$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32302d3234203d3e20313331313131.roa File: 3230322e34332e3137362e302f32302d3234203d3e20313331313131.roa (raw, json) Hash identifier: u1khOUZzr0zzvk3rZ9h9PNyXL8p82sTJkKped49f6Qc= Subject key identifier: C3:86:FD:8A:A7:27:E7:50:64:21:0E:AD:27:05:08:25:C4:6C:66:1C Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 2747F110771607ECF8663C4A1FF917725D03E8F0 Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32302d3234203d3e20313331313131.roa Signing time: Sun 07 Jan 2024 10:00:01 +0000 ROA not before: Sun 07 Jan 2024 09:55:01 +0000 ROA not after: Sun 05 Jan 2025 10:00:01 +0000 asID: 131111 IP address blocks: 202.43.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 22:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:47:f1:10:77:16:07:ec:f8:66:3c:4a:1f:f9:17:72:5d:03:e8:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jan 7 09:55:01 2024 GMT Not After : Jan 5 10:00:01 2025 GMT Subject: CN=C386FD8AA727E75064210EAD27050825C46C661C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:77:e4:8a:ae:2e:d6:b4:bf:01:94:68:e4:92: d0:8d:22:7f:40:e0:1d:95:86:2b:5a:4b:3b:a7:21: 82:24:ad:c0:bb:dd:1d:f7:c8:84:0a:13:f6:cd:47: 9c:12:1b:4f:3a:2f:e6:c1:e2:2e:10:49:6d:a3:79: fb:55:34:a8:8b:65:d4:7d:94:6d:05:a5:b0:fa:58: 6a:ca:0b:57:82:69:13:ae:04:4a:da:85:31:b6:56: 06:48:f5:f1:d3:6c:e2:64:c8:2b:ed:0b:cc:d0:62: 58:66:90:fd:7d:49:cc:f4:41:41:59:da:9f:d2:be: 6f:e4:ac:ab:7c:06:d4:60:b2:62:63:d0:68:d5:75: 98:7a:7d:b6:20:29:eb:70:25:0d:40:59:7a:41:dc: 6f:53:d6:75:c9:8c:12:e1:b8:1b:5d:d6:a3:83:df: 79:43:92:df:93:04:b8:fc:25:20:b3:dd:1f:0e:c6: 7c:aa:fd:3f:04:62:70:95:22:cc:ff:28:49:6a:22: 09:4d:a2:bd:8b:45:9a:64:ee:e5:b7:53:2b:7d:c8: df:79:0f:d9:10:50:3a:05:ad:32:c7:ba:2b:0d:2d: 7c:4e:a7:cc:0b:8c:99:d4:79:88:8d:9f:3d:43:38: 65:0e:9e:96:49:7b:e8:bb:a0:1e:11:e1:51:81:4b: cf:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:86:FD:8A:A7:27:E7:50:64:21:0E:AD:27:05:08:25:C4:6C:66:1C X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32302d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.176.0/20 Signature Algorithm: sha256WithRSAEncryption 55:82:c6:cd:2f:4d:5d:43:ff:b2:bf:98:52:b8:3c:88:c0:ba: 39:f5:3c:f3:3d:75:2f:6f:cd:79:64:32:c3:df:59:3f:04:8f: f3:4e:17:67:f4:4b:aa:76:1b:c3:96:47:03:27:a4:c6:81:d7: a9:74:9a:0a:4d:75:62:19:f5:77:b4:a6:8c:fd:b1:59:ec:21: 1b:36:d5:47:ef:64:ec:39:45:69:ff:9c:94:54:8d:05:87:fd: 1e:4d:9c:50:2c:42:11:36:09:98:46:0d:ed:2d:9b:62:41:b1: 80:5d:07:a8:b6:f0:a3:ac:fa:47:03:4c:03:e1:61:2f:5e:f0: 4f:5e:86:96:83:e8:57:8e:97:f1:f4:c6:b4:6d:07:bb:d7:57: 34:7a:e7:03:0e:fa:75:57:5f:03:e7:14:a7:be:f3:67:26:b2: 71:71:6e:ca:7c:7c:85:94:5a:cd:14:3f:07:3c:04:8d:7e:0d: 05:d2:c0:ff:e4:d9:92:5a:8d:e0:d3:82:91:5b:4a:16:2e:ce: 63:34:5a:13:6f:8b:a8:cf:e5:53:ed:eb:4b:61:ff:35:79:6d: 14:28:28:64:7b:94:d1:98:cf:00:45:53:87:14:d8:45:b9:c2: ed:02:7c:d0:ce:27:0c:52:45:7e:ab:ea:8f:a8:24:30:4d:a8: fe:6a:bd:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ0fxEHcWB+z4ZjxKH/kXcl0D6PAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNDAxMDcwOTU1MDFaFw0yNTAxMDUxMDAwMDFaMDMxMTAvBgNV BAMTKEMzODZGRDhBQTcyN0U3NTA2NDIxMEVBRDI3MDUwODI1QzQ2QzY2MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLd+SKri7WtL8BlGjkktCNIn9A 4B2VhitaSzunIYIkrcC73R33yIQKE/bNR5wSG086L+bB4i4QSW2jeftVNKiLZdR9 lG0FpbD6WGrKC1eCaROuBErahTG2VgZI9fHTbOJkyCvtC8zQYlhmkP19Scz0QUFZ 2p/Svm/krKt8BtRgsmJj0GjVdZh6fbYgKetwJQ1AWXpB3G9T1nXJjBLhuBtd1qOD 33lDkt+TBLj8JSCz3R8Oxnyq/T8EYnCVIsz/KElqIglNor2LRZpk7uW3Uyt9yN95 D9kQUDoFrTLHuisNLXxOp8wLjJnUeYiNnz1DOGUOnpZJe+i7oB4R4VGBS8+PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUw4b9iqcn51BkIQ6tJwUIJcRsZhwwHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMyMzAzMjJlMzQzMzJlMzEzNzM2MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyiuwMA0GCSqG SIb3DQEBCwUAA4IBAQBVgsbNL01dQ/+yv5hSuDyIwLo59TzzPXUvb815ZDLD31k/ BI/zThdn9EuqdhvDlkcDJ6TGgdepdJoKTXViGfV3tKaM/bFZ7CEbNtVH72TsOUVp /5yUVI0Fh/0eTZxQLEIRNgmYRg3tLZtiQbGAXQeotvCjrPpHA0wD4WEvXvBPXoaW g+hXjpfx9Ma0bQe711c0eucDDvp1V18D5xSnvvNnJrJxcW7KfHyFlFrNFD8HPASN fg0F0sD/5NmSWo3g04KRW0oWLs5jNFoTb4uoz+VT7etLYf81eW0UKChke5TRmM8A RVOHFNhFucLtAnzQzicMUkV+q+qPqCQwTaj+ar01 -----END CERTIFICATE-----Generated at Mon Apr 29 23:03:50 2024 by rpki-client on console-fra.rpki-client.org