$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e34332e3232382e302f32322d3234203d3e2039343232.roa File: 3230322e34332e3232382e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: d4njcKCxXvuiPQpiLgPI2iTaalRvfXwt51s7xl9S/7E= Subject key identifier: 57:61:6C:11:55:AD:1A:8D:57:15:A5:3F:91:D6:B2:D7:2F:F7:E6:EE Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 4440E2370E8CCFAF0CA462AE9D5F617414A2AA6C Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e34332e3232382e302f32322d3234203d3e2039343232.roa Signing time: Mon 01 Jul 2024 01:05:18 +0000 ROA not before: Mon 01 Jul 2024 01:00:18 +0000 ROA not after: Mon 30 Jun 2025 01:05:18 +0000 asID: 9422 IP address blocks: 202.43.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:40:e2:37:0e:8c:cf:af:0c:a4:62:ae:9d:5f:61:74:14:a2:aa:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jul 1 01:00:18 2024 GMT Not After : Jun 30 01:05:18 2025 GMT Subject: CN=57616C1155AD1A8D5715A53F91D6B2D72FF7E6EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f7:6e:70:03:24:50:38:1d:90:63:1f:62:bf: 58:79:d1:7a:5c:38:d3:af:f6:66:20:c2:77:18:35: a9:35:3e:c5:69:8f:28:a0:0f:e3:d5:38:bf:d8:d1: 4e:ff:87:55:5c:d2:54:2b:12:d9:e5:27:a2:f0:5c: 89:6b:02:32:e0:f2:79:6c:94:c6:d4:10:fd:42:83: 83:23:1d:d6:34:43:f4:bf:b6:e6:4d:70:68:47:e7: 15:9b:b4:0d:00:55:82:26:50:27:7b:9f:5e:4f:1a: ea:32:11:58:5d:36:d8:08:df:00:b3:39:32:c6:e5: 7e:22:d0:b6:8c:90:59:71:5e:a5:1e:16:84:ad:47: 15:54:32:34:f8:16:ba:97:72:d9:c3:ed:17:4e:f6: 44:f6:90:e2:c4:98:1a:ef:d1:ee:a7:58:ea:0b:bf: bf:e3:aa:d4:d7:4b:b1:f8:0c:29:04:0a:71:c3:2d: e2:ae:4b:9a:6b:0e:a2:92:cb:5b:85:8b:7d:6d:e2: 73:2d:a7:88:af:9f:bd:d9:e1:bc:92:17:01:5f:13: 48:d4:dd:56:df:da:3a:d4:8a:d0:02:ad:4a:99:30: 88:3e:28:6e:b4:c7:0b:68:98:69:87:7b:72:35:89: 89:e7:1f:a1:b7:0a:90:de:2d:bf:7c:a5:7a:56:47: 75:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:61:6C:11:55:AD:1A:8D:57:15:A5:3F:91:D6:B2:D7:2F:F7:E6:EE X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3230322e34332e3232382e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.228.0/22 Signature Algorithm: sha256WithRSAEncryption 56:8e:44:17:c8:74:4e:e1:c7:af:25:bf:94:5b:5f:5f:49:7a: 96:b3:9c:96:e6:a1:04:9b:59:bd:e8:25:7a:a5:fa:62:dd:34: 07:f7:ea:9a:68:ca:e2:1a:6d:20:f3:c2:18:8f:99:f2:0f:61: cb:06:7c:25:60:26:b7:e8:1c:c8:4e:9f:7c:4e:d2:0d:40:d6: 72:0c:a5:7e:bb:f2:b1:0b:59:03:f4:8c:f4:ca:b6:7e:b4:aa: e3:8e:ae:75:36:34:26:f0:39:22:1d:cf:03:67:4e:46:d8:b3: d7:a5:c1:14:48:c2:48:84:17:4d:ca:4d:e7:4f:f0:a4:24:d7: 35:58:0d:6c:a5:9f:99:9f:07:ec:e4:fa:0e:ca:44:21:99:eb: cf:dc:8c:c7:8e:58:9d:a0:58:ff:1d:c1:a8:08:7d:c0:24:44: 70:4d:32:cb:c5:67:21:c7:2c:66:e4:7c:8e:6e:94:e6:53:92: 44:2f:00:b3:75:fc:11:76:c7:89:5e:a1:3d:f3:9f:f0:23:0f: ae:88:76:a8:fd:29:a5:3d:b5:24:a1:58:bc:68:49:82:58:a2: 8e:9f:49:e8:4b:2e:5b:de:df:07:b4:e7:48:6f:b7:ab:b9:ba: 53:b4:90:99:e3:ed:cf:64:bf:39:2f:4b:26:d5:2d:42:91:8f: 91:c4:04:e8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUREDiNw6Mz68MpGKunV9hdBSiqmwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNDA3MDEwMTAwMThaFw0yNTA2MzAwMTA1MThaMDMxMTAvBgNV BAMTKDU3NjE2QzExNTVBRDFBOEQ1NzE1QTUzRjkxRDZCMkQ3MkZGN0U2RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+925wAyRQOB2QYx9iv1h50Xpc ONOv9mYgwncYNak1PsVpjyigD+PVOL/Y0U7/h1Vc0lQrEtnlJ6LwXIlrAjLg8nls lMbUEP1Cg4MjHdY0Q/S/tuZNcGhH5xWbtA0AVYImUCd7n15PGuoyEVhdNtgI3wCz OTLG5X4i0LaMkFlxXqUeFoStRxVUMjT4FrqXctnD7RdO9kT2kOLEmBrv0e6nWOoL v7/jqtTXS7H4DCkECnHDLeKuS5prDqKSy1uFi31t4nMtp4ivn73Z4bySFwFfE0jU 3Vbf2jrUitACrUqZMIg+KG60xwtomGmHe3I1iYnnH6G3CpDeLb98pXpWR3VvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUV2FsEVWtGo1XFaU/kday1y/35u4wHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzAzMjJlMzQzMzJlMzIzMjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzNDMyMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKK+QwDQYJKoZIhvcN AQELBQADggEBAFaORBfIdE7hx68lv5RbX19JepaznJbmoQSbWb3oJXql+mLdNAf3 6ppoyuIabSDzwhiPmfIPYcsGfCVgJrfoHMhOn3xO0g1A1nIMpX678rELWQP0jPTK tn60quOOrnU2NCbwOSIdzwNnTkbYs9elwRRIwkiEF03KTedP8KQk1zVYDWyln5mf B+zk+g7KRCGZ68/cjMeOWJ2gWP8dwagIfcAkRHBNMsvFZyHHLGbkfI5ulOZTkkQv ALN1/BF2x4leoT3zn/AjD66Idqj9KaU9tSShWLxoSYJYoo6fSehLLlve3we050hv t6u5ulO0kJnj7c9kvzkvSybVLUKRj5HEBOg= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org