$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31362e302f32302d3234203d3e203338373538.roa File: 3230322e3138302e31362e302f32302d3234203d3e203338373538.roa (raw, json) Hash identifier: Tic1OGq/fKlYPidSSlEIg9yftfnG3NxpauDHhGYjZDM= Subject key identifier: 7A:77:C2:C3:B2:04:EA:6C:BF:9B:83:11:7F:39:8F:55:EA:3B:7D:65 Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Certificate serial: 16B593870E8A1659438887F98C3C33D9AA21F143 Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31362e302f32302d3234203d3e203338373538.roa Signing time: Tue 15 Aug 2023 15:00:00 +0000 ROA not before: Tue 15 Aug 2023 14:55:00 +0000 ROA not after: Tue 13 Aug 2024 15:00:00 +0000 asID: 38758 IP address blocks: 202.180.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:b5:93:87:0e:8a:16:59:43:88:87:f9:8c:3c:33:d9:aa:21:f1:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306 Validity Not Before: Aug 15 14:55:00 2023 GMT Not After : Aug 13 15:00:00 2024 GMT Subject: CN=7A77C2C3B204EA6CBF9B83117F398F55EA3B7D65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:34:97:39:81:ee:5c:87:e7:f7:6e:78:f9:39: 54:29:d8:a4:2c:eb:55:13:d7:5e:50:96:39:37:d5: 3c:2f:ee:36:62:b7:6d:ce:70:27:b1:38:8a:52:34: 40:a6:bf:ed:7a:86:53:70:96:67:e6:74:e5:50:86: db:84:23:ca:21:fd:8d:95:58:16:c1:2e:d0:30:c2: b0:3a:90:48:7f:0e:92:39:a7:08:c4:5f:7d:86:5a: 30:c3:c8:1e:5d:22:c0:f3:21:f7:9c:d6:96:3f:63: b2:e3:5a:fa:37:2d:79:8a:be:39:98:73:23:35:c8: 02:03:0f:d8:7f:20:cd:34:06:6a:35:1a:42:c9:79: 7d:00:a3:a1:ad:4a:19:c6:7c:c8:60:2c:17:28:d7: f9:ae:4a:ed:1f:72:90:56:30:67:f1:9d:c1:fa:fb: 0d:e1:a2:4c:d0:46:db:58:21:1f:4c:0e:d3:79:32: ed:51:24:3b:9b:66:a0:f5:02:3e:49:8f:a6:f4:c0: 88:82:44:2c:e4:d3:e6:a9:ef:f4:f2:ed:b7:d7:e1: bf:03:5b:5d:b5:78:f3:79:fb:eb:c9:c9:e5:fd:9f: 3e:4e:c6:50:6d:3b:40:24:3f:68:0c:68:fa:24:49: fd:05:b9:9c:69:de:64:f2:d1:e5:94:4d:d8:c7:0c: 8b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:77:C2:C3:B2:04:EA:6C:BF:9B:83:11:7F:39:8F:55:EA:3B:7D:65 X509v3 Authority Key Identifier: keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31362e302f32302d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.180.16.0/20 Signature Algorithm: sha256WithRSAEncryption 0d:f5:bd:d8:5e:2d:ff:63:84:a9:79:c5:e7:be:e0:14:16:11: 85:9a:93:95:ec:ac:08:c5:6c:02:91:ea:c9:5b:92:78:dc:54: 3f:4a:d1:c0:da:5d:27:7f:e2:2c:74:e1:0e:5a:e4:b5:30:e7: a0:c2:55:22:10:b8:96:9f:03:a5:19:90:c9:e1:f1:1e:fd:66: 8d:69:52:18:6a:1e:0e:64:7f:c5:c8:93:20:11:3a:e4:1c:dd: 96:c4:aa:25:6a:46:d3:90:14:6f:ea:f7:c0:b2:3b:d8:a1:17: 48:ce:2a:e8:92:ae:30:42:a9:e3:2f:56:e9:20:12:60:7a:ea: c1:d8:63:71:70:b8:e4:07:fb:22:4b:5e:f6:25:0d:5a:a6:97: d3:19:af:72:34:83:b2:74:af:b5:e2:7d:6a:3e:7a:b2:92:a5: 3a:84:b3:e5:86:f4:98:5f:62:68:a0:96:4f:57:f9:f1:b8:65: 4a:50:4b:ac:21:68:4c:35:24:da:9a:4b:b4:e0:2b:7f:5d:ac: ae:5f:52:60:e8:00:a6:a2:17:11:3e:6a:c6:ec:ce:96:46:b3: f1:27:17:52:e7:40:3e:50:5a:f2:44:1a:af:6e:fc:84:b5:cd: bb:01:6a:78:61:cb:c1:ca:10:7f:ef:e8:b6:73:ac:7b:fe:d3: c9:79:04:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFrWThw6KFllDiIf5jDwz2aoh8UMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF QzdDQTMwNjAeFw0yMzA4MTUxNDU1MDBaFw0yNDA4MTMxNTAwMDBaMDMxMTAvBgNV BAMTKDdBNzdDMkMzQjIwNEVBNkNCRjlCODMxMTdGMzk4RjU1RUEzQjdENjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzNJc5ge5ch+f3bnj5OVQp2KQs 61UT115Qljk31Twv7jZit23OcCexOIpSNECmv+16hlNwlmfmdOVQhtuEI8oh/Y2V WBbBLtAwwrA6kEh/DpI5pwjEX32GWjDDyB5dIsDzIfec1pY/Y7LjWvo3LXmKvjmY cyM1yAIDD9h/IM00Bmo1GkLJeX0Ao6GtShnGfMhgLBco1/muSu0fcpBWMGfxncH6 +w3hokzQRttYIR9MDtN5Mu1RJDubZqD1Aj5Jj6b0wIiCRCzk0+ap7/Ty7bfX4b8D W121ePN5++vJyeX9nz5OxlBtO0AkP2gMaPokSf0FuZxp3mTy0eWUTdjHDIu7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUenfCw7IE6my/m4MRfzmPVeo7fWUwHwYDVR0j BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05 Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMjJlMzEzODMwMmUzMTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMq0EDANBgkqhkiG 9w0BAQsFAAOCAQEADfW92F4t/2OEqXnF577gFBYRhZqTleysCMVsApHqyVuSeNxU P0rRwNpdJ3/iLHThDlrktTDnoMJVIhC4lp8DpRmQyeHxHv1mjWlSGGoeDmR/xciT IBE65BzdlsSqJWpG05AUb+r3wLI72KEXSM4q6JKuMEKp4y9W6SASYHrqwdhjcXC4 5Af7Ikte9iUNWqaX0xmvcjSDsnSvteJ9aj56spKlOoSz5Yb0mF9iaKCWT1f58bhl SlBLrCFoTDUk2ppLtOArf12srl9SYOgApqIXET5qxuzOlkaz8ScXUudAPlBa8kQa r278hLXNuwFqeGHLwcoQf+/otnOse/7TyXkEwA== -----END CERTIFICATE-----Generated at Sat Jun 1 14:35:01 2024 by rpki-client on console-fra.rpki-client.org