$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa File: 3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa (raw, json) Hash identifier: 6USpnm/t9VPis7xrY17Gn1DxTkI3bm7AR9AISm2aQkc= Subject key identifier: 36:0B:02:29:DE:4E:4D:EB:45:B5:4C:40:83:13:8A:5B:F0:64:DC:7C Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 2B200E39118FE7955400F4654A9EE1BCA7A45DAB Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa Signing time: Fri 22 Dec 2023 10:00:01 +0000 ROA not before: Fri 22 Dec 2023 09:55:01 +0000 ROA not after: Fri 20 Dec 2024 10:00:01 +0000 asID: 24211 IP address blocks: 203.190.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 19:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:20:0e:39:11:8f:e7:95:54:00:f4:65:4a:9e:e1:bc:a7:a4:5d:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Dec 22 09:55:01 2023 GMT Not After : Dec 20 10:00:01 2024 GMT Subject: CN=360B0229DE4E4DEB45B54C4083138A5BF064DC7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:06:8f:4f:81:d6:60:e3:3b:59:d4:fe:b4:22: 65:14:51:a1:a7:3f:44:69:30:a6:fa:a0:c7:5b:61: c0:ba:23:49:d9:9b:d4:6e:19:22:f1:85:b1:e0:98: b5:08:ab:32:29:75:8e:8c:37:a4:a3:12:89:31:2b: d2:b8:07:0d:5a:02:eb:26:4c:80:a1:36:1e:39:bf: 1c:fa:f3:79:4f:90:57:f5:54:76:10:16:61:06:09: f1:b7:f9:38:44:c9:38:fd:3c:ff:44:7b:3b:fd:62: 30:72:c4:23:ef:8e:76:d7:31:a4:06:dd:82:6c:20: 2b:80:af:42:b8:e5:32:0b:c3:ff:9c:c1:95:2c:36: 07:79:6e:3d:71:2f:2e:19:f3:67:db:92:07:87:0f: 8e:2e:ee:b9:bf:a2:cd:c0:cc:7e:70:69:27:16:13: 81:dc:05:2f:c6:01:d8:d4:34:af:53:3d:ce:19:22: 66:b0:41:bb:2a:d6:45:29:79:78:b1:b1:4a:6e:12: a7:ef:d1:2c:90:8f:8a:0a:e3:9a:36:9a:8f:56:ec: 76:26:2a:94:ea:d3:e7:65:8d:17:43:b2:11:c2:6e: 49:a8:76:10:c9:8d:51:fd:99:8f:ef:b9:e2:53:cd: 04:de:52:43:7f:5c:b5:dd:9b:ae:d1:ae:66:a6:c1: 42:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:0B:02:29:DE:4E:4D:EB:45:B5:4C:40:83:13:8A:5B:F0:64:DC:7C X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234302e302f32312d3231203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.240.0/21 Signature Algorithm: sha256WithRSAEncryption 57:e4:1c:a4:d9:20:21:92:de:0a:b6:77:6b:e3:17:99:72:83: 9b:fa:37:c9:66:d8:2e:2c:01:da:cc:b1:ad:b5:ee:1f:ff:5a: 99:64:1e:ff:dc:2b:0f:0c:d5:f4:87:7b:e8:3a:50:b7:3e:c9: 5e:82:4e:6d:c0:b0:52:49:bc:e7:e8:ff:62:dc:25:8f:2e:58: ae:1f:48:d0:1d:b3:88:0c:c7:80:98:34:03:e4:84:32:fb:6c: 7c:67:91:cf:fc:d1:6c:b6:a4:8b:a2:5f:a5:15:07:5d:e0:14: e7:ce:2a:2e:5a:fe:07:c5:5b:2f:95:2e:e7:bf:ec:b5:c2:11: 3f:97:43:f1:37:44:2b:f4:de:7d:c2:1d:1b:fe:6c:b3:6a:9c: 24:49:0f:28:ff:cd:b8:f4:26:a8:15:8f:a2:c4:fd:67:31:48: 15:2c:a1:b2:49:0f:f8:4f:b7:71:0c:f9:a4:ee:ed:c9:67:a2: 51:4e:eb:10:dd:ba:48:05:1c:75:69:a7:28:6f:68:1c:b9:75: 6c:50:ca:75:b3:a7:95:6a:51:cf:da:70:6e:63:4c:39:14:85: 12:ed:95:c4:e7:6c:db:db:01:68:dc:7c:70:a5:95:99:ab:82: e9:d3:d6:c3:f5:5b:f9:d9:f6:66:86:56:4e:0c:59:cf:38:38: b1:75:2d:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKyAOORGP55VUAPRlSp7hvKekXaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yMzEyMjIwOTU1MDFaFw0yNDEyMjAxMDAwMDFaMDMxMTAvBgNV BAMTKDM2MEIwMjI5REU0RTRERUI0NUI1NEM0MDgzMTM4QTVCRjA2NERDN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuBo9PgdZg4ztZ1P60ImUUUaGn P0RpMKb6oMdbYcC6I0nZm9RuGSLxhbHgmLUIqzIpdY6MN6SjEokxK9K4Bw1aAusm TIChNh45vxz683lPkFf1VHYQFmEGCfG3+ThEyTj9PP9Eezv9YjByxCPvjnbXMaQG 3YJsICuAr0K45TILw/+cwZUsNgd5bj1xLy4Z82fbkgeHD44u7rm/os3AzH5waScW E4HcBS/GAdjUNK9TPc4ZImawQbsq1kUpeXixsUpuEqfv0SyQj4oK45o2mo9W7HYm KpTq0+dljRdDshHCbkmodhDJjVH9mY/vueJTzQTeUkN/XLXdm67RrmamwUK3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNgsCKd5OTetFtUxAgxOKW/Bk3HwwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzAyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy77wMA0GCSqG SIb3DQEBCwUAA4IBAQBX5Byk2SAhkt4Ktndr4xeZcoOb+jfJZtguLAHazLGtte4f /1qZZB7/3CsPDNX0h3voOlC3Pslegk5twLBSSbzn6P9i3CWPLliuH0jQHbOIDMeA mDQD5IQy+2x8Z5HP/NFstqSLol+lFQdd4BTnziouWv4HxVsvlS7nv+y1whE/l0Px N0Qr9N59wh0b/myzapwkSQ8o/8249CaoFY+ixP1nMUgVLKGySQ/4T7dxDPmk7u3J Z6JRTusQ3bpIBRx1aacob2gcuXVsUMp1s6eValHP2nBuY0w5FIUS7ZXE52zb2wFo 3HxwpZWZq4Lp09bD9Vv52fZmhlZODFnPODixdS2N -----END CERTIFICATE-----Generated at Sat Apr 27 13:32:23 2024 by rpki-client on console-ams.rpki-client.org