$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa File: 3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: CWFE28EP15JTlTnFq5WT+6xJvxppQEvx8ffCDsRR6hQ= Subject key identifier: AD:0E:3A:8E:DC:E8:A9:78:4A:A9:70:DE:9A:2B:09:49:B1:7A:A2:C5 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 7BCD232348E06E3D7DBB0D4FCA3F2D9229C43C9B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:48 +0000 ROA not before: Sun 30 Jul 2023 23:58:48 +0000 ROA not after: Mon 29 Jul 2024 00:03:48 +0000 asID: 38778 IP address blocks: 203.201.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 21:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:cd:23:23:48:e0:6e:3d:7d:bb:0d:4f:ca:3f:2d:92:29:c4:3c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:48 2023 GMT Not After : Jul 29 00:03:48 2024 GMT Subject: CN=AD0E3A8EDCE8A9784AA970DE9A2B0949B17AA2C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:69:1e:3d:b8:19:c8:0d:5d:4f:9b:c1:c6:4a: 54:83:e6:b6:09:89:3b:0b:1c:60:98:fc:74:b2:10: 39:1f:30:17:47:fa:84:30:31:5c:dd:d3:65:cb:3a: d1:ff:cc:62:be:8a:c9:a2:c1:bd:54:59:1f:bb:18: 94:7f:96:fa:f1:c7:f5:65:62:3b:1f:85:7e:6a:12: 91:15:9d:69:e1:f1:9c:95:2a:d6:da:8f:75:04:90: 39:d7:87:ed:c0:b5:ba:53:42:2d:c3:80:8d:f2:32: 0d:18:dd:89:15:09:22:e2:55:97:31:1f:f9:ba:dc: fc:b9:50:a3:19:40:90:7a:f8:09:44:d0:77:25:47: 45:66:2c:ff:52:90:b5:2b:a9:58:f6:e8:7f:d8:95: 28:ea:d6:b5:1f:8c:0d:f2:bf:18:48:bd:ec:0f:0b: 20:15:7b:a4:f3:a1:5c:60:e4:7e:2f:41:59:fb:7e: 76:1c:a7:b7:a8:37:41:80:9e:b5:cd:73:d5:82:5d: f4:b3:33:3f:c5:d4:c7:8c:46:2a:fd:fd:6a:0b:87: 4f:8a:1c:6a:fd:5b:63:b3:49:24:3b:8e:cc:a3:47: db:18:56:cb:be:1a:b0:b1:2d:74:b1:98:4f:f8:b5: 58:8d:37:df:10:7d:fd:62:91:3a:76:88:bd:d4:fe: c0:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:0E:3A:8E:DC:E8:A9:78:4A:A9:70:DE:9A:2B:09:49:B1:7A:A2:C5 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.170.0/23 Signature Algorithm: sha256WithRSAEncryption 50:64:91:94:0e:c6:13:d7:71:fc:b6:45:e5:6e:df:3b:42:83: 02:89:25:3d:62:07:1e:e2:06:66:c9:42:73:57:9f:fc:f8:b4: ae:28:55:8c:bf:fc:48:fe:db:ed:66:75:33:04:72:94:2e:c3: d0:fe:9e:26:f6:64:92:11:5b:13:de:be:d9:01:1d:cd:d6:04: 1c:95:e7:86:58:f6:a3:1d:4f:63:21:34:96:37:4f:a8:12:79: f8:2e:92:23:d9:11:a4:0f:47:42:3e:6b:51:42:19:97:41:f1: c0:a3:0c:69:3a:3c:be:a6:14:e4:25:43:33:bf:7a:36:c8:fe: cd:15:ef:4e:55:04:95:99:53:0a:b5:ea:81:6d:6b:9d:35:65: db:1a:77:72:36:87:47:7d:6a:bc:f6:bf:fd:a4:15:1b:42:eb: 32:5e:d6:78:98:0a:0b:f9:d5:40:53:66:cc:29:f0:17:7c:8d: 98:fa:8d:af:fe:33:8e:f8:59:71:ec:f6:24:cb:3b:7f:93:f6: 98:99:45:e1:c8:a9:cf:40:98:ec:5a:50:fb:86:47:b4:fb:33: c7:0a:9a:42:eb:e2:51:9f:02:f0:e1:47:46:db:be:3b:a7:02: 7b:08:a9:39:3b:7e:0b:44:8d:71:c2:6f:28:78:8e:72:e1:9d: e0:2f:88:2e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUe80jI0jgbj19uw1Pyj8tkinEPJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDhaFw0yNDA3MjkwMDAzNDhaMDMxMTAvBgNV BAMTKEFEMEUzQThFRENFOEE5Nzg0QUE5NzBERTlBMkIwOTQ5QjE3QUEyQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBaR49uBnIDV1Pm8HGSlSD5rYJ iTsLHGCY/HSyEDkfMBdH+oQwMVzd02XLOtH/zGK+ismiwb1UWR+7GJR/lvrxx/Vl YjsfhX5qEpEVnWnh8ZyVKtbaj3UEkDnXh+3AtbpTQi3DgI3yMg0Y3YkVCSLiVZcx H/m63Py5UKMZQJB6+AlE0HclR0VmLP9SkLUrqVj26H/YlSjq1rUfjA3yvxhIvewP CyAVe6TzoVxg5H4vQVn7fnYcp7eoN0GAnrXNc9WCXfSzMz/F1MeMRir9/WoLh0+K HGr9W2OzSSQ7jsyjR9sYVsu+GrCxLXSxmE/4tViNN98Qff1ikTp2iL3U/sANAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrQ46jtzoqXhKqXDemisJSbF6osUwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy8mqMA0GCSqG SIb3DQEBCwUAA4IBAQBQZJGUDsYT13H8tkXlbt87QoMCiSU9Ygce4gZmyUJzV5/8 +LSuKFWMv/xI/tvtZnUzBHKULsPQ/p4m9mSSEVsT3r7ZAR3N1gQcleeGWPajHU9j ITSWN0+oEnn4LpIj2RGkD0dCPmtRQhmXQfHAowxpOjy+phTkJUMzv3o2yP7NFe9O VQSVmVMKteqBbWudNWXbGndyNodHfWq89r/9pBUbQusyXtZ4mAoL+dVAU2bMKfAX fI2Y+o2v/jOO+Flx7PYkyzt/k/aYmUXhyKnPQJjsWlD7hke0+zPHCppC6+JRnwLw 4UdG2747pwJ7CKk5O34LRI1xwm8oeI5y4Z3gL4gu -----END CERTIFICATE-----Generated at Fri Apr 19 16:11:25 2024 by rpki-client on console-ams.rpki-client.org