$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136332e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136332e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: HRfa1J4iG40kdzG0BLEhjIQNRo3OHkfp1qXn9zmlNJI= Subject key identifier: 59:24:A7:15:8E:42:0A:EC:CB:7F:71:49:ED:71:58:F2:FC:79:AE:46 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 07C31073BA5608FD25AAE09D6B13D3334A7ACCED Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136332e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:09:49 +0000 ROA not before: Fri 24 Nov 2023 03:04:49 +0000 ROA not after: Fri 22 Nov 2024 03:09:49 +0000 asID: 18059 IP address blocks: 202.43.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c3:10:73:ba:56:08:fd:25:aa:e0:9d:6b:13:d3:33:4a:7a:cc:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:04:49 2023 GMT Not After : Nov 22 03:09:49 2024 GMT Subject: CN=5924A7158E420AECCB7F7149ED7158F2FC79AE46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0b:10:a6:20:9f:4b:47:36:f5:3d:93:e8:5a: ba:c6:f9:43:81:f3:ef:e7:8f:5b:ee:8a:db:00:75: 14:ee:e4:2d:a1:43:8a:d2:12:15:c9:81:d4:db:71: 9c:bc:d8:7a:e6:e4:9f:04:da:1b:a8:0f:c1:28:75: c3:95:79:e8:43:de:10:1d:ed:46:25:7d:2a:9b:09: a5:b8:56:ba:8d:56:b4:c4:b7:a8:31:2b:42:0d:9b: b7:aa:fb:48:10:9c:f0:37:32:c5:ac:97:84:be:94: ad:52:9a:13:b0:63:ec:f4:a3:04:79:19:b8:53:82: bc:ed:49:54:a0:cf:53:13:de:97:d0:14:cb:b9:48: 6a:7a:00:76:2f:3c:bc:9b:7a:f2:e7:45:d0:5f:8c: be:0a:f7:72:9c:08:a3:3e:68:f5:c0:a2:fa:df:11: dc:47:3d:76:64:f9:96:7b:12:4e:42:ad:9f:66:99: 3f:3b:9c:56:f5:1c:23:e4:af:40:b5:2f:29:1c:fe: d4:6c:2f:cc:c6:20:f6:10:06:d2:d2:4b:01:b8:30: 29:95:c2:22:eb:de:76:7b:38:c7:c4:3b:85:aa:ac: 4a:82:00:e8:32:04:ad:c8:08:28:43:b0:0f:72:7a: 84:70:62:a1:1f:1b:e5:51:3d:cf:1b:6c:c5:77:6f: 91:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:24:A7:15:8E:42:0A:EC:CB:7F:71:49:ED:71:58:F2:FC:79:AE:46 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136332e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.163.0/24 Signature Algorithm: sha256WithRSAEncryption 02:56:04:49:13:db:98:f5:96:d5:66:53:dc:30:8a:13:61:ee: 86:29:7d:b9:dd:24:19:bd:2b:15:42:b0:31:61:80:c5:fd:80: 2c:93:6e:18:d3:dd:76:38:20:cd:14:89:aa:bf:01:69:0f:82: 78:e3:cc:4b:e2:23:cf:96:e7:35:0c:d1:01:0f:f6:67:62:d5: 9c:b4:18:a8:de:f3:83:58:0c:72:28:2c:21:6e:a1:9b:40:8b: 1f:57:56:df:7c:2c:b6:a1:a9:dd:97:e7:88:5e:e3:4a:9b:31: 80:1b:c2:1e:5b:5e:a8:a0:c5:68:8f:e8:86:5f:b7:f0:82:eb: 58:34:84:b6:31:35:38:c5:00:f1:9c:99:22:73:4b:8e:d1:9e: fa:d6:e9:5e:1e:31:3a:43:60:13:5a:85:0c:c2:b0:6a:16:77: d0:55:48:e6:41:77:00:1d:df:04:10:54:11:0e:85:03:20:0d: 0e:21:8d:26:b6:4b:6f:42:68:6b:34:55:af:fa:cf:af:23:1e: f1:1a:0b:1c:56:c0:ad:b3:c8:5f:94:aa:27:dc:f3:91:5b:b5: 43:93:cc:b0:42:39:28:34:15:93:ec:9c:19:65:24:50:39:bd: 26:1b:78:fc:98:74:f0:00:42:73:bb:7d:bb:6c:a6:bc:2f:7e: 41:eb:de:b5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB8MQc7pWCP0lquCdaxPTM0p6zO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzA0NDlaFw0yNDExMjIwMzA5NDlaMDMxMTAvBgNV BAMTKDU5MjRBNzE1OEU0MjBBRUNDQjdGNzE0OUVENzE1OEYyRkM3OUFFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfCxCmIJ9LRzb1PZPoWrrG+UOB 8+/nj1vuitsAdRTu5C2hQ4rSEhXJgdTbcZy82Hrm5J8E2huoD8EodcOVeehD3hAd 7UYlfSqbCaW4VrqNVrTEt6gxK0INm7eq+0gQnPA3MsWsl4S+lK1SmhOwY+z0owR5 GbhTgrztSVSgz1MT3pfQFMu5SGp6AHYvPLybevLnRdBfjL4K93KcCKM+aPXAovrf EdxHPXZk+ZZ7Ek5CrZ9mmT87nFb1HCPkr0C1Lykc/tRsL8zGIPYQBtLSSwG4MCmV wiLr3nZ7OMfEO4WqrEqCAOgyBK3ICChDsA9yeoRwYqEfG+VRPc8bbMV3b5ErAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWSSnFY5CCuzLf3FJ7XFY8vx5rkYwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorozANBgkqhkiG 9w0BAQsFAAOCAQEAAlYESRPbmPWW1WZT3DCKE2Huhil9ud0kGb0rFUKwMWGAxf2A LJNuGNPddjggzRSJqr8BaQ+CeOPMS+Ijz5bnNQzRAQ/2Z2LVnLQYqN7zg1gMcigs IW6hm0CLH1dW33wstqGp3ZfniF7jSpsxgBvCHlteqKDFaI/ohl+38ILrWDSEtjE1 OMUA8ZyZInNLjtGe+tbpXh4xOkNgE1qFDMKwahZ30FVI5kF3AB3fBBBUEQ6FAyAN DiGNJrZLb0JoazRVr/rPryMe8RoLHFbArbPIX5SqJ9zzkVu1Q5PMsEI5KDQVk+yc GWUkUDm9Jht4/Jh08ABCc7t9u2ymvC9+QevetQ== -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:15 2024 by rpki-client on console-ams.rpki-client.org