$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32362e302f32332d3233203d3e20313430343639.roa File: 3230322e35372e32362e302f32332d3233203d3e20313430343639.roa (raw, json) Hash identifier: Dq3ZweN4eaXldfHOXeJL7ihUBPd4FlfCuwvOxZvmYmE= Subject key identifier: B9:AC:39:8B:2E:34:C6:EB:90:1F:C4:80:5C:70:CA:88:99:B1:ED:F8 Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 2B912B2433477F496F44BC253752DA859C13BA76 Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32362e302f32332d3233203d3e20313430343639.roa Signing time: Tue 19 Mar 2024 06:00:01 +0000 ROA not before: Tue 19 Mar 2024 05:55:01 +0000 ROA not after: Tue 18 Mar 2025 06:00:01 +0000 asID: 140469 IP address blocks: 202.57.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:91:2b:24:33:47:7f:49:6f:44:bc:25:37:52:da:85:9c:13:ba:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Mar 19 05:55:01 2024 GMT Not After : Mar 18 06:00:01 2025 GMT Subject: CN=B9AC398B2E34C6EB901FC4805C70CA8899B1EDF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:97:85:a4:78:88:e9:0f:45:7f:00:ae:f9:65: 29:b1:42:77:af:9d:c9:55:6a:35:86:90:d3:ea:d6: f5:48:60:35:ce:1c:1f:5e:d0:e6:9f:d0:53:8e:a8: 3f:f3:08:bb:63:3d:b2:99:2d:59:b7:a0:19:e0:e2: 6b:37:39:4b:94:60:a8:23:ad:0a:7b:ac:dd:ae:50: 6b:11:4e:fc:78:a3:69:70:cc:c9:f1:4f:f2:65:8b: 25:e3:a6:5f:b0:32:1a:79:b8:6a:3d:de:31:1e:b5: 7e:13:72:87:3f:dd:49:f4:d5:77:5a:fe:e1:cc:78: 73:92:5b:8c:1a:6f:dd:37:d3:46:52:b8:89:25:91: 12:04:22:e3:3a:9e:9f:b8:06:ab:8d:00:73:55:eb: 68:70:69:52:7d:41:92:ea:42:a3:ac:0d:38:21:1a: 38:94:b7:cb:24:8a:b1:82:7c:92:58:5c:c6:95:3a: 30:38:0c:ae:95:fb:4e:bd:d1:d6:80:f8:ab:5d:ac: bb:06:d7:6d:6f:b7:e0:5b:83:1a:e8:8a:78:c4:7c: 80:76:1b:f7:5b:98:bf:c4:fa:aa:dc:17:66:a7:47: d1:24:df:cf:80:ea:cb:ad:16:d6:4c:27:bf:24:01: f4:20:06:36:e8:6f:c0:25:c1:b7:7e:a4:ba:13:8b: 54:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:AC:39:8B:2E:34:C6:EB:90:1F:C4:80:5C:70:CA:88:99:B1:ED:F8 X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32362e302f32332d3233203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.26.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:b4:c4:af:07:e1:ab:d5:3e:cc:7f:08:75:48:fa:3d:da:d1: dc:b1:51:2f:21:4f:4d:47:53:9e:52:99:e9:1b:f7:0c:05:27: 9b:6d:ce:2b:50:57:8b:de:35:87:2d:6b:e0:b5:9e:b9:09:1f: 8c:ee:27:91:f7:15:16:51:a8:28:03:ed:7f:3a:a0:04:53:70: dc:e3:c3:f1:48:8c:a6:a9:f1:aa:54:fc:a9:8f:f9:e2:11:8a: 9b:9f:91:76:bc:5b:20:93:02:f5:9d:c4:7d:92:9d:0f:e0:27: 69:c1:06:82:c2:a3:59:f8:9e:9d:b4:69:fb:e5:49:69:0e:4f: 2b:ab:c9:ac:6a:c5:12:0a:9c:4a:df:00:32:a2:ae:eb:8a:47: c6:5b:18:f5:75:42:f3:7c:61:cb:44:c2:59:19:a6:3b:e4:6d: 06:bf:ca:fc:d4:c4:21:e8:8b:50:34:4a:b6:d4:cd:0c:6b:ff: 72:00:73:36:83:8f:5c:ef:4b:57:49:f8:9e:e2:04:ff:2d:09: 65:9b:dc:72:26:42:dd:90:1e:80:15:9f:13:90:41:9f:4c:22: b0:81:df:ff:73:a7:2d:4b:9c:68:60:1c:79:2b:aa:b7:97:2c: 5a:44:52:b1:c7:8c:7e:15:4c:83:bf:7a:5e:47:f2:ff:1b:c0: 58:04:56:e5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUK5ErJDNHf0lvRLwlN1LahZwTunYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNDAzMTkwNTU1MDFaFw0yNTAzMTgwNjAwMDFaMDMxMTAvBgNV BAMTKEI5QUMzOThCMkUzNEM2RUI5MDFGQzQ4MDVDNzBDQTg4OTlCMUVERjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDal4WkeIjpD0V/AK75ZSmxQnev nclVajWGkNPq1vVIYDXOHB9e0Oaf0FOOqD/zCLtjPbKZLVm3oBng4ms3OUuUYKgj rQp7rN2uUGsRTvx4o2lwzMnxT/JliyXjpl+wMhp5uGo93jEetX4Tcoc/3Un01Xda /uHMeHOSW4wab90300ZSuIklkRIEIuM6np+4BquNAHNV62hwaVJ9QZLqQqOsDTgh GjiUt8skirGCfJJYXMaVOjA4DK6V+0690daA+KtdrLsG121vt+BbgxroinjEfIB2 G/dbmL/E+qrcF2anR9Ek38+A6sutFtZMJ78kAfQgBjbob8Alwbd+pLoTi1S1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuaw5iy40xuuQH8SAXHDKiJmx7fgwHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAco5GjANBgkqhkiG 9w0BAQsFAAOCAQEAfrTErwfhq9U+zH8IdUj6PdrR3LFRLyFPTUdTnlKZ6Rv3DAUn m23OK1BXi941hy1r4LWeuQkfjO4nkfcVFlGoKAPtfzqgBFNw3OPD8UiMpqnxqlT8 qY/54hGKm5+RdrxbIJMC9Z3EfZKdD+AnacEGgsKjWfienbRp++VJaQ5PK6vJrGrF EgqcSt8AMqKu64pHxlsY9XVC83xhy0TCWRmmO+RtBr/K/NTEIeiLUDRKttTNDGv/ cgBzNoOPXO9LV0n4nuIE/y0JZZvcciZC3ZAegBWfE5BBn0wisIHf/3OnLUucaGAc eSuqt5csWkRSsceMfhVMg796Xkfy/xvAWARW5Q== -----END CERTIFICATE-----Generated at Fri May 31 02:49:52 2024 by rpki-client on console-fra.rpki-client.org