$ rpki-client -vvf repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e20313339333831.roa File: 3230322e34372e3138382e302f32332d3234203d3e20313339333831.roa (raw, json) Hash identifier: iJZH2f60r6g0fM72VR8vN53pRCQ+r2WLlBbwX71jBi0= Subject key identifier: B7:A7:0F:D7:AA:7D:17:C3:7F:92:96:F0:F1:7F:23:95:FD:C3:93:1E Certificate issuer: /CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Certificate serial: 0FFD934CB51F094B0B83ECD91016770E4EB3F504 Authority key identifier: 79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e20313339333831.roa Signing time: Sat 16 Dec 2023 05:07:00 +0000 ROA not before: Sat 16 Dec 2023 05:02:00 +0000 ROA not after: Sat 14 Dec 2024 05:07:00 +0000 asID: 139381 IP address blocks: 202.47.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 03:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:fd:93:4c:b5:1f:09:4b:0b:83:ec:d9:10:16:77:0e:4e:b3:f5:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E Validity Not Before: Dec 16 05:02:00 2023 GMT Not After : Dec 14 05:07:00 2024 GMT Subject: CN=B7A70FD7AA7D17C37F9296F0F17F2395FDC3931E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ea:9f:90:1a:4f:c9:be:29:8f:27:d4:07:e2: d5:b2:8e:7d:4e:84:4c:fd:73:0d:2f:fc:80:e5:2b: f4:fc:4a:83:d7:a1:30:c0:69:f3:00:e1:fa:79:54: ae:1c:6f:36:db:bb:59:ac:95:12:1a:7f:ce:2d:e1: 2b:6f:4e:d6:2a:26:8f:f4:04:2d:ca:8f:36:27:d4: 96:a5:f8:b1:ac:14:81:8e:68:48:a5:56:a4:64:24: 7f:6c:70:e2:58:8c:da:9c:2f:85:e7:c9:c5:38:32: 98:65:57:4e:3e:1a:1a:ff:15:b3:0f:20:87:ca:8a: 4b:9a:ae:2c:77:5a:ba:f6:18:98:1f:2e:25:30:82: e8:ea:8d:e7:0c:83:de:bd:16:f0:79:98:55:55:43: 7f:70:8c:94:d4:38:5a:3e:58:05:6e:58:3a:53:4e: d5:f8:2d:b2:7e:8c:00:da:78:e7:d4:39:88:bb:50: 58:2b:1f:ab:41:26:df:bf:05:57:78:98:d2:06:bf: 7d:13:4e:e8:4d:b2:a6:10:60:23:f4:5b:65:27:c6: a5:2c:05:7c:2c:6d:b4:c1:e2:08:59:47:33:c1:43: 60:96:e2:57:71:e6:6e:fa:60:3c:5f:de:d4:6a:e8: 49:86:d7:96:3d:91:8b:19:e3:e6:3d:b8:9f:3c:af: 6d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A7:0F:D7:AA:7D:17:C3:7F:92:96:F0:F1:7F:23:95:FD:C3:93:1E X509v3 Authority Key Identifier: keyid:79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.188.0/23 Signature Algorithm: sha256WithRSAEncryption aa:54:c2:ab:0e:c1:55:c2:4f:b4:1b:63:0b:5b:05:a4:3b:ff: 44:dc:d6:af:e7:fa:43:7a:04:b5:4d:f3:91:2a:21:a1:a2:1a: 57:00:e4:e7:b7:ae:0d:17:d1:3c:d1:a6:2c:13:f1:27:63:79: a7:e8:7d:07:8f:e4:73:fd:28:f6:db:cc:1f:b9:86:da:2b:09: 5f:67:cb:37:74:03:f4:9a:22:c4:5a:f1:11:ca:50:9c:7b:27: f2:b6:bf:fb:fa:bf:ac:cd:76:32:ee:61:19:66:b9:4b:cc:0e: b6:1c:e6:55:2e:54:a7:e4:d7:d3:f6:0a:e4:36:31:e9:d1:04: 65:97:d9:27:f5:36:a2:e7:23:df:f6:1f:42:64:2d:96:80:0a: 56:34:b6:fe:27:39:66:8a:6f:10:5f:0f:8e:39:4a:30:38:6a: cc:85:9d:02:4e:bd:13:b8:b4:d0:98:02:79:b4:ca:8c:64:72: e3:19:a2:57:6b:d9:9b:da:aa:40:4a:cc:2c:79:a8:07:e1:12: a2:ea:a9:24:c3:39:e2:9a:89:a1:2c:a7:9c:c1:37:46:5f:3c: 3c:74:95:99:75:5a:fd:e4:35:77:9b:91:64:b7:15:c1:cd:a4: ba:dd:0e:a7:fc:06:4d:33:97:b8:dc:4b:a0:4a:70:9d:5b:0a: e8:e1:c6:94 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD/2TTLUfCUsLg+zZEBZ3Dk6z9QQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NG NkVGRjY1RTAeFw0yMzEyMTYwNTAyMDBaFw0yNDEyMTQwNTA3MDBaMDMxMTAvBgNV BAMTKEI3QTcwRkQ3QUE3RDE3QzM3RjkyOTZGMEYxN0YyMzk1RkRDMzkzMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS6p+QGk/JvimPJ9QH4tWyjn1O hEz9cw0v/IDlK/T8SoPXoTDAafMA4fp5VK4cbzbbu1mslRIaf84t4StvTtYqJo/0 BC3KjzYn1Jal+LGsFIGOaEilVqRkJH9scOJYjNqcL4XnycU4MphlV04+Ghr/FbMP IIfKikuarix3Wrr2GJgfLiUwgujqjecMg969FvB5mFVVQ39wjJTUOFo+WAVuWDpT TtX4LbJ+jADaeOfUOYi7UFgrH6tBJt+/BVd4mNIGv30TTuhNsqYQYCP0W2UnxqUs BXwsbbTB4ghZRzPBQ2CW4ldx5m76YDxf3tRq6EmG15Y9kYsZ4+Y9uJ88r23DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUt6cP16p9F8N/kpbw8X8jlf3Dkx4wHwYDVR0j BBgwFoAUeb0HXRvEvYrgwm79LTcizPbv9l4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZWU5NDAxNC04N2ZhLTRiYzItYjFjNi03ZmQyYTg5NDc2ZjMvMC83OUJEMDc1RDFC QzRCRDhBRTBDMjZFRkQyRDM3MjJDQ0Y2RUZGNjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzlCRDA3NUQxQkM0QkQ4QUUwQzI2RUZEMkQzNzIyQ0NGNkVG RjY1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlZTk0MDE0LTg3ZmEtNGJjMi1i MWM2LTdmZDJhODk0NzZmMy8wLzMyMzAzMjJlMzQzNzJlMzEzODM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByi+8MA0GCSqG SIb3DQEBCwUAA4IBAQCqVMKrDsFVwk+0G2MLWwWkO/9E3Nav5/pDegS1TfORKiGh ohpXAOTnt64NF9E80aYsE/EnY3mn6H0Hj+Rz/Sj228wfuYbaKwlfZ8s3dAP0miLE WvERylCceyfytr/7+r+szXYy7mEZZrlLzA62HOZVLlSn5NfT9grkNjHp0QRll9kn 9Tai5yPf9h9CZC2WgApWNLb+Jzlmim8QXw+OOUowOGrMhZ0CTr0TuLTQmAJ5tMqM ZHLjGaJXa9mb2qpASswseagH4RKi6qkkwznimomhLKecwTdGXzw8dJWZdVr95DV3 m5FktxXBzaS63Q6n/AZNM5e43EugSnCdWwro4caU -----END CERTIFICATE-----Generated at Sun Jun 23 20:05:22 2024 by rpki-client on console-fra.rpki-client.org