$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139392e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3139392e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: fcb8/YKfmfdhT3GrEntZXwOGco7mlETfHO4Em6hjJNo= Subject key identifier: D0:D7:18:4A:BA:14:49:B9:52:42:01:AC:2F:6D:34:65:43:B2:EB:E0 Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 5D6DB71F717FD5E545D68F806E992B30DA89114B Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139392e302f32342d3234203d3e203538353532.roa Signing time: Thu 27 Jul 2023 05:00:01 +0000 ROA not before: Thu 27 Jul 2023 04:55:01 +0000 ROA not after: Thu 25 Jul 2024 05:00:01 +0000 asID: 58552 IP address blocks: 202.72.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:6d:b7:1f:71:7f:d5:e5:45:d6:8f:80:6e:99:2b:30:da:89:11:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Jul 27 04:55:01 2023 GMT Not After : Jul 25 05:00:01 2024 GMT Subject: CN=D0D7184ABA1449B9524201AC2F6D346543B2EBE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6f:19:83:ee:be:bf:e5:4b:11:b2:f4:36:16: 7b:37:22:1c:0d:2d:fd:d6:43:bc:b5:17:6c:92:a0: 7b:bb:5c:5b:26:71:5f:79:e2:ee:5e:c8:10:fd:7d: 6f:69:06:e6:05:63:85:ff:d5:b0:4a:59:59:51:28: b3:2c:65:84:9f:a9:fe:f7:46:1a:1b:a3:7c:b9:19: 28:22:09:3f:60:b5:d2:d5:61:bd:ef:d5:87:f3:3c: 40:5e:7a:d4:46:b3:16:51:ce:b1:c3:34:29:a5:0d: 4b:eb:8b:36:e3:0f:48:f2:9b:0f:82:ae:9b:46:37: 79:6b:f7:4d:69:a3:91:b4:7f:94:7c:0f:d1:ea:17: 48:9f:50:5f:54:55:03:5c:99:34:3c:47:c2:f1:91: d2:a8:5c:38:d9:f7:19:9f:b9:52:81:e6:20:98:a6: 8d:73:d9:29:7d:00:83:ff:0f:59:ea:09:7a:0e:3c: 57:a1:6e:45:64:6a:50:3e:93:f2:a1:b3:38:a9:11: 2f:3d:21:46:df:c7:9a:1b:8d:78:64:51:db:ae:94: 44:bb:94:ed:75:0f:89:bb:dd:8c:55:c5:47:41:8d: dd:38:a9:54:d3:f3:67:c0:6e:03:a9:e3:7e:b0:93: 1c:05:21:c2:59:93:c9:a5:24:c6:f1:68:b6:d8:2e: 10:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D7:18:4A:BA:14:49:B9:52:42:01:AC:2F:6D:34:65:43:B2:EB:E0 X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139392e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.199.0/24 Signature Algorithm: sha256WithRSAEncryption c3:d3:8d:08:35:bc:06:35:4d:2d:0d:33:1c:ab:de:a5:6b:c6: 6c:aa:18:3a:17:9a:18:ff:28:9c:22:53:88:36:a9:0f:8c:a5: 33:5d:f2:40:f6:ad:71:32:bc:a4:98:b0:75:2f:37:3d:1f:3e: 10:a2:82:01:8b:2c:6c:8f:b4:71:d7:9a:e4:00:67:1c:9c:cc: f7:23:95:60:5f:de:fe:87:6f:7a:b0:ba:5d:1b:b7:e2:49:a5: 78:09:0c:39:86:ce:54:13:31:e1:44:63:cb:db:7c:99:5b:9d: 61:ac:75:01:f9:5a:a8:42:90:0c:b9:1d:22:f9:a6:b1:d1:07: be:25:32:d4:26:85:f0:af:3d:a8:b3:23:7d:e0:45:d2:a1:ac: 7c:33:98:a3:d0:7d:17:ff:8c:33:de:34:8c:7a:65:5b:52:f6: 1f:b7:a2:c6:ac:cf:21:0a:a8:6c:97:a6:dc:09:86:7b:ba:5e: 8e:de:0a:b6:fa:fe:18:d5:c8:df:ec:14:e6:a0:8b:dd:ba:86: eb:02:da:b9:f4:7d:37:fe:8c:e2:cb:ae:1d:0c:3c:8d:09:27: 60:8f:46:73:01:5e:51:e1:23:f7:82:d7:33:68:fb:97:03:69: 7f:f7:71:11:54:ee:0c:b8:51:f2:67:23:79:33:17:6a:38:c4: 4d:c7:95:2b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXW23H3F/1eVF1o+AbpkrMNqJEUswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yMzA3MjcwNDU1MDFaFw0yNDA3MjUwNTAwMDFaMDMxMTAvBgNV BAMTKEQwRDcxODRBQkExNDQ5Qjk1MjQyMDFBQzJGNkQzNDY1NDNCMkVCRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvbxmD7r6/5UsRsvQ2Fns3IhwN Lf3WQ7y1F2ySoHu7XFsmcV954u5eyBD9fW9pBuYFY4X/1bBKWVlRKLMsZYSfqf73 Rhobo3y5GSgiCT9gtdLVYb3v1YfzPEBeetRGsxZRzrHDNCmlDUvrizbjD0jymw+C rptGN3lr901po5G0f5R8D9HqF0ifUF9UVQNcmTQ8R8LxkdKoXDjZ9xmfuVKB5iCY po1z2Sl9AIP/D1nqCXoOPFehbkVkalA+k/KhszipES89IUbfx5objXhkUduulES7 lO11D4m73YxVxUdBjd04qVTT82fAbgOp436wkxwFIcJZk8mlJMbxaLbYLhDxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0NcYSroUSblSQgGsL200ZUOy6+AwHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIxzANBgkqhkiG 9w0BAQsFAAOCAQEAw9ONCDW8BjVNLQ0zHKvepWvGbKoYOheaGP8onCJTiDapD4yl M13yQPatcTK8pJiwdS83PR8+EKKCAYssbI+0cdea5ABnHJzM9yOVYF/e/odverC6 XRu34kmleAkMOYbOVBMx4URjy9t8mVudYax1AflaqEKQDLkdIvmmsdEHviUy1CaF 8K89qLMjfeBF0qGsfDOYo9B9F/+MM940jHplW1L2H7eixqzPIQqobJem3AmGe7pe jt4Ktvr+GNXI3+wU5qCL3bqG6wLaufR9N/6M4suuHQw8jQknYI9GcwFeUeEj94LX M2j7lwNpf/dxEVTuDLhR8mcjeTMXajjETceVKw== -----END CERTIFICATE-----Generated at Thu May 2 10:16:53 2024 by rpki-client on console-ams.rpki-client.org