$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139382e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3139382e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: PUh8dV5OubvVE0P0q1xKntONr8SQUpUQ/SFc3Uv0qV0= Subject key identifier: B8:95:C2:37:1E:65:83:71:6D:B4:30:DE:A7:97:4A:74:27:B7:AC:6B Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 54E6089477866ED7309775804A2FAFD27CB5E425 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139382e302f32342d3234203d3e203138303539.roa Signing time: Fri 24 Nov 2023 03:53:01 +0000 ROA not before: Fri 24 Nov 2023 03:48:01 +0000 ROA not after: Fri 22 Nov 2024 03:53:01 +0000 asID: 18059 IP address blocks: 202.78.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e6:08:94:77:86:6e:d7:30:97:75:80:4a:2f:af:d2:7c:b5:e4:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Nov 24 03:48:01 2023 GMT Not After : Nov 22 03:53:01 2024 GMT Subject: CN=B895C2371E6583716DB430DEA7974A7427B7AC6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0e:f1:a8:73:8a:d6:3b:f2:b9:06:7a:f4:89: 7a:8f:ee:de:6b:17:5c:12:de:4a:b2:45:c7:9e:5c: 0c:94:18:88:87:0f:95:e6:39:a5:b1:7d:99:d7:dd: 11:d6:85:4d:e8:cb:4e:90:a2:4e:12:9c:fa:47:0d: 79:aa:94:35:81:12:34:3e:89:05:c8:0c:6e:d0:08: b7:74:88:36:92:ee:80:3d:8b:3d:a0:b5:fa:4c:4c: 56:d3:b2:d2:83:da:38:af:70:30:fe:a6:20:6d:3c: 8e:ec:00:42:e6:71:9c:8e:d1:69:13:67:41:f6:0a: 31:af:ff:34:35:20:8a:e9:3f:a0:74:23:c1:46:30: 7f:26:e7:d2:0b:9a:d6:ef:18:44:c9:88:75:f9:bf: 11:70:f4:52:09:79:62:3a:3f:15:f5:ec:b0:7f:65: 00:14:e6:cf:32:39:13:26:6c:47:88:de:ba:3a:82: 2e:d8:13:94:c6:81:35:91:72:ff:d1:a7:a3:c3:e3: a0:64:18:74:80:90:6d:65:36:05:9d:09:b5:5c:8c: ea:e2:af:6e:a8:35:93:ec:71:e3:03:55:25:97:2f: e1:78:1a:c5:cf:f1:71:25:3e:79:55:e4:68:ed:6d: e6:3b:da:b8:ab:ff:88:1a:ba:db:a8:91:ec:31:6a: 52:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:95:C2:37:1E:65:83:71:6D:B4:30:DE:A7:97:4A:74:27:B7:AC:6B X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3139382e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.198.0/24 Signature Algorithm: sha256WithRSAEncryption 50:ad:fa:3a:65:2b:5b:e9:93:17:3e:b1:37:24:48:e5:d3:e1: 18:10:b5:ac:be:d4:89:84:38:89:20:dd:3e:1e:13:5e:9a:d1: 94:3c:48:6b:02:8f:4f:56:2d:48:4f:09:e7:b8:16:61:3b:cf: da:60:6c:cf:e4:a7:54:0b:a6:c7:bd:2a:a4:36:94:c2:5d:cc: 9c:d4:18:ca:29:46:51:ce:91:f7:46:78:b0:9c:6b:e8:e3:67: 2d:0b:c4:ce:ca:82:08:68:c3:5f:83:eb:f8:25:a3:29:f1:25: 8a:51:a9:6e:2a:6c:91:f6:34:e7:9d:46:4b:d2:69:02:e8:c4: 42:d0:60:1e:45:4a:83:dc:29:d4:c4:e2:52:1d:ac:a6:4d:4e: 09:53:c9:43:f6:cc:d6:dd:80:19:76:58:0f:dc:3a:7b:14:8a: 54:f2:59:b3:8a:07:c8:6d:a4:df:c9:f0:6d:cb:17:b8:1f:be: 10:9f:0a:a4:f2:61:6e:9e:82:8e:13:ef:71:9d:45:99:48:10: cc:1c:ec:ea:13:7c:06:ba:88:50:d4:d2:3d:61:1d:68:af:3c: a9:c4:45:04:49:29:0f:0a:d8:2d:32:8e:74:c7:18:68:b8:74: 24:0a:3b:b8:b1:d4:d6:dd:d5:d7:03:c7:7c:7f:59:64:09:90: a9:48:ca:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVOYIlHeGbtcwl3WASi+v0ny15CUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yMzExMjQwMzQ4MDFaFw0yNDExMjIwMzUzMDFaMDMxMTAvBgNV BAMTKEI4OTVDMjM3MUU2NTgzNzE2REI0MzBERUE3OTc0QTc0MjdCN0FDNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXDvGoc4rWO/K5Bnr0iXqP7t5r F1wS3kqyRceeXAyUGIiHD5XmOaWxfZnX3RHWhU3oy06Qok4SnPpHDXmqlDWBEjQ+ iQXIDG7QCLd0iDaS7oA9iz2gtfpMTFbTstKD2jivcDD+piBtPI7sAELmcZyO0WkT Z0H2CjGv/zQ1IIrpP6B0I8FGMH8m59ILmtbvGETJiHX5vxFw9FIJeWI6PxX17LB/ ZQAU5s8yORMmbEeI3ro6gi7YE5TGgTWRcv/Rp6PD46BkGHSAkG1lNgWdCbVcjOri r26oNZPsceMDVSWXL+F4GsXP8XElPnlV5GjtbeY72rir/4gautuokewxalIDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuJXCNx5lg3FttDDep5dKdCe3rGswHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOxjANBgkqhkiG 9w0BAQsFAAOCAQEAUK36OmUrW+mTFz6xNyRI5dPhGBC1rL7UiYQ4iSDdPh4TXprR lDxIawKPT1YtSE8J57gWYTvP2mBsz+SnVAumx70qpDaUwl3MnNQYyilGUc6R90Z4 sJxr6ONnLQvEzsqCCGjDX4Pr+CWjKfElilGpbipskfY0551GS9JpAujEQtBgHkVK g9wp1MTiUh2spk1OCVPJQ/bM1t2AGXZYD9w6exSKVPJZs4oHyG2k38nwbcsXuB++ EJ8KpPJhbp6CjhPvcZ1FmUgQzBzs6hN8BrqIUNTSPWEdaK88qcRFBEkpDwrYLTKO dMcYaLh0JAo7uLHU1t3V1wPHfH9ZZAmQqUjK9w== -----END CERTIFICATE-----Generated at Tue Apr 30 10:13:55 2024 by rpki-client on console-fra.rpki-client.org