$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa File: 3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa (raw, json) Hash identifier: YsA+/j1tFCB9bsSj+JNaO34WfNn2CY7KmvnD3wujoE8= Subject key identifier: C9:B9:A4:80:1F:49:04:BA:88:4B:FD:8E:F2:83:97:E9:0C:D7:40:9D Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 62D81B01626585ABC94945E011B28C162EA07A46 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa Signing time: Fri 22 Dec 2023 10:00:02 +0000 ROA not before: Fri 22 Dec 2023 09:55:02 +0000 ROA not after: Fri 20 Dec 2024 10:00:02 +0000 asID: 24211 IP address blocks: 203.190.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 19:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:d8:1b:01:62:65:85:ab:c9:49:45:e0:11:b2:8c:16:2e:a0:7a:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Dec 22 09:55:02 2023 GMT Not After : Dec 20 10:00:02 2024 GMT Subject: CN=C9B9A4801F4904BA884BFD8EF28397E90CD7409D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:29:1f:b9:88:c2:67:fc:bb:61:a7:17:6d:9e: f2:6f:ec:1a:40:2e:63:96:a3:a6:c5:3e:90:f8:ec: ab:ca:90:fa:d5:22:bf:c8:51:73:2b:0d:62:62:a5: a1:46:c1:cf:76:99:dd:23:48:99:8e:25:7c:ce:cf: b0:ff:83:d4:96:b8:c1:5d:ef:49:01:9b:9e:06:20: fd:84:7b:d8:b1:63:b2:55:ce:b2:19:c2:4b:ac:ea: f1:63:b4:06:b6:df:e7:6c:b7:6a:96:bd:f9:72:75: f6:dd:2a:64:42:e3:3d:a3:ea:65:f7:32:23:98:7e: 0e:9d:5a:0b:a7:7e:a0:57:0b:a1:18:9a:f6:ca:48: 42:a0:49:6e:8d:8f:50:de:34:d7:73:dc:b7:bf:3b: 74:c6:71:14:33:0c:af:eb:70:06:55:bc:c4:52:65: d6:58:ce:ba:91:a5:42:98:7b:65:a8:24:5c:d9:27: 8b:b0:91:65:ee:fc:cd:b0:f4:aa:f0:a4:e2:f9:7a: 4f:ac:60:c5:ff:fd:c7:f1:25:fa:14:cc:c1:de:2a: 66:fb:a0:6e:d1:52:8e:2c:59:92:d7:8d:6f:32:34: 95:9e:63:7f:ce:0d:ec:af:84:2c:93:0d:04:02:42: 5f:49:71:a4:7d:fa:6f:3c:d3:ac:5f:f1:55:69:1a: 35:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:B9:A4:80:1F:49:04:BA:88:4B:FD:8E:F2:83:97:E9:0C:D7:40:9D X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3230332e3139302e3234372e302f32342d3234203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.247.0/24 Signature Algorithm: sha256WithRSAEncryption 66:2e:aa:1f:f4:8f:96:b0:a8:0e:80:cf:c8:84:fb:64:3e:79: ea:5c:4c:13:56:23:c2:56:c8:c5:e6:bb:04:6e:75:c9:f8:9a: c8:26:ce:72:4e:78:a8:19:ef:d2:e8:b6:95:01:fb:31:23:43: 5d:be:c1:00:a8:8a:fd:f7:8d:8f:47:90:e8:1b:dc:56:6e:c8: 8b:40:18:5a:15:1d:da:11:bb:48:7a:8f:11:61:34:ea:73:52: 9a:be:51:24:bd:3e:2e:43:74:3d:b2:e9:b3:e7:f6:da:54:bf: 29:23:62:27:c5:15:ea:74:9a:e6:7d:ad:93:d7:e4:ff:7e:53: 26:1b:17:1b:e2:c8:38:34:a5:79:21:bf:16:f4:21:03:c2:a6: 15:43:19:73:0f:ae:25:ca:ca:f0:ee:3e:64:9a:39:67:5f:18: 36:50:58:d1:b2:62:17:d9:15:99:86:5d:ee:a0:d4:6b:cb:e9: 95:5a:e9:32:58:75:94:ed:35:2c:0b:9f:54:cf:52:dd:8a:f5: 35:51:3f:a4:c5:14:ff:54:12:30:da:cf:56:1c:45:a3:c2:71: 8e:e0:b4:77:2d:ab:e4:8b:31:5f:7e:19:a9:64:45:8d:c8:1d: e5:ed:dc:78:27:67:b2:09:c4:e9:44:94:4f:b4:98:f3:7a:b3: a4:75:5b:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYtgbAWJlhavJSUXgEbKMFi6gekYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yMzEyMjIwOTU1MDJaFw0yNDEyMjAxMDAwMDJaMDMxMTAvBgNV BAMTKEM5QjlBNDgwMUY0OTA0QkE4ODRCRkQ4RUYyODM5N0U5MENENzQwOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1KR+5iMJn/LthpxdtnvJv7BpA LmOWo6bFPpD47KvKkPrVIr/IUXMrDWJipaFGwc92md0jSJmOJXzOz7D/g9SWuMFd 70kBm54GIP2Ee9ixY7JVzrIZwkus6vFjtAa23+dst2qWvflydfbdKmRC4z2j6mX3 MiOYfg6dWgunfqBXC6EYmvbKSEKgSW6Nj1DeNNdz3Le/O3TGcRQzDK/rcAZVvMRS ZdZYzrqRpUKYe2WoJFzZJ4uwkWXu/M2w9KrwpOL5ek+sYMX//cfxJfoUzMHeKmb7 oG7RUo4sWZLXjW8yNJWeY3/ODeyvhCyTDQQCQl9JcaR9+m8806xf8VVpGjWJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUybmkgB9JBLqIS/2O8oOX6QzXQJ0wHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzAzMzJlMzEzOTMwMmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy773MA0GCSqG SIb3DQEBCwUAA4IBAQBmLqof9I+WsKgOgM/IhPtkPnnqXEwTViPCVsjF5rsEbnXJ +JrIJs5yTnioGe/S6LaVAfsxI0NdvsEAqIr9942PR5DoG9xWbsiLQBhaFR3aEbtI eo8RYTTqc1KavlEkvT4uQ3Q9sumz5/baVL8pI2InxRXqdJrmfa2T1+T/flMmGxcb 4sg4NKV5Ib8W9CEDwqYVQxlzD64lysrw7j5kmjlnXxg2UFjRsmIX2RWZhl3uoNRr y+mVWukyWHWU7TUsC59Uz1LdivU1UT+kxRT/VBIw2s9WHEWjwnGO4LR3LavkizFf fhmpZEWNyB3l7dx4J2eyCcTpRJRPtJjzerOkdVug -----END CERTIFICATE-----Generated at Sat Apr 27 13:32:23 2024 by rpki-client on console-ams.rpki-client.org