$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: AGvy8DVxGwbwIz4JMziA6TlzMC5tCI32mtJtQlGSokU= Subject key identifier: BD:A1:9A:7A:F4:76:CA:9E:72:24:4C:76:48:25:8B:62:AD:5C:90:4F Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 1799CF77E932D7A659EABED2B0B3AFE12EB387C6 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:49 +0000 ROA not before: Sun 30 Jul 2023 23:58:49 +0000 ROA not after: Mon 29 Jul 2024 00:03:49 +0000 asID: 38778 IP address blocks: 203.201.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:99:cf:77:e9:32:d7:a6:59:ea:be:d2:b0:b3:af:e1:2e:b3:87:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:49 2023 GMT Not After : Jul 29 00:03:49 2024 GMT Subject: CN=BDA19A7AF476CA9E72244C7648258B62AD5C904F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ff:8f:c5:ce:1c:cd:d3:86:1d:ef:2e:af:5f: 14:7b:c1:d9:00:e5:fa:09:4e:61:a6:ee:ea:79:a4: e9:88:a3:a1:f3:7a:9b:11:72:ac:b8:70:ef:71:bf: f7:14:be:bb:08:b1:7b:e8:26:97:3c:15:81:e0:10: 2c:c2:91:cc:1a:f0:ec:37:b5:52:84:59:ec:df:91: 83:8a:f2:12:bd:40:44:2a:f1:2a:46:5a:ab:3b:d0: ab:d8:7a:3f:14:2c:2f:c6:90:37:d5:84:b1:93:17: 2e:16:6b:31:e0:fe:fe:d3:91:be:c4:44:be:5c:61: 7c:ff:18:26:8f:d5:1f:93:98:d2:64:e8:6e:0b:0a: ce:83:f8:9e:f1:1c:15:1c:eb:80:0b:89:f4:1f:b5: d8:f7:ea:1d:1a:2d:a1:7d:03:6b:dd:e0:42:e6:2b: 5c:2f:d6:c3:2e:9b:f6:08:47:18:c7:56:9f:f4:33: a5:14:2b:5c:80:9f:5d:90:34:94:23:e7:f5:2d:90: a5:9c:65:58:32:41:80:67:8b:f0:2f:a9:ed:6d:4c: bc:ac:9a:b6:b9:43:d4:45:39:eb:dd:11:86:9d:5d: 5e:73:cb:de:db:c6:dd:6f:a3:8e:85:6a:f3:18:e3: 3a:15:b4:28:b3:ef:03:9f:78:50:cc:50:ea:5c:d2: 5a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A1:9A:7A:F4:76:CA:9E:72:24:4C:76:48:25:8B:62:AD:5C:90:4F X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.169.0/24 Signature Algorithm: sha256WithRSAEncryption c6:93:d9:7e:17:40:b8:65:3f:65:74:39:13:7e:ca:1f:0c:e5: ca:c6:94:0b:e7:9e:ec:3b:2e:20:4e:e5:d5:4c:9f:57:31:44: 65:fd:91:33:f1:c1:21:84:41:b0:63:4a:2b:be:59:ff:ae:6f: 6a:86:d6:e5:aa:51:41:94:a1:1f:c4:a8:86:9b:d2:9e:6b:41: 67:2a:42:f4:7a:9f:12:c0:6d:d0:dd:91:5b:f9:1d:35:a1:82: ba:05:c7:10:74:00:60:7f:82:7e:10:01:0c:61:ab:d5:be:43: 3d:eb:ff:b8:97:e7:cd:6f:2d:58:95:1e:2c:f4:a8:8a:a3:0d: 78:e9:87:00:40:6d:71:5f:41:4e:99:33:3d:6d:55:b4:57:eb: 3c:98:11:43:5b:40:8f:72:0f:45:38:9a:c2:ca:6c:50:25:f3: 4f:92:29:f0:14:9c:0d:41:f7:d5:10:94:66:2a:f0:7b:df:82: 0a:d4:d4:b3:3f:87:f0:3f:f0:ce:a7:4f:47:49:1b:7c:ed:4d: 13:f6:d5:c1:20:e5:53:c8:af:43:3a:55:af:7b:7b:e1:d1:bb: cf:89:c7:a0:25:0d:74:07:9c:6f:36:a0:86:b5:24:37:e5:1a: 3c:d9:9c:a8:de:33:f6:13:1a:d4:2d:18:6c:1c:00:8b:ac:90: 9c:3b:d9:69 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF5nPd+ky16ZZ6r7SsLOv4S6zh8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDlaFw0yNDA3MjkwMDAzNDlaMDMxMTAvBgNV BAMTKEJEQTE5QTdBRjQ3NkNBOUU3MjI0NEM3NjQ4MjU4QjYyQUQ1QzkwNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl/4/FzhzN04Yd7y6vXxR7wdkA 5foJTmGm7up5pOmIo6HzepsRcqy4cO9xv/cUvrsIsXvoJpc8FYHgECzCkcwa8Ow3 tVKEWezfkYOK8hK9QEQq8SpGWqs70KvYej8ULC/GkDfVhLGTFy4WazHg/v7Tkb7E RL5cYXz/GCaP1R+TmNJk6G4LCs6D+J7xHBUc64ALifQftdj36h0aLaF9A2vd4ELm K1wv1sMum/YIRxjHVp/0M6UUK1yAn12QNJQj5/UtkKWcZVgyQYBni/Avqe1tTLys mra5Q9RFOevdEYadXV5zy97bxt1vo46FavMY4zoVtCiz7wOfeFDMUOpc0lrJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvaGaevR2yp5yJEx2SCWLYq1ckE8wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mpMA0GCSqG SIb3DQEBCwUAA4IBAQDGk9l+F0C4ZT9ldDkTfsofDOXKxpQL557sOy4gTuXVTJ9X MURl/ZEz8cEhhEGwY0orvln/rm9qhtblqlFBlKEfxKiGm9Kea0FnKkL0ep8SwG3Q 3ZFb+R01oYK6BccQdABgf4J+EAEMYavVvkM96/+4l+fNby1YlR4s9KiKow146YcA QG1xX0FOmTM9bVW0V+s8mBFDW0CPcg9FOJrCymxQJfNPkinwFJwNQffVEJRmKvB7 34IK1NSzP4fwP/DOp09HSRt87U0T9tXBIOVTyK9DOlWve3vh0bvPicegJQ10B5xv NqCGtSQ35Ro82Zyo3jP2ExrULRhsHACLrJCcO9lp -----END CERTIFICATE-----Generated at Wed Apr 24 05:34:42 2024 by rpki-client on console-ams.rpki-client.org