$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139352e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3139352e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: NJkl4m+ZI2fIV94wNZKfJGj6SFtrAwjiwpIUlXe9J9U= Subject key identifier: FD:9D:9C:C4:BF:16:D9:E0:DF:4F:53:FE:5C:CE:A4:E3:AE:D1:3D:AB Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 134B325AAFD2998260A6D4706C3335A1BE82CB69 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139352e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:52:17 +0000 ROA not before: Fri 24 Nov 2023 03:47:17 +0000 ROA not after: Fri 22 Nov 2024 03:52:17 +0000 asID: 18059 IP address blocks: 202.78.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:4b:32:5a:af:d2:99:82:60:a6:d4:70:6c:33:35:a1:be:82:cb:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:47:17 2023 GMT Not After : Nov 22 03:52:17 2024 GMT Subject: CN=FD9D9CC4BF16D9E0DF4F53FE5CCEA4E3AED13DAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:99:38:dc:1b:68:cb:d1:ef:82:86:33:0e:9e: ca:67:24:fb:6a:17:60:1b:00:37:17:cc:c6:75:26: 63:99:16:00:99:2b:32:26:bc:ac:32:11:c3:ab:c0: a0:55:99:81:3e:4c:e0:42:0b:46:5f:74:04:10:38: f7:fd:ab:b5:df:c9:34:09:d6:03:09:71:3a:7b:a5: 7a:ec:b5:e1:0d:f7:9c:1f:63:7d:ef:9c:3c:4b:cb: 33:ae:c8:67:f3:8e:12:c0:dc:21:13:d2:93:50:68: 7c:ab:6c:2e:5f:35:3c:87:b0:0c:fe:ea:7a:70:84: a8:3f:d4:42:3c:78:b7:57:d0:72:bf:cb:57:56:04: 33:03:5d:a6:1f:62:0e:10:ce:b6:30:08:1f:55:c0: 38:18:82:8c:f5:9d:ef:17:69:d2:5a:34:84:2e:ee: 27:94:ce:b7:60:9c:31:ae:0d:4b:ab:10:5e:3d:36: 2a:54:f6:02:75:f5:6c:8f:20:57:68:f4:da:a0:78: f6:8a:e9:13:e9:c2:aa:fd:49:0d:62:9f:00:cc:26: 97:03:12:2c:00:15:d2:1d:e4:cb:82:b8:a3:d3:13: 75:44:8d:6e:3d:b0:78:c1:09:3a:b2:11:a0:e4:fd: 17:11:d4:53:57:fc:8a:c4:97:31:53:f3:c4:c8:b1: d9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9D:9C:C4:BF:16:D9:E0:DF:4F:53:FE:5C:CE:A4:E3:AE:D1:3D:AB X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139352e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.195.0/24 Signature Algorithm: sha256WithRSAEncryption 65:90:82:c7:79:89:d3:b5:fa:73:b1:2e:51:dc:7e:44:ff:4e: 11:06:e3:86:0c:97:8f:d0:e8:5c:5b:ac:47:d5:87:b6:10:79: b1:c9:19:aa:b7:5f:f8:4f:be:86:54:57:7a:76:78:5b:65:d5: e6:04:25:e0:42:a5:d2:8d:36:4f:15:72:eb:55:0b:14:b3:f2: e3:fc:56:33:2c:17:14:0c:29:0d:4e:52:dd:4c:f5:7a:0b:bd: 8f:e6:a7:6e:f5:ee:49:a1:90:02:24:86:df:9e:53:5d:e6:64: 71:a2:df:35:6b:2a:e7:c5:93:2d:97:2b:a1:95:a6:09:63:16: cc:06:21:d3:05:cb:0e:3f:02:c9:57:99:a5:4e:dc:17:f7:34: 19:ac:1d:00:11:db:76:16:43:90:23:7c:34:e6:91:6d:06:8b: 0e:25:78:b5:aa:95:0b:34:85:1e:26:d1:93:50:91:f0:2e:e6: 11:5e:d6:a9:b2:7f:5b:f0:87:3c:0a:cb:4c:2a:a0:c8:c7:37: 93:1a:c5:a4:72:65:73:64:31:b3:01:eb:32:1e:7d:7d:58:85: 92:c3:cf:a4:63:04:c7:2b:58:bf:a3:0f:52:81:c8:84:61:40: 3f:4c:90:73:26:67:37:02:65:35:7d:74:02:66:53:d7:18:c0: ea:98:4d:f4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE0syWq/SmYJgptRwbDM1ob6Cy2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzQ3MTdaFw0yNDExMjIwMzUyMTdaMDMxMTAvBgNV BAMTKEZEOUQ5Q0M0QkYxNkQ5RTBERjRGNTNGRTVDQ0VBNEUzQUVEMTNEQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6mTjcG2jL0e+ChjMOnspnJPtq F2AbADcXzMZ1JmOZFgCZKzImvKwyEcOrwKBVmYE+TOBCC0ZfdAQQOPf9q7XfyTQJ 1gMJcTp7pXrsteEN95wfY33vnDxLyzOuyGfzjhLA3CET0pNQaHyrbC5fNTyHsAz+ 6npwhKg/1EI8eLdX0HK/y1dWBDMDXaYfYg4QzrYwCB9VwDgYgoz1ne8XadJaNIQu 7ieUzrdgnDGuDUurEF49NipU9gJ19WyPIFdo9NqgePaK6RPpwqr9SQ1inwDMJpcD EiwAFdId5MuCuKPTE3VEjW49sHjBCTqyEaDk/RcR1FNX/IrElzFT88TIsdmpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/Z2cxL8W2eDfT1P+XM6k467RPaswHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzEzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOwzANBgkqhkiG 9w0BAQsFAAOCAQEAZZCCx3mJ07X6c7EuUdx+RP9OEQbjhgyXj9DoXFusR9WHthB5 sckZqrdf+E++hlRXenZ4W2XV5gQl4EKl0o02TxVy61ULFLPy4/xWMywXFAwpDU5S 3Uz1egu9j+anbvXuSaGQAiSG355TXeZkcaLfNWsq58WTLZcroZWmCWMWzAYh0wXL Dj8CyVeZpU7cF/c0GawdABHbdhZDkCN8NOaRbQaLDiV4taqVCzSFHibRk1CR8C7m EV7WqbJ/W/CHPArLTCqgyMc3kxrFpHJlc2QxswHrMh59fViFksPPpGMExytYv6MP UoHIhGFAP0yQcyZnNwJlNX10AmZT1xjA6phN9A== -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:55 2024 by rpki-client on console-fra.rpki-client.org