$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa File: 3230322e39312e382e302f32342d3234203d3e203338313530.roa (raw, json) Hash identifier: UrTP8Qy6dfeFbn3IOkCWh6FIe1cgBAh4bv6WmOCzFok= Subject key identifier: F0:70:F8:5A:CB:D6:1E:FC:58:01:51:57:81:E2:CC:75:0C:25:09:8C Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 6F148CDA33C66EC1C0AC14B0FCFB5DD868EB31C2 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa Signing time: Mon 31 Jul 2023 00:05:05 +0000 ROA not before: Mon 31 Jul 2023 00:00:05 +0000 ROA not after: Mon 29 Jul 2024 00:05:05 +0000 asID: 38150 IP address blocks: 202.91.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 13:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:14:8c:da:33:c6:6e:c1:c0:ac:14:b0:fc:fb:5d:d8:68:eb:31:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 31 00:00:05 2023 GMT Not After : Jul 29 00:05:05 2024 GMT Subject: CN=F070F85ACBD61EFC5801515781E2CC750C25098C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f2:bc:92:96:ce:ff:9f:fd:61:ab:4e:15:b5: b4:7e:9f:99:56:95:62:e7:83:63:9b:72:0b:00:fe: be:83:46:36:23:66:10:25:df:b4:ce:c8:60:af:db: cf:dd:68:a4:d8:2d:30:92:e2:48:d5:25:04:23:31: e2:62:34:7a:96:34:ca:4b:37:0f:29:7f:d4:39:c1: 04:9a:07:f2:0f:69:c8:57:60:71:3b:0e:86:ce:71: 8e:1f:b2:f0:69:1e:0d:b9:da:41:54:c8:e6:92:6a: 94:00:2b:a3:b5:e5:9e:a3:66:02:82:ce:c3:30:39: a2:d0:8b:69:d2:d9:c9:40:e8:68:74:ed:df:0f:bb: 30:d9:6a:21:b3:a2:35:93:a0:52:6d:84:2c:63:63: 42:e8:6b:1f:fe:4a:20:d4:99:89:27:f9:4f:11:88: 07:b6:b3:69:90:59:85:67:a2:36:0d:84:44:16:b2: 86:dd:18:54:1b:d4:77:23:ef:17:fe:89:09:89:97: 06:7e:0d:0c:15:bd:e8:52:f3:59:2a:dc:eb:f2:ad: cd:57:d8:50:78:78:87:23:04:61:fe:cb:50:58:2e: 60:8e:18:f7:f9:07:ae:7b:a9:57:a1:d2:6e:27:96: 69:26:8d:1d:a4:52:e2:4f:ac:b9:22:46:f8:78:1e: 8b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:70:F8:5A:CB:D6:1E:FC:58:01:51:57:81:E2:CC:75:0C:25:09:8C X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e382e302f32342d3234203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.8.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:a9:b3:5d:ba:07:c7:ad:fc:f7:39:9e:54:b0:cc:ba:d2:1f: a5:b8:03:a0:66:e0:2b:fc:c6:5f:3c:0c:10:f6:41:66:cc:5f: 35:08:f5:66:a3:27:29:57:0a:e8:ca:54:f8:6e:94:1a:c5:b4: 8e:68:cd:f1:72:3f:36:d1:80:cc:ca:b8:0f:1c:3c:1c:e9:5d: a3:9d:d3:95:4d:13:a9:b5:52:94:da:ac:34:f7:66:3e:c1:80: b5:30:e6:56:f9:f8:7a:1b:47:3a:73:8f:27:49:79:60:07:3e: ab:7d:07:bb:6e:42:e9:5e:04:15:1e:cf:1d:34:4e:02:9d:bf: c7:57:a3:32:5d:89:39:19:31:3d:3b:0d:ce:e8:92:ce:c5:f3: 09:fb:13:f5:74:b5:f8:00:22:cc:bd:84:a2:df:c6:5e:ea:1c: 45:87:bd:e0:ae:cf:70:b1:8d:9a:c8:36:53:f3:fb:26:7e:3a: 04:12:cb:85:ff:fb:36:4e:1f:a8:5c:f6:72:2a:f5:aa:f3:95: 57:72:4e:c8:82:fb:e7:e8:2d:a0:6d:44:b7:dc:58:f2:17:10: b4:ae:f4:05:70:e7:06:87:3d:a0:05:32:58:8c:ff:ac:c0:b9: 49:5e:c7:6a:fb:11:64:46:4b:3f:46:93:ee:0d:b9:a6:04:bc: 1d:03:aa:6a -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUbxSM2jPGbsHArBSw/Ptd2GjrMcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yMzA3MzEwMDAwMDVaFw0yNDA3MjkwMDA1MDVaMDMxMTAvBgNV BAMTKEYwNzBGODVBQ0JENjFFRkM1ODAxNTE1NzgxRTJDQzc1MEMyNTA5OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV8rySls7/n/1hq04VtbR+n5lW lWLng2ObcgsA/r6DRjYjZhAl37TOyGCv28/daKTYLTCS4kjVJQQjMeJiNHqWNMpL Nw8pf9Q5wQSaB/IPachXYHE7DobOcY4fsvBpHg252kFUyOaSapQAK6O15Z6jZgKC zsMwOaLQi2nS2clA6Gh07d8PuzDZaiGzojWToFJthCxjY0Loax/+SiDUmYkn+U8R iAe2s2mQWYVnojYNhEQWsobdGFQb1Hcj7xf+iQmJlwZ+DQwVvehS81kq3Ovyrc1X 2FB4eIcjBGH+y1BYLmCOGPf5B657qVeh0m4nlmkmjR2kUuJPrLkiRvh4HouFAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU8HD4WsvWHvxYAVFXgeLMdQwlCYwwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTdlNjViNjctOTA1Yy00MDNjLThj NzktMjMxNTY1OTY2OGFhLzAvMzIzMDMyMmUzOTMxMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzMTM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWwgwDQYJKoZIhvcNAQEL BQADggEBAC+ps126B8et/Pc5nlSwzLrSH6W4A6Bm4Cv8xl88DBD2QWbMXzUI9Waj JylXCujKVPhulBrFtI5ozfFyPzbRgMzKuA8cPBzpXaOd05VNE6m1UpTarDT3Zj7B gLUw5lb5+HobRzpzjydJeWAHPqt9B7tuQuleBBUezx00TgKdv8dXozJdiTkZMT07 Dc7oks7F8wn7E/V0tfgAIsy9hKLfxl7qHEWHveCuz3CxjZrINlPz+yZ+OgQSy4X/ +zZOH6hc9nIq9arzlVdyTsiC++foLaBtRLfcWPIXELSu9AVw5waHPaAFMliM/6zA uUlex2r7EWRGSz9Gk+4NuaYEvB0Dqmo= -----END CERTIFICATE-----Generated at Thu May 2 11:32:08 2024 by rpki-client on console-fra.rpki-client.org