$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3132382e36342e302f31392d3234203d3e203138313033.roa File: 3230332e3132382e36342e302f31392d3234203d3e203138313033.roa (raw, json) Hash identifier: 8hwlm/Z0U+/RAFuKgLdTx73mCCHCk03KNSgZxl+H+VI= Subject key identifier: 6B:41:72:1C:BC:73:A8:CC:C0:77:DA:22:3C:09:79:16:DF:5A:35:B4 Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 4E2A994640AC9F8A404A7E1E982E6C4F06F47CAD Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3132382e36342e302f31392d3234203d3e203138313033.roa Signing time: Wed 20 Sep 2023 12:00:04 +0000 ROA not before: Wed 20 Sep 2023 11:55:04 +0000 ROA not after: Wed 18 Sep 2024 12:00:04 +0000 asID: 18103 IP address blocks: 203.128.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 12:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:2a:99:46:40:ac:9f:8a:40:4a:7e:1e:98:2e:6c:4f:06:f4:7c:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Sep 20 11:55:04 2023 GMT Not After : Sep 18 12:00:04 2024 GMT Subject: CN=6B41721CBC73A8CCC077DA223C097916DF5A35B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3c:de:d5:21:55:ec:17:d2:0a:62:b0:0e:06: 02:2f:f1:44:69:97:e4:a7:e0:4e:de:50:e7:0e:39: ab:ac:81:11:9f:91:29:21:78:77:25:fe:bb:a2:d2: 6f:0a:06:40:99:be:35:7e:79:7a:d9:d5:00:1e:ce: c1:6a:21:6e:39:fd:3e:e4:07:76:4b:a4:7d:14:ed: 90:85:ff:a8:4f:d7:cf:34:f2:f8:e6:a2:86:77:c4: d1:77:2a:a5:16:0a:7e:c1:9e:bc:0d:3c:3d:23:e4: 85:fb:78:17:26:81:a7:76:a7:b7:39:28:d5:cd:50: b2:71:c1:52:4d:e3:6b:21:1c:07:0e:e9:bd:1b:1d: 7b:de:06:cb:42:f1:b0:dd:0d:6d:ee:3f:f2:d8:9d: e5:9f:5d:5d:44:8d:af:47:5b:9a:09:7b:12:13:81: 6c:cc:e8:17:2c:74:07:e6:2b:ff:0f:5f:2c:6b:75: 0c:5a:72:cc:00:f4:c5:e3:9b:5a:25:fc:dd:ae:ab: a9:a7:40:59:00:b1:8c:c1:f5:f4:0a:db:36:7c:34: aa:be:e6:84:4c:ea:55:34:36:ea:f2:8f:cb:31:37: 6c:b6:4f:de:3a:61:1d:63:ee:0f:f7:8a:8f:f0:6e: 37:82:a3:64:5f:65:f2:71:d8:c8:47:3d:0c:a9:56: 2b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:41:72:1C:BC:73:A8:CC:C0:77:DA:22:3C:09:79:16:DF:5A:35:B4 X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3132382e36342e302f31392d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.64.0/19 Signature Algorithm: sha256WithRSAEncryption 55:83:70:35:34:00:c5:58:f7:98:d6:3d:22:30:96:bc:0f:27: ab:86:94:22:8b:e5:1d:03:01:6d:8b:67:47:fc:4d:fc:59:29: 50:5c:d2:86:d3:7d:f0:81:58:1e:e2:9b:5a:eb:a8:27:76:df: d2:f5:f7:16:5e:7a:ed:97:49:79:19:31:af:64:a8:fc:d7:7f: 29:05:d6:3d:a7:4f:7d:9e:f3:f4:2b:da:ad:02:ef:60:a4:cd: 51:19:b4:21:a5:fb:de:af:2b:f7:2e:35:3f:4b:9a:18:cd:13: e1:dc:2d:96:7f:f1:38:17:fb:af:c6:de:0e:5c:f9:0b:a5:6b: db:2b:d4:8a:13:96:eb:f5:98:66:36:22:fb:cc:75:a5:bd:1d: c3:f9:df:bc:7c:0b:c2:3b:59:a0:ca:42:55:2c:97:05:b4:3b: e8:55:3a:81:16:7c:45:25:97:d9:29:74:22:1d:2a:7b:27:c6: 80:91:e3:1b:ad:47:cb:8b:ac:4c:e9:04:a6:4f:85:9b:a3:6b: fb:59:98:42:22:3c:83:0d:8a:b5:3d:b4:0a:01:fe:ad:0d:22: c3:e7:3a:08:28:02:92:d3:3e:02:1a:d8:93:1d:6e:84:f7:58: 39:c6:63:3b:15:59:21:c9:05:b8:2c:78:e5:4a:c5:61:ae:4e: 6e:4a:a3:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTiqZRkCsn4pASn4emC5sTwb0fK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yMzA5MjAxMTU1MDRaFw0yNDA5MTgxMjAwMDRaMDMxMTAvBgNV BAMTKDZCNDE3MjFDQkM3M0E4Q0NDMDc3REEyMjNDMDk3OTE2REY1QTM1QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3PN7VIVXsF9IKYrAOBgIv8URp l+Sn4E7eUOcOOausgRGfkSkheHcl/rui0m8KBkCZvjV+eXrZ1QAezsFqIW45/T7k B3ZLpH0U7ZCF/6hP18808vjmooZ3xNF3KqUWCn7BnrwNPD0j5IX7eBcmgad2p7c5 KNXNULJxwVJN42shHAcO6b0bHXveBstC8bDdDW3uP/LYneWfXV1Eja9HW5oJexIT gWzM6BcsdAfmK/8PXyxrdQxacswA9MXjm1ol/N2uq6mnQFkAsYzB9fQK2zZ8NKq+ 5oRM6lU0Nuryj8sxN2y2T946YR1j7g/3io/wbjeCo2RfZfJx2MhHPQypViv9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUa0FyHLxzqMzAd9oiPAl5Ft9aNbQwHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMyMzAzMzJlMzEzMjM4MmUzNjM0MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzEzODMxMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcuAQDANBgkqhkiG 9w0BAQsFAAOCAQEAVYNwNTQAxVj3mNY9IjCWvA8nq4aUIovlHQMBbYtnR/xN/Fkp UFzShtN98IFYHuKbWuuoJ3bf0vX3Fl567ZdJeRkxr2So/Nd/KQXWPadPfZ7z9Cva rQLvYKTNURm0IaX73q8r9y41P0uaGM0T4dwtln/xOBf7r8beDlz5C6Vr2yvUihOW 6/WYZjYi+8x1pb0dw/nfvHwLwjtZoMpCVSyXBbQ76FU6gRZ8RSWX2Sl0Ih0qeyfG gJHjG61Hy4usTOkEpk+Fm6Nr+1mYQiI8gw2KtT20CgH+rQ0iw+c6CCgCktM+AhrY kx1uhPdYOcZjOxVZIckFuCx45UrFYa5Obkqjqg== -----END CERTIFICATE-----Generated at Fri Jun 21 09:35:51 2024 by rpki-client on console-fra.rpki-client.org