c8:8c:f4:03:ba:f3:5f:1d:de:bf:85:b3:13: 2b:5f:a0:5d:f5:55:0c:96:ad:99:12:74:f1:78:77: 39:80:12:86:cb:a7:d5:13:0d:60:26:8d:d2:7d:89: 26:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:35:BC:36:33:E1:F0:D3:C5:90:65:56:27:B2:70:A1:7F:A7:48:CE X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131392e302f32342d3234203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.119.0/24 Signature Algorithm: sha256WithRSAEncryption bc:fd:20:35:58:79:43:99:c8:cc:cc:17:33:2f:bf:50:5f:5c: 73:74:50:75:a7:61:8f:05:89:eb:44:ee:3e:94:f9:13:a7:d1: c4:e8:d0:57:e6:7e:f4:93:f1:03:4d:ca:95:44:df:81:b0:08: 48:2a:cb:ec:66:dc:ff:83:48:91:d7:30:8c:4e:28:51:37:3d: 5a:57:3c:50:6c:fb:c9:01:7f:02:65:91:ec:2c:6c:cf:28:44: 72:9c:b5:cc:54:85:78:fd:56:97:68:3d:47:ef:c5:09:3c:02: 6b:18:28:b4:2c:50:8c:b8:4b:8a:71:ec:3e:8c:c8:75:1f:d6: ca:49:d7:bc:2e:1d:93:2b:ff:ea:ab:a3:fc:19:a0:67:1e:a4: 86:88:e7:fc:91:97:74:92:10:c7:57:b8:51:f0:60:5e:7f:b3: 43:09:13:b4:3a:79:44:a6:19:f4:f9:b9:2d:dc:af:61:fd:79: c2:7b:82:ad:e4:ea:6d:bd:c3:82:60:c5:e0:0b:89:d5:a3:c3: 29:34:ea:e8:34:a7:1e:ed:a8:e6:60:06:98:b9:9e:01:80:3c: 83:c3:49:62:a9:59:2f:f0:c2:ba:e0:c4:20:f7:36:2c:ab:6a: eb:20:ad:7e:62:03:92:9b:80:fe:58:62:a2:7a:37:0c:28:6a: 3f:d3:b5:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc8crxi/czcAi5Bhzx2wiVRfVzHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA3MzEwMDAzMzJaFw0yNDA3MjkwMDA4MzJaMDMxMTAvBgNV BAMTKEJCMzVCQzM2MzNFMUYwRDNDNTkwNjU1NjI3QjI3MEExN0ZBNzQ4Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBoJW05rALWHyOA6f2ggjImQqO 15RQIiaOZJYCdra1nafRA9bt7WtqEpr3njpP0U+o6EHA9KJ5a5fgEPo8eId47qW5 3nCEhcUf1rUxxr63MFHPj9w1NOjTjhaEOIenlURGB7cRCOkP1v+/L+7DPiZxxT8h nmciOONBoOXcODgKwRmukx2NG7yhmmZ+QEPq3pwrhHo1zUNs5KObTyQU97YjDR7N 8bbHeNhj+M4U+ijlR/WBGb16Cfb0POPaZJNaue5Kv08zQ7fxkxvX2l6U+VfC4ThX yIz0A7rzXx3ev4WzEytfoF31VQyWrZkSdPF4dzmAEobLp9UTDWAmjdJ9iSb/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuzW8NjPh8NPFkGVWJ7JwoX+nSM4wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy753MA0GCSqG SIb3DQEBCwUAA4IBAQC8/SA1WHlDmcjMzBczL79QX1xzdFB1p2GPBYnrRO4+lPkT p9HE6NBX5n70k/EDTcqVRN+BsAhIKsvsZtz/g0iR1zCMTihRNz1aVzxQbPvJAX8C ZZHsLGzPKERynLXMVIV4/VaXaD1H78UJPAJrGCi0LFCMuEuKcew+jMh1H9bKSde8 Lh2TK//qq6P8GaBnHqSGiOf8kZd0khDHV7hR8GBef7NDCRO0OnlEphn0+bkt3K9h /XnCe4Kt5OptvcOCYMXgC4nVo8MpNOroNKce7ajmYAaYuZ4BgDyDw0liqVkv8MK6 4MQg9zYsq2rrIK1+YgOSm4D+WGKiejcMKGo/07XH -----END CERTIFICATE-----Generated at Wed Apr 17 10:35:27 2024 by rpki-client on console-ams.rpki-client.org