$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa File: 3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa (raw, json) Hash identifier: JyDjX/EBqIVGtmzdCihVWXBFxFGBLzAjkX6WYDsSnlU= Subject key identifier: 4D:D8:CF:3A:51:EE:2D:8C:8B:A3:01:58:BF:25:2D:0F:27:25:30:B4 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 294388153002AEA79BE136E08DF6875F61F06B54 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa Signing time: Mon 31 Jul 2023 00:12:20 +0000 ROA not before: Mon 31 Jul 2023 00:07:20 +0000 ROA not after: Mon 29 Jul 2024 00:12:20 +0000 asID: 24532 IP address blocks: 202.129.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:43:88:15:30:02:ae:a7:9b:e1:36:e0:8d:f6:87:5f:61:f0:6b:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jul 31 00:07:20 2023 GMT Not After : Jul 29 00:12:20 2024 GMT Subject: CN=4DD8CF3A51EE2D8C8BA30158BF252D0F272530B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:91:15:b3:ed:08:15:d2:df:3c:47:53:73:f8: 2e:56:0f:cf:93:ff:06:fe:c3:8d:77:8e:29:dc:0e: db:55:11:90:4b:c8:d5:94:ca:f4:d2:a4:e9:b0:80: 4d:6a:90:10:28:7d:8a:e1:4b:a4:0d:65:39:c5:26: c8:4d:c8:6c:96:0b:5b:2f:a0:83:6c:ff:af:3f:d2: 5c:4d:2d:d4:31:9e:b0:c3:b9:c4:29:e8:77:c9:b0: 61:48:f9:dd:a3:9b:06:ec:b9:b4:50:27:6a:7c:30: ef:ff:27:44:f2:59:01:f4:8f:5a:42:47:1a:68:13: ee:88:5d:49:f6:a5:c1:9c:a2:5c:fa:49:f2:9d:2e: 92:f5:74:5a:66:15:d7:c7:53:ab:ea:a4:83:47:5a: fd:bd:cf:29:55:0e:a4:44:f0:b7:53:34:88:dc:b9: 13:41:d4:7d:1d:ea:0f:47:60:95:3f:0c:1a:fa:1c: c4:53:8d:83:7d:54:e8:c6:ec:15:03:f5:0e:e6:d2: 04:df:ef:91:03:89:91:91:67:c2:94:61:ab:ce:14: 1d:50:44:7c:0e:ca:c7:9c:22:2d:70:fa:ed:61:30: 89:0e:fa:39:68:11:1e:54:3e:2e:ab:1e:dc:aa:f1: d4:71:e9:42:3b:76:e0:b6:64:0f:f2:b6:2b:d7:53: 46:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D8:CF:3A:51:EE:2D:8C:8B:A3:01:58:BF:25:2D:0F:27:25:30:B4 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.129.184.0/22 Signature Algorithm: sha256WithRSAEncryption c8:73:ee:10:74:79:cb:5c:9e:b6:c0:5d:78:49:4c:3f:12:c4: 28:d8:24:d2:90:e5:ec:77:c1:fe:ab:63:f3:86:90:95:4c:e0: bb:17:34:4a:69:78:7e:fa:20:e5:d9:a5:0f:db:39:cc:92:99: ed:56:69:59:df:9c:77:7c:46:6f:3b:3f:be:92:86:fd:61:a4: e7:c7:cb:6a:7a:32:1f:e7:c7:a6:0a:ee:7f:83:0b:1b:50:82: 7e:ca:8e:68:62:9f:da:f4:08:d4:37:6d:ae:42:f8:b0:68:1d: 3d:dd:25:09:57:cb:e2:97:84:27:f6:80:ef:1a:c3:f4:c6:d7: 5d:f7:c0:87:fd:5b:60:ba:af:a6:f9:c6:f1:77:7f:5b:f8:35: f2:e0:59:94:fc:77:d8:b0:47:e3:11:ef:e6:1d:6c:37:9b:6d: de:57:7c:51:a6:24:32:0d:ed:0c:2f:97:5b:28:b1:ab:71:5c: 15:79:85:a7:75:1a:b0:37:ce:4c:a0:da:4d:73:19:41:60:c5: c2:bf:78:52:95:f9:8f:d6:db:8e:69:e6:d8:4c:e9:a0:10:a3: e7:fc:58:54:ca:ad:39:19:e7:cf:94:d6:e0:92:be:68:ef:02: 43:07:44:93:aa:e0:e2:eb:f3:4c:11:99:2f:02:bd:49:12:87: 0f:3b:e9:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKUOIFTACrqeb4TbgjfaHX2Hwa1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yMzA3MzEwMDA3MjBaFw0yNDA3MjkwMDEyMjBaMDMxMTAvBgNV BAMTKDRERDhDRjNBNTFFRTJEOEM4QkEzMDE1OEJGMjUyRDBGMjcyNTMwQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjkRWz7QgV0t88R1Nz+C5WD8+T /wb+w413jincDttVEZBLyNWUyvTSpOmwgE1qkBAofYrhS6QNZTnFJshNyGyWC1sv oINs/68/0lxNLdQxnrDDucQp6HfJsGFI+d2jmwbsubRQJ2p8MO//J0TyWQH0j1pC RxpoE+6IXUn2pcGcolz6SfKdLpL1dFpmFdfHU6vqpINHWv29zylVDqRE8LdTNIjc uRNB1H0d6g9HYJU/DBr6HMRTjYN9VOjG7BUD9Q7m0gTf75EDiZGRZ8KUYavOFB1Q RHwOysecIi1w+u1hMIkO+jloER5UPi6rHtyq8dRx6UI7duC2ZA/ytivXU0bpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTdjPOlHuLYyLowFYvyUtDyclMLQwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzAzMjJlMzEzMjM5MmUzMTM4MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMjM0MzUzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyoG4MA0GCSqG SIb3DQEBCwUAA4IBAQDIc+4QdHnLXJ62wF14SUw/EsQo2CTSkOXsd8H+q2PzhpCV TOC7FzRKaXh++iDl2aUP2znMkpntVmlZ35x3fEZvOz++kob9YaTnx8tqejIf58em Cu5/gwsbUIJ+yo5oYp/a9AjUN22uQviwaB093SUJV8vil4Qn9oDvGsP0xtdd98CH /Vtguq+m+cbxd39b+DXy4FmU/HfYsEfjEe/mHWw3m23eV3xRpiQyDe0ML5dbKLGr cVwVeYWndRqwN85MoNpNcxlBYMXCv3hSlfmP1tuOaebYTOmgEKPn/FhUyq05GefP lNbgkr5o7wJDB0STquDi6/NMEZkvAr1JEocPO+kn -----END CERTIFICATE-----Generated at Thu Apr 25 01:19:15 2024 by rpki-client on console-fra.rpki-client.org