$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: k7kQ7cJ3LgEJxKFZa2cZnLleD+7M2jMn21zec2FT4Bo= Subject key identifier: 60:61:72:D4:32:3F:C9:F7:49:95:78:34:E5:F6:82:8D:CC:92:BD:D8 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 6E7DE5B028546F7F51102B280C3A498A7B9EFA0A Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:49 +0000 ROA not before: Sun 30 Jul 2023 23:58:49 +0000 ROA not after: Mon 29 Jul 2024 00:03:49 +0000 asID: 9794 IP address blocks: 203.201.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:7d:e5:b0:28:54:6f:7f:51:10:2b:28:0c:3a:49:8a:7b:9e:fa:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:49 2023 GMT Not After : Jul 29 00:03:49 2024 GMT Subject: CN=606172D4323FC9F749957834E5F6828DCC92BDD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d9:75:11:79:d9:27:bc:45:2c:b3:94:7e:15: 4c:af:25:2a:d9:8c:de:bf:e9:14:4e:09:bf:da:b3: 6a:36:50:3f:c3:ba:78:1f:bc:4f:b3:f0:37:9c:8b: bb:d4:47:bd:6c:77:72:d4:d4:f5:32:05:a7:e7:52: c1:33:89:92:cf:22:05:aa:f5:75:ba:32:f4:33:26: cc:c4:99:d3:25:04:ab:43:8f:5d:a8:3e:e3:08:62: 83:c2:a7:94:5e:99:d1:24:ad:3b:67:c3:ae:b7:49: 12:39:4e:20:0c:da:a2:e8:fb:61:e3:94:24:37:08: 9a:b9:f2:e2:d0:af:a2:8c:46:72:b9:b9:2f:1f:63: 5e:22:61:49:cd:b5:9f:aa:58:30:c9:a8:44:ae:f8: 8a:6b:1c:2a:8e:37:1f:6d:ca:cd:2b:9a:ab:0f:a9: 1c:cf:dd:31:e9:27:c3:d6:94:b6:8c:8a:c9:dc:a5: a9:e1:b9:f0:65:d1:89:7e:88:49:56:63:74:08:c9: a8:68:5f:e6:84:47:37:ef:bf:7b:c6:bd:7f:03:80: a0:d9:98:05:df:ab:8e:82:25:98:6d:1b:54:23:c6: c9:2d:77:51:85:10:16:6f:b0:b9:4c:28:12:10:9e: e1:65:db:20:8c:59:9f:62:78:67:75:6a:2f:b1:a3: 22:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:61:72:D4:32:3F:C9:F7:49:95:78:34:E5:F6:82:8D:CC:92:BD:D8 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.163.0/24 Signature Algorithm: sha256WithRSAEncryption 62:a3:d2:2e:20:46:2c:c9:36:dd:d6:f7:08:9b:e9:a0:65:bb: 48:89:82:bc:5f:4f:13:88:03:30:d6:51:82:5f:80:89:19:fc: 48:68:57:00:48:28:94:a9:1d:22:d5:fd:0b:be:21:a1:02:02: e3:8d:77:ca:8a:0b:14:34:e1:a4:ef:ed:5d:25:ef:a5:ff:2f: 55:17:3f:f7:0f:bd:86:42:b8:90:4b:6c:74:6a:06:18:07:58: ec:a3:d0:1e:3e:60:46:7b:bc:c5:ed:1e:65:b3:b9:9a:ab:d4: 4e:84:ab:fa:f1:34:b1:0c:15:16:f0:2d:20:cd:4b:47:67:ae: 12:e9:ec:f2:3a:ca:4b:40:2e:1c:75:7d:0e:c0:8c:0d:32:70: 5d:3c:37:19:b3:a1:77:01:8c:4e:a2:e1:4d:c4:0b:4c:04:2c: 19:7a:8f:31:b0:1a:49:70:08:10:e1:f5:de:2d:46:1c:05:84: f0:90:d5:7a:52:4e:c1:7f:b8:39:fd:53:5c:0d:53:67:3d:fe: f2:da:5e:38:ae:19:f6:20:4a:c4:e5:80:91:ef:39:22:4c:30: 65:d5:1e:66:c9:7e:07:a7:c1:a1:d7:cc:c1:a2:01:71:e8:3b: 29:71:25:27:0d:22:0f:29:7f:79:ea:a9:a6:32:4f:46:8a:26: dd:91:64:a8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbn3lsChUb39RECsoDDpJinue+gowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDlaFw0yNDA3MjkwMDAzNDlaMDMxMTAvBgNV BAMTKDYwNjE3MkQ0MzIzRkM5Rjc0OTk1NzgzNEU1RjY4MjhEQ0M5MkJERDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX2XURedknvEUss5R+FUyvJSrZ jN6/6RROCb/as2o2UD/DungfvE+z8Deci7vUR71sd3LU1PUyBafnUsEziZLPIgWq 9XW6MvQzJszEmdMlBKtDj12oPuMIYoPCp5RemdEkrTtnw663SRI5TiAM2qLo+2Hj lCQ3CJq58uLQr6KMRnK5uS8fY14iYUnNtZ+qWDDJqESu+IprHCqONx9tys0rmqsP qRzP3THpJ8PWlLaMisncpanhufBl0Yl+iElWY3QIyahoX+aERzfvv3vGvX8DgKDZ mAXfq46CJZhtG1Qjxsktd1GFEBZvsLlMKBIQnuFl2yCMWZ9ieGd1ai+xoyKdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYGFy1DI/yfdJlXg05faCjcySvdgwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJozANBgkqhkiG 9w0BAQsFAAOCAQEAYqPSLiBGLMk23db3CJvpoGW7SImCvF9PE4gDMNZRgl+AiRn8 SGhXAEgolKkdItX9C74hoQIC4413yooLFDThpO/tXSXvpf8vVRc/9w+9hkK4kEts dGoGGAdY7KPQHj5gRnu8xe0eZbO5mqvUToSr+vE0sQwVFvAtIM1LR2euEuns8jrK S0AuHHV9DsCMDTJwXTw3GbOhdwGMTqLhTcQLTAQsGXqPMbAaSXAIEOH13i1GHAWE 8JDVelJOwX+4Of1TXA1TZz3+8tpeOK4Z9iBKxOWAke85IkwwZdUeZsl+B6fBodfM waIBceg7KXElJw0iDyl/eeqppjJPRoom3ZFkqA== -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:28 2024 by rpki-client on console-fra.rpki-client.org