$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32362e302f32342d3234203d3e20313431383932.roa File: 3230322e37332e32362e302f32342d3234203d3e20313431383932.roa (raw, json) Hash identifier: XTM8Ailr6RtSW4cskbTbVCpEfh01H/G8flCgrKMGHo4= Subject key identifier: 04:EC:4F:D6:95:3E:2B:15:85:4C:A5:03:6E:6B:17:BA:17:0D:96:99 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 0AE36BE18CB98B1D09E0241DF90BAF85B20FC434 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32362e302f32342d3234203d3e20313431383932.roa Signing time: Mon 06 Nov 2023 01:00:02 +0000 ROA not before: Mon 06 Nov 2023 00:55:02 +0000 ROA not after: Mon 04 Nov 2024 01:00:02 +0000 asID: 141892 IP address blocks: 202.73.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:e3:6b:e1:8c:b9:8b:1d:09:e0:24:1d:f9:0b:af:85:b2:0f:c4:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Nov 6 00:55:02 2023 GMT Not After : Nov 4 01:00:02 2024 GMT Subject: CN=04EC4FD6953E2B15854CA5036E6B17BA170D9699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ab:f2:5b:99:2a:dd:cb:07:24:57:97:77:c2: 1d:46:1e:3e:cf:96:b6:69:2b:aa:72:f8:a6:86:da: 28:f9:a9:11:27:5f:98:d1:1e:57:dc:a2:72:ad:b8: 64:33:4b:0f:ac:b3:d0:d9:e7:16:c0:09:b7:21:f6: 52:e2:02:a6:2e:06:1f:44:f2:75:08:6d:68:c6:6a: 6a:0b:96:34:90:e6:d4:18:84:4e:ee:9e:4d:44:25: 07:45:3b:05:ab:6b:e9:59:1c:f9:13:20:9b:15:6c: 0d:aa:5a:0d:cb:d2:e8:a4:ff:c6:db:81:ab:6c:0a: c1:c1:2c:1a:b3:72:0d:77:ab:f6:fa:cd:32:63:5b: 1b:43:98:33:b2:2d:bc:55:da:db:ba:84:f6:b3:0f: 7d:d5:20:37:90:78:f9:45:f7:5e:a6:94:bc:95:a0: 1a:1c:1b:bf:b7:76:49:c4:e6:63:64:9c:40:0b:90: 01:30:23:8a:e6:96:51:6e:a2:38:44:30:ae:53:20: d8:23:97:93:fd:76:f1:cf:ce:7e:ce:08:ca:7c:56: b6:9d:00:b1:e9:c0:79:fa:f7:0f:e9:03:a0:83:c3: d5:a6:e5:d2:68:75:3b:67:d6:d3:b7:9f:34:a2:62: 8f:b6:d9:db:70:89:87:eb:97:30:32:88:95:eb:76: 0f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:EC:4F:D6:95:3E:2B:15:85:4C:A5:03:6E:6B:17:BA:17:0D:96:99 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/3230322e37332e32362e302f32342d3234203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.26.0/24 Signature Algorithm: sha256WithRSAEncryption 57:14:1b:1c:45:d7:a6:4d:7f:6c:e8:90:88:a8:85:a0:7c:d6: 1c:db:2c:f9:1e:7f:f4:9e:48:36:01:11:35:17:ba:c6:23:06: c5:7d:a8:69:b0:c9:63:b8:ad:38:fe:e0:0f:c8:5b:ad:74:27: 5f:1f:5a:27:e8:43:1b:cf:21:90:af:01:eb:64:dd:f8:ea:ff: 0a:02:cc:11:fa:b1:3f:3f:91:e4:b1:8b:2a:41:00:cd:82:87: cf:9e:1b:f3:0c:0e:7a:f0:fd:0e:d0:69:98:81:93:cb:ba:27: 82:2b:cd:dc:f4:34:e9:aa:ca:e7:d0:1c:24:79:2a:9c:3b:9a: b9:18:59:f2:b5:61:a1:30:7b:3d:fa:10:7a:af:c6:b6:fa:88: 6f:42:08:5e:84:62:12:46:e5:99:f1:b1:73:e5:36:58:9c:67: 14:43:0d:4e:b7:bf:04:78:1d:69:72:01:3d:ce:d1:2f:da:9a: 16:e0:28:94:a1:4b:a6:28:e0:94:51:2d:77:11:08:2c:0b:38: 93:ad:66:90:de:d3:72:93:9b:12:3d:6b:13:cf:62:d5:ff:c6: 25:22:99:41:ea:0a:fd:56:ae:0d:82:61:d7:9d:14:05:e8:07: aa:01:a6:da:e7:9e:23:22:9b:01:fe:8e:7e:40:71:9f:a7:34: 53:33:3d:43 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCuNr4Yy5ix0J4CQd+QuvhbIPxDQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzExMDYwMDU1MDJaFw0yNDExMDQwMTAwMDJaMDMxMTAvBgNV BAMTKDA0RUM0RkQ2OTUzRTJCMTU4NTRDQTUwMzZFNkIxN0JBMTcwRDk2OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuq/JbmSrdywckV5d3wh1GHj7P lrZpK6py+KaG2ij5qREnX5jRHlfconKtuGQzSw+ss9DZ5xbACbch9lLiAqYuBh9E 8nUIbWjGamoLljSQ5tQYhE7unk1EJQdFOwWra+lZHPkTIJsVbA2qWg3L0uik/8bb gatsCsHBLBqzcg13q/b6zTJjWxtDmDOyLbxV2tu6hPazD33VIDeQePlF916mlLyV oBocG7+3dknE5mNknEALkAEwI4rmllFuojhEMK5TINgjl5P9dvHPzn7OCMp8Vrad ALHpwHn69w/pA6CDw9Wm5dJodTtn1tO3nzSiYo+22dtwiYfrlzAyiJXrdg+hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBOxP1pU+KxWFTKUDbmsXuhcNlpkwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzAzMjJlMzczMzJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpJGjANBgkqhkiG 9w0BAQsFAAOCAQEAVxQbHEXXpk1/bOiQiKiFoHzWHNss+R5/9J5INgERNRe6xiMG xX2oabDJY7itOP7gD8hbrXQnXx9aJ+hDG88hkK8B62Td+Or/CgLMEfqxPz+R5LGL KkEAzYKHz54b8wwOevD9DtBpmIGTy7ongivN3PQ06arK59AcJHkqnDuauRhZ8rVh oTB7PfoQeq/GtvqIb0IIXoRiEkblmfGxc+U2WJxnFEMNTre/BHgdaXIBPc7RL9qa FuAolKFLpijglFEtdxEILAs4k61mkN7TcpObEj1rE89i1f/GJSKZQeoK/VauDYJh 150UBegHqgGm2ueeIyKbAf6OfkBxn6c0UzM9Qw== -----END CERTIFICATE-----Generated at Tue Apr 30 15:50:30 2024 by rpki-client on console-fra.rpki-client.org