$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3132332e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3132332e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: 9BLgfcaovngukiXQieFT8SanGS9oNgT1Lcfb6zx7vUc= Subject key identifier: D6:B0:E4:A3:8B:50:68:FB:5E:C6:9E:C5:89:F1:10:14:CA:56:39:3E Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 307A988AE5B01C4D5D6B2F28019117E9ABA3A215 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3132332e302f32342d3234203d3e203130313337.roa Signing time: Thu 13 Jul 2023 07:41:49 +0000 ROA not before: Thu 13 Jul 2023 07:36:49 +0000 ROA not after: Thu 11 Jul 2024 07:41:49 +0000 asID: 10137 IP address blocks: 203.99.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7a:98:8a:e5:b0:1c:4d:5d:6b:2f:28:01:91:17:e9:ab:a3:a2:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Jul 13 07:36:49 2023 GMT Not After : Jul 11 07:41:49 2024 GMT Subject: CN=D6B0E4A38B5068FB5EC69EC589F11014CA56393E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3a:fb:c1:d4:db:94:82:9b:51:4f:ff:f8:60: f6:b6:55:48:92:23:8f:b8:52:00:a3:18:95:e6:d1: 47:ed:3a:c1:ea:bb:33:9d:4c:e4:5d:08:e6:3d:17: b3:50:ba:56:49:0a:b6:3c:a8:b8:4c:61:94:44:dd: fd:ae:b1:37:cc:25:89:4d:06:5e:f9:b2:87:0a:11: e2:d5:c8:63:84:04:24:eb:03:a4:86:6d:dd:20:fb: ee:19:09:8c:87:d7:92:36:c6:42:32:1c:e2:98:05: 22:1f:6c:78:44:87:d4:50:a0:87:ba:be:d8:0c:47: 81:38:89:c7:57:0e:0f:d8:76:e8:2d:db:44:36:19: a5:7b:c0:cf:b9:e7:38:d7:1a:76:5b:ed:ad:e7:89: 21:68:2d:d6:9f:23:87:95:fa:64:ac:f3:6e:e2:64: 37:23:d2:59:00:2a:ce:a5:c8:c0:2b:8a:a9:bf:6c: 5f:7d:d4:32:04:7d:af:1b:4c:8a:89:a0:23:b2:28: af:c2:65:fb:a1:27:a8:d7:45:2e:77:96:30:f1:81: 21:02:41:60:60:f9:24:b3:1f:d2:af:e1:d3:62:30: 76:e3:47:5e:8c:2a:4f:ae:2c:e8:f5:4f:0c:15:f8: e2:f2:03:4b:fe:fd:32:f3:47:44:83:d3:0a:32:fb: 50:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B0:E4:A3:8B:50:68:FB:5E:C6:9E:C5:89:F1:10:14:CA:56:39:3E X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3132332e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.123.0/24 Signature Algorithm: sha256WithRSAEncryption 87:9a:48:c8:94:2f:db:b8:da:c3:3c:77:9d:2f:9f:f5:66:c6: 3f:da:c2:c0:ab:10:99:c8:a9:6f:f1:85:1a:bd:c8:5e:e3:a3: 4f:d8:c3:7d:a5:71:c0:77:99:40:21:76:d5:a5:de:0a:7b:c2: e9:f4:25:24:27:3e:2b:a5:08:a6:b8:0b:0f:86:25:f3:a5:1e: a7:37:9c:0f:84:2d:54:55:74:2f:aa:bf:d6:24:dc:6d:c2:f8: 9a:3c:ec:fc:c4:84:35:e1:d4:ba:5f:7c:5a:61:6a:b2:cc:4c: 9f:2b:6f:a5:3a:e8:c5:a9:0a:62:48:f2:89:fe:f7:2a:a4:a9: 64:1a:30:0e:0b:05:6f:81:f7:00:07:74:e5:53:3d:13:06:e1: e9:b9:85:7e:1f:93:06:d6:49:cb:30:84:53:f1:48:09:be:ba: ad:72:a2:57:9d:75:64:0d:d4:a6:27:c1:30:e1:87:b1:bc:b1: 89:4c:97:63:1c:63:6e:ec:76:23:b7:24:1c:81:08:b3:9e:c6: 67:6b:e6:0b:c8:7a:0e:a9:ed:6d:00:b2:6b:ad:20:be:08:41: e5:f2:1a:4d:ec:e2:0c:8b:85:4d:6b:e9:7a:f3:4f:17:d1:ef: 74:4c:ac:dd:8e:68:91:49:0b:7c:7d:f0:47:5a:dd:17:98:12: bf:94:0d:b1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMHqYiuWwHE1day8oAZEX6aujohUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yMzA3MTMwNzM2NDlaFw0yNDA3MTEwNzQxNDlaMDMxMTAvBgNV BAMTKEQ2QjBFNEEzOEI1MDY4RkI1RUM2OUVDNTg5RjExMDE0Q0E1NjM5M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtOvvB1NuUgptRT//4YPa2VUiS I4+4UgCjGJXm0UftOsHquzOdTORdCOY9F7NQulZJCrY8qLhMYZRE3f2usTfMJYlN Bl75socKEeLVyGOEBCTrA6SGbd0g++4ZCYyH15I2xkIyHOKYBSIfbHhEh9RQoIe6 vtgMR4E4icdXDg/Ydugt20Q2GaV7wM+55zjXGnZb7a3niSFoLdafI4eV+mSs827i ZDcj0lkAKs6lyMAriqm/bF991DIEfa8bTIqJoCOyKK/CZfuhJ6jXRS53ljDxgSEC QWBg+SSzH9Kv4dNiMHbjR16MKk+uLOj1TwwV+OLyA0v+/TLzR0SD0woy+1BRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1rDko4tQaPtexp7FifEQFMpWOT4wHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjezANBgkqhkiG 9w0BAQsFAAOCAQEAh5pIyJQv27jawzx3nS+f9WbGP9rCwKsQmcipb/GFGr3IXuOj T9jDfaVxwHeZQCF21aXeCnvC6fQlJCc+K6UIprgLD4Yl86UepzecD4QtVFV0L6q/ 1iTcbcL4mjzs/MSENeHUul98WmFqssxMnytvpTroxakKYkjyif73KqSpZBowDgsF b4H3AAd05VM9Ewbh6bmFfh+TBtZJyzCEU/FICb66rXKiV511ZA3UpifBMOGHsbyx iUyXYxxjbux2I7ckHIEIs57GZ2vmC8h6DqntbQCya60gvghB5fIaTeziDIuFTWvp evNPF9HvdEys3Y5okUkLfH3wR1rdF5gSv5QNsQ== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:09 2024 by rpki-client on console-fra.rpki-client.org