$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230332e33302e3233362e302f32332d3234203d3e203535363636.roa File: 3230332e33302e3233362e302f32332d3234203d3e203535363636.roa (raw, json) Hash identifier: oVIpe8U+F7/Jukml6TgrzXjom/RkqzNQHBQktylgz/o= Subject key identifier: 35:AD:7B:A5:27:22:64:85:86:E2:AC:45:5F:F0:7B:29:8F:C6:42:62 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 1D68F92EC95F31F67D07CCEB5D549A8389ADB006 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230332e33302e3233362e302f32332d3234203d3e203535363636.roa Signing time: Mon 31 Jul 2023 00:14:35 +0000 ROA not before: Mon 31 Jul 2023 00:09:35 +0000 ROA not after: Mon 29 Jul 2024 00:14:35 +0000 asID: 55666 IP address blocks: 203.30.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:68:f9:2e:c9:5f:31:f6:7d:07:cc:eb:5d:54:9a:83:89:ad:b0:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 31 00:09:35 2023 GMT Not After : Jul 29 00:14:35 2024 GMT Subject: CN=35AD7BA52722648586E2AC455FF07B298FC64262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fd:a6:8a:ab:0e:f3:84:5c:f7:82:64:67:59: 18:b3:b4:5d:6d:c2:45:31:1f:e5:33:fd:0d:96:ed: e5:d0:80:70:2d:36:d0:82:cc:40:31:21:cb:f8:7a: 77:b8:c7:43:e5:90:f8:28:47:88:3f:aa:0d:80:86: f1:02:96:e2:59:48:bc:66:93:27:2f:de:bb:ee:48: c0:e2:b2:4a:73:fc:8b:58:5a:80:07:61:48:6f:f6: 68:2e:ef:15:74:e9:da:8c:ab:b3:58:c0:00:0c:91: 58:a3:ec:81:d7:2f:ce:c7:c3:a5:56:27:46:ea:b8: 1c:6b:32:fa:eb:7c:34:51:2f:2d:0b:db:c5:4b:de: 33:95:4a:e3:a4:d2:c2:a6:f9:ba:52:3e:11:62:78: 50:f8:24:1d:9e:42:d9:0b:8d:f8:04:70:bc:11:35: 23:26:c7:6c:2f:e9:ca:9a:d8:8b:0f:90:5c:39:d1: 6b:bd:4a:ed:f5:c9:ea:2c:95:e3:02:bc:e2:6f:e0: 5a:e3:f2:a2:c8:0c:0b:e9:1b:2e:71:7b:a0:73:0c: 3f:9c:4d:fb:83:c9:9f:a0:21:85:7a:d7:4e:cd:e2: 4c:b1:b0:42:b2:a3:10:9e:0c:06:20:28:9a:c6:1f: f9:73:47:19:fb:89:55:68:97:bb:e6:8f:2f:25:e3: 8f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AD:7B:A5:27:22:64:85:86:E2:AC:45:5F:F0:7B:29:8F:C6:42:62 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230332e33302e3233362e302f32332d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.30.236.0/23 Signature Algorithm: sha256WithRSAEncryption d8:9e:73:d1:78:22:42:62:75:c0:54:6d:f6:7c:8b:6f:ba:6c: 97:ec:fb:9c:7b:4b:27:09:26:97:a1:f3:6d:87:7b:bc:f4:af: 7a:05:82:95:f5:a2:c7:cc:13:f4:a0:b4:c0:bc:65:02:01:40: 1f:01:5d:6c:9a:f4:9f:47:07:d4:ac:7c:97:ac:1a:d6:1b:00: f7:55:f3:3b:74:9e:f4:3b:32:ef:c0:f3:4a:2c:0b:f0:ef:97: 07:9e:74:99:fa:a0:f2:6f:eb:ff:c3:f4:d3:e2:af:3e:51:84: 34:91:a9:37:a7:f7:19:6c:a9:5c:9d:4d:71:df:fc:4d:4f:da: 8c:a9:02:81:b6:cb:74:de:35:8f:73:27:37:d2:74:ed:1a:bc: 74:7b:4a:8c:d1:ae:b0:d6:00:92:07:3b:57:91:0a:94:48:07: 70:8b:63:3b:00:83:78:c4:48:cc:82:4d:43:18:a0:26:91:fb: a8:48:fe:d3:19:7b:de:72:92:8f:d8:0d:38:d7:47:fc:55:59: e6:a3:6e:6e:d9:ca:55:ab:60:ec:5d:0f:98:1b:02:a6:07:b6: 00:87:82:42:3d:14:7f:18:06:cd:b4:57:ab:84:6e:7a:a8:de: 30:8b:9a:5f:47:1e:fd:74:92:e7:c3:24:1d:38:48:0b:44:5c: 95:82:7d:00 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHWj5LslfMfZ9B8zrXVSag4mtsAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yMzA3MzEwMDA5MzVaFw0yNDA3MjkwMDE0MzVaMDMxMTAvBgNV BAMTKDM1QUQ3QkE1MjcyMjY0ODU4NkUyQUM0NTVGRjA3QjI5OEZDNjQyNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3/aaKqw7zhFz3gmRnWRiztF1t wkUxH+Uz/Q2W7eXQgHAtNtCCzEAxIcv4ene4x0PlkPgoR4g/qg2AhvECluJZSLxm kycv3rvuSMDiskpz/ItYWoAHYUhv9mgu7xV06dqMq7NYwAAMkVij7IHXL87Hw6VW J0bquBxrMvrrfDRRLy0L28VL3jOVSuOk0sKm+bpSPhFieFD4JB2eQtkLjfgEcLwR NSMmx2wv6cqa2IsPkFw50Wu9Su31yeosleMCvOJv4Frj8qLIDAvpGy5xe6BzDD+c TfuDyZ+gIYV6107N4kyxsEKyoxCeDAYgKJrGH/lzRxn7iVVol7vmjy8l44/7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNa17pSciZIWG4qxFX/B7KY/GQmIwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMyMzAzMzJlMzMzMDJlMzIzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcse7DANBgkqhkiG 9w0BAQsFAAOCAQEA2J5z0XgiQmJ1wFRt9nyLb7psl+z7nHtLJwkml6HzbYd7vPSv egWClfWix8wT9KC0wLxlAgFAHwFdbJr0n0cH1Kx8l6wa1hsA91XzO3Se9Dsy78Dz SiwL8O+XB550mfqg8m/r/8P00+KvPlGENJGpN6f3GWypXJ1Ncd/8TU/ajKkCgbbL dN41j3MnN9J07Rq8dHtKjNGusNYAkgc7V5EKlEgHcItjOwCDeMRIzIJNQxigJpH7 qEj+0xl73nKSj9gNONdH/FVZ5qNubtnKVatg7F0PmBsCpge2AIeCQj0UfxgGzbRX q4RueqjeMIuaX0ce/XSS58MkHThIC0RclYJ9AA== -----END CERTIFICATE-----Generated at Fri May 3 04:35:14 2024 by rpki-client on console-ams.rpki-client.org