$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e32382e302f32332d3234203d3e20313338383731.roa File: 3230322e37352e32382e302f32332d3234203d3e20313338383731.roa (raw, json) Hash identifier: DJWOdeqZTdh4z72E0V29JjO04CbivmrS/lsfkNe6AYE= Subject key identifier: 9C:D9:C7:D0:C5:F7:E0:30:32:9B:AE:48:C9:0C:E7:A3:F3:6F:3D:8D Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 680CC9600736EBE949D94B84C0C13325CF0E7D6F Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e32382e302f32332d3234203d3e20313338383731.roa Signing time: Fri 22 Dec 2023 09:30:54 +0000 ROA not before: Fri 22 Dec 2023 09:25:54 +0000 ROA not after: Fri 20 Dec 2024 09:30:54 +0000 asID: 138871 IP address blocks: 202.75.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:0c:c9:60:07:36:eb:e9:49:d9:4b:84:c0:c1:33:25:cf:0e:7d:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Dec 22 09:25:54 2023 GMT Not After : Dec 20 09:30:54 2024 GMT Subject: CN=9CD9C7D0C5F7E030329BAE48C90CE7A3F36F3D8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ae:f6:48:82:15:45:ff:c6:e4:80:7a:b7:b2: 09:71:f8:96:ee:56:e3:20:63:ad:33:06:db:f7:27: 21:5e:87:b9:87:4e:00:41:6e:71:6c:d1:6d:ae:55: 57:53:03:39:84:77:fe:05:53:c7:bf:bc:fe:82:f4: 2b:ae:9a:62:86:57:1e:3b:c1:2c:e9:fc:78:3a:43: d3:fa:eb:22:c7:cf:9f:97:fb:14:4a:7a:33:65:6b: 10:a7:f9:98:0f:32:ec:72:59:d5:cf:21:44:95:47: 49:be:ff:b3:52:f8:00:33:73:21:89:ac:ff:98:0c: ab:2b:5d:77:ef:c4:3d:3c:4e:fb:6d:81:c7:ca:18: 31:e8:65:7c:25:78:97:c2:9d:cf:9a:da:73:49:c2: 68:59:32:ae:4f:ba:40:1f:ee:ca:5b:50:85:ec:7e: b3:91:47:d8:da:40:c9:51:4a:82:ad:85:48:91:45: 86:d3:ea:de:dd:a4:2a:8b:e2:c7:e7:b0:1b:76:39: 52:59:bc:c8:ab:e0:c2:4a:5f:c4:8c:c2:95:8a:b2: 1c:bf:ea:92:b5:5d:03:e5:9e:2c:be:74:03:bf:63: fc:ce:e8:c3:e9:c0:01:87:48:5d:4e:cd:b9:ff:49: 8a:e0:07:3c:fd:b9:91:79:6f:fa:4f:4b:14:a3:e2: ef:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:D9:C7:D0:C5:F7:E0:30:32:9B:AE:48:C9:0C:E7:A3:F3:6F:3D:8D X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/3230322e37352e32382e302f32332d3234203d3e20313338383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.75.28.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:68:df:d3:61:4d:89:fc:b7:0a:ab:d6:e9:4e:e3:f5:33:18: 5a:16:2c:83:a0:a4:a3:f1:41:56:ba:67:30:f0:39:08:79:d8: fb:98:30:04:5e:96:6b:3c:f5:d4:6a:17:97:f5:29:1b:04:fb: c2:69:c9:50:1d:de:65:af:f5:7c:39:cb:25:d1:9a:60:3e:f4: b7:d0:02:ef:7c:5d:8d:46:cb:ae:25:eb:f9:6b:1e:20:47:72: a7:c6:b6:0b:29:b4:1d:c3:d6:89:57:a1:42:a0:23:89:0e:e7: ff:1a:04:28:37:54:17:29:d7:c2:8a:d9:f6:07:43:af:4d:9a: e2:9b:7b:03:9f:59:02:03:71:e6:0a:2e:e4:61:4c:b8:e7:91: 48:71:9d:5c:98:30:ff:9f:f8:bd:05:2f:a9:37:64:96:f3:a3: 78:c8:1e:39:a6:c4:9b:0d:df:83:f2:97:f4:49:c3:95:3f:6f: 9a:b4:8b:e0:86:09:e3:bb:85:e6:37:1c:bf:20:a1:6e:fa:89: 3c:00:85:1f:40:26:15:84:fb:95:4e:e9:5b:fb:d1:8f:ef:99: 5a:cc:7f:67:5d:04:59:7b:0d:a9:dd:65:1b:41:e4:7f:81:c8: 2f:48:48:0b:a2:22:68:be:66:87:fc:73:d1:98:9d:ff:5a:76: 94:b3:56:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaAzJYAc26+lJ2UuEwMEzJc8OfW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yMzEyMjIwOTI1NTRaFw0yNDEyMjAwOTMwNTRaMDMxMTAvBgNV BAMTKDlDRDlDN0QwQzVGN0UwMzAzMjlCQUU0OEM5MENFN0EzRjM2RjNEOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgrvZIghVF/8bkgHq3sglx+Jbu VuMgY60zBtv3JyFeh7mHTgBBbnFs0W2uVVdTAzmEd/4FU8e/vP6C9CuummKGVx47 wSzp/Hg6Q9P66yLHz5+X+xRKejNlaxCn+ZgPMuxyWdXPIUSVR0m+/7NS+AAzcyGJ rP+YDKsrXXfvxD08TvttgcfKGDHoZXwleJfCnc+a2nNJwmhZMq5PukAf7spbUIXs frORR9jaQMlRSoKthUiRRYbT6t7dpCqL4sfnsBt2OVJZvMir4MJKX8SMwpWKshy/ 6pK1XQPlniy+dAO/Y/zO6MPpwAGHSF1Ozbn/SYrgBzz9uZF5b/pPSxSj4u8JAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnNnH0MX34DAym65IyQzno/NvPY0wHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0NTQ3MTA0LTkzOWUtNDBlMy04 ZmM4LTQyNTIyNjQyMDQ0Yi8wLzMyMzAzMjJlMzczNTJlMzIzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcpLHDANBgkqhkiG 9w0BAQsFAAOCAQEAPmjf02FNify3CqvW6U7j9TMYWhYsg6Cko/FBVrpnMPA5CHnY +5gwBF6Wazz11GoXl/UpGwT7wmnJUB3eZa/1fDnLJdGaYD70t9AC73xdjUbLriXr +WseIEdyp8a2Cym0HcPWiVehQqAjiQ7n/xoEKDdUFynXworZ9gdDr02a4pt7A59Z AgNx5gou5GFMuOeRSHGdXJgw/5/4vQUvqTdklvOjeMgeOabEmw3fg/KX9EnDlT9v mrSL4IYJ47uF5jccvyChbvqJPACFH0AmFYT7lU7pW/vRj++ZWsx/Z10EWXsNqd1l G0Hkf4HIL0hIC6IiaL5mh/xz0Zid/1p2lLNWNg== -----END CERTIFICATE-----Generated at Sun Jun 2 10:44:53 2024 by rpki-client on console-ams.rpki-client.org