$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: kye5xHxczOCAO7gn0iwXimzHYhbXdKz3LvfTf4DyzSI= Subject key identifier: 5D:C3:A7:A4:CB:8F:44:7A:C3:BA:C6:74:D9:C9:AC:94:B7:FE:F6:5A Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 118255AE56F197E67C278BA4088C83A7C1017249 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:49 +0000 ROA not before: Sun 30 Jul 2023 23:58:49 +0000 ROA not after: Mon 29 Jul 2024 00:03:49 +0000 asID: 38778 IP address blocks: 203.201.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:82:55:ae:56:f1:97:e6:7c:27:8b:a4:08:8c:83:a7:c1:01:72:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:49 2023 GMT Not After : Jul 29 00:03:49 2024 GMT Subject: CN=5DC3A7A4CB8F447AC3BAC674D9C9AC94B7FEF65A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bf:2f:28:a0:29:7d:e2:5a:e1:2e:9f:eb:d0: 91:38:e2:c3:5e:77:14:7d:63:cf:d4:0e:3b:4c:2a: 1f:c2:7b:39:56:18:41:b8:15:80:e9:01:c1:0c:da: e6:2d:ac:60:bf:38:9c:0c:22:65:7a:b3:ee:f4:6e: 9a:2e:6b:e7:c6:55:b7:2f:a8:bf:7a:7a:ef:c4:07: 82:ea:f8:49:40:f2:41:fa:55:85:dc:28:07:dd:e4: a7:c2:ec:17:d8:d5:23:7f:c4:c3:e7:fd:74:55:67: 01:5b:ee:82:67:64:d2:08:67:c3:b7:e2:02:bf:47: 4e:ef:2a:e1:cb:4a:b3:d6:6d:fb:62:b4:89:7b:98: f3:54:ab:4e:3a:b4:37:8d:db:70:48:5e:14:d7:b0: 61:b4:c7:0a:cf:79:60:93:45:d7:d0:35:2f:6d:1a: 36:ef:c1:b8:52:0b:72:dc:b4:a8:56:d0:d2:6d:c9: f0:42:33:86:07:a8:4d:dc:18:f7:39:a2:51:df:ee: 7b:67:14:ff:9e:ce:4c:09:72:1a:37:8e:b5:6d:ea: c9:de:aa:4b:5b:85:c0:b0:6e:f5:6f:ed:67:a4:8f: ac:50:52:c0:30:91:c8:b6:39:0e:af:63:40:87:09: 0a:f3:cf:6d:4d:ce:1b:6b:2e:c3:75:5b:5f:24:65: e1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C3:A7:A4:CB:8F:44:7A:C3:BA:C6:74:D9:C9:AC:94:B7:FE:F6:5A X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.170.0/24 Signature Algorithm: sha256WithRSAEncryption 55:fe:8b:43:d2:91:b0:26:cd:af:00:b4:7b:59:55:c3:18:1a: 6f:31:9d:ea:36:c3:50:b1:12:79:40:ce:ed:1c:c6:b9:b3:6f: b9:57:94:fb:59:49:0e:ca:a7:66:28:82:1b:d6:36:1e:17:d7: b2:88:3c:df:9c:be:c6:9a:fa:31:e0:12:28:16:0a:a0:81:b2: 6b:2f:25:8f:a2:54:03:88:0b:d6:05:8a:53:23:ff:e0:b7:d3: 9d:85:58:25:d8:9b:aa:94:c8:22:cf:a1:ec:0f:37:6b:5c:f7: 6b:b2:eb:f5:43:41:83:0b:5a:d9:9b:96:cd:31:cf:7a:2b:18: cb:61:f9:26:c4:66:b0:d6:98:5f:ba:fd:e0:25:2b:eb:93:ac: 2e:fc:01:15:b1:95:af:80:42:68:9f:cc:24:18:13:2a:8a:7d: ff:e5:b3:b4:77:06:50:f3:e6:cd:49:c3:a4:2a:84:36:cf:0f: aa:91:39:86:52:69:1b:ff:bf:f6:70:14:11:02:38:bd:47:cc: c6:fb:40:3f:f4:2b:b1:57:db:d0:2f:03:b2:8e:45:83:60:16: 25:52:4a:5b:1e:bc:01:f3:39:49:e1:aa:d4:2e:f1:20:33:4e: bb:b7:6d:23:07:ed:1f:6a:02:cc:27:fe:21:80:0a:dd:15:e0: 40:86:fc:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEYJVrlbxl+Z8J4ukCIyDp8EBckkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDlaFw0yNDA3MjkwMDAzNDlaMDMxMTAvBgNV BAMTKDVEQzNBN0E0Q0I4RjQ0N0FDM0JBQzY3NEQ5QzlBQzk0QjdGRUY2NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuvy8ooCl94lrhLp/r0JE44sNe dxR9Y8/UDjtMKh/CezlWGEG4FYDpAcEM2uYtrGC/OJwMImV6s+70bpoua+fGVbcv qL96eu/EB4Lq+ElA8kH6VYXcKAfd5KfC7BfY1SN/xMPn/XRVZwFb7oJnZNIIZ8O3 4gK/R07vKuHLSrPWbftitIl7mPNUq046tDeN23BIXhTXsGG0xwrPeWCTRdfQNS9t GjbvwbhSC3LctKhW0NJtyfBCM4YHqE3cGPc5olHf7ntnFP+ezkwJcho3jrVt6sne qktbhcCwbvVv7Wekj6xQUsAwkci2OQ6vY0CHCQrzz21NzhtrLsN1W18kZeENAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXcOnpMuPRHrDusZ02cmslLf+9lowHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mqMA0GCSqG SIb3DQEBCwUAA4IBAQBV/otD0pGwJs2vALR7WVXDGBpvMZ3qNsNQsRJ5QM7tHMa5 s2+5V5T7WUkOyqdmKIIb1jYeF9eyiDzfnL7Gmvox4BIoFgqggbJrLyWPolQDiAvW BYpTI//gt9OdhVgl2JuqlMgiz6HsDzdrXPdrsuv1Q0GDC1rZm5bNMc96KxjLYfkm xGaw1phfuv3gJSvrk6wu/AEVsZWvgEJon8wkGBMqin3/5bO0dwZQ8+bNScOkKoQ2 zw+qkTmGUmkb/7/2cBQRAji9R8zG+0A/9CuxV9vQLwOyjkWDYBYlUkpbHrwB8zlJ 4arULvEgM067t20jB+0fagLMJ/4hgArdFeBAhvzC -----END CERTIFICATE-----Generated at Wed Apr 24 05:34:42 2024 by rpki-client on console-ams.rpki-client.org