$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31312e302f32342d3234203d3e203338313530.roa File: 3230322e39312e31312e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: Kmk1bYf5LPoFfevreX5sLBvETUPummqnU2rsratjd1Y= Subject key identifier: 30:9F:2F:C0:3C:41:39:38:3D:B8:CA:C8:0D:1C:E6:CD:B0:75:A8:92 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 3A467C635DEF3D9DEE4C90BF278691758418F61D Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31312e302f32342d3234203d3e203338313530.roa Signing time: Mon 31 Jul 2023 00:05:04 +0000 ROA not before: Mon 31 Jul 2023 00:00:04 +0000 ROA not after: Mon 29 Jul 2024 00:05:04 +0000 asID: 38150 IP address blocks: 202.91.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 13:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:46:7c:63:5d:ef:3d:9d:ee:4c:90:bf:27:86:91:75:84:18:f6:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 31 00:00:04 2023 GMT Not After : Jul 29 00:05:04 2024 GMT Subject: CN=309F2FC03C4139383DB8CAC80D1CE6CDB075A892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c7:d1:b8:ec:62:52:3b:25:d3:f9:cf:81:80: fc:88:0f:da:4f:4b:21:59:4b:fa:d5:73:76:be:13: 9c:7e:4b:0f:2b:75:0a:26:10:7e:90:44:8a:cd:a5: 01:88:93:0a:9c:1a:41:43:d7:e2:0b:b5:19:3b:95: a8:f3:90:60:50:fa:2c:44:c4:c7:69:60:2f:e8:55: b2:54:a0:58:f7:9b:98:72:99:2f:94:ee:88:e2:e2: 5a:a5:d6:5a:9a:14:48:f2:ff:df:91:b7:d2:54:a2: 40:3d:f3:da:bd:68:f0:39:5b:d8:cd:4c:37:93:ca: 11:48:b0:8d:c6:23:73:32:11:76:31:6b:06:dd:14: 9b:f0:79:75:8f:f2:a3:17:05:4e:ed:29:88:22:c4: 96:17:1e:4d:ca:36:2a:ed:9c:85:3a:be:b5:59:08: 0c:69:2b:6f:98:0a:20:9a:e1:f0:ed:9a:6c:c8:08: c8:33:72:5c:98:e8:6f:f2:a0:14:bc:8f:ed:26:77: 9f:d4:06:da:83:8f:e3:41:f5:f1:2a:15:18:b7:7b: 3d:fb:06:0c:3d:c7:ac:3b:12:f9:bb:c6:bf:9d:94: 84:1a:71:71:d9:f9:8c:a3:86:d6:e1:c0:d7:71:fc: ce:58:bf:41:f0:2d:52:04:86:6b:34:8b:9a:00:3d: 4c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9F:2F:C0:3C:41:39:38:3D:B8:CA:C8:0D:1C:E6:CD:B0:75:A8:92 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31312e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.11.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:f6:14:a3:2b:a5:35:63:e4:e3:26:7a:a7:f2:9f:91:c1:f0: 57:11:a1:66:4e:d2:d7:ec:b2:d0:5e:4f:1a:63:84:55:b2:97: b6:a2:6f:b7:4b:82:93:ac:04:e3:41:d0:0a:7f:e9:bd:e3:52: 56:00:c5:dc:c2:e1:0f:d1:c5:69:66:bc:01:4a:28:84:9e:cb: f4:4f:21:65:57:78:e3:8e:9a:16:ef:ea:fd:fb:c9:2b:62:91: 55:62:13:8e:52:bc:92:f3:45:50:01:07:23:2f:c8:e4:2f:75: ae:b9:5b:34:d6:7b:98:24:86:dc:9e:cb:7f:59:e3:4b:3c:42: 05:d9:f2:79:71:14:35:ae:bc:21:6b:7e:50:62:0a:22:50:03: d2:fc:07:27:b8:f7:0c:46:ba:73:0b:4c:41:79:99:30:f8:19: 39:02:2f:5f:b2:0a:43:4d:2e:09:b9:7a:c5:53:38:84:93:18: d6:24:32:8b:ca:09:27:32:57:63:70:d5:0f:ff:af:e5:f4:cf: 1d:ac:c0:1b:f4:c8:21:79:2a:cd:b0:f9:ca:d1:32:12:8e:a1: 99:c5:1a:21:09:d7:0d:c1:f3:48:6e:7f:05:49:59:dd:0b:a1: 9d:4e:9c:22:67:e0:c0:f5:6e:b0:87:ad:52:d5:34:2f:51:31: d6:d1:7a:61 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOkZ8Y13vPZ3uTJC/J4aRdYQY9h0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yMzA3MzEwMDAwMDRaFw0yNDA3MjkwMDA1MDRaMDMxMTAvBgNV BAMTKDMwOUYyRkMwM0M0MTM5MzgzREI4Q0FDODBEMUNFNkNEQjA3NUE4OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWx9G47GJSOyXT+c+BgPyID9pP SyFZS/rVc3a+E5x+Sw8rdQomEH6QRIrNpQGIkwqcGkFD1+ILtRk7lajzkGBQ+ixE xMdpYC/oVbJUoFj3m5hymS+U7oji4lql1lqaFEjy/9+Rt9JUokA989q9aPA5W9jN TDeTyhFIsI3GI3MyEXYxawbdFJvweXWP8qMXBU7tKYgixJYXHk3KNirtnIU6vrVZ CAxpK2+YCiCa4fDtmmzICMgzclyY6G/yoBS8j+0md5/UBtqDj+NB9fEqFRi3ez37 Bgw9x6w7Evm7xr+dlIQacXHZ+YyjhtbhwNdx/M5Yv0HwLVIEhms0i5oAPUx9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUMJ8vwDxBOTg9uMrIDRzmzbB1qJIwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzAzMjJlMzkzMTJlMzEzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWwswDQYJKoZIhvcN AQELBQADggEBAC72FKMrpTVj5OMmeqfyn5HB8FcRoWZO0tfsstBeTxpjhFWyl7ai b7dLgpOsBONB0Ap/6b3jUlYAxdzC4Q/RxWlmvAFKKISey/RPIWVXeOOOmhbv6v37 yStikVViE45SvJLzRVABByMvyOQvda65WzTWe5gkhtyey39Z40s8QgXZ8nlxFDWu vCFrflBiCiJQA9L8Bye49wxGunMLTEF5mTD4GTkCL1+yCkNNLgm5esVTOISTGNYk MovKCScyV2Nw1Q//r+X0zx2swBv0yCF5Ks2w+crRMhKOoZnFGiEJ1w3B80hufwVJ Wd0LoZ1OnCJn4MD1brCHrVLVNC9RMdbRemE= -----END CERTIFICATE-----Generated at Thu May 2 11:32:08 2024 by rpki-client on console-fra.rpki-client.org