$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: Fkhd3P2T3BCiKtcU4w4xzsiijKPiBWz32OQKjn5L0D4= Subject key identifier: 9F:8F:CA:6B:6B:BC:A6:71:83:9C:6A:A1:58:66:F3:E1:E4:D3:18:8A Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 7AA6BA00E3FAA1ADB199BAA39D55C954E74A01C2 Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jul 2023 05:00:01 +0000 ROA not before: Tue 18 Jul 2023 04:55:01 +0000 ROA not after: Tue 16 Jul 2024 05:00:01 +0000 asID: 38143 IP address blocks: 202.169.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:a6:ba:00:e3:fa:a1:ad:b1:99:ba:a3:9d:55:c9:54:e7:4a:01:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jul 18 04:55:01 2023 GMT Not After : Jul 16 05:00:01 2024 GMT Subject: CN=9F8FCA6B6BBCA671839C6AA15866F3E1E4D3188A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7f:16:b7:d2:13:88:00:54:e9:26:8c:85:3a: b4:5b:5a:fc:9d:ab:22:b7:63:77:d8:2c:e7:11:4e: 55:25:44:6d:5b:eb:af:95:fc:20:af:1c:92:95:12: 77:f7:58:07:d2:f9:04:43:5f:01:a5:27:8b:83:19: f6:d8:90:55:3e:4f:ef:cd:7b:b6:15:83:38:34:c7: 29:6b:3c:ec:ab:cc:5d:99:a8:29:d1:61:70:03:06: 25:7d:21:f7:a6:c0:b0:18:ce:61:84:77:2a:11:4e: 50:f8:3c:f7:3d:e6:46:b7:f7:ec:5a:f8:74:46:c4: 5e:a9:01:30:ad:9a:00:87:e6:96:f8:77:64:57:25: c5:48:ef:37:a5:ca:1c:7f:20:db:ad:41:b4:45:72: 2b:5f:dc:3c:9f:a4:ff:58:8e:71:ef:71:0e:79:e9: 36:26:2e:da:45:7e:ad:ac:89:4b:9d:20:b3:91:f7: 90:64:2e:32:bf:7f:dd:4a:a4:27:13:e3:ad:c8:8b: 38:67:c2:9b:e8:09:6f:a1:6b:0f:76:8f:b7:ce:42: 93:b2:98:fe:bc:c8:b1:30:d9:19:ff:33:d2:97:d7: b5:ed:2c:3d:b9:f6:f5:d1:7a:50:06:09:ce:3c:15: 19:b1:b7:c3:ac:86:89:d5:3d:d5:6d:96:c9:7d:17: 32:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:8F:CA:6B:6B:BC:A6:71:83:9C:6A:A1:58:66:F3:E1:E4:D3:18:8A X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234342e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.244.0/24 Signature Algorithm: sha256WithRSAEncryption 70:5f:42:34:25:c3:69:d1:fe:90:be:9d:6c:0d:a5:60:52:b5: 9f:8d:b0:25:ba:7b:61:cb:c3:76:43:26:77:d8:10:1e:62:cb: fe:67:41:52:ba:75:58:33:c7:c5:fd:3f:e7:2a:d0:14:2e:d4: f0:10:1e:6b:05:0e:84:75:ab:6c:f5:67:b7:e1:ea:a3:42:32: f3:62:03:d1:47:71:d5:f8:e2:15:8b:8e:36:e4:98:dd:a0:86: 80:52:f1:76:35:35:48:a3:66:04:bd:49:6d:19:55:92:bb:1f: ae:54:bd:d0:c2:53:b1:e2:24:02:f5:ce:06:3d:44:56:06:6a: ea:ed:63:ff:9d:ce:bc:0c:42:1f:3e:77:92:aa:d8:2d:ed:10: 9e:ff:52:f3:a5:ae:38:da:dc:26:b0:10:88:1b:27:16:00:3d: b6:f0:24:ba:bb:3b:74:9d:29:25:02:cb:db:ef:37:fc:f1:1a: 82:51:89:22:48:83:f1:c9:e3:c8:eb:02:73:df:0d:0b:88:03: 7e:c0:3e:94:cf:69:fb:d5:fe:11:e8:ef:dd:c1:5e:23:e8:f8: 0f:a7:80:12:ed:ae:2f:4c:b1:6c:32:97:28:6b:57:db:bf:0a: 56:34:16:61:09:91:9a:67:90:85:8d:47:5b:de:08:23:af:c6: da:f0:fc:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeqa6AOP6oa2xmbqjnVXJVOdKAcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yMzA3MTgwNDU1MDFaFw0yNDA3MTYwNTAwMDFaMDMxMTAvBgNV BAMTKDlGOEZDQTZCNkJCQ0E2NzE4MzlDNkFBMTU4NjZGM0UxRTREMzE4OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2fxa30hOIAFTpJoyFOrRbWvyd qyK3Y3fYLOcRTlUlRG1b66+V/CCvHJKVEnf3WAfS+QRDXwGlJ4uDGfbYkFU+T+/N e7YVgzg0xylrPOyrzF2ZqCnRYXADBiV9IfemwLAYzmGEdyoRTlD4PPc95ka39+xa +HRGxF6pATCtmgCH5pb4d2RXJcVI7zelyhx/INutQbRFcitf3DyfpP9YjnHvcQ55 6TYmLtpFfq2siUudILOR95BkLjK/f91KpCcT463IizhnwpvoCW+haw92j7fOQpOy mP68yLEw2Rn/M9KX17XtLD259vXRelAGCc48FRmxt8OshonVPdVtlsl9FzKDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn4/Ka2u8pnGDnGqhWGbz4eTTGIowHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn0MA0GCSqG SIb3DQEBCwUAA4IBAQBwX0I0JcNp0f6Qvp1sDaVgUrWfjbAlunthy8N2QyZ32BAe Ysv+Z0FSunVYM8fF/T/nKtAULtTwEB5rBQ6Edats9We34eqjQjLzYgPRR3HV+OIV i4425JjdoIaAUvF2NTVIo2YEvUltGVWSux+uVL3QwlOx4iQC9c4GPURWBmrq7WP/ nc68DEIfPneSqtgt7RCe/1Lzpa442twmsBCIGycWAD228CS6uzt0nSklAsvb7zf8 8RqCUYkiSIPxyePI6wJz3w0LiAN+wD6Uz2n71f4R6O/dwV4j6PgPp4AS7a4vTLFs Mpcoa1fbvwpWNBZhCZGaZ5CFjUdb3ggjr8ba8PxZ -----END CERTIFICATE-----Generated at Sun Jun 2 09:14:57 2024 by rpki-client on console-fra.rpki-client.org