$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136352e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136352e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: dWotyxjypLbNFOgHk6XbePMXUn2ck6MncdfwsiY5wGM= Subject key identifier: EB:12:DF:16:D2:8A:52:DA:0F:23:0E:85:6B:D8:CC:F4:99:64:FA:52 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 6CDFAB3D3D9D6AC96D49841CE1F772753382AD2A Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136352e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:21:21 +0000 ROA not before: Fri 24 Nov 2023 03:16:21 +0000 ROA not after: Fri 22 Nov 2024 03:21:21 +0000 asID: 18059 IP address blocks: 202.43.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:df:ab:3d:3d:9d:6a:c9:6d:49:84:1c:e1:f7:72:75:33:82:ad:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:16:21 2023 GMT Not After : Nov 22 03:21:21 2024 GMT Subject: CN=EB12DF16D28A52DA0F230E856BD8CCF49964FA52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cf:40:17:6b:c6:25:36:75:f3:33:b7:57:be: e8:91:85:5b:30:78:8f:a5:33:30:3a:f5:df:a2:d5: 01:18:8f:86:44:29:ab:9a:d0:88:8e:c9:2e:92:33: 28:60:f0:60:71:17:ff:1f:3e:e8:e1:8d:a1:d6:89: 9e:44:eb:e0:3d:ed:11:73:57:39:47:f3:42:9f:92: 33:f4:30:32:e1:1a:bf:b5:00:36:aa:42:44:05:57: bf:1c:21:bb:25:fb:7e:ff:92:9c:7f:86:3b:bd:be: 50:dc:3b:72:ec:44:58:2f:d8:cc:10:72:c3:02:a5: b8:b4:aa:26:3f:36:07:41:f2:2c:4b:60:38:90:ab: 63:3b:b1:0d:0f:2a:3a:de:ea:24:a4:cb:22:c7:72: b3:55:55:c7:ce:11:bf:71:7a:3e:b5:ae:cb:b6:ba: e2:e2:bf:52:6f:5e:a4:5c:df:dc:20:47:74:d2:bf: 0e:90:28:b5:8e:bd:d9:af:77:73:fc:14:fd:4c:45: 52:38:03:23:f4:a2:8e:02:ae:38:a2:4e:f1:56:58: 2a:3d:48:86:d8:59:58:87:aa:fa:9a:93:10:d5:f2: 85:ac:08:fc:22:9d:5d:9b:2b:c9:e0:c4:cd:41:67: b7:6a:88:da:66:aa:01:0d:08:de:04:0a:76:b6:71: e8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:12:DF:16:D2:8A:52:DA:0F:23:0E:85:6B:D8:CC:F4:99:64:FA:52 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136352e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.165.0/24 Signature Algorithm: sha256WithRSAEncryption 75:77:30:73:4d:7c:10:9c:a6:52:4d:2a:66:86:33:5a:57:c7: 16:95:14:e0:13:b8:09:c9:d3:b4:e1:ab:5a:61:f8:67:ca:e4: bc:14:99:21:5e:43:ea:7e:a8:82:38:f0:b2:d9:4f:2a:34:1a: 69:21:44:5b:91:83:02:6d:c3:a7:37:69:05:ae:92:c7:fb:fd: 6e:ac:41:18:df:8b:bc:77:a1:f0:14:02:b5:8c:01:0d:d9:1f: 79:b7:20:36:d2:11:e4:7e:21:ec:b2:5f:d3:39:ce:2d:61:03: 32:d9:11:25:94:22:d0:52:bd:4f:ae:54:82:74:5b:40:6e:76: 0e:c8:17:57:8c:16:61:87:73:5a:ca:d8:6d:e5:4c:35:df:e9: b9:8a:5b:c0:23:ba:41:bc:33:3b:26:c9:7f:7a:eb:6b:5f:dd: 0f:b5:3e:1f:63:fb:0a:de:71:d6:cc:bb:d4:a9:f5:f0:e0:60: 41:be:60:d2:66:5c:cf:84:b4:ec:60:1c:fe:58:8d:2a:d0:10: 2b:75:f0:fb:1f:9d:ab:dc:b1:5f:a7:87:27:a8:c7:2d:27:3b: cb:86:19:5b:8c:86:79:37:6f:1b:d2:6c:d4:7b:56:08:fd:7e: 72:02:01:40:f7:ba:48:07:2b:6f:d6:80:73:c9:e8:39:78:92: 64:1d:ed:72 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbN+rPT2dasltSYQc4fdydTOCrSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzE2MjFaFw0yNDExMjIwMzIxMjFaMDMxMTAvBgNV BAMTKEVCMTJERjE2RDI4QTUyREEwRjIzMEU4NTZCRDhDQ0Y0OTk2NEZBNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSz0AXa8YlNnXzM7dXvuiRhVsw eI+lMzA69d+i1QEYj4ZEKaua0IiOyS6SMyhg8GBxF/8fPujhjaHWiZ5E6+A97RFz VzlH80KfkjP0MDLhGr+1ADaqQkQFV78cIbsl+37/kpx/hju9vlDcO3LsRFgv2MwQ csMCpbi0qiY/NgdB8ixLYDiQq2M7sQ0PKjre6iSkyyLHcrNVVcfOEb9xej61rsu2 uuLiv1JvXqRc39wgR3TSvw6QKLWOvdmvd3P8FP1MRVI4AyP0oo4CrjiiTvFWWCo9 SIbYWViHqvqakxDV8oWsCPwinV2bK8ngxM1BZ7dqiNpmqgENCN4ECna2cejpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6xLfFtKKUtoPIw6Fa9jM9Jlk+lIwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorpTANBgkqhkiG 9w0BAQsFAAOCAQEAdXcwc018EJymUk0qZoYzWlfHFpUU4BO4CcnTtOGrWmH4Z8rk vBSZIV5D6n6ogjjwstlPKjQaaSFEW5GDAm3DpzdpBa6Sx/v9bqxBGN+LvHeh8BQC tYwBDdkfebcgNtIR5H4h7LJf0znOLWEDMtkRJZQi0FK9T65UgnRbQG52DsgXV4wW YYdzWsrYbeVMNd/puYpbwCO6QbwzOybJf3rra1/dD7U+H2P7Ct5x1sy71Kn18OBg Qb5g0mZcz4S07GAc/liNKtAQK3Xw+x+dq9yxX6eHJ6jHLSc7y4YZW4yGeTdvG9Js 1HtWCP1+cgIBQPe6SAcrb9aAc8noOXiSZB3tcg== -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org