$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa File: 3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: m9dbaStcfoMcnbQ2EvyGtONb2+RlTZBzSLZQCQv3Axk= Subject key identifier: 82:31:10:5C:CD:B6:57:47:AC:2D:3B:B1:4E:AF:08:C2:DE:A3:ED:00 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 7C27DE4E117415FA511B83203CE51D594B213186 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa Signing time: Mon 11 Dec 2023 07:47:07 +0000 ROA not before: Mon 11 Dec 2023 07:42:07 +0000 ROA not after: Mon 09 Dec 2024 07:47:07 +0000 asID: 38750 IP address blocks: 202.179.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:27:de:4e:11:74:15:fa:51:1b:83:20:3c:e5:1d:59:4b:21:31:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Dec 11 07:42:07 2023 GMT Not After : Dec 9 07:47:07 2024 GMT Subject: CN=8231105CCDB65747AC2D3BB14EAF08C2DEA3ED00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:20:ca:7f:0c:93:5a:82:9b:79:e3:60:2b:ed: cb:7b:ad:f2:71:f8:6d:91:28:63:51:03:72:a0:ed: b4:04:4a:4a:f3:35:dc:37:45:b0:bc:83:3e:a8:10: c5:ef:a0:f0:e2:eb:57:2f:d8:21:19:25:72:66:a6: e2:7d:b0:95:6f:0a:ba:e7:02:ac:dd:86:67:e9:fc: 9d:b6:2b:1f:32:44:e5:70:7a:a0:0a:f7:06:6d:f9: 4b:d9:17:bb:9f:bb:81:7a:0d:8e:35:88:c5:7b:ad: 8a:fe:49:9a:06:7e:34:20:3f:1d:d7:6f:68:eb:b4: 27:2c:05:11:8b:12:f5:8b:7b:10:38:46:de:c8:73: 9e:ae:64:82:74:15:da:bb:7a:31:26:32:d5:89:01: 89:ef:bf:fd:92:b7:d9:a5:7b:53:92:51:2b:5a:30: f6:98:27:4b:1c:41:f9:10:85:1f:fd:33:cc:23:76: ae:e5:10:8f:61:0e:99:ba:c6:d0:5f:b4:64:01:f2: a7:de:33:de:8d:0f:71:b8:98:68:13:2a:f3:a7:d3: c3:9d:bc:42:8b:52:e9:18:e9:f6:51:1c:53:42:15: 72:9f:62:77:9a:74:f1:36:05:4e:bf:c5:ef:7e:a9: 64:77:f6:a4:c9:f9:cc:9f:43:a7:d7:2f:64:92:be: 6c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:31:10:5C:CD:B6:57:47:AC:2D:3B:B1:4E:AF:08:C2:DE:A3:ED:00 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.179.189.0/24 Signature Algorithm: sha256WithRSAEncryption 43:64:54:53:1a:c0:34:6a:bd:d6:42:6e:ed:89:84:90:a2:52: ee:52:ec:12:f1:46:67:c3:b9:af:cd:eb:72:23:ea:f8:dc:87: 06:ce:a2:01:40:44:4b:71:39:5d:39:e3:c7:cb:9d:26:2f:68: 6e:5c:26:dc:9d:1b:03:34:97:94:46:f0:a3:a9:27:b9:98:31: af:92:48:4a:6f:4c:1b:8e:0b:4b:42:15:7e:7c:2a:4c:a9:04: ca:7d:0d:65:db:98:f9:19:6c:93:38:68:96:da:72:c8:d4:57: c0:c4:19:68:91:da:bb:ae:ca:ed:fb:b2:7e:1a:28:dd:cf:64: 8d:ae:98:36:7c:cd:b7:8d:72:b8:09:e7:87:23:f6:ea:2b:1b: 21:87:40:d0:84:36:3b:6b:0b:2e:a0:a5:03:b1:f8:44:25:17: 24:d6:eb:cf:b9:29:e7:05:a7:81:3f:75:74:20:28:45:fb:2c: 7d:1c:21:bd:00:4d:13:56:bb:5c:b5:11:d3:82:48:3a:c4:2c: 1b:15:8a:e2:ff:7a:38:0d:b9:4b:48:0b:06:ae:e8:4b:d4:76: c1:a0:f6:46:45:2f:c2:5a:98:e1:67:1e:62:7b:7f:11:37:16: b1:72:c6:c8:ea:0a:77:0f:57:1e:3e:31:dd:97:79:1c:a3:eb: a1:39:46:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfCfeThF0FfpRG4MgPOUdWUshMYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yMzEyMTEwNzQyMDdaFw0yNDEyMDkwNzQ3MDdaMDMxMTAvBgNV BAMTKDgyMzExMDVDQ0RCNjU3NDdBQzJEM0JCMTRFQUYwOEMyREVBM0VEMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbIMp/DJNagpt542Ar7ct7rfJx +G2RKGNRA3Kg7bQESkrzNdw3RbC8gz6oEMXvoPDi61cv2CEZJXJmpuJ9sJVvCrrn Aqzdhmfp/J22Kx8yROVweqAK9wZt+UvZF7ufu4F6DY41iMV7rYr+SZoGfjQgPx3X b2jrtCcsBRGLEvWLexA4Rt7Ic56uZIJ0Fdq7ejEmMtWJAYnvv/2St9mle1OSUSta MPaYJ0scQfkQhR/9M8wjdq7lEI9hDpm6xtBftGQB8qfeM96ND3G4mGgTKvOn08Od vEKLUukY6fZRHFNCFXKfYneadPE2BU6/xe9+qWR39qTJ+cyfQ6fXL2SSvmzBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgjEQXM22V0esLTuxTq8Iwt6j7QAwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMyMzAzMjJlMzEzNzM5MmUzMTM4MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrO9MA0GCSqG SIb3DQEBCwUAA4IBAQBDZFRTGsA0ar3WQm7tiYSQolLuUuwS8UZnw7mvzetyI+r4 3IcGzqIBQERLcTldOePHy50mL2huXCbcnRsDNJeURvCjqSe5mDGvkkhKb0wbjgtL QhV+fCpMqQTKfQ1l25j5GWyTOGiW2nLI1FfAxBlokdq7rsrt+7J+Gijdz2SNrpg2 fM23jXK4CeeHI/bqKxshh0DQhDY7awsuoKUDsfhEJRck1uvPuSnnBaeBP3V0IChF +yx9HCG9AE0TVrtctRHTgkg6xCwbFYri/3o4DblLSAsGruhL1HbBoPZGRS/CWpjh Zx5ie38RNxaxcsbI6gp3D1cePjHdl3kco+uhOUYR -----END CERTIFICATE-----Generated at Fri May 31 08:37:56 2024 by rpki-client on console-fra.rpki-client.org