$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234342e302f32322d3234203d3e203338373738.roa File: 3230322e39332e3234342e302f32322d3234203d3e203338373738.roa (raw, json) Hash identifier: P1xOtDQhxWVv3b3q6iKa4zV1ePD95j5Pm/uXOZJSF6E= Subject key identifier: 0B:71:AC:9F:23:F8:D6:73:0C:8B:D8:15:8E:30:E6:91:56:96:11:14 Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 78F79B597025AED514D6973CDC20126416A11AFA Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234342e302f32322d3234203d3e203338373738.roa Signing time: Fri 02 Jun 2023 03:00:00 +0000 ROA not before: Fri 02 Jun 2023 02:55:00 +0000 ROA not after: Fri 31 May 2024 03:00:00 +0000 asID: 38778 IP address blocks: 202.93.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:f7:9b:59:70:25:ae:d5:14:d6:97:3c:dc:20:12:64:16:a1:1a:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Jun 2 02:55:00 2023 GMT Not After : May 31 03:00:00 2024 GMT Subject: CN=0B71AC9F23F8D6730C8BD8158E30E69156961114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:22:a4:f8:e0:e3:ae:93:9c:2a:af:e2:b2:ae: 9e:d6:cc:bb:42:59:46:9b:f1:23:96:a1:ca:48:7d: 2f:be:2a:64:47:7b:62:e5:f8:d2:e2:c8:ab:86:d9: 14:66:c2:7f:a2:11:83:4a:7b:10:1e:86:49:7d:62: 63:99:1d:c5:8f:14:f5:7e:34:6b:6d:a8:d2:35:79: f1:e2:19:57:f4:09:9f:ad:03:36:d7:b4:2a:d9:fe: 53:ae:9d:a3:9a:31:99:60:f7:af:cd:f8:5a:00:66: 97:e0:6f:2b:97:60:8d:b1:a9:24:dc:1f:b7:16:39: dc:4c:38:20:59:7e:35:93:fc:e7:c8:9e:4a:87:38: da:b7:20:e6:19:8e:b4:6b:53:05:3e:1a:bd:69:30: 5b:18:91:0a:0f:c7:de:ae:b8:b9:6f:3a:ac:02:1d: 3f:5e:73:f6:c2:cc:27:ed:70:84:66:b5:83:c7:13: 7b:1a:b6:50:0e:c9:62:89:a9:39:8c:2d:a6:f1:0b: 19:0f:c1:74:aa:96:98:71:5e:1d:6e:b7:87:15:39: 5c:b2:cd:c0:a1:36:bb:c2:3a:bc:fd:f0:c2:31:71: 6c:6e:f8:92:a3:e9:e6:47:f5:76:fc:87:1b:3a:89: d0:7d:12:9f:9b:da:05:94:bb:cc:2e:63:a8:30:ef: 61:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:71:AC:9F:23:F8:D6:73:0C:8B:D8:15:8E:30:E6:91:56:96:11:14 X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234342e302f32322d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.244.0/22 Signature Algorithm: sha256WithRSAEncryption 14:2f:46:a2:11:17:95:3c:69:4c:cb:2c:06:33:b5:dd:77:55: a3:4c:f9:0b:5c:a1:97:9e:58:85:1b:80:75:aa:4f:76:0f:47: 5c:eb:67:c3:0b:56:3d:cc:37:b6:4e:52:fd:d0:22:1c:e9:83: 62:08:73:3d:e4:e2:76:e9:7c:5b:8c:94:95:7e:07:cb:8f:f5: b1:98:d2:b3:a0:7f:d3:92:15:a3:f6:1f:84:a0:f3:07:41:75: 9f:2c:dc:6a:0b:c9:bb:31:2f:49:52:72:e0:c7:03:fa:38:7e: 90:30:af:eb:bd:87:9e:b4:ff:e4:87:ed:d0:69:fb:5d:2b:be: 69:93:fb:7b:e9:a9:57:9b:23:0b:2a:12:b3:df:42:15:f6:53: 30:5a:13:dc:0e:98:30:a1:ae:4c:07:7c:b5:90:b6:90:c1:8e: 42:df:3f:29:e0:1c:86:07:d0:41:1a:c2:47:97:35:e6:c6:fe: 5f:a5:32:ae:ab:2a:a4:af:9c:ed:a1:e7:d4:d1:5f:44:c1:1a: 84:3c:69:11:b6:03:21:01:24:0e:04:92:9b:b9:19:8f:ba:40: 03:32:6e:af:dd:16:b6:20:41:6d:fe:99:37:ea:bd:e1:6d:f8: d3:3e:fd:16:4b:6e:92:da:ac:c5:c4:14:82:ec:96:b1:7f:7e: d4:35:20:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUePebWXAlrtUU1pc83CASZBahGvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yMzA2MDIwMjU1MDBaFw0yNDA1MzEwMzAwMDBaMDMxMTAvBgNV BAMTKDBCNzFBQzlGMjNGOEQ2NzMwQzhCRDgxNThFMzBFNjkxNTY5NjExMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9IqT44OOuk5wqr+Kyrp7WzLtC WUab8SOWocpIfS++KmRHe2Ll+NLiyKuG2RRmwn+iEYNKexAehkl9YmOZHcWPFPV+ NGttqNI1efHiGVf0CZ+tAzbXtCrZ/lOunaOaMZlg96/N+FoAZpfgbyuXYI2xqSTc H7cWOdxMOCBZfjWT/OfInkqHONq3IOYZjrRrUwU+Gr1pMFsYkQoPx96uuLlvOqwC HT9ec/bCzCftcIRmtYPHE3satlAOyWKJqTmMLabxCxkPwXSqlphxXh1ut4cVOVyy zcChNrvCOrz98MIxcWxu+JKj6eZH9Xb8hxs6idB9Ep+b2gWUu8wuY6gw72ErAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUC3GsnyP41nMMi9gVjjDmkVaWERQwHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAspd9DANBgkqhkiG 9w0BAQsFAAOCAQEAFC9GohEXlTxpTMssBjO13XdVo0z5C1yhl55YhRuAdapPdg9H XOtnwwtWPcw3tk5S/dAiHOmDYghzPeTidul8W4yUlX4Hy4/1sZjSs6B/05IVo/Yf hKDzB0F1nyzcagvJuzEvSVJy4McD+jh+kDCv672HnrT/5Ift0Gn7XSu+aZP7e+mp V5sjCyoSs99CFfZTMFoT3A6YMKGuTAd8tZC2kMGOQt8/KeAchgfQQRrCR5c15sb+ X6UyrqsqpK+c7aHn1NFfRMEahDxpEbYDIQEkDgSSm7kZj7pAAzJur90WtiBBbf6Z N+q94W340z79FktuktqsxcQUguyWsX9+1DUgYA== -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:07 2024 by rpki-client on console-fra.rpki-client.org