$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa File: 3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: Q58jNeHuBpsq7hQ+ne3lDnrWtDgs8Ludakwk4hsrb6E= Subject key identifier: 1B:B0:2B:2A:9D:D5:5B:AB:AB:F4:33:22:90:00:98:10:42:96:7D:AF Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 5CC404D636248C6370AF20156CC37968CDB2D6A2 Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa Signing time: Mon 22 Jul 2024 05:03:12 +0000 ROA not before: Mon 22 Jul 2024 04:58:12 +0000 ROA not after: Mon 21 Jul 2025 05:03:12 +0000 asID: 131111 IP address blocks: 202.43.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:c4:04:d6:36:24:8c:63:70:af:20:15:6c:c3:79:68:cd:b2:d6:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jul 22 04:58:12 2024 GMT Not After : Jul 21 05:03:12 2025 GMT Subject: CN=1BB02B2A9DD55BABABF433229000981042967DAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:97:9e:cb:b4:e1:ac:7c:30:f2:b3:4d:1b:d0: 16:9e:1e:be:f2:50:2f:e3:da:ad:a1:d7:c1:51:d9: 63:fc:78:6d:a1:58:ff:44:38:4a:bf:04:1a:f3:7c: 5f:9d:d1:5c:51:82:c6:48:c1:f4:15:25:ed:4d:12: 6e:4d:9e:55:60:8e:f8:e4:14:34:e2:f1:fa:89:85: fa:53:42:6e:12:06:da:c2:2c:dc:b4:db:bc:92:ec: e6:b4:5b:e7:1d:9a:af:78:ac:32:44:f5:18:0c:58: e7:9e:27:3a:e4:a9:2d:9f:56:95:d6:27:74:58:08: 1e:a9:2a:1d:77:66:6c:43:fc:5c:fe:f1:69:76:bb: 51:05:bc:5f:35:9e:68:76:c8:0c:cb:a0:f0:b9:49: b0:b4:5c:e1:f4:ff:78:f1:c4:e6:55:ba:a4:4d:e2: 4c:a3:4c:9e:74:aa:d5:f1:64:00:54:ce:a6:36:16: 1d:5e:df:4c:ed:2f:a6:61:21:1f:da:42:d0:b3:95: 90:e1:59:89:74:b6:e4:08:9b:30:d6:ee:46:e9:23: 28:b5:d2:5b:d5:50:f6:19:0a:05:b3:53:57:22:62: 98:ef:76:b5:20:ea:aa:3d:ea:b7:6d:ec:32:65:97: 53:02:b7:cd:44:8f:3c:1c:84:f5:2f:8d:8d:d1:0c: 6f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B0:2B:2A:9D:D5:5B:AB:AB:F4:33:22:90:00:98:10:42:96:7D:AF X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3230322e34332e3137362e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.176.0/22 Signature Algorithm: sha256WithRSAEncryption 68:66:49:38:90:d9:24:2f:08:c3:01:c9:fb:d3:0c:51:ee:46: 0a:de:83:6d:27:ca:9b:b5:ee:54:81:33:6b:82:17:e5:f7:bf: f3:90:80:fe:d8:22:61:dc:b4:3c:fa:91:2e:52:17:76:4f:8c: e9:0a:c7:ac:d6:b8:50:e5:34:eb:0b:a2:f3:a6:5b:22:38:e9: d6:fe:e6:4e:02:5c:97:bf:02:12:44:1f:10:f8:87:82:41:09: 3b:00:13:9f:94:b7:9c:07:cf:fb:43:67:1a:27:2b:a3:dd:d5: 5b:b5:e3:0d:59:26:42:38:20:17:6f:bd:73:d0:51:89:5c:e4: 73:39:33:7e:40:ae:6a:6e:86:3d:9d:0c:f2:7d:7c:57:b4:74: 1e:97:6e:38:49:56:dd:bf:fd:29:a8:6f:13:fc:15:70:8e:4b: 84:49:99:3b:5e:1d:30:11:f0:b3:66:13:be:16:af:78:5e:e9: b7:eb:a6:59:ce:2b:95:1b:70:8f:fe:27:1d:e7:70:0d:54:86: 7b:f1:cb:a3:08:f9:93:71:e2:e5:c9:90:ea:4e:23:14:67:37: 36:5f:c3:59:05:4d:9a:de:83:86:2e:23:95:cb:ef:44:c3:df: 3e:bb:20:dd:2b:b9:25:b3:06:9d:c4:91:41:27:a6:5f:09:0a: ea:f4:cd:bc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXMQE1jYkjGNwryAVbMN5aM2y1qIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNDA3MjIwNDU4MTJaFw0yNTA3MjEwNTAzMTJaMDMxMTAvBgNV BAMTKDFCQjAyQjJBOURENTVCQUJBQkY0MzMyMjkwMDA5ODEwNDI5NjdEQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChl57LtOGsfDDys00b0BaeHr7y UC/j2q2h18FR2WP8eG2hWP9EOEq/BBrzfF+d0VxRgsZIwfQVJe1NEm5NnlVgjvjk FDTi8fqJhfpTQm4SBtrCLNy027yS7Oa0W+cdmq94rDJE9RgMWOeeJzrkqS2fVpXW J3RYCB6pKh13ZmxD/Fz+8Wl2u1EFvF81nmh2yAzLoPC5SbC0XOH0/3jxxOZVuqRN 4kyjTJ50qtXxZABUzqY2Fh1e30ztL6ZhIR/aQtCzlZDhWYl0tuQImzDW7kbpIyi1 0lvVUPYZCgWzU1ciYpjvdrUg6qo96rdt7DJll1MCt81EjzwchPUvjY3RDG9lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG7ArKp3VW6ur9DMikACYEEKWfa8wHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMyMzAzMjJlMzQzMzJlMzEzNzM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyiuwMA0GCSqG SIb3DQEBCwUAA4IBAQBoZkk4kNkkLwjDAcn70wxR7kYK3oNtJ8qbte5UgTNrghfl 97/zkID+2CJh3LQ8+pEuUhd2T4zpCses1rhQ5TTrC6LzplsiOOnW/uZOAlyXvwIS RB8Q+IeCQQk7ABOflLecB8/7Q2caJyuj3dVbteMNWSZCOCAXb71z0FGJXORzOTN+ QK5qboY9nQzyfXxXtHQel244SVbdv/0pqG8T/BVwjkuESZk7Xh0wEfCzZhO+Fq94 Xum366ZZziuVG3CP/icd53ANVIZ78cujCPmTceLlyZDqTiMUZzc2X8NZBU2a3oOG LiOVy+9Ew98+uyDdK7klswadxJFBJ6ZfCQrq9M28 -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org