$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e3138322e3137342e302f32342d3234203d3e203538343738.roa File: 3230322e3138322e3137342e302f32342d3234203d3e203538343738.roa (raw, json) Hash identifier: 7eM9RrtFays5qssDRC0e9EOdIAfkT5kQ1UuTJVbuoEU= Subject key identifier: A2:D3:99:B6:F0:21:A7:D4:B1:97:2F:58:F4:78:F8:03:AB:90:7C:67 Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 7FDD908EFB96B0F3CE51A911D01A81196E10CFCD Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e3138322e3137342e302f32342d3234203d3e203538343738.roa Signing time: Sat 02 Mar 2024 11:02:03 +0000 ROA not before: Sat 02 Mar 2024 10:57:03 +0000 ROA not after: Sat 01 Mar 2025 11:02:03 +0000 asID: 58478 IP address blocks: 202.182.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:dd:90:8e:fb:96:b0:f3:ce:51:a9:11:d0:1a:81:19:6e:10:cf:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Mar 2 10:57:03 2024 GMT Not After : Mar 1 11:02:03 2025 GMT Subject: CN=A2D399B6F021A7D4B1972F58F478F803AB907C67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0c:3b:15:63:aa:32:59:d6:c2:96:5f:8d:25: 3d:e7:6d:4e:6c:60:bb:05:4a:2a:1f:d3:da:b4:63: 57:50:98:e4:64:cb:e3:3a:fd:49:1f:2e:8c:38:d8: 8a:38:6f:9a:e1:cf:23:5f:d4:a8:a6:86:22:14:82: 25:12:42:6f:bf:30:51:cf:88:1e:47:69:67:2c:2e: 67:37:d4:39:2c:ab:0b:47:45:95:7c:25:0d:c3:3d: d1:63:64:83:20:0f:9c:1c:67:f6:a3:2a:de:84:2b: 3f:cd:58:35:24:35:a9:50:3d:d1:9c:8b:b1:45:a4: 91:39:2a:11:c1:6e:a5:ea:45:be:b7:d3:31:36:1e: 16:67:3c:07:5f:f5:44:c5:f5:a4:d4:80:12:3d:4d: ac:62:e3:ad:25:d1:d3:a4:a9:8c:16:ee:e0:81:fc: 0b:85:bb:1d:a4:be:44:91:a4:f3:f8:2f:88:a9:2d: c0:4c:57:56:52:80:e9:a9:da:78:bf:92:7b:ee:34: 21:52:94:8d:cc:e5:86:92:c3:ec:3f:a0:90:2e:92: 64:68:6b:ca:8b:1f:c2:e7:cd:75:1b:07:6c:e4:de: 65:1e:3a:5b:3a:1c:40:ab:a2:da:ab:76:0a:b1:cf: 38:f7:fb:7c:2e:1e:21:d6:36:41:16:3f:6b:a8:c2: 7d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D3:99:B6:F0:21:A7:D4:B1:97:2F:58:F4:78:F8:03:AB:90:7C:67 X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3230322e3138322e3137342e302f32342d3234203d3e203538343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.182.174.0/24 Signature Algorithm: sha256WithRSAEncryption 86:a1:5a:46:f8:0f:c7:e9:09:22:39:7f:36:b9:12:04:cb:cb: a8:7b:2c:fe:ed:c0:30:36:66:2b:ce:cc:b4:7c:f8:0a:36:e7: 78:e2:9e:bc:f9:cd:d9:af:b2:e4:45:ed:f9:1c:68:63:88:f8: 66:a2:fd:5e:8b:f0:2f:a0:a0:ed:48:da:0c:e0:32:0d:30:5b: 5e:e0:1a:88:94:97:25:65:e2:2d:93:4c:68:e9:57:84:c0:15: 54:6e:f2:1a:e5:2c:4a:07:3c:87:77:03:92:6f:b1:8e:be:a4: 5a:dc:22:25:f0:06:55:1d:68:48:80:4f:03:cd:39:70:34:09: b4:38:48:a1:7e:cf:2e:ae:3f:1b:f6:f3:05:44:c8:4f:c3:7e: 52:a0:1d:5e:42:9a:2c:ab:63:9d:95:97:a9:b4:7b:8c:ee:c7: ea:f2:7e:89:57:7c:53:21:58:37:ed:ce:65:8e:90:2b:ca:7f: aa:d3:cd:8d:32:cb:0b:c8:60:b2:c9:71:c1:ad:94:16:7a:b3: 28:9b:45:7d:f8:a4:dc:88:78:1c:cf:d3:02:d6:27:f0:96:fb: a5:13:63:32:d4:45:ac:a2:9e:3f:0d:f4:3d:7e:ef:fc:2b:dc: 11:c6:9a:85:18:f9:eb:db:0a:5a:72:d9:d1:1c:fd:ff:68:6d: cb:1a:05:76 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf92QjvuWsPPOUakR0BqBGW4Qz80wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNDAzMDIxMDU3MDNaFw0yNTAzMDExMTAyMDNaMDMxMTAvBgNV BAMTKEEyRDM5OUI2RjAyMUE3RDRCMTk3MkY1OEY0NzhGODAzQUI5MDdDNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcDDsVY6oyWdbCll+NJT3nbU5s YLsFSiof09q0Y1dQmORky+M6/UkfLow42Io4b5rhzyNf1KimhiIUgiUSQm+/MFHP iB5HaWcsLmc31DksqwtHRZV8JQ3DPdFjZIMgD5wcZ/ajKt6EKz/NWDUkNalQPdGc i7FFpJE5KhHBbqXqRb630zE2HhZnPAdf9UTF9aTUgBI9Taxi460l0dOkqYwW7uCB /AuFux2kvkSRpPP4L4ipLcBMV1ZSgOmp2ni/knvuNCFSlI3M5YaSw+w/oJAukmRo a8qLH8LnzXUbB2zk3mUeOls6HECrotqrdgqxzzj3+3wuHiHWNkEWP2uown0/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUotOZtvAhp9Sxly9Y9Hj4A6uQfGcwHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMjJlMzEzODMyMmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyrauMA0GCSqG SIb3DQEBCwUAA4IBAQCGoVpG+A/H6QkiOX82uRIEy8uoeyz+7cAwNmYrzsy0fPgK Nud44p68+c3Zr7LkRe35HGhjiPhmov1ei/AvoKDtSNoM4DINMFte4BqIlJclZeIt k0xo6VeEwBVUbvIa5SxKBzyHdwOSb7GOvqRa3CIl8AZVHWhIgE8DzTlwNAm0OEih fs8urj8b9vMFRMhPw35SoB1eQposq2OdlZeptHuM7sfq8n6JV3xTIVg37c5ljpAr yn+q082NMssLyGCyyXHBrZQWerMom0V9+KTciHgcz9MC1ifwlvulE2My1EWsop4/ DfQ9fu/8K9wRxpqFGPnr2wpactnRHP3/aG3LGgV2 -----END CERTIFICATE-----Generated at Sun Jun 2 09:14:18 2024 by rpki-client on console-ams.rpki-client.org