$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137342e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3137342e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 2mDU0ic5rh6hW1k4RcNPHmzXqPhqbzobvNh7X44pDRE= Subject key identifier: AE:8E:9A:94:82:DE:23:81:BE:A1:39:CF:21:67:DC:9B:0F:C0:47:9C Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 0C6878C7CE7DC1B2592FB904EF1380021220F5B2 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137342e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:49:06 +0000 ROA not before: Fri 24 Nov 2023 03:44:06 +0000 ROA not after: Fri 22 Nov 2024 03:49:06 +0000 asID: 18059 IP address blocks: 202.43.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:68:78:c7:ce:7d:c1:b2:59:2f:b9:04:ef:13:80:02:12:20:f5:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:44:06 2023 GMT Not After : Nov 22 03:49:06 2024 GMT Subject: CN=AE8E9A9482DE2381BEA139CF2167DC9B0FC0479C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:06:b1:93:a9:61:17:3b:82:ce:8f:94:76:c6: 67:5b:42:35:a8:09:a4:9d:17:57:c4:60:3f:25:d0: 06:40:98:97:d4:e5:5b:df:06:e0:9f:3e:6c:d8:fe: c5:c5:ec:7f:b1:b2:60:28:81:df:48:7d:fc:73:30: 58:72:03:cc:c8:ab:f0:b3:55:ff:3c:2e:60:78:02: 29:77:89:31:2c:e7:a1:8d:5d:04:8a:ad:02:6c:58: 3e:26:1f:a8:7b:7e:26:8d:0a:7d:f3:53:24:c9:39: 2b:ef:ad:e5:7a:a7:f0:18:c7:01:fc:7e:ec:73:bb: ba:ae:b6:29:77:1a:d6:39:56:e4:09:0d:f1:f1:59: 01:8f:63:8d:20:30:ba:94:17:f0:46:47:28:f4:cd: 3c:73:ac:9a:39:8a:58:72:8f:88:94:c4:21:78:55: b0:93:20:ed:45:86:d9:5d:9b:9a:c7:4c:93:0c:4d: 6a:e6:bb:5d:91:b0:e2:58:ea:fb:9c:23:0f:34:b6: 88:e8:1f:c3:51:0a:fd:f6:92:ce:25:0a:4c:ed:c4: 28:8a:32:92:ef:61:a8:83:6b:ed:67:58:2b:55:57: ad:78:ed:ce:cc:ba:bc:64:f0:95:dc:e8:29:cc:82: 83:d6:b8:ce:4d:7b:d6:3d:ff:f4:65:0d:08:8a:4f: 14:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:8E:9A:94:82:DE:23:81:BE:A1:39:CF:21:67:DC:9B:0F:C0:47:9C X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137342e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.174.0/24 Signature Algorithm: sha256WithRSAEncryption 53:dd:b8:5c:0d:bc:45:63:bb:44:64:71:10:79:b4:5d:cd:23: dd:02:4d:b1:58:d1:6e:dd:0c:c9:bd:f2:be:d3:79:6b:ad:4a: 53:a8:c9:d5:6f:ce:74:d5:24:a8:6d:8f:15:d3:7c:d0:ec:71: 2b:fb:59:28:58:01:62:d1:39:74:41:0c:ce:5f:32:77:60:9e: 59:72:bd:81:f9:91:70:e9:b1:5e:f8:e0:77:ca:a0:16:0b:f7: 4c:c4:7a:11:d6:c3:7c:97:ac:2a:09:54:4e:cb:81:54:8e:e1: cf:88:ef:b0:3e:46:39:12:0d:85:ad:62:42:53:77:d6:bc:15: 31:c2:48:cd:1a:4c:9a:40:00:2a:7f:b3:45:98:d5:ac:94:7e: 8c:48:ed:bd:8f:fe:63:48:0c:02:0b:5f:4b:33:77:5b:a5:d8: 44:08:3a:a6:f6:04:e5:ba:8b:5e:26:d3:f9:42:e9:58:7b:c1: 08:0c:d2:00:77:36:fe:34:25:f7:f0:4b:dd:9a:08:1c:86:72: c9:cb:80:9e:36:27:b4:de:13:b6:5a:c1:3b:92:59:3a:5e:d4: 03:fe:c5:d0:1f:fd:da:ea:72:61:2c:62:07:3b:9c:f4:7a:66: 42:f4:e9:1a:33:09:90:f3:8e:d6:82:b6:37:fa:e3:a4:4b:16: 8b:ba:bb:57 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDGh4x859wbJZL7kE7xOAAhIg9bIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzQ0MDZaFw0yNDExMjIwMzQ5MDZaMDMxMTAvBgNV BAMTKEFFOEU5QTk0ODJERTIzODFCRUExMzlDRjIxNjdEQzlCMEZDMDQ3OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnBrGTqWEXO4LOj5R2xmdbQjWo CaSdF1fEYD8l0AZAmJfU5VvfBuCfPmzY/sXF7H+xsmAogd9IffxzMFhyA8zIq/Cz Vf88LmB4Ail3iTEs56GNXQSKrQJsWD4mH6h7fiaNCn3zUyTJOSvvreV6p/AYxwH8 fuxzu7qutil3GtY5VuQJDfHxWQGPY40gMLqUF/BGRyj0zTxzrJo5ilhyj4iUxCF4 VbCTIO1Fhtldm5rHTJMMTWrmu12RsOJY6vucIw80tojoH8NRCv32ks4lCkztxCiK MpLvYaiDa+1nWCtVV6147c7Murxk8JXc6CnMgoPWuM5Ne9Y9//RlDQiKTxTzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUro6alILeI4G+oTnPIWfcmw/AR5wwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorrjANBgkqhkiG 9w0BAQsFAAOCAQEAU924XA28RWO7RGRxEHm0Xc0j3QJNsVjRbt0Myb3yvtN5a61K U6jJ1W/OdNUkqG2PFdN80OxxK/tZKFgBYtE5dEEMzl8yd2CeWXK9gfmRcOmxXvjg d8qgFgv3TMR6EdbDfJesKglUTsuBVI7hz4jvsD5GORINha1iQlN31rwVMcJIzRpM mkAAKn+zRZjVrJR+jEjtvY/+Y0gMAgtfSzN3W6XYRAg6pvYE5bqLXibT+ULpWHvB CAzSAHc2/jQl9/BL3ZoIHIZyycuAnjYntN4TtlrBO5JZOl7UA/7F0B/92upyYSxi Bzuc9HpmQvTpGjMJkPOO1oK2N/rjpEsWi7q7Vw== -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:54 2024 by rpki-client on console-fra.rpki-client.org