$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3230312e35302e302f32332d3234203d3e203138313033.roa File: 3230332e3230312e35302e302f32332d3234203d3e203138313033.roa (raw, json) Hash identifier: MosHCbwL2AtflLMBBtZChoEeZyYEflwDmtz0o+G6o0E= Subject key identifier: 3C:52:6D:65:53:C5:5E:77:EB:9B:E7:FC:CA:DD:D2:FC:25:37:83:6A Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 7FC2F2DEEAD84BDDD3A30A5F57A3EB4C2999D444 Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3230312e35302e302f32332d3234203d3e203138313033.roa Signing time: Wed 20 Sep 2023 11:00:01 +0000 ROA not before: Wed 20 Sep 2023 10:55:01 +0000 ROA not after: Wed 18 Sep 2024 11:00:01 +0000 asID: 18103 IP address blocks: 203.201.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 12:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c2:f2:de:ea:d8:4b:dd:d3:a3:0a:5f:57:a3:eb:4c:29:99:d4:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Sep 20 10:55:01 2023 GMT Not After : Sep 18 11:00:01 2024 GMT Subject: CN=3C526D6553C55E77EB9BE7FCCADDD2FC2537836A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c6:23:21:79:f8:e8:a8:64:0c:ab:3c:a1:c4: 44:b5:0f:24:98:63:df:3d:24:a9:61:c5:50:17:17: bb:98:ab:74:6a:28:1f:25:f6:35:22:05:17:06:27: a0:ff:b3:93:98:44:c5:f3:67:86:52:f4:5f:f1:6c: 5d:48:f6:95:7f:2d:89:6a:cd:c7:25:cb:aa:72:e9: 00:4d:5c:76:ac:96:a7:f5:6f:15:be:ad:47:1f:8c: 96:10:d0:ae:f1:21:60:67:55:d8:b6:34:0b:da:82: b1:3d:f9:09:ae:03:83:79:0a:62:cf:de:89:5a:09: 3d:61:df:f0:82:c2:a5:96:b8:ca:96:d9:df:0b:53: 53:10:81:45:6a:2c:b6:5e:e5:56:17:ab:5d:53:97: 75:e9:90:5d:ea:27:89:f7:a3:9e:40:9b:fb:c5:00: 77:17:a5:d9:17:65:60:0e:cb:f9:9e:1f:8f:69:99: e6:7b:d8:0a:6a:0c:6f:d9:69:52:72:d9:de:58:96: f4:8e:4c:ed:70:3b:2f:a8:f5:28:75:4a:d2:03:06: ed:5e:69:05:00:2d:f8:cd:9b:17:72:51:21:a4:4f: 07:f2:61:62:53:11:a1:1c:b6:10:94:09:f2:d0:e2: 96:9d:c3:f4:3e:44:9a:cf:60:45:dc:c5:3b:c5:51: 1e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:52:6D:65:53:C5:5E:77:EB:9B:E7:FC:CA:DD:D2:FC:25:37:83:6A X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3230332e3230312e35302e302f32332d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.50.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:ae:48:5c:42:c4:51:7e:c9:66:66:dd:7a:75:7f:ad:4d:41: ce:d2:ec:df:15:a4:a8:e6:8a:7a:33:0e:41:25:e7:54:20:ff: a2:34:10:2b:28:6a:36:a1:e3:d6:41:74:48:9a:cd:53:4c:80: 29:62:8f:10:b5:73:94:cd:1f:56:2d:02:62:ef:b8:0f:9c:94: 6e:4a:26:b2:3a:8d:6b:c4:8e:8c:04:3d:1d:8f:4b:a1:d0:e4: cb:94:ec:e9:61:0d:8a:ac:fe:75:35:ab:a0:b7:41:db:67:e4: 58:33:ee:32:90:82:24:a3:0c:48:03:e6:9c:a1:1e:1a:4c:eb: de:f8:e1:5b:9c:8b:7e:7d:68:8d:4a:8c:87:23:7b:1c:fd:6b: 7b:ab:8d:23:96:57:6f:82:16:81:b9:1d:64:1c:d3:27:5e:93: 33:e7:8b:86:70:25:92:dd:22:a2:87:86:bd:54:0d:e7:00:dd: 31:98:77:16:d4:ab:3d:56:3f:df:94:d1:07:5a:bf:e5:85:02: 8f:09:4d:e6:50:de:5d:9a:8c:fe:60:2c:e2:b4:22:ec:b8:5f: c3:42:54:36:a6:4f:e8:25:db:39:f7:ce:e3:67:41:46:63:7c: a5:27:4d:21:a3:a9:2e:6b:9c:d8:79:e4:a8:67:f1:85:fe:27: 7a:85:f2:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf8Ly3urYS93TowpfV6PrTCmZ1EQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yMzA5MjAxMDU1MDFaFw0yNDA5MTgxMTAwMDFaMDMxMTAvBgNV BAMTKDNDNTI2RDY1NTNDNTVFNzdFQjlCRTdGQ0NBREREMkZDMjUzNzgzNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpxiMhefjoqGQMqzyhxES1DySY Y989JKlhxVAXF7uYq3RqKB8l9jUiBRcGJ6D/s5OYRMXzZ4ZS9F/xbF1I9pV/LYlq zccly6py6QBNXHaslqf1bxW+rUcfjJYQ0K7xIWBnVdi2NAvagrE9+QmuA4N5CmLP 3olaCT1h3/CCwqWWuMqW2d8LU1MQgUVqLLZe5VYXq11Tl3XpkF3qJ4n3o55Am/vF AHcXpdkXZWAOy/meH49pmeZ72ApqDG/ZaVJy2d5YlvSOTO1wOy+o9Sh1StIDBu1e aQUALfjNmxdyUSGkTwfyYWJTEaEcthCUCfLQ4padw/Q+RJrPYEXcxTvFUR7HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPFJtZVPFXnfrm+f8yt3S/CU3g2owHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMyMzAzMzJlMzIzMDMxMmUzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzODMxMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcvJMjANBgkqhkiG 9w0BAQsFAAOCAQEAn65IXELEUX7JZmbdenV/rU1BztLs3xWkqOaKejMOQSXnVCD/ ojQQKyhqNqHj1kF0SJrNU0yAKWKPELVzlM0fVi0CYu+4D5yUbkomsjqNa8SOjAQ9 HY9LodDky5Ts6WENiqz+dTWroLdB22fkWDPuMpCCJKMMSAPmnKEeGkzr3vjhW5yL fn1ojUqMhyN7HP1re6uNI5ZXb4IWgbkdZBzTJ16TM+eLhnAlkt0iooeGvVQN5wDd MZh3FtSrPVY/35TRB1q/5YUCjwlN5lDeXZqM/mAs4rQi7Lhfw0JUNqZP6CXbOffO 42dBRmN8pSdNIaOpLmuc2HnkqGfxhf4neoXy4Q== -----END CERTIFICATE-----Generated at Fri Jun 21 09:35:51 2024 by rpki-client on console-fra.rpki-client.org