$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa File: 3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: QQYEjIOOwAEJPxEm8P0iXntOG084pUuLDWZAdMfwGKs= Subject key identifier: 19:AA:D7:6A:9C:30:D2:7F:FF:EA:74:31:0C:13:AB:34:AD:B3:03:E8 Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 06B548A1A8B5F31033D9B4891C7BADEF35D24FCE Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa Signing time: Mon 21 Aug 2023 05:00:54 +0000 ROA not before: Mon 21 Aug 2023 04:55:54 +0000 ROA not after: Mon 19 Aug 2024 05:00:54 +0000 asID: 131111 IP address blocks: 202.43.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 21:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:b5:48:a1:a8:b5:f3:10:33:d9:b4:89:1c:7b:ad:ef:35:d2:4f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Aug 21 04:55:54 2023 GMT Not After : Aug 19 05:00:54 2024 GMT Subject: CN=19AAD76A9C30D27FFFEA74310C13AB34ADB303E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bd:63:1f:c0:d7:e6:7f:bd:f7:2f:d2:b1:0c: 33:4a:da:8d:ef:8d:94:dd:ee:c9:17:55:b4:4f:d7: 1e:c8:98:15:c0:01:1c:93:98:40:9b:02:c7:97:8c: be:40:4d:2f:dc:41:41:83:de:04:89:6c:4c:d3:05: 71:54:fd:f8:36:1a:95:55:38:b2:7e:12:08:85:3c: 76:57:95:39:f0:e1:db:19:36:91:52:52:09:dc:8c: 81:0c:b4:0f:e4:08:c4:89:59:df:2c:92:ca:05:88: 71:f8:6e:ed:90:4e:a3:6c:fb:b3:4b:f5:fa:39:80: f7:d3:a8:ca:c8:bb:53:26:2a:cc:ce:77:d6:e3:41: 1c:94:b9:2e:b7:16:5e:f5:82:79:f0:b1:71:a2:22: f6:cf:6e:ce:b4:46:6c:37:2d:2f:dc:59:9e:a5:2d: 4b:6a:b7:93:2f:b3:48:94:3e:b8:ec:a9:a7:9c:48: 02:14:48:b6:e5:94:5f:32:25:9f:85:19:fb:32:c7: 5e:82:19:44:95:6c:81:e8:1b:32:58:a5:09:8e:dd: 0b:3b:2e:2a:8d:1f:57:02:9f:54:21:da:5c:c3:23: c0:25:46:22:76:10:77:50:48:37:a2:95:08:3f:7f: 47:43:5a:48:40:64:e6:a7:e4:9b:09:6f:9e:bc:6a: 02:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AA:D7:6A:9C:30:D2:7F:FF:EA:74:31:0C:13:AB:34:AD:B3:03:E8 X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.176.0/22 Signature Algorithm: sha256WithRSAEncryption 24:45:74:b0:36:60:a9:26:b1:09:d4:bf:a0:0a:42:df:29:96: 4f:f1:5f:77:ad:00:5c:43:c2:ac:e8:28:5b:20:ee:9e:ed:ea: bb:ec:bc:c6:bf:61:07:1a:c3:70:fc:88:9b:80:27:59:36:ee: 42:36:f5:11:67:5f:c8:7e:ee:ba:33:2f:df:8d:7b:4c:e6:63: 5c:4d:80:7a:d8:6b:3e:36:11:fd:9d:9c:36:6b:1d:35:55:b5: 45:49:2b:ce:73:50:f9:f6:13:6f:e6:32:a1:01:82:90:4e:29: a9:67:36:5b:c2:df:40:ab:ed:85:2f:63:01:e7:92:bb:39:96: c3:a4:d3:7c:72:0b:9b:51:fe:50:29:82:f2:6b:27:a4:f5:c8: d9:66:dc:11:2b:05:8c:3b:f7:7f:53:83:57:04:66:e5:ff:08: 14:be:7f:4e:f4:59:50:4c:ef:e0:0c:22:01:7e:1f:64:90:7f: 42:82:ce:82:e4:5d:92:7e:f2:17:8e:9a:56:b4:73:97:b7:43: 62:57:bf:93:c2:96:4a:81:05:42:4c:a5:b2:f3:58:ee:b9:a5: d7:48:2e:5e:f6:1d:9d:fe:51:87:fb:e0:2c:03:bb:c0:bf:ea: b8:97:55:ee:b7:e2:3a:0f:ea:6f:b1:5c:61:cd:38:4f:f9:89: 7c:64:d5:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBrVIoai18xAz2bSJHHut7zXST84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yMzA4MjEwNDU1NTRaFw0yNDA4MTkwNTAwNTRaMDMxMTAvBgNV BAMTKDE5QUFENzZBOUMzMEQyN0ZGRkVBNzQzMTBDMTNBQjM0QURCMzAzRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2vWMfwNfmf733L9KxDDNK2o3v jZTd7skXVbRP1x7ImBXAARyTmECbAseXjL5ATS/cQUGD3gSJbEzTBXFU/fg2GpVV OLJ+EgiFPHZXlTnw4dsZNpFSUgncjIEMtA/kCMSJWd8sksoFiHH4bu2QTqNs+7NL 9fo5gPfTqMrIu1MmKszOd9bjQRyUuS63Fl71gnnwsXGiIvbPbs60Rmw3LS/cWZ6l LUtqt5Mvs0iUPrjsqaecSAIUSLbllF8yJZ+FGfsyx16CGUSVbIHoGzJYpQmO3Qs7 LiqNH1cCn1Qh2lzDI8AlRiJ2EHdQSDeilQg/f0dDWkhAZOan5JsJb568agIdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGarXapww0n//6nQxDBOrNK2zA+gwHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMyMzAzMjJlMzQzMzJlMzEzNzM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyiuwMA0GCSqG SIb3DQEBCwUAA4IBAQAkRXSwNmCpJrEJ1L+gCkLfKZZP8V93rQBcQ8Ks6ChbIO6e 7eq77LzGv2EHGsNw/IibgCdZNu5CNvURZ1/Ifu66My/fjXtM5mNcTYB62Gs+NhH9 nZw2ax01VbVFSSvOc1D59hNv5jKhAYKQTimpZzZbwt9Aq+2FL2MB55K7OZbDpNN8 cgubUf5QKYLyayek9cjZZtwRKwWMO/d/U4NXBGbl/wgUvn9O9FlQTO/gDCIBfh9k kH9Cgs6C5F2SfvIXjppWtHOXt0NiV7+TwpZKgQVCTKWy81juuaXXSC5e9h2d/lGH ++AsA7vAv+q4l1Xut+I6D+pvsVxhzThP+Yl8ZNUy -----END CERTIFICATE-----Generated at Wed Apr 17 01:24:59 2024 by rpki-client on console-ams.rpki-client.org