$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136322e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 1p+SvDkvOvRh/Hj5zcvoxyg8MuxNjZPx8RZfPgKQTng= Subject key identifier: 3B:A1:50:EC:B7:A4:9C:22:D9:C5:9B:B2:90:2D:E7:27:E8:90:17:CB Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 39057A4CAC81BB20C2E4DE5247643841C8DF945D Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:09:37 +0000 ROA not before: Fri 24 Nov 2023 03:04:37 +0000 ROA not after: Fri 22 Nov 2024 03:09:37 +0000 asID: 18059 IP address blocks: 202.43.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:05:7a:4c:ac:81:bb:20:c2:e4:de:52:47:64:38:41:c8:df:94:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:04:37 2023 GMT Not After : Nov 22 03:09:37 2024 GMT Subject: CN=3BA150ECB7A49C22D9C59BB2902DE727E89017CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e4:05:32:14:53:41:6f:fb:89:6b:5b:8a:05: bb:97:65:a0:f6:6c:f9:ba:ff:d5:62:b0:2a:1c:25: 48:64:a8:8c:7e:ce:62:65:0d:65:42:d2:66:05:8e: e8:25:6e:7e:cc:e1:e9:c1:51:23:ca:6e:41:c1:10: e1:5f:44:81:b1:05:ff:9e:f8:d8:07:c4:55:e3:33: 00:93:04:be:78:7b:ab:e7:8c:f4:16:97:6b:8d:8d: e2:51:ad:de:8a:ad:7f:de:41:f7:90:73:71:32:43: e1:93:92:44:e0:8b:1f:63:82:be:69:b0:ae:85:43: 00:24:a5:bf:49:74:1d:b9:d3:bb:43:a5:84:44:16: 06:66:ae:5b:9c:65:60:c1:00:96:39:53:1d:40:41: 1d:e5:c6:0a:8c:69:fe:03:55:05:50:80:63:c7:df: d3:4f:27:f4:a0:c3:a5:72:6d:fc:f1:8b:2b:0a:83: 29:3f:8b:c9:12:e2:3c:9d:75:ba:ac:c7:65:da:86: 99:64:3e:fc:8f:33:1e:07:63:c3:0d:9a:50:29:1e: e3:21:fd:d2:14:72:43:29:fa:85:47:e2:90:c4:02: 59:d4:88:d1:5d:5a:d3:66:49:8e:36:d7:e9:e4:2e: 06:32:65:f3:1d:9e:09:24:cf:23:1b:b8:cd:db:21: 13:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:A1:50:EC:B7:A4:9C:22:D9:C5:9B:B2:90:2D:E7:27:E8:90:17:CB X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.162.0/24 Signature Algorithm: sha256WithRSAEncryption 62:af:ec:73:5d:10:a1:37:9b:5d:f5:3a:4a:c4:74:64:24:38: 67:93:c1:fb:eb:ea:d3:45:c0:7c:f8:48:bd:6a:8d:f6:6b:a4: a1:ce:34:82:db:b4:b6:b4:76:6d:f5:0f:58:1b:2f:c5:19:60: 50:b9:f8:5e:a2:5b:8a:9c:03:bd:a7:26:68:2e:cd:21:7b:7b: c6:84:e2:71:2f:9e:02:15:e2:8f:71:32:a7:90:1f:7c:29:5c: 6f:3d:99:ea:80:f5:e0:f1:6d:98:81:15:31:91:39:32:1a:31: 3c:29:44:d6:ae:b9:7e:bd:88:4b:8f:0f:da:be:f4:ad:bc:50: af:30:22:5a:7f:14:8c:3e:d2:e3:ed:6d:26:9b:5e:19:c7:4d: 16:11:15:f4:7a:6f:e1:a8:a5:7b:de:0a:44:14:73:48:3f:dd: e3:4f:2b:19:4a:4a:d3:d4:63:15:9e:bb:e1:f6:f0:42:24:7a: 00:d5:ae:83:8e:81:37:d5:31:04:2c:72:35:48:4f:aa:09:d7: 53:b2:df:ec:d8:3c:0b:0b:e8:68:42:18:31:40:d9:bd:e3:ff: d2:fb:d8:89:05:cc:88:d2:67:5f:91:76:7a:1f:66:6c:66:09: b8:74:90:d3:26:90:19:ba:9b:e7:c6:bd:e6:8d:c3:6b:d4:24: ba:16:5a:c5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOQV6TKyBuyDC5N5SR2Q4QcjflF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzA0MzdaFw0yNDExMjIwMzA5MzdaMDMxMTAvBgNV BAMTKDNCQTE1MEVDQjdBNDlDMjJEOUM1OUJCMjkwMkRFNzI3RTg5MDE3Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC75AUyFFNBb/uJa1uKBbuXZaD2 bPm6/9VisCocJUhkqIx+zmJlDWVC0mYFjuglbn7M4enBUSPKbkHBEOFfRIGxBf+e +NgHxFXjMwCTBL54e6vnjPQWl2uNjeJRrd6KrX/eQfeQc3EyQ+GTkkTgix9jgr5p sK6FQwAkpb9JdB2507tDpYREFgZmrlucZWDBAJY5Ux1AQR3lxgqMaf4DVQVQgGPH 39NPJ/Sgw6VybfzxiysKgyk/i8kS4jyddbqsx2XahplkPvyPMx4HY8MNmlApHuMh /dIUckMp+oVH4pDEAlnUiNFdWtNmSY421+nkLgYyZfMdngkkzyMbuM3bIRPhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUO6FQ7LeknCLZxZuykC3nJ+iQF8swHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorojANBgkqhkiG 9w0BAQsFAAOCAQEAYq/sc10QoTebXfU6SsR0ZCQ4Z5PB++vq00XAfPhIvWqN9muk oc40gtu0trR2bfUPWBsvxRlgULn4XqJbipwDvacmaC7NIXt7xoTicS+eAhXij3Ey p5AffClcbz2Z6oD14PFtmIEVMZE5MhoxPClE1q65fr2IS48P2r70rbxQrzAiWn8U jD7S4+1tJpteGcdNFhEV9Hpv4aile94KRBRzSD/d408rGUpK09RjFZ674fbwQiR6 ANWug46BN9UxBCxyNUhPqgnXU7Lf7Ng8CwvoaEIYMUDZveP/0vvYiQXMiNJnX5F2 eh9mbGYJuHSQ0yaQGbqb58a95o3Da9QkuhZaxQ== -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org