$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230332e33302e3235352e302f32342d3234203d3e203435333235.roa File: 3230332e33302e3235352e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: ev9Sfh4c3Sd4QHoPA+1B/jKWdWKopnjWx9Fv0IL+qP8= Subject key identifier: B6:EA:BF:79:8B:2B:05:7C:88:62:2A:65:4C:28:7B:52:1B:B4:82:8C Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 1C295D6F24AEBC4368989252AA69D4B6D84B2C03 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230332e33302e3235352e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Dec 2023 07:54:32 +0000 ROA not before: Tue 05 Dec 2023 07:49:32 +0000 ROA not after: Tue 03 Dec 2024 07:54:32 +0000 asID: 45325 IP address blocks: 203.30.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:29:5d:6f:24:ae:bc:43:68:98:92:52:aa:69:d4:b6:d8:4b:2c:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Dec 5 07:49:32 2023 GMT Not After : Dec 3 07:54:32 2024 GMT Subject: CN=B6EABF798B2B057C88622A654C287B521BB4828C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:51:41:20:93:cf:45:d2:a0:41:a2:d1:8c:19: c9:47:51:d3:32:fb:38:5f:26:0d:ab:80:f8:17:b3: 4f:2d:ac:15:13:98:91:dd:74:ec:07:1f:2c:d6:bf: 1d:52:04:97:62:ab:4e:00:7e:f6:b1:54:e1:81:3b: 02:c4:6f:95:b3:5f:6c:b1:2d:b0:e0:8b:e3:60:cf: 5e:27:ee:aa:be:2c:79:02:5f:d0:0c:10:e2:9e:66: 08:8e:1b:94:68:31:44:5f:78:cb:d9:ca:2f:3e:49: 86:a8:ad:d6:ed:b9:67:6d:d2:85:ea:e5:27:1a:c4: e7:2d:76:76:87:7b:8f:07:21:06:6d:87:6d:4f:49: 58:78:aa:46:f6:2d:74:22:bc:d3:b8:d5:87:20:c5: ef:d7:a2:61:a5:88:1c:54:dd:3d:1c:50:a8:a9:ad: 7e:06:92:8b:9e:2b:65:08:ab:ab:81:27:a2:a7:9a: 08:1f:eb:b1:53:54:44:11:e2:06:49:9c:7e:d5:ed: 00:06:56:38:b4:a1:c3:b9:4e:dd:5d:6f:a3:5e:44: 91:21:e1:c6:5f:4a:e5:22:fa:a6:4b:0b:24:95:30: e1:be:7d:c8:df:c7:3e:3f:d2:9a:1b:4d:36:7a:a7: aa:b5:df:64:74:4a:ba:8b:98:87:6b:94:1f:87:42: 3e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:EA:BF:79:8B:2B:05:7C:88:62:2A:65:4C:28:7B:52:1B:B4:82:8C X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230332e33302e3235352e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.30.255.0/24 Signature Algorithm: sha256WithRSAEncryption 17:55:a8:97:69:4d:87:95:23:fc:39:30:48:58:4f:d7:76:1e: 37:f6:a9:36:f5:c7:50:e0:ba:c4:b0:a4:f9:8b:9b:84:e7:99: d6:fa:12:d3:57:1b:0a:dc:0e:53:76:c5:ff:65:cb:e6:c8:71: e3:ce:c0:f5:bc:35:dd:98:43:04:d6:5c:91:64:68:64:a2:0b: 31:53:11:93:ed:70:f3:a8:de:c1:0d:6a:a0:46:3b:90:c7:27: c5:21:24:c0:09:82:6c:76:bf:0f:ef:83:db:da:53:33:05:22: 40:39:c3:ed:63:dc:a9:be:a1:90:23:0c:0e:62:c1:d4:48:b9: 19:48:39:96:56:3e:71:c5:e3:df:6e:89:f6:0e:54:44:2a:79: 9f:10:cd:ef:1b:2a:c3:c5:2f:7d:9f:5e:d9:ad:85:7e:02:7d: 86:e6:45:27:6d:9c:20:51:cf:5f:cd:a9:e8:a4:e4:71:d2:a0: e1:a3:da:4f:93:77:f7:3f:3c:a9:0a:33:fe:a2:b0:f3:de:26: 1a:d1:79:92:e3:b8:86:fa:cb:0e:39:60:7b:f8:c1:92:34:78: ba:fb:a7:06:11:64:16:49:f3:9b:3c:e5:73:37:0d:99:83:02: 87:cd:27:1f:8b:7e:16:38:a9:51:07:6c:a7:2b:eb:01:2f:fc: 09:8b:ef:a0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHCldbySuvENomJJSqmnUtthLLAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yMzEyMDUwNzQ5MzJaFw0yNDEyMDMwNzU0MzJaMDMxMTAvBgNV BAMTKEI2RUFCRjc5OEIyQjA1N0M4ODYyMkE2NTRDMjg3QjUyMUJCNDgyOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4UUEgk89F0qBBotGMGclHUdMy +zhfJg2rgPgXs08trBUTmJHddOwHHyzWvx1SBJdiq04AfvaxVOGBOwLEb5WzX2yx LbDgi+Ngz14n7qq+LHkCX9AMEOKeZgiOG5RoMURfeMvZyi8+SYaordbtuWdt0oXq 5ScaxOctdnaHe48HIQZth21PSVh4qkb2LXQivNO41Ycgxe/XomGliBxU3T0cUKip rX4GkoueK2UIq6uBJ6Knmggf67FTVEQR4gZJnH7V7QAGVji0ocO5Tt1db6NeRJEh 4cZfSuUi+qZLCySVMOG+fcjfxz4/0pobTTZ6p6q132R0SrqLmIdrlB+HQj6HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtuq/eYsrBXyIYiplTCh7Uhu0gowwHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzAzMzJlMzMzMDJlMzIzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMse/zANBgkqhkiG 9w0BAQsFAAOCAQEAF1Wol2lNh5Uj/DkwSFhP13YeN/apNvXHUOC6xLCk+YubhOeZ 1voS01cbCtwOU3bF/2XL5shx487A9bw13ZhDBNZckWRoZKILMVMRk+1w86jewQ1q oEY7kMcnxSEkwAmCbHa/D++D29pTMwUiQDnD7WPcqb6hkCMMDmLB1Ei5GUg5llY+ ccXj326J9g5URCp5nxDN7xsqw8UvfZ9e2a2FfgJ9huZFJ22cIFHPX82p6KTkcdKg 4aPaT5N39z88qQoz/qKw894mGtF5kuO4hvrLDjlge/jBkjR4uvunBhFkFknzmzzl czcNmYMCh80nH4t+FjipUQdspyvrAS/8CYvvoA== -----END CERTIFICATE-----Generated at Sun May 5 22:36:38 2024 by rpki-client on console-ams.rpki-client.org