$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32332d3233203d3e20313331373735.roa File: 3230322e37342e3233382e302f32332d3233203d3e20313331373735.roa (raw, json) Hash identifier: dtgVtsoM767GJUuG0ltzd3xcCDBgeSosJ6S8GoN4Z3o= Subject key identifier: 69:AB:14:15:3B:24:D5:D8:1E:69:BC:59:A4:3A:F3:7B:C3:B8:F7:2B Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 0119DAA18803DD579503CB71C91EFB514C95FE58 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32332d3233203d3e20313331373735.roa Signing time: Sat 09 Sep 2023 14:00:00 +0000 ROA not before: Sat 09 Sep 2023 13:55:00 +0000 ROA not after: Sat 07 Sep 2024 14:00:00 +0000 asID: 131775 IP address blocks: 202.74.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 05:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:19:da:a1:88:03:dd:57:95:03:cb:71:c9:1e:fb:51:4c:95:fe:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Sep 9 13:55:00 2023 GMT Not After : Sep 7 14:00:00 2024 GMT Subject: CN=69AB14153B24D5D81E69BC59A43AF37BC3B8F72B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:29:10:fc:51:9f:26:15:16:80:b6:3d:97:7c: 5f:73:11:91:0f:97:15:04:16:17:5c:b8:60:71:de: 0c:ee:76:c4:20:56:f3:2e:30:59:f2:d1:85:f1:4a: d1:5e:62:5f:10:e5:c7:99:c3:bc:0d:a9:60:03:fd: b6:bc:1c:3e:c7:11:a1:4b:2b:fc:96:d9:e4:35:54: 3c:99:28:34:b4:7c:cd:85:73:d7:fc:07:43:dc:35: cd:d4:61:2c:9b:19:e7:c4:14:6b:69:cb:8b:1c:ab: 40:1a:f8:a5:51:d7:67:19:64:8a:c1:81:3e:6d:e9: 07:ba:64:b8:c5:59:c5:57:62:57:92:c3:04:c2:0e: 90:23:e5:00:4d:25:a1:13:2d:6d:ca:39:74:6e:f9: 7f:33:42:2a:00:96:ae:86:59:8a:98:10:b7:ea:82: ef:57:1b:76:d1:b3:fb:bf:c3:83:03:78:f4:95:c3: 48:4c:0a:20:fa:20:f0:ed:d2:44:aa:f6:c3:2e:58: 75:86:04:ef:b7:db:d3:99:38:1e:ee:31:6b:3f:fc: f6:bc:79:6c:aa:11:46:a5:7c:58:b9:86:da:96:77: 9e:69:b4:7d:c2:f5:df:24:67:05:8e:1c:3d:71:6d: 52:af:90:5a:cf:a0:4f:cb:35:4c:bc:82:51:81:ad: 03:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:AB:14:15:3B:24:D5:D8:1E:69:BC:59:A4:3A:F3:7B:C3:B8:F7:2B X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32332d3233203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.238.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:c4:d9:de:a2:a4:27:6f:fb:14:0c:ec:85:3c:fa:8b:02:0a: 30:e7:9d:f5:05:3c:e3:36:3f:c0:9a:7e:b1:c1:35:ec:61:ad: 6d:8d:9e:81:c2:b7:31:cc:84:69:d3:3a:24:7d:fd:2e:fd:58: ba:11:1b:db:89:67:a5:36:60:7f:04:18:eb:dc:a4:67:81:a8: dd:75:70:15:71:5f:7f:e5:66:a0:92:fd:d9:48:90:f0:5e:ea: bd:46:be:c9:11:d1:00:22:99:c1:8c:4d:b9:bc:9d:d9:14:ed: 3d:78:7f:70:2a:31:a3:42:d1:78:44:82:29:79:55:5a:eb:4e: 37:2f:f5:be:21:b0:37:e0:66:bc:46:de:1f:34:74:58:b3:0c: a5:bb:f3:ad:b0:37:45:ae:36:5f:18:b7:9d:1a:d2:04:01:8a: 73:da:79:e3:b5:7f:a8:b5:e1:f2:9f:00:d5:96:a5:68:81:63: ca:b7:f6:9b:d7:92:1c:31:89:a3:2a:0a:06:ce:2c:92:c1:e6: 13:86:9f:c5:f0:5a:cf:65:d0:96:f8:17:92:b0:6a:e1:90:2f: 0d:bc:cd:c1:8e:30:d0:f9:69:64:9e:85:f8:12:75:40:22:2c: 4e:e8:e4:fe:61:7e:17:33:47:d5:6f:92:03:6d:03:ca:2d:d6: 9a:1c:27:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUARnaoYgD3VeVA8txyR77UUyV/lgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yMzA5MDkxMzU1MDBaFw0yNDA5MDcxNDAwMDBaMDMxMTAvBgNV BAMTKDY5QUIxNDE1M0IyNEQ1RDgxRTY5QkM1OUE0M0FGMzdCQzNCOEY3MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLKRD8UZ8mFRaAtj2XfF9zEZEP lxUEFhdcuGBx3gzudsQgVvMuMFny0YXxStFeYl8Q5ceZw7wNqWAD/ba8HD7HEaFL K/yW2eQ1VDyZKDS0fM2Fc9f8B0PcNc3UYSybGefEFGtpy4scq0Aa+KVR12cZZIrB gT5t6Qe6ZLjFWcVXYleSwwTCDpAj5QBNJaETLW3KOXRu+X8zQioAlq6GWYqYELfq gu9XG3bRs/u/w4MDePSVw0hMCiD6IPDt0kSq9sMuWHWGBO+329OZOB7uMWs//Pa8 eWyqEUalfFi5htqWd55ptH3C9d8kZwWOHD1xbVKvkFrPoE/LNUy8glGBrQNfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaasUFTsk1dgeabxZpDrze8O49yswHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMyMzAzMjJlMzczNDJlMzIzMzM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBykruMA0GCSqG SIb3DQEBCwUAA4IBAQBvxNneoqQnb/sUDOyFPPqLAgow5531BTzjNj/Amn6xwTXs Ya1tjZ6BwrcxzIRp0zokff0u/Vi6ERvbiWelNmB/BBjr3KRngajddXAVcV9/5Wag kv3ZSJDwXuq9Rr7JEdEAIpnBjE25vJ3ZFO09eH9wKjGjQtF4RIIpeVVa6043L/W+ IbA34Ga8Rt4fNHRYswylu/OtsDdFrjZfGLedGtIEAYpz2nnjtX+oteHynwDVlqVo gWPKt/ab15IcMYmjKgoGziySweYThp/F8FrPZdCW+BeSsGrhkC8NvM3BjjDQ+Wlk noX4EnVAIixO6OT+YX4XM0fVb5IDbQPKLdaaHCdS -----END CERTIFICATE-----Generated at Wed May 1 05:56:56 2024 by rpki-client on console-fra.rpki-client.org