$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa File: 3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa (raw, json) Hash identifier: Mpi+gOpiKUrDBtxSMf7LrOKjaA020QPEeqr2hXrvB0w= Subject key identifier: 54:29:DB:E4:00:0A:23:48:74:6F:43:D8:BD:47:26:5F:80:CA:29:14 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 1C028F9ECEAFC85E29DB1A0F2ACCEBB3F0C7DA65 Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa Signing time: Wed 23 Aug 2023 13:19:46 +0000 ROA not before: Wed 23 Aug 2023 13:14:46 +0000 ROA not after: Wed 21 Aug 2024 13:19:46 +0000 asID: 38505 IP address blocks: 203.153.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:02:8f:9e:ce:af:c8:5e:29:db:1a:0f:2a:cc:eb:b3:f0:c7:da:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Aug 23 13:14:46 2023 GMT Not After : Aug 21 13:19:46 2024 GMT Subject: CN=5429DBE4000A2348746F43D8BD47265F80CA2914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:de:09:aa:19:b4:82:fd:0c:72:98:92:09:3a: 0b:f8:ce:e0:0e:0d:f7:e7:fd:ff:98:de:9c:01:e2: 01:a1:cb:fb:5b:4a:86:da:92:5b:2f:a8:d2:4b:26: da:c7:21:2f:44:dd:96:44:a4:2e:e2:9f:50:32:65: 71:1a:67:d8:11:1b:e6:1a:5b:da:4a:ad:c2:2e:19: 60:8b:58:09:f1:a0:84:72:e3:f2:10:46:34:fe:3a: de:5f:a2:3e:b2:3b:03:a4:c0:9d:b0:e3:54:2f:d9: 55:33:1c:70:1b:1d:30:ba:43:ce:b3:2d:cb:92:fb: 6e:60:0a:c2:72:31:73:9c:3d:50:44:f1:c2:79:05: e8:8b:aa:d2:61:61:dc:9f:7e:78:d2:7c:aa:0d:d9: d8:b2:22:46:0b:76:ab:5a:e4:04:b9:ef:c4:6c:3a: e3:b8:9b:7c:74:85:8d:e9:35:bb:67:33:cc:ae:e8: cd:aa:b1:93:7c:4f:f3:bb:13:bf:20:4d:63:05:22: c2:0c:e2:b8:7a:3d:b8:84:ef:37:a2:ff:93:f3:52: 15:5c:79:11:8d:90:8b:85:28:49:5d:bf:8d:a7:dc: c3:a3:d5:d8:6c:ff:35:90:cc:2e:59:01:9e:bc:8f: 5a:cb:58:45:85:e0:3b:23:92:5a:d2:78:50:98:eb: 9a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:29:DB:E4:00:0A:23:48:74:6F:43:D8:BD:47:26:5F:80:CA:29:14 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.153.124.0/23 Signature Algorithm: sha256WithRSAEncryption c7:7e:e1:85:ca:65:0e:d0:c6:2a:e1:1c:bb:4e:fa:2a:de:47: 42:f5:c0:3e:aa:36:79:d8:98:38:de:41:ba:61:be:c9:cc:ea: db:d0:3a:cd:89:09:d1:e3:a7:a2:56:9f:23:b7:25:36:96:87: 4d:61:0d:c7:72:20:3d:11:7c:20:86:f2:13:5c:ad:6e:e2:4a: e8:f9:db:3f:81:68:67:38:ed:d0:e7:52:8a:0a:25:84:74:9d: 8a:18:78:94:00:1b:35:93:67:28:c8:bf:c1:bc:52:81:8b:a0: 4d:e3:9f:bb:92:80:64:46:87:63:34:e0:86:2a:36:77:88:72: cc:93:8a:c0:71:b7:2b:49:9e:07:41:d7:d0:32:75:65:e4:94: f6:51:4e:09:fc:69:e9:a0:a1:72:ad:31:6b:ba:9a:13:2e:4d: fc:ce:95:df:d6:1a:36:8d:b9:1d:ae:0b:03:4f:c7:a9:99:5f: 70:9b:77:45:f2:88:cc:3c:d3:0a:c5:61:13:26:8f:e4:e6:e2: b5:3e:4c:41:c3:bd:80:5c:d4:b0:da:29:9e:73:c9:a4:39:ba: 41:6b:da:f9:f1:ef:05:1d:0a:f8:ef:3a:b9:39:8b:ee:e6:c8: b7:3c:1e:36:95:68:4f:19:10:cd:38:07:2f:52:ce:40:68:50: a7:d5:3d:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHAKPns6vyF4p2xoPKszrs/DH2mUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yMzA4MjMxMzE0NDZaFw0yNDA4MjExMzE5NDZaMDMxMTAvBgNV BAMTKDU0MjlEQkU0MDAwQTIzNDg3NDZGNDNEOEJENDcyNjVGODBDQTI5MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq3gmqGbSC/QxymJIJOgv4zuAO Dffn/f+Y3pwB4gGhy/tbSobaklsvqNJLJtrHIS9E3ZZEpC7in1AyZXEaZ9gRG+Ya W9pKrcIuGWCLWAnxoIRy4/IQRjT+Ot5foj6yOwOkwJ2w41Qv2VUzHHAbHTC6Q86z LcuS+25gCsJyMXOcPVBE8cJ5BeiLqtJhYdyffnjSfKoN2diyIkYLdqta5AS578Rs OuO4m3x0hY3pNbtnM8yu6M2qsZN8T/O7E78gTWMFIsIM4rh6PbiE7zei/5PzUhVc eRGNkIuFKEldv42n3MOj1dhs/zWQzC5ZAZ68j1rLWEWF4DsjklrSeFCY65qnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVCnb5AAKI0h0b0PYvUcmX4DKKRQwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzAzMzJlMzEzNTMzMmUzMTMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5l8MA0GCSqG SIb3DQEBCwUAA4IBAQDHfuGFymUO0MYq4Ry7Tvoq3kdC9cA+qjZ52Jg43kG6Yb7J zOrb0DrNiQnR46eiVp8jtyU2lodNYQ3HciA9EXwghvITXK1u4kro+ds/gWhnOO3Q 51KKCiWEdJ2KGHiUABs1k2coyL/BvFKBi6BN45+7koBkRodjNOCGKjZ3iHLMk4rA cbcrSZ4HQdfQMnVl5JT2UU4J/GnpoKFyrTFrupoTLk38zpXf1ho2jbkdrgsDT8ep mV9wm3dF8ojMPNMKxWETJo/k5uK1PkxBw72AXNSw2imec8mkObpBa9r58e8FHQr4 7zq5OYvu5si3PB42lWhPGRDNOAcvUs5AaFCn1T0U -----END CERTIFICATE-----Generated at Sat Jun 1 01:58:00 2024 by rpki-client on console-ams.rpki-client.org