$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa File: 3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa (raw, json) Hash identifier: dpUTgCFoBelnicYESbj9bp1KttTFYnBludV5PvMXZaA= Subject key identifier: 7F:88:4C:D5:AF:2C:33:66:FA:56:C8:87:5B:C4:E9:FA:E3:EE:EE:80 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2303B3A05AD176AD31758E2C7C72A363747C6890 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:50 +0000 ROA not before: Sun 30 Jul 2023 23:58:50 +0000 ROA not after: Mon 29 Jul 2024 00:03:50 +0000 asID: 38778 IP address blocks: 203.201.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:03:b3:a0:5a:d1:76:ad:31:75:8e:2c:7c:72:a3:63:74:7c:68:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:50 2023 GMT Not After : Jul 29 00:03:50 2024 GMT Subject: CN=7F884CD5AF2C3366FA56C8875BC4E9FAE3EEEE80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8d:72:4c:bf:ee:46:a3:fc:c9:58:79:4d:c1: 9a:3c:4d:ee:df:1d:29:ab:24:5c:22:24:18:ab:80: 75:f6:8c:14:13:ca:0b:1f:58:a9:b7:7b:2c:85:d8: 0f:7c:52:3b:a5:60:ff:a8:c5:82:52:4e:b2:45:16: 00:81:17:35:cc:c8:8c:3a:a9:0a:6d:f6:be:90:93: 7c:36:ff:aa:99:c7:38:74:d6:15:d9:79:ea:d9:e5: 40:34:a7:be:fe:d5:b3:f3:69:15:94:c7:d3:a4:7e: 41:43:2e:86:3b:fb:44:88:07:e6:01:ea:ef:23:ba: de:da:5d:bc:71:ea:26:60:ea:2f:98:da:7e:00:f2: 1c:11:cf:49:bc:2d:1c:07:49:a1:51:06:98:ee:f9: d2:16:0b:39:be:11:22:9a:2d:69:b7:2b:22:bf:eb: 1a:c2:de:ef:d8:9a:c0:32:a8:07:2c:1e:81:ac:21: 8b:28:02:3b:7e:92:53:cb:14:df:cc:76:57:7f:e9: f7:a0:ec:3d:f8:fc:8b:e6:44:2e:ac:8e:be:19:b7: 6f:1d:d9:c6:35:2b:18:2a:40:91:89:0f:93:f2:af: 63:fe:cf:42:1e:bf:dc:21:57:7b:69:02:80:ca:e7: 2b:d4:20:7b:c6:42:52:f2:1f:46:5f:9d:4f:db:6a: ab:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:88:4C:D5:AF:2C:33:66:FA:56:C8:87:5B:C4:E9:FA:E3:EE:EE:80 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.172.0/22 Signature Algorithm: sha256WithRSAEncryption 30:dd:a7:30:92:50:4c:46:b0:98:b8:26:c8:fe:5a:36:df:a6: 19:b3:fd:da:d5:33:eb:ee:63:f8:99:34:80:30:d0:5f:0f:b6: f7:21:be:6e:15:54:91:c7:a2:64:7b:5c:9e:a2:0d:83:f5:c1: 37:00:c1:f1:3f:32:93:af:b1:3f:37:48:a0:6c:63:3d:8e:22: ee:c5:36:a3:ec:98:a7:fe:e0:f7:4a:b2:59:df:e9:f8:82:28: 11:c7:ef:06:57:a2:56:21:15:ac:95:d1:b8:91:98:85:a2:17: 60:aa:92:18:45:46:bb:76:d1:98:35:d7:a1:57:a0:69:17:1b: 31:1b:54:eb:8b:50:bb:62:13:63:c1:9c:e6:ce:84:1a:61:be: 6e:22:d3:cf:ec:76:15:69:52:4b:15:53:4b:96:68:89:a6:53: 1f:49:51:f2:6e:35:81:6f:9c:cf:d3:f5:3d:ee:0b:21:c1:a2: 11:dd:be:4c:d0:5c:c5:b0:61:15:ea:43:0f:d9:db:76:76:c4: 86:88:65:9f:75:c4:33:02:99:8e:b5:95:21:43:4d:bf:ec:97: 38:48:f4:ad:b4:2d:fe:72:80:96:32:30:74:a7:74:df:5e:29: fc:f0:a0:91:91:33:6d:82:2e:e5:d5:7a:59:f7:57:0f:e3:ed: a8:53:63:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIwOzoFrRdq0xdY4sfHKjY3R8aJAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTBaFw0yNDA3MjkwMDAzNTBaMDMxMTAvBgNV BAMTKDdGODg0Q0Q1QUYyQzMzNjZGQTU2Qzg4NzVCQzRFOUZBRTNFRUVFODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXjXJMv+5Go/zJWHlNwZo8Te7f HSmrJFwiJBirgHX2jBQTygsfWKm3eyyF2A98UjulYP+oxYJSTrJFFgCBFzXMyIw6 qQpt9r6Qk3w2/6qZxzh01hXZeerZ5UA0p77+1bPzaRWUx9OkfkFDLoY7+0SIB+YB 6u8jut7aXbxx6iZg6i+Y2n4A8hwRz0m8LRwHSaFRBpju+dIWCzm+ESKaLWm3KyK/ 6xrC3u/YmsAyqAcsHoGsIYsoAjt+klPLFN/Mdld/6feg7D34/IvmRC6sjr4Zt28d 2cY1KxgqQJGJD5Pyr2P+z0Iev9whV3tpAoDK5yvUIHvGQlLyH0ZfnU/baqvLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUf4hM1a8sM2b6VsiHW8Tp+uPu7oAwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCy8msMA0GCSqG SIb3DQEBCwUAA4IBAQAw3acwklBMRrCYuCbI/lo236YZs/3a1TPr7mP4mTSAMNBf D7b3Ib5uFVSRx6Jke1yeog2D9cE3AMHxPzKTr7E/N0igbGM9jiLuxTaj7Jin/uD3 SrJZ3+n4gigRx+8GV6JWIRWsldG4kZiFohdgqpIYRUa7dtGYNdehV6BpFxsxG1Tr i1C7YhNjwZzmzoQaYb5uItPP7HYVaVJLFVNLlmiJplMfSVHybjWBb5zP0/U97gsh waIR3b5M0FzFsGEV6kMP2dt2dsSGiGWfdcQzApmOtZUhQ02/7Jc4SPSttC3+coCW MjB0p3TfXin88KCRkTNtgi7l1XpZ91cP4+2oU2NI -----END CERTIFICATE-----Generated at Wed Apr 24 04:46:23 2024 by rpki-client on console-fra.rpki-client.org