$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138392e302f32342d3234203d3e203338373638.roa File: 3230322e38372e3138392e302f32342d3234203d3e203338373638.roa (raw, json) Hash identifier: esXn7/BFoUCUouXlAYK/IpTdwKlPmWRctkY40oiOKec= Subject key identifier: DB:FB:DF:07:A5:74:FB:07:E9:39:3F:BE:3E:38:EE:9D:8F:AC:6E:B1 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 188ED17EE7F67E9F69A3BA58A68B01F10519716A Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138392e302f32342d3234203d3e203338373638.roa Signing time: Mon 06 Nov 2023 07:51:25 +0000 ROA not before: Mon 06 Nov 2023 07:46:25 +0000 ROA not after: Mon 04 Nov 2024 07:51:25 +0000 asID: 38768 IP address blocks: 202.87.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 14:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:8e:d1:7e:e7:f6:7e:9f:69:a3:ba:58:a6:8b:01:f1:05:19:71:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Nov 6 07:46:25 2023 GMT Not After : Nov 4 07:51:25 2024 GMT Subject: CN=DBFBDF07A574FB07E9393FBE3E38EE9D8FAC6EB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ad:a1:cc:3d:4c:7f:70:97:5e:2c:31:6a:f4: 29:f5:80:1b:24:40:af:8c:96:f9:96:7c:0d:82:34: 64:aa:67:03:16:1d:e5:ef:33:eb:72:3c:de:0e:1d: 2a:2e:2e:45:97:a7:70:b3:9e:47:d9:c8:1b:fd:70: 18:d6:f7:9e:7b:96:c9:5f:43:1b:03:d5:d1:73:5f: 99:80:4c:98:8d:14:9e:d5:15:a5:62:ae:a3:18:24: b0:9b:46:a8:ed:61:0b:5d:bc:5a:b2:83:6d:fd:b6: c4:ca:40:6b:75:83:13:4e:74:99:86:49:3d:16:af: b4:7c:21:94:5d:d8:21:1d:84:b3:94:af:15:3e:49: b2:48:91:ba:58:73:fe:d0:c2:77:c1:88:8b:fe:36: bc:16:21:19:c7:58:ad:f5:b7:9c:ad:51:91:c8:aa: 36:9e:8c:31:cc:38:a1:09:e7:92:1e:d4:04:ec:51: af:ee:f4:20:18:d7:e0:7a:7c:1f:29:ee:cc:7c:9b: 11:f3:12:78:bd:6f:39:0e:2c:c5:c1:8b:6d:02:67: c6:19:a4:1e:8e:fa:6c:f1:22:0c:1e:f2:fb:ee:f9: 12:c0:2d:05:38:3e:9c:4a:90:c1:1a:a7:cb:11:cc: 47:66:1d:fa:02:4d:a0:25:1d:c7:c9:86:3c:53:dc: d3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FB:DF:07:A5:74:FB:07:E9:39:3F:BE:3E:38:EE:9D:8F:AC:6E:B1 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138392e302f32342d3234203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.87.189.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:70:9c:15:fb:6c:6c:ea:76:30:07:17:71:c2:b7:bd:1c:0a: d6:b1:c7:71:f6:3d:51:00:c3:02:91:aa:4c:37:4c:a8:c0:f2: 98:10:6a:a9:03:b1:08:ed:2d:d7:23:0f:e6:92:64:a0:01:7f: 04:a3:54:c7:1b:3f:d5:d0:43:1b:90:b6:8b:6a:6d:fd:96:c0: 30:48:79:53:5c:04:28:e4:b5:f2:2e:ab:de:f3:dd:9b:53:e1: ca:44:76:fc:ac:31:03:42:4d:b4:d8:92:97:ed:0b:c1:59:17: 9d:55:e2:a6:16:0c:b0:59:5a:a4:e4:e7:40:3b:30:de:af:16: 73:30:31:22:76:42:e5:28:da:ef:85:53:91:84:a7:f4:bb:a7: e4:80:73:36:90:36:f4:c1:a3:a7:dd:ab:f4:1a:1a:4a:f8:ea: 26:4d:04:4c:b0:89:58:19:a4:8f:33:cc:38:fa:cd:b6:fc:5e: 7a:bc:c6:8e:e7:bc:bb:77:f4:48:95:6e:89:ba:25:25:fb:e1: 02:ed:0e:95:eb:da:64:08:77:d2:4a:80:bc:48:60:56:e9:cf: 85:3c:7f:5e:a8:96:b0:8d:d3:43:34:86:9c:9d:20:25:a5:da: 52:c6:37:5f:64:85:de:cf:1c:e7:d6:d9:8b:0f:29:73:a7:b5: a2:28:84:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGI7Rfuf2fp9po7pYposB8QUZcWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yMzExMDYwNzQ2MjVaFw0yNDExMDQwNzUxMjVaMDMxMTAvBgNV BAMTKERCRkJERjA3QTU3NEZCMDdFOTM5M0ZCRTNFMzhFRTlEOEZBQzZFQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgraHMPUx/cJdeLDFq9Cn1gBsk QK+MlvmWfA2CNGSqZwMWHeXvM+tyPN4OHSouLkWXp3CznkfZyBv9cBjW9557lslf QxsD1dFzX5mATJiNFJ7VFaVirqMYJLCbRqjtYQtdvFqyg239tsTKQGt1gxNOdJmG ST0Wr7R8IZRd2CEdhLOUrxU+SbJIkbpYc/7QwnfBiIv+NrwWIRnHWK31t5ytUZHI qjaejDHMOKEJ55Ie1ATsUa/u9CAY1+B6fB8p7sx8mxHzEni9bzkOLMXBi20CZ8YZ pB6O+mzxIgwe8vvu+RLALQU4PpxKkMEap8sRzEdmHfoCTaAlHcfJhjxT3NONAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2/vfB6V0+wfpOT++PjjunY+sbrEwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzAzMjJlMzgzNzJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpXvTANBgkqhkiG 9w0BAQsFAAOCAQEAL3CcFftsbOp2MAcXccK3vRwK1rHHcfY9UQDDApGqTDdMqMDy mBBqqQOxCO0t1yMP5pJkoAF/BKNUxxs/1dBDG5C2i2pt/ZbAMEh5U1wEKOS18i6r 3vPdm1PhykR2/KwxA0JNtNiSl+0LwVkXnVXiphYMsFlapOTnQDsw3q8WczAxInZC 5Sja74VTkYSn9Lun5IBzNpA29MGjp92r9BoaSvjqJk0ETLCJWBmkjzPMOPrNtvxe erzGjue8u3f0SJVuibolJfvhAu0OlevaZAh30kqAvEhgVunPhTx/XqiWsI3TQzSG nJ0gJaXaUsY3X2SF3s8c59bZiw8pc6e1oiiECA== -----END CERTIFICATE-----Generated at Thu May 2 14:31:46 2024 by rpki-client on console-fra.rpki-client.org