$ rpki-client -vvf repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa File: 3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa (raw, json) Hash identifier: P9yfeCSZatXE/OlfZT5uY857zQ95meH/VEKEK1bSk2o= Subject key identifier: 68:C9:B7:92:74:A5:E9:EA:AC:49:22:DC:76:F9:97:12:4D:EE:2D:61 Certificate issuer: /CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Certificate serial: 399C1963AC7C07FB6A14A0B7251E628AAC2DE7B6 Authority key identifier: B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa Signing time: Fri 14 Jul 2023 04:00:00 +0000 ROA not before: Fri 14 Jul 2023 03:55:00 +0000 ROA not after: Fri 12 Jul 2024 04:00:00 +0000 asID: 45703 IP address blocks: 203.114.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 08:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:9c:19:63:ac:7c:07:fb:6a:14:a0:b7:25:1e:62:8a:ac:2d:e7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7959E04EF090801395CE53E099D09F7AF2EF81B Validity Not Before: Jul 14 03:55:00 2023 GMT Not After : Jul 12 04:00:00 2024 GMT Subject: CN=68C9B79274A5E9EAAC4922DC76F997124DEE2D61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:92:f9:da:9b:d8:50:db:d8:b9:f5:05:53:64: a5:87:cf:b3:2b:81:52:7c:c0:1b:6c:fb:5a:00:ae: e1:c2:b7:e5:67:39:19:23:fb:5c:dd:98:5f:e6:7e: 8e:ef:df:cd:f2:57:47:50:67:fd:17:1d:2b:c2:4e: 7a:27:ab:e1:64:7a:54:26:2e:fc:bf:e4:7a:27:79: 0d:b5:7f:f4:16:53:fd:a1:df:57:9d:22:63:12:d6: 51:92:eb:87:9f:c8:14:12:14:e9:3f:3e:1d:a4:1f: 9b:fb:c2:28:cb:52:ff:23:ba:9c:34:a1:0b:fe:84: 5f:1c:14:ac:c5:00:29:13:78:9d:20:e6:be:44:89: 01:31:13:3a:ae:d4:73:ee:44:5c:06:b7:28:1e:10: 4c:b0:19:54:d5:2c:3e:c8:80:0e:ac:25:30:13:28: 83:01:f9:28:67:25:54:50:aa:70:e9:00:a3:9e:27: 00:fe:da:79:24:44:ed:f4:05:e4:46:ee:d3:4f:0c: 51:c6:b0:6c:92:96:ea:ac:8a:83:98:cc:38:06:45: a5:a9:a4:96:39:12:d5:12:6a:a0:32:d9:32:3f:e0: 71:87:43:7c:20:e3:44:03:64:99:02:a2:c2:a4:09: 61:7a:60:54:8d:bc:79:40:f4:bc:33:6a:4e:b2:29: 5c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C9:B7:92:74:A5:E9:EA:AC:49:22:DC:76:F9:97:12:4D:EE:2D:61 X509v3 Authority Key Identifier: keyid:B7:95:9E:04:EF:09:08:01:39:5C:E5:3E:09:9D:09:F7:AF:2E:F8:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/B7959E04EF090801395CE53E099D09F7AF2EF81B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7959E04EF090801395CE53E099D09F7AF2EF81B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.114.227.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:5d:42:71:47:11:1c:e6:22:b7:76:92:e5:ac:85:8b:b8:24: 84:f5:41:63:21:06:00:a8:cf:57:ea:83:e3:db:25:54:ba:4a: 76:2d:eb:84:81:0b:18:00:95:8d:3a:5a:36:1f:08:ef:ad:59: 4d:70:fe:f0:8c:33:2f:c8:ef:ec:97:9f:da:74:78:0a:46:ae: d7:9d:96:36:8c:75:f8:1a:30:26:4e:a5:7e:c0:33:48:70:bc: e8:2e:a6:10:b5:ac:b9:ef:75:60:14:a7:d2:99:d6:6a:7a:1c: 6a:67:fe:2e:66:ac:ef:aa:7c:21:86:be:fe:9b:7c:d3:37:0e: 5b:c2:a9:b5:55:4c:e5:9a:17:58:a9:49:5a:f2:c3:76:5c:67: 97:19:95:fb:c8:6e:2b:70:02:24:2f:e8:d2:fd:26:60:67:dd: 42:71:2d:5a:c9:ad:a3:cc:45:38:1c:fa:a0:92:c9:f9:c9:e7: 81:4b:73:94:30:04:9e:21:d0:43:9d:46:a5:89:c0:99:92:1c: cf:02:8e:15:6e:a7:41:70:f2:32:d5:49:0d:62:47:82:e2:5a: b4:74:65:9c:0c:40:3c:93:71:06:d3:57:f2:10:54:12:37:7d: ae:ca:14:33:1b:73:55:60:b1:aa:1e:93:5c:c9:ad:55:1c:b5: f2:b1:c0:fb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOZwZY6x8B/tqFKC3JR5iiqwt57YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdB RjJFRjgxQjAeFw0yMzA3MTQwMzU1MDBaFw0yNDA3MTIwNDAwMDBaMDMxMTAvBgNV BAMTKDY4QzlCNzkyNzRBNUU5RUFBQzQ5MjJEQzc2Rjk5NzEyNERFRTJENjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwkvnam9hQ29i59QVTZKWHz7Mr gVJ8wBts+1oAruHCt+VnORkj+1zdmF/mfo7v383yV0dQZ/0XHSvCTnonq+FkelQm Lvy/5HoneQ21f/QWU/2h31edImMS1lGS64efyBQSFOk/Ph2kH5v7wijLUv8jupw0 oQv+hF8cFKzFACkTeJ0g5r5EiQExEzqu1HPuRFwGtygeEEywGVTVLD7IgA6sJTAT KIMB+ShnJVRQqnDpAKOeJwD+2nkkRO30BeRG7tNPDFHGsGySluqsioOYzDgGRaWp pJY5EtUSaqAy2TI/4HGHQ3wg40QDZJkCosKkCWF6YFSNvHlA9Lwzak6yKVzhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaMm3knSl6eqsSSLcdvmXEk3uLWEwHwYDVR0j BBgwFoAUt5WeBO8JCAE5XOU+CZ0J968u+BswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYzYWU3Yy1hNmZmLTRmZDgtOTZmMi0wYmExODgwMTMzYzcvMC9CNzk1OUUwNEVG MDkwODAxMzk1Q0U1M0UwOTlEMDlGN0FGMkVGODFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjc5NTlFMDRFRjA5MDgwMTM5NUNFNTNFMDk5RDA5RjdBRjJF RjgxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjNhZTdjLWE2ZmYtNGZkOC05 NmYyLTBiYTE4ODAxMzNjNy8wLzMyMzAzMzJlMzEzMTM0MmUzMjMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy3LjMA0GCSqG SIb3DQEBCwUAA4IBAQCbXUJxRxEc5iK3dpLlrIWLuCSE9UFjIQYAqM9X6oPj2yVU ukp2LeuEgQsYAJWNOlo2HwjvrVlNcP7wjDMvyO/sl5/adHgKRq7XnZY2jHX4GjAm TqV+wDNIcLzoLqYQtay573VgFKfSmdZqehxqZ/4uZqzvqnwhhr7+m3zTNw5bwqm1 VUzlmhdYqUla8sN2XGeXGZX7yG4rcAIkL+jS/SZgZ91CcS1aya2jzEU4HPqgksn5 yeeBS3OUMASeIdBDnUalicCZkhzPAo4VbqdBcPIy1UkNYkeC4lq0dGWcDEA8k3EG 01fyEFQSN32uyhQzG3NVYLGqHpNcya1VHLXyscD7 -----END CERTIFICATE-----Generated at Sat Jun 1 04:58:28 2024 by rpki-client on console-fra.rpki-client.org