$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa File: 3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: KNm4G5GM1gZZqmxkvI+vthvENxFGkuZ2YSCF58tqv8k= Subject key identifier: BE:E8:1A:98:25:5D:AD:38:ED:47:75:96:66:CF:B8:AD:CC:86:11:5D Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 6471A2A38AD7112E0DA5E0C09E22DDDE8BB37992 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa Signing time: Fri 22 Dec 2023 10:00:00 +0000 ROA not before: Fri 22 Dec 2023 09:55:00 +0000 ROA not after: Fri 20 Dec 2024 10:00:00 +0000 asID: 24211 IP address blocks: 203.190.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 19:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:71:a2:a3:8a:d7:11:2e:0d:a5:e0:c0:9e:22:dd:de:8b:b3:79:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Dec 22 09:55:00 2023 GMT Not After : Dec 20 10:00:00 2024 GMT Subject: CN=BEE81A98255DAD38ED47759666CFB8ADCC86115D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3e:8a:3a:ea:46:ac:8e:a9:1b:6c:f3:1c:43: 36:6c:54:be:38:63:71:d6:7c:e8:a2:c4:8e:de:3a: 72:c6:d9:21:ab:9d:ce:dc:91:5d:ab:7c:98:9e:13: 5d:68:34:1e:df:01:bd:6c:36:17:be:10:a5:77:8c: 0f:89:b4:0e:aa:f2:64:11:95:ba:c6:0e:da:06:2c: 8c:28:f8:3a:04:58:c7:52:86:6a:15:b1:74:e3:e6: 30:5b:1c:27:3e:b0:da:9a:41:3c:df:71:44:71:8d: fd:d2:48:38:ae:f9:1b:6f:80:1c:8e:51:6d:58:bc: 52:61:04:a1:3a:2e:ef:97:07:bb:c5:53:33:f0:2e: 3e:dd:e9:b1:bb:da:bc:50:7e:fc:c1:bc:13:c9:7f: c2:3b:41:b9:c4:5e:5c:7f:e3:41:29:ce:c5:ee:df: ae:b6:3b:7a:a8:42:7c:76:14:f2:60:16:96:d2:11: 08:74:b3:b6:72:2a:95:d0:df:40:68:a2:1d:82:5e: 3c:53:ad:d1:56:54:c8:51:c6:6f:8e:36:9f:80:1c: ac:a6:2b:cf:7e:55:a4:30:b3:03:7e:15:ba:0e:d3: 3a:d2:2b:9a:86:d4:fb:7b:e0:ee:5a:1a:74:0b:37: b9:66:99:93:59:c7:94:d4:58:49:f5:95:be:df:4c: 49:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E8:1A:98:25:5D:AD:38:ED:47:75:96:66:CF:B8:AD:CC:86:11:5D X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234342e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.244.0/23 Signature Algorithm: sha256WithRSAEncryption 51:da:59:73:60:d9:b4:db:eb:29:e7:c4:37:6a:5b:02:a5:71: 81:74:e2:ee:0b:e8:75:7e:e1:97:61:f1:da:88:e0:2d:ec:d9: d2:98:22:96:50:b9:b3:89:8d:3e:95:d3:cb:67:f2:b6:05:df: 09:d4:1f:fd:36:67:66:a9:a5:cf:11:48:fc:72:de:3c:d0:1c: 97:3c:51:28:d9:a0:8c:70:73:ee:48:71:50:8a:ae:09:df:fd: fd:1e:b3:93:f5:eb:d6:e3:0b:21:62:aa:10:24:94:43:92:65: b6:d7:3c:cb:30:f5:41:7e:f5:02:9a:22:86:c7:8d:bd:4f:4c: 88:cb:ed:b8:eb:45:fb:42:6d:9d:9c:54:d0:49:f4:98:53:9a: ff:c5:91:1d:b0:86:18:ca:55:b8:3b:54:da:c2:8b:d4:cf:71: db:58:bd:97:98:5a:f8:38:41:45:f8:df:a1:89:ca:9a:4e:39: 99:f9:5e:a3:7e:b6:b5:4f:ff:1b:87:aa:83:4f:3a:44:23:c9: df:fb:ca:48:7f:6d:d9:65:fc:bf:9b:07:cb:cd:a6:5e:f6:a3: 92:db:25:3d:64:47:38:09:0b:34:48:d7:9e:70:24:89:3f:72: b6:fe:b7:9f:7f:a9:00:87:56:81:69:2f:9f:51:6e:85:f2:7f: b0:c1:29:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZHGio4rXES4NpeDAniLd3ouzeZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yMzEyMjIwOTU1MDBaFw0yNDEyMjAxMDAwMDBaMDMxMTAvBgNV BAMTKEJFRTgxQTk4MjU1REFEMzhFRDQ3NzU5NjY2Q0ZCOEFEQ0M4NjExNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMPoo66kasjqkbbPMcQzZsVL44 Y3HWfOiixI7eOnLG2SGrnc7ckV2rfJieE11oNB7fAb1sNhe+EKV3jA+JtA6q8mQR lbrGDtoGLIwo+DoEWMdShmoVsXTj5jBbHCc+sNqaQTzfcURxjf3SSDiu+RtvgByO UW1YvFJhBKE6Lu+XB7vFUzPwLj7d6bG72rxQfvzBvBPJf8I7QbnEXlx/40EpzsXu 3662O3qoQnx2FPJgFpbSEQh0s7ZyKpXQ30Booh2CXjxTrdFWVMhRxm+ONp+AHKym K89+VaQwswN+FboO0zrSK5qG1Pt74O5aGnQLN7lmmZNZx5TUWEn1lb7fTEldAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvugamCVdrTjtR3WWZs+4rcyGEV0wHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy770MA0GCSqG SIb3DQEBCwUAA4IBAQBR2llzYNm02+sp58Q3alsCpXGBdOLuC+h1fuGXYfHaiOAt 7NnSmCKWULmziY0+ldPLZ/K2Bd8J1B/9NmdmqaXPEUj8ct480ByXPFEo2aCMcHPu SHFQiq4J3/39HrOT9evW4wshYqoQJJRDkmW21zzLMPVBfvUCmiKGx429T0yIy+24 60X7Qm2dnFTQSfSYU5r/xZEdsIYYylW4O1TawovUz3HbWL2XmFr4OEFF+N+hicqa TjmZ+V6jfra1T/8bh6qDTzpEI8nf+8pIf23ZZfy/mwfLzaZe9qOS2yU9ZEc4CQs0 SNeecCSJP3K2/reff6kAh1aBaS+fUW6F8n+wwSn4 -----END CERTIFICATE-----Generated at Sat Apr 27 13:32:23 2024 by rpki-client on console-ams.rpki-client.org