$ rpki-client -vvf repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa File: 3230322e39332e3131322e302f32302d3234203d3e203233363936.roa (raw, json) Hash identifier: uGNGX0gb9G6yd2U9880VciLDr8fQaRNDLzrDEY5gb6Q= Subject key identifier: 77:A5:77:6B:E9:46:2C:DD:8B:0B:A6:4A:38:F3:28:84:5B:FB:8A:30 Certificate issuer: /CN=3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0 Certificate serial: 15BE608AA4A1EC278A7626A844E99EBA0B2B5239 Authority key identifier: 3D:1D:44:97:31:55:6F:8E:14:51:DE:65:BB:2E:0F:88:EF:CE:0C:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa Signing time: Mon 31 Jul 2023 00:06:30 +0000 ROA not before: Mon 31 Jul 2023 00:01:30 +0000 ROA not after: Mon 29 Jul 2024 00:06:30 +0000 asID: 23696 IP address blocks: 202.93.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.crl rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:be:60:8a:a4:a1:ec:27:8a:76:26:a8:44:e9:9e:ba:0b:2b:52:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0 Validity Not Before: Jul 31 00:01:30 2023 GMT Not After : Jul 29 00:06:30 2024 GMT Subject: CN=77A5776BE9462CDD8B0BA64A38F328845BFB8A30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ec:1d:03:0c:a0:96:67:dc:e3:e9:84:26:17: f4:5e:2c:5a:d4:a9:51:0f:18:93:bb:24:1d:95:59: c0:ff:95:ea:f0:26:d3:5a:33:9c:99:86:87:f1:f9: 82:64:38:c9:68:e1:09:b4:ac:24:24:ee:67:85:7e: 0c:1f:14:1d:6e:9d:30:78:1a:9d:7d:c5:52:2f:fb: 96:83:74:c0:d6:b2:2b:dd:d8:01:c5:7a:49:34:ef: 9b:69:ba:3c:a0:38:1b:08:c0:42:ab:a7:b7:67:64: 87:9b:3f:05:4a:96:42:e8:d9:ab:0e:a9:e8:39:ee: ec:c2:3a:5d:4c:8e:67:c0:6f:23:01:c7:7e:84:1b: 30:fc:9b:23:12:92:96:ea:3c:f6:fe:32:72:91:64: b1:2d:0f:11:f6:14:71:a7:6a:a6:dd:cd:51:0e:39: c3:21:32:3d:4e:69:61:22:ae:17:ff:69:13:f6:b4: 52:be:ff:4c:78:c8:14:aa:b4:b2:ed:d0:89:66:63: bb:01:4d:62:1e:ef:4f:f8:5a:53:a0:66:5f:46:be: d6:be:a4:a5:12:cb:b0:59:bb:19:e9:01:4a:5e:20: 64:6b:36:fb:08:ac:a4:ad:ab:a7:b5:df:b7:23:8e: 20:0a:1e:08:14:4f:d9:fe:47:fa:f0:86:58:0d:a7: 1f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A5:77:6B:E9:46:2C:DD:8B:0B:A6:4A:38:F3:28:84:5B:FB:8A:30 X509v3 Authority Key Identifier: keyid:3D:1D:44:97:31:55:6F:8E:14:51:DE:65:BB:2E:0F:88:EF:CE:0C:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D1D449731556F8E1451DE65BB2E0F88EFCE0CA0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38c7396c-4bbe-4c6e-8f50-442c205e070c/0/3230322e39332e3131322e302f32302d3234203d3e203233363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.112.0/20 Signature Algorithm: sha256WithRSAEncryption 51:f4:de:d3:e3:4d:e6:8f:75:79:bb:f4:b3:e8:b6:46:cc:72: 6e:52:4b:c1:51:70:23:49:51:86:df:14:8c:62:e0:24:54:74: ad:66:30:95:d5:03:ff:ee:79:69:38:d1:ec:86:20:84:7f:1b: a9:ec:18:5b:c0:16:13:88:0b:08:aa:09:18:cd:b7:8b:2f:93: 0c:cd:cd:dd:0b:8e:60:c7:82:5a:95:7c:12:56:1c:ec:b4:32: ee:b4:5d:b9:82:76:f4:c5:99:82:2c:6b:14:68:23:78:e6:8d: 04:f3:12:b4:7d:63:2f:11:12:9b:8e:9b:ad:05:4e:73:2d:79: 3e:52:72:74:6a:6f:b9:18:73:67:74:bc:68:b2:0b:22:5d:46: 9d:69:ad:f8:bc:92:a3:ca:9f:b0:f4:6d:7e:6c:e4:ee:6c:b8: e6:8c:16:3b:08:7c:98:b6:89:df:03:7b:57:89:91:56:b7:e4: c5:48:c1:e4:a3:a3:ca:0f:bf:26:78:37:da:47:9a:1c:11:c5: 80:08:cf:fa:54:23:da:29:47:04:3b:12:c9:ee:60:b0:88:eb: cc:7d:ff:19:98:fe:67:51:12:ab:6e:92:25:88:4e:0b:be:ce: 8d:8a:7e:ff:d6:79:f1:e4:99:99:c0:10:b2:f9:5d:6d:a5:f7: 4d:93:80:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFb5giqSh7CeKdiaoROmeugsrUjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxRDQ0OTczMTU1NkY4RTE0NTFERTY1QkIyRTBGODhF RkNFMENBMDAeFw0yMzA3MzEwMDAxMzBaFw0yNDA3MjkwMDA2MzBaMDMxMTAvBgNV BAMTKDc3QTU3NzZCRTk0NjJDREQ4QjBCQTY0QTM4RjMyODg0NUJGQjhBMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi7B0DDKCWZ9zj6YQmF/ReLFrU qVEPGJO7JB2VWcD/lerwJtNaM5yZhofx+YJkOMlo4Qm0rCQk7meFfgwfFB1unTB4 Gp19xVIv+5aDdMDWsivd2AHFekk075tpujygOBsIwEKrp7dnZIebPwVKlkLo2asO qeg57uzCOl1MjmfAbyMBx36EGzD8myMSkpbqPPb+MnKRZLEtDxH2FHGnaqbdzVEO OcMhMj1OaWEirhf/aRP2tFK+/0x4yBSqtLLt0IlmY7sBTWIe70/4WlOgZl9Gvta+ pKUSy7BZuxnpAUpeIGRrNvsIrKStq6e137cjjiAKHggUT9n+R/rwhlgNpx+fAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUd6V3a+lGLN2LC6ZKOPMohFv7ijAwHwYDVR0j BBgwFoAUPR1ElzFVb44UUd5luy4PiO/ODKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OGM3Mzk2Yy00YmJlLTRjNmUtOGY1MC00NDJjMjA1ZTA3MGMvMC8zRDFENDQ5NzMx NTU2RjhFMTQ1MURFNjVCQjJFMEY4OEVGQ0UwQ0EwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxRDQ0OTczMTU1NkY4RTE0NTFERTY1QkIyRTBGODhFRkNF MENBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzczOTZjLTRiYmUtNGM2ZS04 ZjUwLTQ0MmMyMDVlMDcwYy8wLzMyMzAzMjJlMzkzMzJlMzEzMTMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpdcDANBgkqhkiG 9w0BAQsFAAOCAQEAUfTe0+NN5o91ebv0s+i2RsxyblJLwVFwI0lRht8UjGLgJFR0 rWYwldUD/+55aTjR7IYghH8bqewYW8AWE4gLCKoJGM23iy+TDM3N3QuOYMeCWpV8 ElYc7LQy7rRduYJ29MWZgixrFGgjeOaNBPMStH1jLxESm46brQVOcy15PlJydGpv uRhzZ3S8aLILIl1GnWmt+LySo8qfsPRtfmzk7my45owWOwh8mLaJ3wN7V4mRVrfk xUjB5KOjyg+/Jng32keaHBHFgAjP+lQj2ilHBDsSye5gsIjrzH3/GZj+Z1ESq26S JYhOC77OjYp+/9Z58eSZmcAQsvldbaX3TZOAkw== -----END CERTIFICATE-----Generated at Fri May 3 22:32:52 2024 by rpki-client on console-fra.rpki-client.org