$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235302e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235302e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: vmivmL6Nin4jXQJ+otHLEjg1k9YMDVxxJbWYijf39Eo= Subject key identifier: 1C:7C:24:E9:B8:5D:63:D4:E7:A9:D5:5F:62:72:BE:0B:B4:49:15:13 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 23EFE33E7B89A0CAF769E3D23D97DEFAFC5B6A75 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235302e302f32342d3234203d3e20313338303734.roa Signing time: Mon 29 Jan 2024 01:27:38 +0000 ROA not before: Mon 29 Jan 2024 01:22:38 +0000 ROA not after: Mon 27 Jan 2025 01:27:38 +0000 asID: 138074 IP address blocks: 202.43.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:ef:e3:3e:7b:89:a0:ca:f7:69:e3:d2:3d:97:de:fa:fc:5b:6a:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jan 29 01:22:38 2024 GMT Not After : Jan 27 01:27:38 2025 GMT Subject: CN=1C7C24E9B85D63D4E7A9D55F6272BE0BB4491513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a9:f0:89:94:05:09:fd:a1:00:ad:4c:63:e4: 20:fe:a2:fd:c2:0a:23:76:86:09:5a:d1:a3:76:f2: 42:6f:13:21:81:3f:c7:89:fa:22:dc:fa:40:50:5e: a4:67:60:0c:08:80:64:27:d9:17:97:de:31:54:85: 2e:a4:74:26:a7:39:b4:82:a3:38:99:40:3b:55:27: a9:9f:ae:a3:c0:fe:92:74:ed:4e:9e:7e:a5:72:cd: 9c:dd:ca:0a:8d:53:48:12:bf:c4:bd:8a:b5:c8:ce: 81:c8:90:af:5e:ed:03:6f:74:8f:09:d5:e6:5e:f0: 03:d4:68:47:e6:27:05:d4:bb:60:3c:fd:00:4f:9e: 24:34:dc:4a:04:d1:b6:d7:3a:b4:f7:83:b3:a3:2e: de:09:58:59:8d:0d:17:67:0c:ec:bd:de:45:1a:46: a9:01:34:ff:4e:45:3a:e2:a2:26:31:6c:5a:10:a6: d2:0d:e9:0d:33:66:eb:c2:4a:74:3a:ea:22:05:c9: c4:a7:b1:6a:30:5b:ae:72:cc:53:6e:95:29:54:3d: 93:ec:8a:28:73:0f:4f:bc:00:7e:00:80:03:43:be: b1:43:b6:03:74:4e:5e:54:d5:54:a6:ab:0d:86:56: dc:83:90:67:65:15:fa:40:27:bf:28:a3:4f:4d:ba: 13:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:7C:24:E9:B8:5D:63:D4:E7:A9:D5:5F:62:72:BE:0B:B4:49:15:13 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235302e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.250.0/24 Signature Algorithm: sha256WithRSAEncryption a4:52:93:5c:e6:32:48:bf:76:ee:29:29:0b:41:1e:29:ad:20: 0a:d3:9f:7d:71:4a:4e:99:ee:97:56:0b:4a:03:f6:9d:82:27: 7c:52:b1:4c:f4:2e:d5:df:99:95:6c:d0:4d:ff:d5:25:a8:8e: 50:2a:4f:30:8a:29:5f:8f:60:0b:b4:4c:f5:b7:0e:a1:2e:0f: 7f:b7:e5:ae:58:d1:7b:03:eb:48:ef:49:b0:54:e7:64:2f:6d: 2b:14:38:99:e7:e5:3f:43:5a:6e:7d:bf:35:b2:30:8c:b3:c4: 75:61:7c:83:b9:44:6e:0a:e2:a1:5c:3a:09:dc:0b:62:95:90: 42:49:bd:19:e9:c0:d4:26:ac:ad:60:12:a9:e1:9e:0d:13:bb: fd:3c:b5:20:9a:5a:02:fe:8a:7e:c5:1d:ac:ca:1c:ee:7e:7b: cd:78:4b:a2:00:5e:4a:b4:2a:52:b6:e7:b7:fc:40:a7:5b:0b: df:81:40:a3:70:90:f3:86:bb:da:17:0d:39:65:75:1d:a1:7f: fb:81:9c:86:24:6f:e7:c9:e3:27:c4:61:5f:ac:98:a3:df:40: 00:9f:2c:00:9b:d3:b3:42:83:e0:e3:11:66:5d:f2:e1:94:7c: 68:e2:d8:be:52:7b:8d:a6:59:94:df:41:31:9b:5a:18:aa:8b: 39:47:52:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI+/jPnuJoMr3aePSPZfe+vxbanUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDAxMjkwMTIyMzhaFw0yNTAxMjcwMTI3MzhaMDMxMTAvBgNV BAMTKDFDN0MyNEU5Qjg1RDYzRDRFN0E5RDU1RjYyNzJCRTBCQjQ0OTE1MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFqfCJlAUJ/aEArUxj5CD+ov3C CiN2hgla0aN28kJvEyGBP8eJ+iLc+kBQXqRnYAwIgGQn2ReX3jFUhS6kdCanObSC oziZQDtVJ6mfrqPA/pJ07U6efqVyzZzdygqNU0gSv8S9irXIzoHIkK9e7QNvdI8J 1eZe8APUaEfmJwXUu2A8/QBPniQ03EoE0bbXOrT3g7OjLt4JWFmNDRdnDOy93kUa RqkBNP9ORTrioiYxbFoQptIN6Q0zZuvCSnQ66iIFycSnsWowW65yzFNulSlUPZPs iihzD0+8AH4AgANDvrFDtgN0Tl5U1VSmqw2GVtyDkGdlFfpAJ78oo09NuhOZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHHwk6bhdY9TnqdVfYnK+C7RJFRMwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv6MA0GCSqG SIb3DQEBCwUAA4IBAQCkUpNc5jJIv3buKSkLQR4prSAK0599cUpOme6XVgtKA/ad gid8UrFM9C7V35mVbNBN/9UlqI5QKk8wiilfj2ALtEz1tw6hLg9/t+WuWNF7A+tI 70mwVOdkL20rFDiZ5+U/Q1pufb81sjCMs8R1YXyDuURuCuKhXDoJ3AtilZBCSb0Z 6cDUJqytYBKp4Z4NE7v9PLUgmloC/op+xR2syhzufnvNeEuiAF5KtCpStue3/ECn WwvfgUCjcJDzhrvaFw05ZXUdoX/7gZyGJG/nyeMnxGFfrJij30AAnywAm9OzQoPg 4xFmXfLhlHxo4ti+UnuNplmU30Exm1oYqos5R1Jk -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org