$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130322e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130322e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: ydFWe4bSdEElox6j4RSHMk3ms/7yqzIC7Z+bBzx4fmQ= Subject key identifier: FB:82:68:4C:93:06:03:88:64:33:6D:F0:F6:FA:A5:45:F0:74:6A:F8 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 6B74DD182BFDB23C9381078C5F315B6BE0F0E547 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130322e302f32342d3234203d3e203130313337.roa Signing time: Thu 13 Jul 2023 07:39:52 +0000 ROA not before: Thu 13 Jul 2023 07:34:52 +0000 ROA not after: Thu 11 Jul 2024 07:39:52 +0000 asID: 10137 IP address blocks: 203.99.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:74:dd:18:2b:fd:b2:3c:93:81:07:8c:5f:31:5b:6b:e0:f0:e5:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jul 13 07:34:52 2023 GMT Not After : Jul 11 07:39:52 2024 GMT Subject: CN=FB82684C9306038864336DF0F6FAA545F0746AF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5a:9a:e6:4d:e3:ad:7d:d6:0c:15:7c:e0:18: 74:c9:71:d0:f3:2c:00:84:a7:74:c2:1d:22:66:d4: 1e:5c:f6:32:b4:cd:88:a3:1c:5b:fe:49:c3:3e:0b: d9:9a:c6:30:72:0d:be:e5:d4:8a:f9:21:5a:43:1c: aa:99:ac:3a:c5:09:8a:8f:91:13:ba:9d:f7:28:b8: 7a:85:d6:0a:14:01:03:0f:c4:6c:33:16:86:b1:ba: 6f:57:1c:f5:69:78:87:06:96:0d:ad:6b:11:7c:59: 46:1f:66:3e:78:25:82:d6:3c:e6:72:a6:44:a7:54: 29:42:f1:63:40:5a:05:97:cd:91:22:ab:a0:45:39: 18:44:7e:0c:58:e4:15:e5:67:45:27:f7:ea:48:7a: 8e:fc:51:b1:23:3d:3c:78:91:74:a9:48:90:a4:d6: 1a:12:bb:05:08:0d:aa:96:10:f9:f7:72:9f:62:1a: 7e:b4:a6:0b:57:61:f6:a1:f9:8e:a7:0d:d1:2b:90: dc:66:8e:a6:fb:de:17:72:16:63:95:cb:ba:c1:3d: 97:db:86:64:8c:c6:fd:84:f8:b2:d8:79:17:04:ff: 21:94:5d:22:a9:da:67:3b:3f:13:53:ec:26:f5:35: 2f:e6:62:39:5a:e0:10:4a:de:91:ac:d6:04:4e:67: 1f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:82:68:4C:93:06:03:88:64:33:6D:F0:F6:FA:A5:45:F0:74:6A:F8 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130322e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.102.0/24 Signature Algorithm: sha256WithRSAEncryption c9:40:1d:06:44:9e:ae:70:75:33:c3:aa:03:f7:bc:d5:3a:42: 78:9d:99:ee:38:c0:56:80:cd:cd:3c:3f:c1:4b:dc:13:fc:6d: 7c:ff:08:bb:dc:4e:84:40:91:53:be:c6:2c:11:e3:8e:bc:2f: ba:91:84:a3:a0:95:80:a3:87:15:1d:54:ab:9f:b8:a7:3f:da: 66:9d:4d:6c:75:b5:89:e7:99:03:dc:de:36:0f:8f:f1:09:17: 7a:04:90:a3:b2:9e:f8:00:cf:b5:9c:49:23:92:3a:dd:35:a4: 6d:65:43:2e:23:cc:15:a5:ad:6f:8d:0a:ec:07:6c:3b:47:9c: 00:1e:b1:be:85:3c:da:3f:79:8b:95:68:03:dc:4f:9d:cb:70: 4f:56:94:dd:b6:45:23:1d:21:63:65:9c:ae:97:33:be:3a:88: e1:11:8a:90:46:fa:df:9b:57:fa:32:24:24:8e:25:ed:1d:13: 4f:ef:dd:8d:d2:34:76:d8:96:22:29:91:de:a6:e6:c3:09:91: 1d:ca:dc:92:f8:91:79:f8:9c:a0:14:73:1a:89:82:3c:32:d6: 16:c7:6a:97:ff:f4:c7:ad:46:1a:d2:c8:46:ff:03:9d:a7:d1: 6a:24:27:2d:f4:e6:56:0d:42:e5:82:2f:95:f1:47:a7:8a:78: 58:35:fe:d2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUa3TdGCv9sjyTgQeMXzFba+Dw5UcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yMzA3MTMwNzM0NTJaFw0yNDA3MTEwNzM5NTJaMDMxMTAvBgNV BAMTKEZCODI2ODRDOTMwNjAzODg2NDMzNkRGMEY2RkFBNTQ1RjA3NDZBRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXWprmTeOtfdYMFXzgGHTJcdDz LACEp3TCHSJm1B5c9jK0zYijHFv+ScM+C9maxjByDb7l1Ir5IVpDHKqZrDrFCYqP kRO6nfcouHqF1goUAQMPxGwzFoaxum9XHPVpeIcGlg2taxF8WUYfZj54JYLWPOZy pkSnVClC8WNAWgWXzZEiq6BFORhEfgxY5BXlZ0Un9+pIeo78UbEjPTx4kXSpSJCk 1hoSuwUIDaqWEPn3cp9iGn60pgtXYfah+Y6nDdErkNxmjqb73hdyFmOVy7rBPZfb hmSMxv2E+LLYeRcE/yGUXSKp2mc7PxNT7Cb1NS/mYjla4BBK3pGs1gROZx8pAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+4JoTJMGA4hkM23w9vqlRfB0avgwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjZjANBgkqhkiG 9w0BAQsFAAOCAQEAyUAdBkSernB1M8OqA/e81TpCeJ2Z7jjAVoDNzTw/wUvcE/xt fP8Iu9xOhECRU77GLBHjjrwvupGEo6CVgKOHFR1Uq5+4pz/aZp1NbHW1ieeZA9ze Ng+P8QkXegSQo7Ke+ADPtZxJI5I63TWkbWVDLiPMFaWtb40K7AdsO0ecAB6xvoU8 2j95i5VoA9xPnctwT1aU3bZFIx0hY2WcrpczvjqI4RGKkEb635tX+jIkJI4l7R0T T+/djdI0dtiWIimR3qbmwwmRHcrckviReficoBRzGomCPDLWFsdql//0x61GGtLI Rv8DnafRaiQnLfTmVg1C5YIvlfFHp4p4WDX+0g== -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:15 2024 by rpki-client on console-ams.rpki-client.org