$ rpki-client -vvf repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa File: 3230322e3135332e31362e302f32302d3234203d3e203233363636.roa (raw, json) Hash identifier: 04dkuUuzayVDzCSTgBDDy95l+pLZ4t/y1+DxbHF9tJQ= Subject key identifier: D3:54:8A:EE:7F:76:B0:41:41:93:A6:A9:B1:88:B8:96:A5:2B:51:8A Certificate issuer: /CN=0BB3D1874063172B5374865233070332233FB7B3 Certificate serial: 350EC8D598F93CC9F2B8BE4A037EF1932C3AFC95 Authority key identifier: 0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa Signing time: Mon 31 Jul 2023 00:09:39 +0000 ROA not before: Mon 31 Jul 2023 00:04:39 +0000 ROA not after: Mon 29 Jul 2024 00:09:39 +0000 asID: 23666 IP address blocks: 202.153.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 17:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:0e:c8:d5:98:f9:3c:c9:f2:b8:be:4a:03:7e:f1:93:2c:3a:fc:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB3D1874063172B5374865233070332233FB7B3 Validity Not Before: Jul 31 00:04:39 2023 GMT Not After : Jul 29 00:09:39 2024 GMT Subject: CN=D3548AEE7F76B0414193A6A9B188B896A52B518A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0c:38:0a:40:fc:88:14:27:93:ce:7e:ff:05: f5:e1:11:7a:8c:06:22:7c:e5:07:97:e0:af:24:8a: 76:a2:28:9b:8f:99:51:87:86:5e:69:f1:70:9a:4b: dc:e8:1a:f3:22:27:84:48:5d:1a:98:ea:1e:e7:70: ed:44:ab:65:c0:c8:80:39:5f:93:46:11:fe:69:5d: 89:bd:1c:d4:73:02:cf:4e:9e:84:d4:18:24:10:b8: ce:79:b0:58:f0:2a:52:cf:22:34:b5:8e:36:fc:da: dd:2a:30:03:08:e5:05:7e:19:49:9f:d4:35:13:d5: a7:65:f1:6f:b5:90:62:a7:54:4d:59:a4:ac:a1:ea: 23:81:c8:c8:33:b3:4c:75:7f:91:e1:8c:f0:87:c1: c6:b2:ec:fd:e2:f1:82:be:6a:b1:d7:e3:47:45:2c: 85:f5:52:f9:f2:fa:c9:57:ab:ce:4c:28:27:26:7c: a1:f2:1f:3a:1c:b6:de:06:05:96:83:ac:ad:5f:24: f8:95:89:8f:91:80:a4:87:a6:45:42:aa:8b:42:09: 74:43:e5:6b:bf:37:12:a6:33:7b:00:06:00:ff:81: c0:84:ef:8a:fd:fe:a3:c5:be:c5:1a:16:71:fa:a2: 55:ea:3f:07:ab:bf:8b:2a:30:a3:84:c5:63:0e:91: 05:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:54:8A:EE:7F:76:B0:41:41:93:A6:A9:B1:88:B8:96:A5:2B:51:8A X509v3 Authority Key Identifier: keyid:0B:B3:D1:87:40:63:17:2B:53:74:86:52:33:07:03:32:23:3F:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/0BB3D1874063172B5374865233070332233FB7B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB3D1874063172B5374865233070332233FB7B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d5908b83-7f44-46e0-8535-6fb84b59d58a/0/3230322e3135332e31362e302f32302d3234203d3e203233363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.153.16.0/20 Signature Algorithm: sha256WithRSAEncryption 53:23:7b:7c:6f:30:2a:77:d7:c4:7b:c0:79:02:0b:7a:6a:24: 45:30:47:8c:15:0e:1c:ae:37:fd:7e:05:68:e3:40:27:1d:bb: c8:9f:e0:8d:fc:ca:cc:20:a9:4c:32:d7:75:2a:a0:b9:4a:0f: 41:9f:4c:55:99:ae:be:4e:e2:13:c4:c0:f8:e1:d7:ca:f9:8c: 2a:9c:87:ce:25:84:75:b1:ba:a4:52:0b:6e:2d:91:01:2c:91: e8:c7:bc:70:e3:6d:4e:2b:7e:81:47:93:b6:3f:a5:99:ec:4b: b1:de:b1:f5:8a:e1:74:db:49:9a:24:c2:18:3d:fb:e4:db:39: 9d:aa:21:25:1a:0a:76:a3:45:10:9f:69:2f:c5:72:90:47:0f: f0:71:3e:27:30:c1:a1:c5:b2:ce:0a:b0:2c:ba:29:1c:00:ce: 39:4b:c2:d9:3f:3e:d1:7f:bd:e2:6e:2b:28:c1:ab:b1:fa:07: 94:b2:22:a0:6e:43:8e:78:2d:bd:38:8c:93:c1:93:39:d2:98: d0:f3:39:5a:b7:0c:e5:5c:7c:2a:f3:f6:28:98:d3:7d:92:e2: af:90:4f:bc:0d:35:31:34:fe:4b:6c:4a:87:c8:b0:24:54:b9: 15:fa:8d:e1:d7:41:42:35:a1:9d:c1:b8:0b:78:cb:6b:26:14: 5a:60:5f:55 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNQ7I1Zj5PMnyuL5KA37xkyw6/JUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCM0QxODc0MDYzMTcyQjUzNzQ4NjUyMzMwNzAzMzIy MzNGQjdCMzAeFw0yMzA3MzEwMDA0MzlaFw0yNDA3MjkwMDA5MzlaMDMxMTAvBgNV BAMTKEQzNTQ4QUVFN0Y3NkIwNDE0MTkzQTZBOUIxODhCODk2QTUyQjUxOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdDDgKQPyIFCeTzn7/BfXhEXqM BiJ85QeX4K8kinaiKJuPmVGHhl5p8XCaS9zoGvMiJ4RIXRqY6h7ncO1Eq2XAyIA5 X5NGEf5pXYm9HNRzAs9OnoTUGCQQuM55sFjwKlLPIjS1jjb82t0qMAMI5QV+GUmf 1DUT1adl8W+1kGKnVE1ZpKyh6iOByMgzs0x1f5HhjPCHwcay7P3i8YK+arHX40dF LIX1Uvny+slXq85MKCcmfKHyHzoctt4GBZaDrK1fJPiViY+RgKSHpkVCqotCCXRD 5Wu/NxKmM3sABgD/gcCE74r9/qPFvsUaFnH6olXqPwerv4sqMKOExWMOkQXZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU01SK7n92sEFBk6apsYi4lqUrUYowHwYDVR0j BBgwFoAUC7PRh0BjFytTdIZSMwcDMiM/t7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTkwOGI4My03ZjQ0LTQ2ZTAtODUzNS02ZmI4NGI1OWQ1OGEvMC8wQkIzRDE4NzQw NjMxNzJCNTM3NDg2NTIzMzA3MDMzMjIzM0ZCN0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCM0QxODc0MDYzMTcyQjUzNzQ4NjUyMzMwNzAzMzIyMzNG QjdCMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1OTA4YjgzLTdmNDQtNDZlMC04 NTM1LTZmYjg0YjU5ZDU4YS8wLzMyMzAzMjJlMzEzNTMzMmUzMTM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzIzMzM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMqZEDANBgkqhkiG 9w0BAQsFAAOCAQEAUyN7fG8wKnfXxHvAeQILemokRTBHjBUOHK43/X4FaONAJx27 yJ/gjfzKzCCpTDLXdSqguUoPQZ9MVZmuvk7iE8TA+OHXyvmMKpyHziWEdbG6pFIL bi2RASyR6Me8cONtTit+gUeTtj+lmexLsd6x9YrhdNtJmiTCGD375Ns5naohJRoK dqNFEJ9pL8VykEcP8HE+JzDBocWyzgqwLLopHADOOUvC2T8+0X+94m4rKMGrsfoH lLIioG5DjngtvTiMk8GTOdKY0PM5WrcM5Vx8KvP2KJjTfZLir5BPvA01MTT+S2xK h8iwJFS5FfqN4ddBQjWhncG4C3jLayYUWmBfVQ== -----END CERTIFICATE-----Generated at Fri May 31 17:43:04 2024 by rpki-client on console-fra.rpki-client.org