$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3234382e302f32332d3234203d3e203538333831.roa File: 3230322e34332e3234382e302f32332d3234203d3e203538333831.roa (raw, json) Hash identifier: cjfM+KtJCyfXNJnMETBSpXrNjmJMV3jp0GwIXEW85Rk= Subject key identifier: 53:25:8E:7D:C8:96:04:A0:93:EF:57:0B:11:4E:81:FB:43:41:B3:C3 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 35C62EF13F277FD466290D38838306848F8A7C1F Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3234382e302f32332d3234203d3e203538333831.roa Signing time: Mon 29 Jan 2024 02:59:56 +0000 ROA not before: Mon 29 Jan 2024 02:54:56 +0000 ROA not after: Mon 27 Jan 2025 02:59:56 +0000 asID: 58381 IP address blocks: 202.43.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:c6:2e:f1:3f:27:7f:d4:66:29:0d:38:83:83:06:84:8f:8a:7c:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jan 29 02:54:56 2024 GMT Not After : Jan 27 02:59:56 2025 GMT Subject: CN=53258E7DC89604A093EF570B114E81FB4341B3C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:fe:c0:69:d1:26:29:ab:1b:60:67:63:df:00: ae:b4:09:95:65:5a:39:d8:97:bc:8e:45:00:cf:e3: 58:f1:62:cf:f7:b6:1b:54:b0:8e:62:70:e0:1d:33: 27:dc:e8:87:a4:f9:c2:42:0b:87:d5:bd:e2:25:4a: 4f:d7:fb:f1:dc:c0:00:e8:ee:e2:f5:df:1b:55:03: 36:12:e8:ca:78:fc:9f:bc:84:f6:14:6b:ce:2a:0f: 95:b3:26:ce:bb:c5:8e:69:bc:eb:9c:3f:fa:48:de: af:4e:a7:5c:3d:48:f8:80:a0:ef:9b:d5:74:c1:55: e4:1c:f7:11:f6:f7:63:61:eb:82:1f:32:c7:f5:4e: ee:ba:34:b7:6c:87:64:b5:64:87:25:2c:fb:63:e4: ff:1d:6d:3a:e0:ce:0d:50:e4:87:6c:98:7e:78:e4: 89:20:8d:3f:2e:2f:0e:ca:b3:73:f2:44:b8:fe:af: f1:a6:8a:49:7f:13:ae:17:44:cc:93:d7:c4:6d:7f: 7a:b7:42:40:5e:56:0f:fb:40:0e:b8:45:05:c3:30: ac:1e:81:c9:bf:d2:85:ce:18:b5:24:fa:b4:92:47: 0d:97:3a:dd:ce:e1:26:75:ce:41:5c:98:7b:08:45: bd:68:13:1d:29:97:c8:06:54:34:f7:b1:6d:ab:a9: 7a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:25:8E:7D:C8:96:04:A0:93:EF:57:0B:11:4E:81:FB:43:41:B3:C3 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3234382e302f32332d3234203d3e203538333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.248.0/23 Signature Algorithm: sha256WithRSAEncryption d5:30:6b:c1:02:91:8f:25:0d:81:45:2b:70:23:5d:36:4b:bd: 12:c5:80:f3:06:f2:b6:07:5a:84:03:94:ee:b2:e5:b9:de:d9: a2:22:d7:25:8b:c5:64:7c:50:c4:1f:88:00:bb:79:91:1e:e3: 99:8e:e7:e1:e2:c5:4f:e7:69:51:1d:51:50:a0:4e:c4:5c:35: 80:04:36:6a:07:31:53:c3:8c:e7:1e:a6:dd:6f:ef:f1:90:83: 54:33:ef:be:04:d4:51:f7:4b:1f:fa:96:44:9b:63:56:1a:d6: f8:9a:bc:9c:6c:60:8e:01:3b:42:49:b7:4a:e5:3b:89:56:93: 51:6f:2d:7d:24:f3:84:4c:13:3e:63:0b:de:86:51:85:d4:a2: 05:c9:84:28:e1:56:27:cd:2d:41:c0:66:f0:99:8a:82:73:3e: 46:b9:88:4e:f5:27:4b:3a:f2:22:8d:9e:66:43:72:f2:c6:16: c2:b1:95:35:53:1c:8e:83:55:81:cc:5e:ed:a2:d0:92:a8:71: f6:cb:f7:8f:01:fc:24:70:86:ac:71:e6:11:cc:3a:4b:97:57: b3:92:e0:40:7b:fa:2b:bc:e3:9b:a9:c2:23:df:2f:4a:52:e0: 1b:f1:9c:d0:16:12:1c:ce:d9:3f:9c:bf:a3:d9:3e:0f:4f:30: 4a:74:2d:d6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNcYu8T8nf9RmKQ04g4MGhI+KfB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDAxMjkwMjU0NTZaFw0yNTAxMjcwMjU5NTZaMDMxMTAvBgNV BAMTKDUzMjU4RTdEQzg5NjA0QTA5M0VGNTcwQjExNEU4MUZCNDM0MUIzQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy/sBp0SYpqxtgZ2PfAK60CZVl WjnYl7yORQDP41jxYs/3thtUsI5icOAdMyfc6Iek+cJCC4fVveIlSk/X+/HcwADo 7uL13xtVAzYS6Mp4/J+8hPYUa84qD5WzJs67xY5pvOucP/pI3q9Op1w9SPiAoO+b 1XTBVeQc9xH292Nh64IfMsf1Tu66NLdsh2S1ZIclLPtj5P8dbTrgzg1Q5IdsmH54 5IkgjT8uLw7Ks3PyRLj+r/Gmikl/E64XRMyT18Rtf3q3QkBeVg/7QA64RQXDMKwe gcm/0oXOGLUk+rSSRw2XOt3O4SZ1zkFcmHsIRb1oEx0pl8gGVDT3sW2rqXqFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUyWOfciWBKCT71cLEU6B+0NBs8MwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODMzMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcor+DANBgkqhkiG 9w0BAQsFAAOCAQEA1TBrwQKRjyUNgUUrcCNdNku9EsWA8wbytgdahAOU7rLlud7Z oiLXJYvFZHxQxB+IALt5kR7jmY7n4eLFT+dpUR1RUKBOxFw1gAQ2agcxU8OM5x6m 3W/v8ZCDVDPvvgTUUfdLH/qWRJtjVhrW+Jq8nGxgjgE7Qkm3SuU7iVaTUW8tfSTz hEwTPmML3oZRhdSiBcmEKOFWJ80tQcBm8JmKgnM+RrmITvUnSzryIo2eZkNy8sYW wrGVNVMcjoNVgcxe7aLQkqhx9sv3jwH8JHCGrHHmEcw6S5dXs5LgQHv6K7zjm6nC I98vSlLgG/Gc0BYSHM7ZP5y/o9k+D08wSnQt1g== -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org