$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa File: 3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: njS2EfA/Mxq2u+/FMRWQQ+F1bWCLxjuw32BXw+BhPXE= Subject key identifier: 6B:20:5E:3C:D0:02:73:C2:D8:E9:72:F4:6A:38:8C:4A:C3:1D:FF:C3 Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 11F976BF34EDFCDAA231CF3DEEC5E8A834D7920F Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa Signing time: Mon 31 Jul 2023 00:05:39 +0000 ROA not before: Mon 31 Jul 2023 00:00:39 +0000 ROA not after: Mon 29 Jul 2024 00:05:39 +0000 asID: 131775 IP address blocks: 202.74.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:f9:76:bf:34:ed:fc:da:a2:31:cf:3d:ee:c5:e8:a8:34:d7:92:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jul 31 00:00:39 2023 GMT Not After : Jul 29 00:05:39 2024 GMT Subject: CN=6B205E3CD00273C2D8E972F46A388C4AC31DFFC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2a:60:f0:af:4e:01:3d:11:4c:e1:5c:4f:f8: 0e:f5:e8:52:44:55:ab:ee:ee:e5:6e:5f:f9:94:00: c2:50:44:e2:8a:c2:04:6e:48:97:ab:1c:18:3c:cc: 4d:fc:09:7b:cf:4e:9b:ce:b0:43:0b:04:fe:a5:34: a9:64:24:ab:b5:0d:53:ce:82:25:2b:75:ca:c5:b1: 14:8f:fc:a8:4d:2b:cd:3d:f2:0f:86:a7:7e:6f:b8: 1b:ba:3e:e6:b9:b2:11:a8:20:dd:b6:dc:e6:7f:91: 3e:26:ab:30:f0:2f:ce:b2:8c:a6:7e:41:b2:ab:81: 0a:f8:0e:f9:c0:0b:38:52:b2:63:20:54:5a:9d:f8: a8:62:49:86:56:d8:88:e0:1c:9f:ea:a0:89:af:80: 01:13:10:e5:98:ab:47:8f:6e:fe:fe:a5:c6:c4:aa: 55:a3:b8:8d:a4:3c:7b:09:38:23:80:47:54:25:00: e2:98:9c:6b:69:7e:c2:9f:41:13:5e:6d:31:ee:21: c7:ed:4b:be:46:63:04:60:6c:29:99:6e:6c:ea:39: 42:24:4c:56:27:f2:0a:a3:47:c3:0d:27:ab:27:3d: be:d0:83:66:b2:91:19:e6:f6:40:1b:e8:14:30:30: 09:ba:fb:32:00:1c:a9:92:c3:01:fe:d0:3c:04:b9: c8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:20:5E:3C:D0:02:73:C2:D8:E9:72:F4:6A:38:8C:4A:C3:1D:FF:C3 X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.239.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:3d:ae:ad:3c:2a:4b:be:66:3c:c6:07:98:bb:87:70:53:8a: 2f:c8:81:20:9e:28:f6:a5:a7:ce:87:47:77:32:cd:1d:d4:64: 06:bd:47:2d:cd:dd:12:b3:41:21:44:97:06:de:97:be:1d:f0: 44:dd:28:b3:17:20:aa:c1:03:38:d9:72:74:5c:28:a8:23:43: cf:85:d7:74:1f:02:39:47:70:7d:56:34:26:f9:5d:7d:5b:cc: c5:cc:db:60:ee:5e:d6:c6:4b:72:7b:8c:a1:0e:3f:d3:0b:2f: 14:cd:9e:f2:e3:b2:3c:57:4b:96:fb:2c:07:d4:53:ae:12:93: ca:73:99:93:85:aa:fc:3b:42:b5:22:99:f2:a2:94:c4:74:35: fa:36:4d:ca:15:9b:2e:b2:b9:7c:43:13:a1:0f:01:2a:4d:10: a3:46:a2:bc:96:09:34:81:4c:69:30:68:ad:0c:df:1d:e7:82: 21:c3:75:fc:bd:41:c8:a9:cf:06:5a:93:47:53:0b:5e:c5:e2: ae:14:e9:e9:ca:c0:96:69:34:85:d6:c2:9a:82:b3:3e:15:fd: db:44:c4:91:6b:40:8a:b9:9c:d9:99:6a:a7:82:7f:96:80:52: 39:99:db:b0:72:1a:08:e8:74:d7:99:0a:99:25:02:b7:41:d9: bc:1a:a1:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEfl2vzTt/NqiMc897sXoqDTXkg8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yMzA3MzEwMDAwMzlaFw0yNDA3MjkwMDA1MzlaMDMxMTAvBgNV BAMTKDZCMjA1RTNDRDAwMjczQzJEOEU5NzJGNDZBMzg4QzRBQzMxREZGQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoKmDwr04BPRFM4VxP+A716FJE Vavu7uVuX/mUAMJQROKKwgRuSJerHBg8zE38CXvPTpvOsEMLBP6lNKlkJKu1DVPO giUrdcrFsRSP/KhNK8098g+Gp35vuBu6Pua5shGoIN223OZ/kT4mqzDwL86yjKZ+ QbKrgQr4DvnACzhSsmMgVFqd+KhiSYZW2IjgHJ/qoImvgAETEOWYq0ePbv7+pcbE qlWjuI2kPHsJOCOAR1QlAOKYnGtpfsKfQRNebTHuIcftS75GYwRgbCmZbmzqOUIk TFYn8gqjR8MNJ6snPb7Qg2aykRnm9kAb6BQwMAm6+zIAHKmSwwH+0DwEucj7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUayBePNACc8LY6XL0ajiMSsMd/8MwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMyMzAzMjJlMzczNDJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykrvMA0GCSqG SIb3DQEBCwUAA4IBAQAvPa6tPCpLvmY8xgeYu4dwU4ovyIEgnij2pafOh0d3Ms0d 1GQGvUctzd0Ss0EhRJcG3pe+HfBE3SizFyCqwQM42XJ0XCioI0PPhdd0HwI5R3B9 VjQm+V19W8zFzNtg7l7Wxktye4yhDj/TCy8UzZ7y47I8V0uW+ywH1FOuEpPKc5mT har8O0K1IpnyopTEdDX6Nk3KFZsusrl8QxOhDwEqTRCjRqK8lgk0gUxpMGitDN8d 54Ihw3X8vUHIqc8GWpNHUwtexeKuFOnpysCWaTSF1sKagrM+Ff3bRMSRa0CKuZzZ mWqngn+WgFI5mduwchoI6HTXmQqZJQK3Qdm8GqGN -----END CERTIFICATE-----Generated at Fri May 3 06:17:39 2024 by rpki-client on console-ams.rpki-client.org