$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137312e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3137312e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: opXTfQ8eVSXtommKILCwT0hclDSZeOyzU45AlghQOzc= Subject key identifier: A6:A8:A6:40:FD:7B:2E:D0:73:E4:0C:E8:DF:A3:E2:F3:F6:08:D6:52 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 4BA110EB493233D1410DE7B30395F16DA4C9FAD0 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137312e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:48:15 +0000 ROA not before: Fri 24 Nov 2023 03:43:15 +0000 ROA not after: Fri 22 Nov 2024 03:48:15 +0000 asID: 18059 IP address blocks: 202.43.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:a1:10:eb:49:32:33:d1:41:0d:e7:b3:03:95:f1:6d:a4:c9:fa:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:43:15 2023 GMT Not After : Nov 22 03:48:15 2024 GMT Subject: CN=A6A8A640FD7B2ED073E40CE8DFA3E2F3F608D652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:96:df:2d:46:e9:b1:09:37:60:66:df:31:c1: e9:ec:f6:28:01:2b:26:a2:e2:50:c6:05:94:05:09: 2b:5c:cd:0f:21:fe:3e:5b:c2:9a:26:0b:ae:c0:2d: 23:b2:3e:37:59:d4:95:06:f2:e6:5d:03:6b:e3:71: 00:d5:6b:5e:9a:0d:85:63:58:3c:d3:c7:01:4b:3b: cf:3f:c1:58:3f:de:ea:75:92:b4:92:a4:92:53:58: 8e:a7:0b:21:2b:46:bc:d6:ba:0a:26:80:9e:3f:36: d9:33:aa:ca:3a:a0:04:af:f9:13:16:34:ee:18:9e: fb:50:6d:cc:6c:20:c9:79:a9:31:20:f8:5d:b6:47: f4:ed:0f:bf:ec:2c:ac:a8:a1:e1:c2:5d:12:45:3e: ae:2d:1c:74:8b:20:9a:77:11:87:a1:ff:af:ad:92: 24:fa:b9:79:4c:51:42:cd:81:aa:56:b0:7d:0f:73: 98:99:92:19:df:66:ea:1f:b5:34:d9:4a:5a:b1:66: 1f:62:c3:11:4d:37:0b:d5:cd:9a:d7:08:c5:7d:89: 92:12:ce:51:df:6b:a3:91:f9:14:eb:8e:6b:64:e8: 23:e4:c2:b8:2e:3b:bf:53:95:d6:f7:2b:cc:ee:31: fa:cf:37:cc:7c:bb:e7:f8:70:ab:46:ae:4b:82:1d: c1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A8:A6:40:FD:7B:2E:D0:73:E4:0C:E8:DF:A3:E2:F3:F6:08:D6:52 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137312e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.171.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:3a:28:23:6b:7b:22:a3:2b:4a:71:13:11:b5:15:a6:f0:ac: 0e:4d:81:5f:40:ce:14:83:ee:68:0c:a7:0e:37:42:c7:d2:1c: f8:98:fa:11:fc:a7:68:da:4b:ff:95:3d:c3:0c:54:30:4b:a5: d4:97:69:a6:53:63:65:80:06:b8:34:db:ac:11:9f:d9:e8:63: a5:12:c0:fb:6e:14:16:32:2a:6a:9f:e5:33:b5:54:12:49:c7: 7c:62:34:96:2b:e9:92:4f:ed:23:41:15:e7:74:e9:3f:1a:b1: 30:30:a6:de:4c:89:8a:52:27:98:cd:c5:e2:89:6a:a9:18:e7: d8:c6:94:e5:9e:1c:b7:c6:51:51:56:a0:4d:32:ba:eb:dc:91: 14:ef:ed:38:fd:6b:1b:53:a9:cb:a8:40:79:eb:f2:94:01:4e: 36:3a:48:c2:d2:5a:fc:0f:f1:9c:f9:b1:87:cb:e1:d6:77:3b: 63:09:e2:0c:d7:cc:3a:9b:b4:54:c4:d6:d7:e6:51:7d:80:a9: 0c:5b:e6:cc:8b:d9:52:a4:1c:ec:eb:47:a3:1c:9a:db:47:11: 67:db:51:0e:d9:46:53:c1:cc:b5:3e:37:b0:1f:3c:69:02:15: 1c:e0:82:16:85:f8:3e:4e:90:74:93:a2:8c:01:ed:b5:24:40: 3e:25:83:e9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS6EQ60kyM9FBDeezA5XxbaTJ+tAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzQzMTVaFw0yNDExMjIwMzQ4MTVaMDMxMTAvBgNV BAMTKEE2QThBNjQwRkQ3QjJFRDA3M0U0MENFOERGQTNFMkYzRjYwOEQ2NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDClt8tRumxCTdgZt8xwens9igB Kyai4lDGBZQFCStczQ8h/j5bwpomC67ALSOyPjdZ1JUG8uZdA2vjcQDVa16aDYVj WDzTxwFLO88/wVg/3up1krSSpJJTWI6nCyErRrzWugomgJ4/Ntkzqso6oASv+RMW NO4YnvtQbcxsIMl5qTEg+F22R/TtD7/sLKyooeHCXRJFPq4tHHSLIJp3EYeh/6+t kiT6uXlMUULNgapWsH0Pc5iZkhnfZuoftTTZSlqxZh9iwxFNNwvVzZrXCMV9iZIS zlHfa6OR+RTrjmtk6CPkwrguO79Tldb3K8zuMfrPN8x8u+f4cKtGrkuCHcH/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpqimQP17LtBz5Azo36Pi8/YI1lIwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorqzANBgkqhkiG 9w0BAQsFAAOCAQEAjTooI2t7IqMrSnETEbUVpvCsDk2BX0DOFIPuaAynDjdCx9Ic +Jj6EfynaNpL/5U9wwxUMEul1JdpplNjZYAGuDTbrBGf2ehjpRLA+24UFjIqap/l M7VUEknHfGI0livpkk/tI0EV53TpPxqxMDCm3kyJilInmM3F4olqqRjn2MaU5Z4c t8ZRUVagTTK669yRFO/tOP1rG1Opy6hAeevylAFONjpIwtJa/A/xnPmxh8vh1nc7 YwniDNfMOpu0VMTW1+ZRfYCpDFvmzIvZUqQc7OtHoxya20cRZ9tRDtlGU8HMtT43 sB88aQIVHOCCFoX4Pk6QdJOijAHttSRAPiWD6Q== -----END CERTIFICATE-----Generated at Sun Apr 28 15:44:29 2024 by rpki-client on console-fra.rpki-client.org