$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133302e302f32342d3234203d3e2034333832.roa File: 3230322e39332e3133302e302f32342d3234203d3e2034333832.roa (raw, json) Hash identifier: MJ3Rtueuro+5mHk+Z1RHqXrUAbMRXDPf4Xe+G1A1J+8= Subject key identifier: D0:7A:9D:72:14:89:C0:83:C4:5F:F9:C1:A6:42:1E:BB:0A:09:EA:15 Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 06AE8177B745A19B6A91164601850C4832AEF693 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133302e302f32342d3234203d3e2034333832.roa Signing time: Wed 20 Sep 2023 13:00:16 +0000 ROA not before: Wed 20 Sep 2023 12:55:16 +0000 ROA not after: Wed 18 Sep 2024 13:00:16 +0000 asID: 4382 IP address blocks: 202.93.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ae:81:77:b7:45:a1:9b:6a:91:16:46:01:85:0c:48:32:ae:f6:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Sep 20 12:55:16 2023 GMT Not After : Sep 18 13:00:16 2024 GMT Subject: CN=D07A9D721489C083C45FF9C1A6421EBB0A09EA15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:32:0d:e7:4a:35:f0:fc:6f:96:b1:af:d8:16: 62:1e:de:6a:31:d7:16:71:68:d4:f2:8b:40:9f:06: b8:ca:95:c3:c6:d6:8c:66:f1:1d:8d:d6:b6:fc:22: c2:c9:ee:a9:39:2f:dd:be:4f:31:7d:95:ba:03:ef: 04:a6:a6:05:8f:68:fb:12:9b:2a:01:9e:b0:c6:a4: 25:5d:1a:08:96:76:9f:89:e9:0f:32:bb:40:34:5c: 9c:2a:8a:1b:90:b9:37:38:d8:b9:fc:47:7a:e1:78: 6e:70:2b:e0:cd:59:10:f1:cc:24:cf:e8:4e:fb:81: 05:a7:ee:a5:f6:bf:40:66:7d:bd:c4:a5:e6:fa:a2: 11:95:d0:7d:08:97:da:df:94:57:8d:4d:b0:0f:6e: 1a:cb:8b:78:a8:02:9d:cf:35:e0:62:6f:72:e7:6b: 03:ae:09:38:69:88:15:39:89:0c:5d:8f:96:46:03: 83:89:c8:c9:38:05:66:9f:34:a0:32:9b:5c:ba:cd: cb:ec:a5:6e:b3:3e:9c:c5:f4:ab:63:c3:e7:82:8e: 91:61:69:02:b4:b0:cb:f9:c0:2a:00:f7:1e:58:c6: c7:1c:1a:f7:a0:f0:40:71:91:fa:44:72:c2:0d:d8: 40:3f:e2:23:8c:16:84:73:dc:5b:16:1a:af:b9:03: ae:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7A:9D:72:14:89:C0:83:C4:5F:F9:C1:A6:42:1E:BB:0A:09:EA:15 X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133302e302f32342d3234203d3e2034333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.130.0/24 Signature Algorithm: sha256WithRSAEncryption 50:ee:81:ce:95:9d:c4:06:ed:68:61:33:36:ff:f9:c0:ec:c8: 5c:dd:d7:1e:1f:52:c7:bc:5f:82:35:e0:bb:b2:7c:7b:98:80: 4f:0f:06:39:dd:88:80:fd:84:d5:70:e7:8f:2f:22:d5:9b:44: f8:19:1e:67:05:e8:a5:07:db:cb:bd:cc:f7:db:0f:ef:7f:5b: 7a:e5:17:f4:b7:03:86:29:01:cb:f8:04:02:c9:65:45:a1:80: 2c:d1:f1:2b:7b:6f:80:94:a6:43:ad:e7:dd:f1:6f:f2:27:01: ab:1c:46:d4:f5:b3:8f:dc:47:2d:44:33:70:05:bb:40:ab:8c: 40:22:9d:25:6a:c4:8d:5c:59:9c:58:05:62:16:d9:7e:fd:71: 4a:f5:51:a0:f4:42:82:50:2f:b4:d2:1d:c7:92:72:c4:5b:d1: e1:ca:4d:52:c7:e3:68:c8:6a:18:ea:91:1d:8c:e7:bb:1f:af: be:b5:4d:b2:ab:3b:4b:25:7d:1a:ba:8c:51:5f:c1:7e:88:5c: 25:c9:50:e1:d3:05:ce:84:f6:6a:30:5a:cc:7a:b6:37:d2:5c: fb:21:ea:3d:a6:77:c1:18:a5:4d:c8:a1:94:da:4c:44:bf:d3: d4:67:5e:72:c0:d9:1b:5f:58:06:69:4b:aa:15:0e:5e:27:53: 79:3d:7d:37 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBq6Bd7dFoZtqkRZGAYUMSDKu9pMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yMzA5MjAxMjU1MTZaFw0yNDA5MTgxMzAwMTZaMDMxMTAvBgNV BAMTKEQwN0E5RDcyMTQ4OUMwODNDNDVGRjlDMUE2NDIxRUJCMEEwOUVBMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDMg3nSjXw/G+Wsa/YFmIe3mox 1xZxaNTyi0CfBrjKlcPG1oxm8R2N1rb8IsLJ7qk5L92+TzF9lboD7wSmpgWPaPsS myoBnrDGpCVdGgiWdp+J6Q8yu0A0XJwqihuQuTc42Ln8R3rheG5wK+DNWRDxzCTP 6E77gQWn7qX2v0Bmfb3Epeb6ohGV0H0Il9rflFeNTbAPbhrLi3ioAp3PNeBib3Ln awOuCThpiBU5iQxdj5ZGA4OJyMk4BWafNKAym1y6zcvspW6zPpzF9Ktjw+eCjpFh aQK0sMv5wCoA9x5YxsccGveg8EBxkfpEcsIN2EA/4iOMFoRz3FsWGq+5A67DAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0HqdchSJwIPEX/nBpkIeuwoJ6hUwHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMyMzAzMjJlMzkzMzJlMzEzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMzM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKXYIwDQYJKoZIhvcN AQELBQADggEBAFDugc6VncQG7WhhMzb/+cDsyFzd1x4fUse8X4I14LuyfHuYgE8P BjndiID9hNVw548vItWbRPgZHmcF6KUH28u9zPfbD+9/W3rlF/S3A4YpAcv4BALJ ZUWhgCzR8St7b4CUpkOt593xb/InAascRtT1s4/cRy1EM3AFu0CrjEAinSVqxI1c WZxYBWIW2X79cUr1UaD0QoJQL7TSHceScsRb0eHKTVLH42jIahjqkR2M57sfr761 TbKrO0slfRq6jFFfwX6IXCXJUOHTBc6E9mowWsx6tjfSXPsh6j2md8EYpU3IoZTa TES/09RnXnLA2RtfWAZpS6oVDl4nU3k9fTc= -----END CERTIFICATE-----Generated at Thu Apr 25 16:38:54 2024 by rpki-client on console-ams.rpki-client.org