$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136312e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136312e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: xyCD20NqrIZXy8Oq9Nalo1axffO9U02Lth0Q9HY9xDw= Subject key identifier: ED:53:7D:F5:64:6F:EF:31:2C:EC:37:0B:44:A1:45:0B:E0:EA:D8:40 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 70D601ED118717F54EA07E7548A435AF5259F67A Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136312e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:09:06 +0000 ROA not before: Fri 24 Nov 2023 03:04:06 +0000 ROA not after: Fri 22 Nov 2024 03:09:06 +0000 asID: 18059 IP address blocks: 202.43.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d6:01:ed:11:87:17:f5:4e:a0:7e:75:48:a4:35:af:52:59:f6:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:04:06 2023 GMT Not After : Nov 22 03:09:06 2024 GMT Subject: CN=ED537DF5646FEF312CEC370B44A1450BE0EAD840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:80:7a:ee:56:67:da:db:1b:b2:9b:ef:8b:44: 68:39:6c:45:f6:9d:65:c1:6f:de:40:00:c7:66:77: 22:fc:ad:56:03:bf:fc:a9:10:c9:1a:e2:df:22:25: 5a:a8:68:07:c5:70:0f:d0:05:8a:68:a4:1a:27:93: 02:06:e1:37:95:a0:78:23:4f:6a:bb:10:03:f9:4a: 59:cd:d3:6c:16:6f:99:80:80:60:de:41:d7:36:b4: d1:8e:24:fd:c2:21:f5:63:59:9a:62:82:d3:62:b7: 96:f5:69:08:1b:86:e5:84:1e:d6:c5:f1:6d:3e:34: 1a:a2:03:2b:20:46:d0:5b:a2:e4:3e:00:8a:a6:49: c2:9d:d2:93:f4:59:69:1b:bd:e3:28:fd:86:d6:ca: bd:75:10:33:8c:bd:50:c2:f7:3b:b3:40:8e:32:bb: 33:2f:34:55:2c:9a:22:bc:63:94:05:b9:95:b7:fe: 5f:e2:db:07:5b:ad:41:d2:17:3f:f9:47:42:ce:2a: 8c:da:5c:e2:db:e6:66:c7:8a:32:9e:81:9f:5d:34: b9:9a:f4:c7:c4:50:35:6e:59:53:91:f5:44:3b:7b: 6c:7a:38:95:3f:6e:2b:a2:f7:31:1e:60:fb:ad:e1: 1a:88:ad:8b:2c:12:2b:1e:8f:87:4b:fd:8a:af:45: c3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:53:7D:F5:64:6F:EF:31:2C:EC:37:0B:44:A1:45:0B:E0:EA:D8:40 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136312e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.161.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:91:95:f5:98:41:d8:11:4f:c6:bb:c9:ae:7d:28:76:37:f0: 61:c5:32:59:68:ec:c8:dd:d8:fa:2b:d8:7a:8a:8a:d8:79:93: 2b:f9:a1:94:62:25:f0:bd:9a:c0:b2:a6:ed:90:54:5a:2c:b6: 7b:3d:13:2f:e1:20:00:ca:6c:bf:16:3f:b8:48:7b:fe:a4:c6: 4d:45:54:9c:6d:4a:88:60:95:3d:da:c2:f4:ea:fa:c8:15:49: 6c:a2:c8:cb:df:5f:18:d4:6e:70:cf:d0:77:40:e0:d0:6a:00: 11:50:5b:77:54:0c:76:15:2d:77:a3:58:7e:6c:35:fe:e8:0d: cf:ab:4d:dd:8f:62:60:89:f9:d2:a9:a3:d4:8a:98:90:1b:8b: 48:12:4a:25:af:fa:35:b6:30:03:9a:35:ff:28:6f:7b:62:18: 34:9a:9a:cc:49:8f:31:a8:f7:f9:7d:54:e8:6c:da:dc:0c:5b: 06:1c:16:bb:9b:fd:9a:dd:4c:b8:5f:55:1b:26:a2:1e:b6:dd: 14:0d:6a:c1:82:04:b9:fb:86:75:04:10:a1:43:83:80:02:46: b6:10:a1:47:22:c5:84:31:4f:b8:6b:73:41:ae:fc:4f:05:d1: c8:5d:8f:d3:0e:f5:42:d4:12:93:34:ea:13:2c:7b:80:5a:bd: a9:f9:0a:24 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcNYB7RGHF/VOoH51SKQ1r1JZ9nowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzA0MDZaFw0yNDExMjIwMzA5MDZaMDMxMTAvBgNV BAMTKEVENTM3REY1NjQ2RkVGMzEyQ0VDMzcwQjQ0QTE0NTBCRTBFQUQ4NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOgHruVmfa2xuym++LRGg5bEX2 nWXBb95AAMdmdyL8rVYDv/ypEMka4t8iJVqoaAfFcA/QBYpopBonkwIG4TeVoHgj T2q7EAP5SlnN02wWb5mAgGDeQdc2tNGOJP3CIfVjWZpigtNit5b1aQgbhuWEHtbF 8W0+NBqiAysgRtBbouQ+AIqmScKd0pP0WWkbveMo/YbWyr11EDOMvVDC9zuzQI4y uzMvNFUsmiK8Y5QFuZW3/l/i2wdbrUHSFz/5R0LOKozaXOLb5mbHijKegZ9dNLma 9MfEUDVuWVOR9UQ7e2x6OJU/biui9zEeYPut4RqIrYssEisej4dL/YqvRcMbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7VN99WRv7zEs7DcLRKFFC+Dq2EAwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoroTANBgkqhkiG 9w0BAQsFAAOCAQEAnpGV9ZhB2BFPxrvJrn0odjfwYcUyWWjsyN3Y+ivYeoqK2HmT K/mhlGIl8L2awLKm7ZBUWiy2ez0TL+EgAMpsvxY/uEh7/qTGTUVUnG1KiGCVPdrC 9Or6yBVJbKLIy99fGNRucM/Qd0Dg0GoAEVBbd1QMdhUtd6NYfmw1/ugNz6tN3Y9i YIn50qmj1IqYkBuLSBJKJa/6NbYwA5o1/yhve2IYNJqazEmPMaj3+X1U6Gza3Axb BhwWu5v9mt1MuF9VGyaiHrbdFA1qwYIEufuGdQQQoUODgAJGthChRyLFhDFPuGtz Qa78TwXRyF2P0w71QtQSkzTqEyx7gFq9qfkKJA== -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org