$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa File: 3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: YPWjq7nrln1oH2Thj63lDMcA5OaFmNTWmxdURaPvZmA= Subject key identifier: 81:B8:4F:B1:31:E9:13:43:22:AB:FF:71:3A:44:CC:BE:1E:B0:79:45 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 7CD23419CDC1D827220BED77441042DA86E633A6 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa Signing time: Tue 13 Jun 2023 05:00:00 +0000 ROA not before: Tue 13 Jun 2023 04:55:00 +0000 ROA not after: Tue 11 Jun 2024 05:00:00 +0000 asID: 140443 IP address blocks: 202.125.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d2:34:19:cd:c1:d8:27:22:0b:ed:77:44:10:42:da:86:e6:33:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Jun 13 04:55:00 2023 GMT Not After : Jun 11 05:00:00 2024 GMT Subject: CN=81B84FB131E9134322ABFF713A44CCBE1EB07945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:80:b3:d1:0c:53:7d:84:de:7c:72:67:c4:aa: 2a:82:44:43:04:aa:5a:6a:cb:5c:5f:cd:2b:6e:04: 16:8b:4b:9c:c9:0e:10:62:5b:a0:04:d6:9c:4d:df: 6e:06:d7:b6:c1:2c:14:16:68:d8:4d:87:bb:a4:2e: 99:1f:0d:7e:3c:7c:41:5e:f4:30:cf:7c:43:d0:b4: 12:7b:fe:a7:41:74:a0:b2:73:9f:40:96:90:60:5e: 0e:13:ed:81:04:77:e5:91:f5:99:10:8e:ba:a8:02: 2b:6a:39:e5:d0:de:aa:95:8c:4f:d5:31:ea:b9:04: c0:1a:7d:4b:21:8e:ca:cc:f0:3a:e2:07:ae:42:1e: 67:2e:b3:f0:5f:82:ee:dc:9d:7f:ff:69:8c:32:bb: 99:08:e8:f3:de:dd:c0:83:3f:70:50:3b:61:51:b6: cd:5b:b9:2e:45:d8:73:c4:98:ee:16:fc:a8:a6:50: 5a:8f:18:ff:8d:a7:66:f1:3c:a9:7f:ab:38:ba:ca: 17:bc:1d:28:10:f3:ef:5f:f5:b8:cd:0d:20:a4:51: ec:fc:4e:3e:20:8c:66:8b:b7:65:81:ec:4c:dd:3c: fe:7a:88:11:67:ed:8c:57:cc:e6:a6:d5:59:f3:af: d2:08:38:32:0c:3b:62:3a:4e:eb:79:3f:4a:a0:66: 19:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B8:4F:B1:31:E9:13:43:22:AB:FF:71:3A:44:CC:BE:1E:B0:79:45 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.125.82.0/24 Signature Algorithm: sha256WithRSAEncryption a8:56:bd:aa:a4:75:90:ab:78:fb:b9:a6:47:bf:ad:16:7c:c4: 6d:3c:45:11:86:67:38:e1:3d:21:e8:99:ef:c2:46:45:fb:b6: 51:c0:28:20:dc:d2:90:66:b9:14:27:55:7d:3a:73:9c:25:fe: 57:83:ef:b6:68:ba:95:f0:5d:6c:7b:ae:e5:21:10:2a:1b:08: 80:1c:2f:51:5e:c7:cb:ba:68:ee:db:26:c8:d0:8e:a4:16:9d: 68:02:6f:64:3c:8e:ce:47:9d:e5:98:17:91:b9:81:09:89:51: 48:f2:63:0f:16:90:c5:9d:9e:8c:57:12:7c:bf:98:6e:76:a4: b7:11:1a:01:4a:39:38:aa:0f:f4:e3:92:d5:6c:f9:c8:9c:f4: e0:9a:7a:d4:74:86:67:7a:9c:33:2c:98:19:74:cb:44:07:0e: 6e:31:99:27:48:67:21:36:ad:40:b7:d1:97:5b:1c:9b:1c:43: 67:27:69:49:00:15:ef:6e:65:b3:59:0d:33:2b:20:eb:b7:58: fd:f6:cb:21:6a:00:07:dc:8a:5b:32:ff:65:96:ae:52:7a:de: 9e:c9:b5:bd:10:87:7d:49:ba:3d:e1:48:a0:83:95:4b:9a:69: 50:58:02:59:c0:1d:ca:c3:e9:81:1b:c6:a7:08:cb:4e:8d:79: 51:a7:25:46 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfNI0Gc3B2CciC+13RBBC2obmM6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yMzA2MTMwNDU1MDBaFw0yNDA2MTEwNTAwMDBaMDMxMTAvBgNV BAMTKDgxQjg0RkIxMzFFOTEzNDMyMkFCRkY3MTNBNDRDQ0JFMUVCMDc5NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEgLPRDFN9hN58cmfEqiqCREME qlpqy1xfzStuBBaLS5zJDhBiW6AE1pxN324G17bBLBQWaNhNh7ukLpkfDX48fEFe 9DDPfEPQtBJ7/qdBdKCyc59AlpBgXg4T7YEEd+WR9ZkQjrqoAitqOeXQ3qqVjE/V Meq5BMAafUshjsrM8DriB65CHmcus/Bfgu7cnX//aYwyu5kI6PPe3cCDP3BQO2FR ts1buS5F2HPEmO4W/KimUFqPGP+Np2bxPKl/qzi6yhe8HSgQ8+9f9bjNDSCkUez8 Tj4gjGaLt2WB7EzdPP56iBFn7YxXzOam1Vnzr9IIODIMO2I6Tut5P0qgZhlDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgbhPsTHpE0Miq/9xOkTMvh6weUUwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzEzMjM1MmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyn1SMA0GCSqG SIb3DQEBCwUAA4IBAQCoVr2qpHWQq3j7uaZHv60WfMRtPEURhmc44T0h6JnvwkZF +7ZRwCgg3NKQZrkUJ1V9OnOcJf5Xg++2aLqV8F1se67lIRAqGwiAHC9RXsfLumju 2ybI0I6kFp1oAm9kPI7OR53lmBeRuYEJiVFI8mMPFpDFnZ6MVxJ8v5hudqS3ERoB Sjk4qg/045LVbPnInPTgmnrUdIZnepwzLJgZdMtEBw5uMZknSGchNq1At9GXWxyb HENnJ2lJABXvbmWzWQ0zKyDrt1j99sshagAH3IpbMv9llq5Set6eybW9EId9Sbo9 4Uigg5VLmmlQWAJZwB3Kw+mBG8anCMtOjXlRpyVG -----END CERTIFICATE-----Generated at Tue May 7 12:21:28 2024 by rpki-client on console-fra.rpki-client.org