$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230372e302f32342d3234203d3e203538353532.roa File: 3230322e37322e3230372e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: uyIjSJ02EBUfJPK823k0pEnH2ebIGuk/9JOpL8wbv7Q= Subject key identifier: 4B:17:86:82:0C:DC:C3:5F:35:7B:A1:E6:69:3E:9B:77:2E:7B:1B:6E Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Certificate serial: 4FEA9AFF43B54071674DEB2834F03E8581DB61C9 Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230372e302f32342d3234203d3e203538353532.roa Signing time: Mon 21 Aug 2023 09:00:00 +0000 ROA not before: Mon 21 Aug 2023 08:55:00 +0000 ROA not after: Mon 19 Aug 2024 09:00:00 +0000 asID: 58552 IP address blocks: 202.72.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ea:9a:ff:43:b5:40:71:67:4d:eb:28:34:f0:3e:85:81:db:61:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE Validity Not Before: Aug 21 08:55:00 2023 GMT Not After : Aug 19 09:00:00 2024 GMT Subject: CN=4B1786820CDCC35F357BA1E6693E9B772E7B1B6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:54:aa:58:7c:36:e3:0d:26:5c:25:c6:0e:ac: 2e:74:ff:0e:49:d5:40:5f:81:eb:41:af:11:de:1b: b5:34:d5:a7:58:cc:9b:10:d4:bb:4a:8e:3b:86:da: 83:73:b0:31:92:99:de:1f:22:f6:5f:8d:e1:8c:1d: b4:22:0d:c6:cb:1a:f1:ef:9e:3e:40:b9:6d:91:fc: ce:64:dd:c7:85:25:0b:a2:8c:73:e8:c1:9c:14:aa: 94:f6:5c:11:0e:a7:62:1d:b7:12:9e:92:00:bf:fb: 20:87:8f:f9:91:62:41:f1:e3:be:3f:98:dd:4d:6c: e0:94:a6:4f:17:2e:cc:52:63:cf:b5:5b:41:87:ad: 34:7d:9d:12:8e:2d:3c:c6:a5:5e:b1:19:e2:c8:24: ad:6c:55:b3:8a:96:97:81:52:34:04:3f:37:e3:a5: 1a:14:7f:e8:44:db:cf:ed:e6:ef:06:b2:c4:13:b6: ee:c2:d4:ca:70:ad:c7:6f:db:a7:b1:d2:20:cf:10: 40:fd:43:a7:10:b1:80:48:35:89:4a:6d:3b:2f:c8: b2:8e:54:48:99:50:d6:b6:63:47:56:b7:9d:49:94: 64:42:8a:1f:83:88:a9:73:e0:e1:1b:1f:07:a8:01: b1:72:f7:bc:fc:89:d6:93:fd:05:69:75:f4:86:cc: a5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:17:86:82:0C:DC:C3:5F:35:7B:A1:E6:69:3E:9B:77:2E:7B:1B:6E X509v3 Authority Key Identifier: keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230372e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.72.207.0/24 Signature Algorithm: sha256WithRSAEncryption 29:6d:d0:42:44:25:d0:e7:6d:fa:bc:d1:4b:21:3c:30:9f:a5: f1:9a:c7:70:3f:17:3b:c8:94:f8:76:f7:93:4b:8f:50:98:99: 92:df:5c:8c:69:d4:c3:c6:9b:b6:b2:20:55:15:da:2c:5c:2c: cf:87:a6:66:ee:64:e6:87:60:33:f9:db:96:f6:ca:d4:ca:c9: 78:93:30:16:51:96:94:40:7e:8c:0b:54:91:91:5a:cd:b8:98: 1e:c6:ab:5a:56:80:a8:2b:c6:fb:47:a6:5a:a0:39:39:83:5b: 93:ad:bd:c0:ac:45:69:1a:b1:43:d6:11:7f:4e:c9:ad:0f:98: 56:d3:c7:32:1e:3f:e3:3c:52:b9:ef:56:be:61:ee:c0:62:cf: cd:87:90:98:51:a1:5a:63:a9:28:fc:69:d4:28:3a:3f:72:4d: 89:61:45:d4:c8:57:75:60:df:f0:a8:fa:1c:bf:45:1d:f4:af: 29:0b:71:89:dc:db:a1:6c:c1:82:3d:e7:95:f6:a4:e5:2e:9b: c8:e4:47:1e:ee:69:67:bc:0b:3b:80:04:31:cb:43:02:8d:1f: 3e:64:23:8a:95:92:b9:f8:a7:3c:d8:1d:fd:67:4e:3b:5a:e8: f2:0b:d9:37:74:62:35:98:61:c1:fa:b8:b5:a1:9d:3f:70:ef: c5:e1:89:85 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT+qa/0O1QHFnTesoNPA+hYHbYckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4 Rjc4ODFFRTAeFw0yMzA4MjEwODU1MDBaFw0yNDA4MTkwOTAwMDBaMDMxMTAvBgNV BAMTKDRCMTc4NjgyMENEQ0MzNUYzNTdCQTFFNjY5M0U5Qjc3MkU3QjFCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGVKpYfDbjDSZcJcYOrC50/w5J 1UBfgetBrxHeG7U01adYzJsQ1LtKjjuG2oNzsDGSmd4fIvZfjeGMHbQiDcbLGvHv nj5AuW2R/M5k3ceFJQuijHPowZwUqpT2XBEOp2IdtxKekgC/+yCHj/mRYkHx474/ mN1NbOCUpk8XLsxSY8+1W0GHrTR9nRKOLTzGpV6xGeLIJK1sVbOKlpeBUjQEPzfj pRoUf+hE28/t5u8GssQTtu7C1Mpwrcdv26ex0iDPEED9Q6cQsYBINYlKbTsvyLKO VEiZUNa2Y0dWt51JlGRCih+DiKlz4OEbHweoAbFy97z8idaT/QVpdfSGzKXDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSxeGggzcw181e6HmaT6bdy57G24wHwYDVR0j BBgwFoAUnt5k28QJiIHxG3ASPfUU0494ge4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWFjYjRhOC03ODA0LTQ1MjYtODRkMi04NjliOTFhNjcxOWQvMC85RURFNjREQkM0 MDk4ODgxRjExQjcwMTIzREY1MTREMzhGNzg4MUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVERTY0REJDNDA5ODg4MUYxMUI3MDEyM0RGNTE0RDM4Rjc4 ODFFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5YWNiNGE4LTc4MDQtNDUyNi04 NGQyLTg2OWI5MWE2NzE5ZC8wLzMyMzAzMjJlMzczMjJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpIzzANBgkqhkiG 9w0BAQsFAAOCAQEAKW3QQkQl0Odt+rzRSyE8MJ+l8ZrHcD8XO8iU+Hb3k0uPUJiZ kt9cjGnUw8abtrIgVRXaLFwsz4emZu5k5odgM/nblvbK1MrJeJMwFlGWlEB+jAtU kZFazbiYHsarWlaAqCvG+0emWqA5OYNbk629wKxFaRqxQ9YRf07JrQ+YVtPHMh4/ 4zxSue9WvmHuwGLPzYeQmFGhWmOpKPxp1Cg6P3JNiWFF1MhXdWDf8Kj6HL9FHfSv KQtxidzboWzBgj3nlfak5S6byORHHu5pZ7wLO4AEMctDAo0fPmQjipWSufinPNgd /WdOO1ro8gvZN3RiNZhhwfq4taGdP3DvxeGJhQ== -----END CERTIFICATE-----Generated at Thu May 2 10:16:53 2024 by rpki-client on console-ams.rpki-client.org