$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136372e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136372e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 25Ta2E2dKN9d+M1Rr4EsVR8g3paT//vkGeOn8E++YUw= Subject key identifier: 3F:5F:B5:77:8D:10:4E:08:CA:31:95:5B:53:70:8F:CC:3C:5F:53:F6 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 09EDF5175CEBB01B718F99D06FB15F774E22948B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136372e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:52 +0000 ROA not before: Sun 30 Jul 2023 23:58:52 +0000 ROA not after: Mon 29 Jul 2024 00:03:52 +0000 asID: 9794 IP address blocks: 203.201.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ed:f5:17:5c:eb:b0:1b:71:8f:99:d0:6f:b1:5f:77:4e:22:94:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:52 2023 GMT Not After : Jul 29 00:03:52 2024 GMT Subject: CN=3F5FB5778D104E08CA31955B53708FCC3C5F53F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:47:de:e8:c9:23:b6:15:8a:49:d3:ca:e1:c3: d4:5e:06:21:f0:fd:8b:42:7e:25:1f:23:f0:c8:f6: d4:0c:8e:ae:f1:51:a5:2c:cf:c5:5a:e2:6b:de:4d: 69:94:02:02:34:4b:1a:51:6d:d9:dd:39:3e:50:de: ff:c7:eb:e9:89:c7:c7:11:ad:ab:cb:2d:a1:2f:cd: 9f:01:eb:ae:db:44:14:79:0c:9d:c1:88:c2:bd:93: 96:f2:f6:9a:2c:56:99:98:9d:6f:ef:0b:51:38:1c: 61:d1:59:e3:60:51:68:cb:de:3d:73:f1:6f:33:5a: 4e:b3:15:e5:3f:00:ec:90:3c:77:7b:a8:53:f5:e4: 22:19:92:9e:d1:43:f0:49:00:67:57:69:af:8a:08: df:ab:5e:c9:4a:93:93:91:9b:77:71:d0:7f:2a:85: b9:dd:6f:39:e8:b7:fc:3a:81:ea:9b:4f:7b:64:e8: d2:c5:45:f3:dd:b3:f9:8c:c0:fa:49:a1:cf:28:ff: b5:01:92:64:fb:f5:5b:63:6b:94:b1:8e:a2:33:68: 3c:e0:d7:e6:0f:6d:99:61:39:de:40:8b:e7:0b:bd: 81:b5:26:1f:b5:34:08:5e:f2:a4:44:a9:c2:25:8c: a2:61:9f:6f:2e:38:b2:0c:56:2a:6f:d2:ad:aa:9d: 49:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:5F:B5:77:8D:10:4E:08:CA:31:95:5B:53:70:8F:CC:3C:5F:53:F6 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136372e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.167.0/24 Signature Algorithm: sha256WithRSAEncryption 01:4b:60:f9:e4:16:f5:73:79:84:68:97:18:94:66:b3:18:2d: 7a:b2:67:e9:5d:73:6a:7f:da:77:94:e9:a2:1a:7c:b3:19:5d: 21:4c:4a:df:a8:aa:80:5b:4c:05:db:7e:31:fb:d4:8e:ac:18: d9:09:33:3b:e8:b6:02:90:42:b8:95:ad:cc:35:15:f6:a6:b6: bb:56:6d:3c:6d:16:7d:9e:93:29:47:ba:8a:f8:0a:b9:e5:f3: 49:97:88:07:e0:8d:c3:5b:6a:4c:9a:b1:cf:b7:14:b1:f6:28: cb:ec:2c:96:a6:c6:a1:2b:ce:b4:9b:b2:f3:eb:ad:18:d7:f0: 83:ae:09:ae:f4:20:91:70:b4:40:a0:db:f0:9b:0e:ae:8a:99: 14:87:60:a6:21:34:b3:e5:a1:f1:fb:43:f0:57:41:84:57:18: b8:22:34:96:d7:17:9d:f9:97:a5:57:a5:52:2f:01:77:72:5f: 17:c9:67:05:ee:a8:fa:1a:0d:2c:dc:fc:14:35:12:07:be:6a: 6f:2b:c2:04:84:e7:aa:db:3a:d8:32:9f:bd:47:d7:1a:2b:93: 5e:ee:6b:9b:26:d0:1c:90:3c:3a:8a:79:9d:4b:d5:ed:36:6d: 8a:de:11:29:4c:73:fb:a1:fb:4d:82:da:a7:35:63:67:b1:21: 3a:7c:58:0d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCe31F1zrsBtxj5nQb7Ffd04ilIswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTJaFw0yNDA3MjkwMDAzNTJaMDMxMTAvBgNV BAMTKDNGNUZCNTc3OEQxMDRFMDhDQTMxOTU1QjUzNzA4RkNDM0M1RjUzRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1R97oySO2FYpJ08rhw9ReBiHw /YtCfiUfI/DI9tQMjq7xUaUsz8Va4mveTWmUAgI0SxpRbdndOT5Q3v/H6+mJx8cR ravLLaEvzZ8B667bRBR5DJ3BiMK9k5by9posVpmYnW/vC1E4HGHRWeNgUWjL3j1z 8W8zWk6zFeU/AOyQPHd7qFP15CIZkp7RQ/BJAGdXaa+KCN+rXslKk5ORm3dx0H8q hbndbznot/w6geqbT3tk6NLFRfPds/mMwPpJoc8o/7UBkmT79Vtja5SxjqIzaDzg 1+YPbZlhOd5Ai+cLvYG1Jh+1NAhe8qREqcIljKJhn28uOLIMVipv0q2qnUkzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUP1+1d40QTgjKMZVbU3CPzDxfU/YwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJpzANBgkqhkiG 9w0BAQsFAAOCAQEAAUtg+eQW9XN5hGiXGJRmsxgterJn6V1zan/ad5Tpohp8sxld IUxK36iqgFtMBdt+MfvUjqwY2QkzO+i2ApBCuJWtzDUV9qa2u1ZtPG0WfZ6TKUe6 ivgKueXzSZeIB+CNw1tqTJqxz7cUsfYoy+wslqbGoSvOtJuy8+utGNfwg64JrvQg kXC0QKDb8JsOroqZFIdgpiE0s+Wh8ftD8FdBhFcYuCI0ltcXnfmXpVelUi8Bd3Jf F8lnBe6o+hoNLNz8FDUSB75qbyvCBITnqts62DKfvUfXGiuTXu5rmybQHJA8Oop5 nUvV7TZtit4RKUxz+6H7TYLapzVjZ7EhOnxYDQ== -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:28 2024 by rpki-client on console-fra.rpki-client.org