$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa File: 3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa (raw, json) Hash identifier: R8TOmwiF71O1g20ysRkcYfJl5WFGfntC8tdC5JgbRCI= Subject key identifier: 57:EE:BE:8E:3A:4E:F2:44:F7:A0:85:ED:24:94:0A:CE:E9:F7:71:6D Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 6C1180772F04BCBF82FE5EB2667B0D20926D39B9 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa Signing time: Thu 31 Aug 2023 09:00:01 +0000 ROA not before: Thu 31 Aug 2023 08:55:01 +0000 ROA not after: Thu 29 Aug 2024 09:00:01 +0000 asID: 38156 IP address blocks: 203.190.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:11:80:77:2f:04:bc:bf:82:fe:5e:b2:66:7b:0d:20:92:6d:39:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Aug 31 08:55:01 2023 GMT Not After : Aug 29 09:00:01 2024 GMT Subject: CN=57EEBE8E3A4EF244F7A085ED24940ACEE9F7716D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:84:ce:cb:6b:95:1a:0f:be:7c:3e:ae:a3:5a: 70:cd:87:8d:ee:51:7c:56:16:c7:83:ee:a5:8e:b6: 7c:da:b0:9d:87:58:bf:1b:5e:9e:38:8e:f5:eb:ea: 47:fa:14:20:ca:30:3a:c7:1a:93:2e:09:b4:b4:ab: 5d:55:85:08:6f:39:73:f1:42:5b:38:bc:3e:fb:bd: 48:7c:c2:17:a9:85:63:67:12:7b:d9:62:74:4b:dc: e8:cd:82:33:80:25:53:9b:f4:65:fd:92:00:de:ed: 4c:0b:ae:f5:d6:a0:c3:61:ae:f7:da:f4:dc:eb:4a: af:16:3d:44:b8:5b:0b:e8:dc:3c:93:2d:a6:52:86: d9:6b:ca:5a:e3:d9:72:43:35:24:00:bd:41:f5:c8: 9c:16:84:85:bb:90:0b:56:8c:56:d2:1c:b9:f2:ce: 85:32:04:f8:1c:36:80:9f:10:69:08:32:4f:0a:34: 02:96:52:80:1c:db:46:42:b2:a6:32:a7:a3:45:1b: 8f:da:00:f9:71:a8:37:70:14:cb:14:b4:21:d2:f4: eb:3d:4d:45:f5:ab:36:30:40:d2:1b:7c:04:c4:bc: 00:d2:64:42:94:90:08:93:f2:e9:53:ae:96:61:13: 68:10:6c:0e:f4:a1:10:c7:e7:92:14:ac:ec:fa:b1: 30:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:EE:BE:8E:3A:4E:F2:44:F7:A0:85:ED:24:94:0A:CE:E9:F7:71:6D X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/3230332e3139302e3131322e302f32312d3231203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.112.0/21 Signature Algorithm: sha256WithRSAEncryption ca:66:52:10:30:1a:af:b6:19:83:48:ec:d6:77:ec:31:49:58: da:7e:25:6a:ab:44:6d:b2:fd:ba:fc:72:f5:9f:e2:4a:f2:b0: 46:ef:be:cf:2d:6f:c9:7a:57:d1:4d:4a:e0:d9:54:ad:f4:c8: fe:c9:ff:22:1a:10:c3:ec:f3:fb:57:40:f5:bf:37:83:f4:ae: 58:27:47:a8:6b:29:00:4b:e4:dd:24:17:70:31:29:30:e2:80: 5e:88:da:0d:7d:a3:87:59:df:6f:b3:c4:68:c7:9f:e0:af:c0: fd:b2:a8:77:5f:15:c7:60:27:3e:56:fd:d1:04:59:ec:32:4a: 63:ac:d4:5b:5b:66:61:52:6f:10:ae:8c:43:0d:c4:3c:d0:fb: ed:b1:04:0c:e7:4d:09:b4:13:b2:0b:85:bc:d4:f4:3f:f3:7d: f4:a2:a3:c7:8a:3e:b0:76:b6:8b:ef:2b:43:78:53:61:e4:a5: 2c:ed:2a:cf:f7:57:af:67:be:1d:57:62:df:30:2f:f3:34:e6: 2f:fa:13:87:1f:4c:9a:6d:21:aa:e4:55:05:13:16:3b:74:19: b7:69:9b:30:98:a1:8c:4c:38:b3:bf:44:6a:6f:40:af:ac:1c: 64:95:4f:eb:72:8c:67:2f:8a:54:56:59:9e:e4:19:15:d0:57: b1:6c:2b:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbBGAdy8EvL+C/l6yZnsNIJJtObkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA4MzEwODU1MDFaFw0yNDA4MjkwOTAwMDFaMDMxMTAvBgNV BAMTKDU3RUVCRThFM0E0RUYyNDRGN0EwODVFRDI0OTQwQUNFRTlGNzcxNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPhM7La5UaD758Pq6jWnDNh43u UXxWFseD7qWOtnzasJ2HWL8bXp44jvXr6kf6FCDKMDrHGpMuCbS0q11VhQhvOXPx Qls4vD77vUh8whephWNnEnvZYnRL3OjNgjOAJVOb9GX9kgDe7UwLrvXWoMNhrvfa 9NzrSq8WPUS4Wwvo3DyTLaZShtlrylrj2XJDNSQAvUH1yJwWhIW7kAtWjFbSHLny zoUyBPgcNoCfEGkIMk8KNAKWUoAc20ZCsqYyp6NFG4/aAPlxqDdwFMsUtCHS9Os9 TUX1qzYwQNIbfATEvADSZEKUkAiT8ulTrpZhE2gQbA70oRDH55IUrOz6sTCdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUV+6+jjpO8kT3oIXtJJQKzun3cW0wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzAzMzJlMzEzOTMwMmUzMTMxMzIyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDy75wMA0GCSqG SIb3DQEBCwUAA4IBAQDKZlIQMBqvthmDSOzWd+wxSVjafiVqq0Rtsv26/HL1n+JK 8rBG777PLW/JelfRTUrg2VSt9Mj+yf8iGhDD7PP7V0D1vzeD9K5YJ0eoaykAS+Td JBdwMSkw4oBeiNoNfaOHWd9vs8Rox5/gr8D9sqh3XxXHYCc+Vv3RBFnsMkpjrNRb W2ZhUm8QroxDDcQ80PvtsQQM500JtBOyC4W81PQ/8330oqPHij6wdraL7ytDeFNh 5KUs7SrP91evZ74dV2LfMC/zNOYv+hOHH0yabSGq5FUFExY7dBm3aZswmKGMTDiz v0Rqb0CvrBxklU/rcoxnL4pUVlme5BkV0FexbCu6 -----END CERTIFICATE-----Generated at Sun May 5 17:20:20 2024 by rpki-client on console-fra.rpki-client.org