$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: +D6VYP1h8iQ71vMHlGAvYmuWcQmNCKVslHrDsgpDbgM= Subject key identifier: 3D:2D:F0:C0:51:C7:74:AA:85:7A:3A:07:E6:6D:A4:AF:BD:6C:7A:0D Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2F8E60985DED9D80B7305B5BFE20F49D2621843B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa Signing time: Thu 07 Sep 2023 09:00:00 +0000 ROA not before: Thu 07 Sep 2023 08:55:00 +0000 ROA not after: Thu 05 Sep 2024 09:00:00 +0000 asID: 9794 IP address blocks: 203.201.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:8e:60:98:5d:ed:9d:80:b7:30:5b:5b:fe:20:f4:9d:26:21:84:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Sep 7 08:55:00 2023 GMT Not After : Sep 5 09:00:00 2024 GMT Subject: CN=3D2DF0C051C774AA857A3A07E66DA4AFBD6C7A0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:87:e3:a2:75:c9:be:e4:a2:e1:47:41:d8:43: 5a:9c:26:4c:15:b2:a0:29:ba:93:86:b4:11:28:2f: 72:7a:c4:f6:eb:14:98:26:87:01:cb:c9:c7:01:e8: 13:4a:cd:69:c4:0d:76:83:4a:34:be:99:7d:ac:3e: b1:7b:11:78:37:a8:da:75:c2:5f:56:76:bf:41:5c: c1:4d:4f:f1:fe:11:ec:a8:be:3b:4b:ac:cd:58:ad: dd:a3:20:48:20:7c:df:8c:c9:fb:35:f2:8a:86:b2: 57:11:ee:a1:d1:ca:f8:36:1a:76:f8:3a:3b:d2:c3: 8b:02:61:aa:35:27:f6:15:a1:8f:3a:d5:e2:fd:b7: 71:37:6d:a0:73:2d:4e:f8:a2:3e:7c:26:84:c5:d6: 1b:bf:7c:3c:1c:4a:b3:fb:53:e0:eb:30:c6:a1:99: 04:40:df:b3:1e:86:89:46:ac:f1:9c:ee:20:e5:b2: 49:42:42:12:ba:0e:b3:35:d6:c2:d1:20:5a:09:b5: a7:2d:cb:48:94:42:9c:92:6a:91:20:b4:b0:a0:c9: 37:73:0b:96:8c:b2:81:15:5a:56:08:98:ba:c2:76: 22:e7:22:1c:9f:f0:9a:c8:67:29:92:0f:b0:85:92: 9d:a5:d1:e5:c3:7d:11:76:43:b9:c4:7e:d9:1e:8e: a7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:2D:F0:C0:51:C7:74:AA:85:7A:3A:07:E6:6D:A4:AF:BD:6C:7A:0D X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.168.0/24 Signature Algorithm: sha256WithRSAEncryption 08:7d:32:10:39:da:c9:15:13:9a:eb:da:9d:22:d3:b7:80:34: 91:45:f1:65:c8:18:a4:dd:f7:45:1f:39:58:47:a9:9c:29:aa: 63:8e:4b:ca:e3:db:db:69:8b:35:12:1a:ac:ed:25:e0:4e:55: 3f:39:a2:5b:6c:1b:80:a9:c9:32:ab:b9:fa:ec:38:f8:e6:70: 52:66:9f:fa:f5:a5:64:b3:ef:46:42:f2:88:f3:86:cd:21:1a: 4f:50:2a:84:68:e5:ac:01:35:b8:7d:a6:d0:fe:8d:8d:9e:16: 52:15:a6:8f:49:fa:4f:1e:93:d9:d0:93:1d:7d:29:10:9f:af: d1:1c:02:56:d8:03:fa:63:09:ef:5f:90:43:8a:82:07:22:e1: 4f:f0:c0:e3:ca:a8:8d:df:78:59:c8:68:a0:4a:46:18:38:02: ad:1a:e3:4b:e8:cb:94:b8:b9:3d:47:38:1c:fb:63:79:1d:f5: 40:04:08:6e:e8:b7:c4:3d:87:1f:97:b4:ed:ba:cd:17:5d:70: 31:c4:37:29:ae:90:0a:d3:2b:99:fd:c4:bc:e8:06:fa:38:6b: 75:fd:99:88:b8:ad:d5:de:53:cf:bf:69:0a:ca:8c:f7:c7:8e: f5:ca:ae:4b:09:5a:02:ea:81:46:76:f0:bc:b7:15:7a:2e:cf: 77:a5:16:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL45gmF3tnYC3MFtb/iD0nSYhhDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA5MDcwODU1MDBaFw0yNDA5MDUwOTAwMDBaMDMxMTAvBgNV BAMTKDNEMkRGMEMwNTFDNzc0QUE4NTdBM0EwN0U2NkRBNEFGQkQ2QzdBMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwh+Oidcm+5KLhR0HYQ1qcJkwV sqApupOGtBEoL3J6xPbrFJgmhwHLyccB6BNKzWnEDXaDSjS+mX2sPrF7EXg3qNp1 wl9Wdr9BXMFNT/H+EeyovjtLrM1Yrd2jIEggfN+Myfs18oqGslcR7qHRyvg2Gnb4 OjvSw4sCYao1J/YVoY861eL9t3E3baBzLU74oj58JoTF1hu/fDwcSrP7U+DrMMah mQRA37MeholGrPGc7iDlsklCQhK6DrM11sLRIFoJtacty0iUQpySapEgtLCgyTdz C5aMsoEVWlYImLrCdiLnIhyf8JrIZymSD7CFkp2l0eXDfRF2Q7nEftkejqf9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPS3wwFHHdKqFejoH5m2kr71seg0wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJqDANBgkqhkiG 9w0BAQsFAAOCAQEACH0yEDnayRUTmuvanSLTt4A0kUXxZcgYpN33RR85WEepnCmq Y45LyuPb22mLNRIarO0l4E5VPzmiW2wbgKnJMqu5+uw4+OZwUmaf+vWlZLPvRkLy iPOGzSEaT1AqhGjlrAE1uH2m0P6NjZ4WUhWmj0n6Tx6T2dCTHX0pEJ+v0RwCVtgD +mMJ71+QQ4qCByLhT/DA48qojd94WchooEpGGDgCrRrjS+jLlLi5PUc4HPtjeR31 QAQIbui3xD2HH5e07brNF11wMcQ3Ka6QCtMrmf3EvOgG+jhrdf2ZiLit1d5Tz79p CsqM98eO9cquSwlaAuqBRnbwvLcVei7Pd6UWgA== -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:27 2024 by rpki-client on console-ams.rpki-client.org