$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137322e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3137322e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: WGaC5/WlbDAB0l5RT5DSrylRfaQTp6zuETYdU4DtJ6M= Subject key identifier: 9B:A1:06:72:9D:84:5D:9F:CA:1B:28:EB:66:C4:D8:66:2D:1A:B0:CB Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 7D7D8AA74D5BDD4D6C23B6EE1206D6A5FDF4283B Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137322e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:48:31 +0000 ROA not before: Fri 24 Nov 2023 03:43:31 +0000 ROA not after: Fri 22 Nov 2024 03:48:31 +0000 asID: 18059 IP address blocks: 202.43.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:7d:8a:a7:4d:5b:dd:4d:6c:23:b6:ee:12:06:d6:a5:fd:f4:28:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:43:31 2023 GMT Not After : Nov 22 03:48:31 2024 GMT Subject: CN=9BA106729D845D9FCA1B28EB66C4D8662D1AB0CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b8:83:9f:17:2c:b6:5f:62:99:6f:9d:20:27: 2d:0e:f6:99:49:98:36:10:0d:0f:2b:e6:21:6e:d0: 8d:3d:8c:53:72:b9:a0:0d:96:e2:27:75:ff:37:a3: 70:82:94:b6:92:f4:01:0b:95:19:a1:7a:c2:42:79: f6:0d:69:63:a9:c6:6e:81:bd:1a:8a:9a:ab:8f:1c: ef:f0:73:3b:66:b3:d7:65:9f:89:68:ea:8a:6b:be: 96:86:87:cc:2e:b2:af:58:60:15:61:20:72:0b:5b: 70:b6:a9:41:51:3d:7a:b7:68:11:54:48:0b:1d:50: 4a:d4:c0:1f:01:93:9b:25:15:42:df:97:55:8b:3a: 82:34:90:f0:ee:04:7c:ca:f8:2d:29:a2:d9:8b:99: 4b:ca:09:59:97:79:68:30:86:b3:c8:0a:11:43:f3: 87:d7:c0:61:4e:2b:d0:49:71:7b:75:1b:db:98:3c: ae:e7:5a:29:3a:5c:3b:91:e7:a8:e2:75:63:b4:ba: fa:b8:c4:bb:49:56:6c:be:1e:b8:c8:d9:21:46:9a: 5e:c7:cf:c3:f9:ef:42:32:56:23:27:3e:af:26:ee: 5a:b7:c1:41:80:6b:f3:e0:79:94:67:f5:11:aa:99: 2c:1d:80:cb:6d:ce:5a:9d:a5:23:47:51:44:cd:b2: ce:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A1:06:72:9D:84:5D:9F:CA:1B:28:EB:66:C4:D8:66:2D:1A:B0:CB X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137322e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.172.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:66:ea:89:4b:82:1e:c3:c8:8b:e9:bb:71:3d:77:ed:ca:0e: 7d:14:86:3e:df:b4:dd:34:95:26:ec:8c:74:f1:e5:98:b8:98: a5:41:73:1f:a0:c0:5f:63:a5:96:68:ea:4b:6c:c8:41:c3:df: 29:28:f5:14:05:51:bd:74:c8:12:dc:e9:4d:3a:ce:92:24:cf: 81:0f:ef:6d:08:f5:d7:a7:56:49:9a:ff:9c:8e:f3:16:15:d9: 53:1a:b7:17:01:04:52:49:cf:1b:1d:ac:66:e7:0a:8b:03:ee: 52:de:69:2f:1a:f2:b5:bf:26:94:04:d1:ab:50:95:c9:ba:7d: 1c:7d:69:63:20:6f:e9:6a:16:e4:aa:da:aa:05:02:c6:8b:49: f6:45:ae:4e:f4:88:e0:17:e6:16:bc:78:38:87:31:45:6b:e9: 41:14:e9:63:40:e8:47:4a:7b:98:e8:05:fe:0f:31:30:70:fe: bd:11:6a:f1:51:29:85:f5:ce:4c:5b:9e:f5:b0:e2:ba:74:25: 41:9b:f0:27:20:08:b6:c2:01:8b:8a:0f:73:23:a1:7c:02:81: 34:d9:01:24:c8:f9:68:8c:5d:e5:f2:c4:89:aa:dd:65:df:ef: 81:8a:e6:87:f0:df:53:b4:7b:62:95:c1:e1:e6:33:81:31:89: b2:1e:f6:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfX2Kp01b3U1sI7buEgbWpf30KDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzQzMzFaFw0yNDExMjIwMzQ4MzFaMDMxMTAvBgNV BAMTKDlCQTEwNjcyOUQ4NDVEOUZDQTFCMjhFQjY2QzREODY2MkQxQUIwQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnuIOfFyy2X2KZb50gJy0O9plJ mDYQDQ8r5iFu0I09jFNyuaANluIndf83o3CClLaS9AELlRmhesJCefYNaWOpxm6B vRqKmquPHO/wcztms9dln4lo6oprvpaGh8wusq9YYBVhIHILW3C2qUFRPXq3aBFU SAsdUErUwB8Bk5slFULfl1WLOoI0kPDuBHzK+C0potmLmUvKCVmXeWgwhrPIChFD 84fXwGFOK9BJcXt1G9uYPK7nWik6XDuR56jidWO0uvq4xLtJVmy+HrjI2SFGml7H z8P570IyViMnPq8m7lq3wUGAa/PgeZRn9RGqmSwdgMttzlqdpSNHUUTNss6BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUm6EGcp2EXZ/KGyjrZsTYZi0asMswHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorrDANBgkqhkiG 9w0BAQsFAAOCAQEAembqiUuCHsPIi+m7cT137coOfRSGPt+03TSVJuyMdPHlmLiY pUFzH6DAX2OllmjqS2zIQcPfKSj1FAVRvXTIEtzpTTrOkiTPgQ/vbQj116dWSZr/ nI7zFhXZUxq3FwEEUknPGx2sZucKiwPuUt5pLxrytb8mlATRq1CVybp9HH1pYyBv 6WoW5KraqgUCxotJ9kWuTvSI4BfmFrx4OIcxRWvpQRTpY0DoR0p7mOgF/g8xMHD+ vRFq8VEphfXOTFue9bDiunQlQZvwJyAItsIBi4oPcyOhfAKBNNkBJMj5aIxd5fLE iardZd/vgYrmh/DfU7R7YpXB4eYzgTGJsh72ww== -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org