$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235352e302f32342d3234203d3e203338313433.roa File: 3230322e3136392e3235352e302f32342d3234203d3e203338313433.roa (raw, json) Hash identifier: qGzMEmph7QyAN8EASZRcaQ7PE47UEDToZVQsS8AxozU= Subject key identifier: D3:4D:3D:37:D4:EA:0B:07:30:26:60:85:98:E5:E6:49:5A:6E:EC:56 Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Certificate serial: 5D159C12B01EDEA7AC6AB76B7975CB987A82BEFE Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235352e302f32342d3234203d3e203338313433.roa Signing time: Tue 18 Jul 2023 05:00:01 +0000 ROA not before: Tue 18 Jul 2023 04:55:01 +0000 ROA not after: Tue 16 Jul 2024 05:00:01 +0000 asID: 38143 IP address blocks: 202.169.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:15:9c:12:b0:1e:de:a7:ac:6a:b7:6b:79:75:cb:98:7a:82:be:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325 Validity Not Before: Jul 18 04:55:01 2023 GMT Not After : Jul 16 05:00:01 2024 GMT Subject: CN=D34D3D37D4EA0B073026608598E5E6495A6EEC56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8d:90:29:10:98:dc:cb:6f:fc:d6:e8:ea:0a: 86:e6:e2:5b:21:bf:28:62:d4:3f:eb:cb:76:83:7c: 3a:b7:8f:13:fb:c2:dc:6b:b8:0d:79:2a:ba:2b:8e: 38:74:4b:3d:1d:c6:a1:0d:d1:d9:12:30:0b:79:04: 84:0c:63:ee:e8:c9:22:86:f7:ed:45:d1:22:27:57: a5:a3:3c:13:38:c2:55:84:f4:3e:eb:9a:8a:50:e6: f9:d8:9e:92:29:99:14:96:3f:13:38:d2:68:e9:71: db:d3:6c:67:d2:77:6e:50:d8:a7:dd:1c:e0:87:98: 8b:87:50:db:bc:9c:64:78:1b:e2:48:b7:95:25:67: 77:01:1a:3b:e4:84:f5:23:eb:af:71:e8:bd:32:08: 18:3c:93:b2:a0:35:21:2a:43:44:d8:52:71:3c:4a: 5c:f8:74:39:72:53:10:ca:f9:52:b8:09:5d:3c:ec: b5:0c:67:c6:70:a4:33:d2:49:b5:d5:43:4d:f1:01: ef:cf:f9:96:01:97:8b:e9:18:96:37:8f:68:37:6c: 5c:a4:70:27:8d:d4:8a:97:65:32:34:42:97:87:00: 06:c7:85:2f:ce:b4:9c:be:7b:01:92:26:18:cb:45: 12:a1:7d:61:27:c0:0d:96:11:17:de:f1:3e:e2:41: 8a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:4D:3D:37:D4:EA:0B:07:30:26:60:85:98:E5:E6:49:5A:6E:EC:56 X509v3 Authority Key Identifier: keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235352e302f32342d3234203d3e203338313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.169.255.0/24 Signature Algorithm: sha256WithRSAEncryption 88:57:6b:7a:1f:c8:8e:df:16:fb:1b:1a:18:74:aa:9f:61:b3: 3e:ca:0b:54:04:80:81:77:dc:24:e1:c4:f1:23:80:95:a8:6a: 3e:79:0a:b9:89:d6:c2:bb:20:3f:bf:fa:31:54:5b:1e:4e:4c: 5b:92:ff:a0:e7:bc:d6:da:53:37:d4:ea:19:32:24:78:39:ce: 0b:50:00:b8:9d:44:07:3b:cc:0a:ad:68:e6:c6:82:98:83:ab: 49:e2:c1:76:05:91:2b:a7:a6:dc:67:7a:57:5d:ff:fe:48:cd: 3e:ec:65:4e:53:fe:60:bd:cd:39:23:24:41:0b:98:89:d2:78: d1:98:fa:a6:f3:ab:0a:a1:b0:c1:95:0e:5f:80:d6:38:59:0c: 1b:6c:af:58:4d:23:b9:37:18:4c:95:72:f6:67:35:ea:9d:cc: 07:5c:f2:78:cb:83:91:7e:7e:00:1b:35:cc:20:f1:52:1c:1f: 04:0a:c2:f6:94:6b:19:c6:0a:0c:9d:4f:5b:b4:47:d5:ba:c7: 4f:6e:ce:24:b6:a3:72:61:81:b0:aa:7d:0f:73:29:f9:0d:11: 60:f1:f4:6f:52:bc:c7:f9:30:7e:f5:99:b8:ee:e7:cc:4e:30: b2:fc:52:5b:b0:39:1d:47:d6:7f:45:91:dd:ef:b9:65:e4:14: 95:65:88:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXRWcErAe3qesardreXXLmHqCvv4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFC MUNFMDMyNTAeFw0yMzA3MTgwNDU1MDFaFw0yNDA3MTYwNTAwMDFaMDMxMTAvBgNV BAMTKEQzNEQzRDM3RDRFQTBCMDczMDI2NjA4NTk4RTVFNjQ5NUE2RUVDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrjZApEJjcy2/81ujqCobm4lsh vyhi1D/ry3aDfDq3jxP7wtxruA15Krorjjh0Sz0dxqEN0dkSMAt5BIQMY+7oySKG 9+1F0SInV6WjPBM4wlWE9D7rmopQ5vnYnpIpmRSWPxM40mjpcdvTbGfSd25Q2Kfd HOCHmIuHUNu8nGR4G+JIt5UlZ3cBGjvkhPUj669x6L0yCBg8k7KgNSEqQ0TYUnE8 Slz4dDlyUxDK+VK4CV087LUMZ8ZwpDPSSbXVQ03xAe/P+ZYBl4vpGJY3j2g3bFyk cCeN1IqXZTI0QpeHAAbHhS/OtJy+ewGSJhjLRRKhfWEnwA2WERfe8T7iQYqfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0009N9TqCwcwJmCFmOXmSVpu7FYwHwYDVR0j BBgwFoAUNCBhuX/5flGAUR84sKDcurHOAyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2I5YTRiOS00YWUzLTQ2N2EtYjkxOS00MTBlMTQyYjY3OWYvMC8zNDIwNjFCOTdG Rjk3RTUxODA1MTFGMzhCMEEwRENCQUIxQ0UwMzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQyMDYxQjk3RkY5N0U1MTgwNTExRjM4QjBBMERDQkFCMUNF MDMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYjlhNGI5LTRhZTMtNDY3YS1i OTE5LTQxMGUxNDJiNjc5Zi8wLzMyMzAzMjJlMzEzNjM5MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqn/MA0GCSqG SIb3DQEBCwUAA4IBAQCIV2t6H8iO3xb7GxoYdKqfYbM+ygtUBICBd9wk4cTxI4CV qGo+eQq5idbCuyA/v/oxVFseTkxbkv+g57zW2lM31OoZMiR4Oc4LUAC4nUQHO8wK rWjmxoKYg6tJ4sF2BZErp6bcZ3pXXf/+SM0+7GVOU/5gvc05IyRBC5iJ0njRmPqm 86sKobDBlQ5fgNY4WQwbbK9YTSO5NxhMlXL2ZzXqncwHXPJ4y4ORfn4AGzXMIPFS HB8ECsL2lGsZxgoMnU9btEfVusdPbs4ktqNyYYGwqn0Pcyn5DRFg8fRvUrzH+TB+ 9Zm47ufMTjCy/FJbsDkdR9Z/RZHd77ll5BSVZYgQ -----END CERTIFICATE-----Generated at Sun Jun 2 09:14:57 2024 by rpki-client on console-fra.rpki-client.org