$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136362e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136362e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: mTxaOQz/T+avTJk2Nsp9/pnLYRyRKLSf+uWpZhbFyLo= Subject key identifier: 57:1C:EB:BD:66:5E:CF:95:1E:84:08:F4:53:19:92:30:30:A5:00:87 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 5C16508BFCA781275F62E16BD44431F10D626967 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136362e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:21:37 +0000 ROA not before: Fri 24 Nov 2023 03:16:37 +0000 ROA not after: Fri 22 Nov 2024 03:21:37 +0000 asID: 18059 IP address blocks: 202.43.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:16:50:8b:fc:a7:81:27:5f:62:e1:6b:d4:44:31:f1:0d:62:69:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:16:37 2023 GMT Not After : Nov 22 03:21:37 2024 GMT Subject: CN=571CEBBD665ECF951E8408F45319923030A50087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ae:a1:70:c7:2d:8f:02:93:50:4e:a3:77:a0: 7e:77:db:2e:e5:1a:a6:ce:fd:92:6c:64:e5:34:c9: db:05:db:44:32:e7:4e:a7:f8:63:0a:4e:8d:a4:8a: 69:bb:d3:5a:36:82:cf:f5:63:6b:54:5a:25:74:ce: 7e:06:cf:0c:0a:14:5a:e9:bd:e6:7a:0f:a0:c4:93: 1c:3a:71:8e:78:45:cb:e9:d4:78:77:a9:1e:c0:12: b7:2c:14:fb:c9:a9:a2:a0:27:75:b0:70:8d:f4:fc: c8:4b:f3:a9:40:58:a0:5e:86:3c:51:5c:0b:35:80: 74:be:5a:2e:29:23:75:04:54:2a:08:3a:90:5a:fa: f9:87:76:46:cc:46:94:15:87:db:e2:43:94:97:28: 41:ab:03:f8:5c:85:2a:59:ff:ff:87:eb:a1:60:32: dc:ce:36:53:8c:2f:00:06:a7:9f:24:e7:a4:c1:c5: 4e:dd:e7:a8:bb:8b:c8:9b:f4:5c:bc:49:7c:38:af: e3:dc:75:15:3a:e3:1e:31:21:0d:ba:5e:ed:8c:d7: 82:08:c8:cd:5b:a3:02:86:99:65:e0:a3:db:d8:dd: aa:89:fb:12:d1:cf:05:03:6e:75:c1:e2:cb:fc:dd: 76:5f:19:76:f1:ae:14:3b:4b:e3:12:59:46:69:7b: 16:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1C:EB:BD:66:5E:CF:95:1E:84:08:F4:53:19:92:30:30:A5:00:87 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136362e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.166.0/24 Signature Algorithm: sha256WithRSAEncryption 50:a1:1c:67:ce:78:e3:67:f5:f9:0d:62:01:aa:03:52:47:a3: 08:9e:58:14:df:f7:e8:64:f0:8c:99:f9:6e:6d:5d:a4:ad:61: f7:5b:63:77:02:4d:78:07:35:19:fb:50:56:c9:48:7e:a9:3a: 92:5e:e3:59:5d:9c:8e:ef:9e:b0:e5:6d:26:94:38:e0:d6:84: 43:3f:10:1e:f0:ae:ef:b6:ff:d4:6f:9d:81:ca:5e:ba:4f:af: 14:54:d4:5c:9b:89:ca:67:9e:7c:b3:38:33:a8:23:cf:3f:ad: 6f:f6:2b:7a:ed:12:99:bd:de:d9:37:de:ef:60:13:4a:6b:79: fe:6f:c1:13:93:1a:22:ec:55:a4:b0:09:01:75:0a:83:24:6b: 1f:0e:24:43:db:22:a5:0b:f5:00:3c:2d:60:56:5b:aa:14:53: c9:5d:4c:2d:2e:82:c1:12:02:e9:4f:38:1b:86:d9:dd:68:08: 0a:9b:80:47:ac:f2:c1:f5:e8:34:f1:5d:0d:5c:27:36:c4:2b: ce:2e:9e:b2:a6:d9:3c:21:da:8d:89:96:d5:b5:13:a4:58:6d: 7b:98:43:10:4f:2e:cc:db:7c:35:42:e9:36:85:ec:85:1a:e7: bb:dd:9e:9b:5e:17:20:fc:d9:f1:2d:d5:30:ae:58:e1:41:33: 07:a6:fe:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXBZQi/yngSdfYuFr1EQx8Q1iaWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzE2MzdaFw0yNDExMjIwMzIxMzdaMDMxMTAvBgNV BAMTKDU3MUNFQkJENjY1RUNGOTUxRTg0MDhGNDUzMTk5MjMwMzBBNTAwODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/rqFwxy2PApNQTqN3oH532y7l GqbO/ZJsZOU0ydsF20Qy506n+GMKTo2kimm701o2gs/1Y2tUWiV0zn4GzwwKFFrp veZ6D6DEkxw6cY54Rcvp1Hh3qR7AErcsFPvJqaKgJ3WwcI30/MhL86lAWKBehjxR XAs1gHS+Wi4pI3UEVCoIOpBa+vmHdkbMRpQVh9viQ5SXKEGrA/hchSpZ//+H66Fg MtzONlOMLwAGp58k56TBxU7d56i7i8ib9Fy8SXw4r+PcdRU64x4xIQ26Xu2M14II yM1bowKGmWXgo9vY3aqJ+xLRzwUDbnXB4sv83XZfGXbxrhQ7S+MSWUZpexZJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVxzrvWZez5UehAj0UxmSMDClAIcwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorpjANBgkqhkiG 9w0BAQsFAAOCAQEAUKEcZ85442f1+Q1iAaoDUkejCJ5YFN/36GTwjJn5bm1dpK1h 91tjdwJNeAc1GftQVslIfqk6kl7jWV2cju+esOVtJpQ44NaEQz8QHvCu77b/1G+d gcpeuk+vFFTUXJuJymeefLM4M6gjzz+tb/Yreu0Smb3e2Tfe72ATSmt5/m/BE5Ma IuxVpLAJAXUKgyRrHw4kQ9sipQv1ADwtYFZbqhRTyV1MLS6CwRIC6U84G4bZ3WgI CpuAR6zywfXoNPFdDVwnNsQrzi6esqbZPCHajYmW1bUTpFhte5hDEE8uzNt8NULp NoXshRrnu92em14XIPzZ8S3VMK5Y4UEzB6b+Ng== -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org