$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132302e302f32332d3234203d3e203338353035.roa File: 3230332e3135332e3132302e302f32332d3234203d3e203338353035.roa (raw, json) Hash identifier: N2T7DBYjNznj0B0Gx8wABa3A4sF8W5Eo0nd66DsyVr4= Subject key identifier: 70:78:0F:CE:CD:42:F3:4C:5F:1D:EE:F8:FD:CC:D5:F4:9D:3A:68:09 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 72B92FA34B35B32AC18837A445FFC414BBFE1BB7 Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132302e302f32332d3234203d3e203338353035.roa Signing time: Wed 24 Jul 2024 14:00:00 +0000 ROA not before: Wed 24 Jul 2024 13:55:00 +0000 ROA not after: Wed 23 Jul 2025 14:00:00 +0000 asID: 38505 IP address blocks: 203.153.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b9:2f:a3:4b:35:b3:2a:c1:88:37:a4:45:ff:c4:14:bb:fe:1b:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jul 24 13:55:00 2024 GMT Not After : Jul 23 14:00:00 2025 GMT Subject: CN=70780FCECD42F34C5F1DEEF8FDCCD5F49D3A6809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:59:f2:a2:cf:4c:d2:5b:25:af:97:16:71:41: 8b:35:59:09:2c:16:c5:a5:b4:d7:53:7e:c7:9a:75: a7:f5:58:7e:a2:ab:a8:ae:89:48:48:d2:d2:e4:29: 3a:c3:02:df:b7:07:71:1b:5b:0d:65:20:18:27:c4: 0a:86:c1:76:98:8a:c0:ad:17:2a:e0:1f:9a:b0:99: 02:e4:1b:e8:b6:2e:9e:d5:2c:a2:86:b8:ae:c7:00: fb:e5:bc:8c:6d:ad:d1:7e:52:52:1a:0d:f0:ba:a4: f0:3e:72:29:4e:1b:a9:04:88:bd:c9:d1:e9:db:c5: d1:05:0b:18:a1:83:f1:e0:2c:8c:60:a0:dc:e9:c4: c0:8e:0b:5f:5b:89:86:7a:8e:0d:46:f2:91:dc:e8: 33:90:e7:40:02:e0:d6:5b:43:96:ff:39:ae:87:d2: d8:f2:ba:59:40:9e:50:7a:57:03:92:6b:06:08:6b: 8e:f6:7f:09:fe:fe:38:3b:84:e8:e7:ab:76:50:57: 49:91:5a:8f:fd:c0:20:6a:c9:ef:e9:75:9b:e4:ff: 6c:7f:e2:93:3b:53:a9:ed:ce:c9:4d:7e:f1:de:8c: d2:fc:91:b5:34:bf:58:c1:c3:1f:7f:c9:ee:c4:32: 86:5a:18:e4:4c:f8:2e:99:ff:0c:af:ca:ce:76:bc: ff:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:78:0F:CE:CD:42:F3:4C:5F:1D:EE:F8:FD:CC:D5:F4:9D:3A:68:09 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132302e302f32332d3234203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.120.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:53:72:36:48:5b:a9:b2:f0:d6:d4:15:8e:46:c7:42:35:8c: c4:2b:3f:a1:ef:e2:d9:ec:bf:50:24:96:18:cb:71:7d:7e:e5: bb:37:3d:a1:7e:20:99:e4:1b:e4:7d:42:e8:d9:2a:96:05:94: 1c:8a:b0:b1:15:f9:2d:76:41:57:43:de:19:ac:f3:39:07:52: 25:87:d6:47:47:61:5e:b2:8e:63:eb:7a:25:f7:0e:65:fb:43: be:8c:59:ff:1f:5e:98:1f:91:c7:3f:2f:f2:93:8b:32:4e:a8: 90:a1:9f:dc:19:bd:64:c3:45:80:11:34:38:02:79:c2:b3:f4: 14:cd:f2:63:44:e7:58:6b:7f:44:bf:fd:65:77:64:62:66:d9: 4e:e1:47:78:ba:1a:b9:28:17:49:b5:69:09:5e:4c:7b:b3:2d: f6:04:c4:76:f9:fc:98:67:4b:44:42:bb:68:76:65:39:b4:49: 5e:c7:86:47:3b:ee:d1:b3:41:dc:35:a3:b2:62:cd:35:c3:91: 6a:f1:89:4d:5c:06:2a:c5:30:35:36:be:c1:9b:2b:8e:bd:e5: 45:38:a5:4f:c2:bc:b8:85:1f:ff:7d:08:85:bc:5e:b3:31:a5: cb:4c:e2:0b:3b:f8:a0:4a:f4:69:d8:a2:76:0b:78:7d:07:9d: e0:ab:c7:6c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcrkvo0s1syrBiDekRf/EFLv+G7cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNDA3MjQxMzU1MDBaFw0yNTA3MjMxNDAwMDBaMDMxMTAvBgNV BAMTKDcwNzgwRkNFQ0Q0MkYzNEM1RjFERUVGOEZEQ0NENUY0OUQzQTY4MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+WfKiz0zSWyWvlxZxQYs1WQks FsWltNdTfseadaf1WH6iq6iuiUhI0tLkKTrDAt+3B3EbWw1lIBgnxAqGwXaYisCt FyrgH5qwmQLkG+i2Lp7VLKKGuK7HAPvlvIxtrdF+UlIaDfC6pPA+cilOG6kEiL3J 0enbxdEFCxihg/HgLIxgoNzpxMCOC19biYZ6jg1G8pHc6DOQ50AC4NZbQ5b/Oa6H 0tjyullAnlB6VwOSawYIa472fwn+/jg7hOjnq3ZQV0mRWo/9wCBqye/pdZvk/2x/ 4pM7U6ntzslNfvHejNL8kbU0v1jBwx9/ye7EMoZaGORM+C6Z/wyvys52vP93AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcHgPzs1C80xfHe74/czV9J06aAkwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMyMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5l4MA0GCSqG SIb3DQEBCwUAA4IBAQA7U3I2SFupsvDW1BWORsdCNYzEKz+h7+LZ7L9QJJYYy3F9 fuW7Nz2hfiCZ5BvkfULo2SqWBZQcirCxFfktdkFXQ94ZrPM5B1Ilh9ZHR2Feso5j 63ol9w5l+0O+jFn/H16YH5HHPy/yk4syTqiQoZ/cGb1kw0WAETQ4AnnCs/QUzfJj ROdYa39Ev/1ld2RiZtlO4Ud4uhq5KBdJtWkJXkx7sy32BMR2+fyYZ0tEQrtodmU5 tElex4ZHO+7Rs0HcNaOyYs01w5Fq8YlNXAYqxTA1Nr7BmyuOveVFOKVPwry4hR// fQiFvF6zMaXLTOILO/igSvRp2KJ2C3h9B53gq8ds -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org