$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: XFalZjv8g4D1W4AUa2Y8g1Gx2jFTKCjlevUUQqBaZ2w= Subject key identifier: 4E:D2:4C:AA:C5:73:EC:3B:CE:42:1A:29:57:61:75:1A:72:F8:02:C8 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 579C0AE9F4A1CDD45B328DA360E47274FD01A626 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa Signing time: Mon 29 Jan 2024 01:28:23 +0000 ROA not before: Mon 29 Jan 2024 01:23:23 +0000 ROA not after: Mon 27 Jan 2025 01:28:23 +0000 asID: 138074 IP address blocks: 202.43.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:9c:0a:e9:f4:a1:cd:d4:5b:32:8d:a3:60:e4:72:74:fd:01:a6:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jan 29 01:23:23 2024 GMT Not After : Jan 27 01:28:23 2025 GMT Subject: CN=4ED24CAAC573EC3BCE421A295761751A72F802C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f1:bb:eb:c3:07:c5:2c:ec:48:53:fc:e0:e5: 2b:17:07:3f:37:75:9b:a2:4e:a9:61:c8:64:db:af: 90:19:b0:f8:4a:f4:66:70:9b:56:f9:7d:b7:57:25: e0:a9:27:0c:9d:c2:e9:02:99:a8:6f:38:3c:1b:52: f1:a7:32:f3:94:79:73:ec:21:53:53:db:23:f6:bc: 7f:68:00:ab:98:b5:ab:43:1f:66:83:5a:1b:3c:5c: 43:73:45:1b:1b:80:d4:c1:ae:0f:c1:56:62:40:64: 52:2e:4d:f6:45:9d:1b:8f:d0:50:c6:c8:b3:8f:5a: 3c:ff:96:55:91:21:22:d1:c9:fb:15:23:d6:42:8f: 7f:6a:9a:ab:6a:e7:f4:e6:2e:36:9c:3a:48:07:fd: 3e:70:82:26:55:1d:2e:d7:cd:4a:56:de:fb:74:17: 30:d1:f2:ef:df:72:11:13:5a:50:ce:f5:8d:74:25: f3:97:5d:c0:07:0d:5f:47:2d:0c:81:77:27:5e:dd: a5:cf:f1:29:51:75:31:45:5b:90:c3:30:4e:8d:61: ab:75:41:92:e7:ea:d9:b0:0c:b1:d0:ab:3f:cd:17: f8:51:b4:19:2e:a9:81:bd:e6:84:df:de:4e:44:b8: 3d:46:9d:3c:eb:b1:02:ab:74:52:2c:8c:4a:66:0c: d3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D2:4C:AA:C5:73:EC:3B:CE:42:1A:29:57:61:75:1A:72:F8:02:C8 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.252.0/24 Signature Algorithm: sha256WithRSAEncryption 71:5a:f0:9d:5a:d5:93:cb:75:3b:86:0a:a6:e1:2e:c6:b1:e4: 13:77:48:a0:45:93:2e:fa:ab:b1:9e:5b:2d:ca:2f:11:44:7c: 21:ad:ad:8e:26:c1:ab:08:f9:de:30:2f:22:b1:6d:5d:ca:e5: d2:a5:fc:6d:8d:bf:cc:26:72:22:92:60:62:f9:3b:17:57:91: 1c:41:9f:76:7e:fd:4c:8f:a2:0a:72:0c:6a:87:56:c1:ab:e8: fd:27:e2:4b:33:5d:9a:d0:7d:7f:6f:56:77:d7:97:14:16:09: ea:59:18:1c:b6:ee:fe:e9:7d:83:f5:b7:a2:67:64:69:58:5b: 1d:c2:6b:31:6b:b4:69:a4:c5:29:5f:66:f1:8c:26:72:16:68: 82:5a:f8:0b:0b:c0:33:95:2c:13:2d:46:6e:1a:86:08:8f:80: 83:4a:b1:bb:97:ce:b6:d3:09:8c:c7:fa:67:4a:c2:5c:4b:44: 87:dd:84:f5:da:7d:14:45:96:c2:e0:46:f4:84:a7:74:86:51: 5b:93:71:9d:f1:27:cd:5d:7c:b5:f8:c4:4c:01:a1:8d:af:61: 09:e3:61:3e:88:62:bd:ce:a4:94:b9:9e:b4:31:89:8e:27:c6: c3:f5:f7:77:73:1a:12:44:c4:22:17:f0:9c:89:cc:bd:0c:5e: 0a:cc:7f:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV5wK6fShzdRbMo2jYORydP0BpiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDAxMjkwMTIzMjNaFw0yNTAxMjcwMTI4MjNaMDMxMTAvBgNV BAMTKDRFRDI0Q0FBQzU3M0VDM0JDRTQyMUEyOTU3NjE3NTFBNzJGODAyQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh8bvrwwfFLOxIU/zg5SsXBz83 dZuiTqlhyGTbr5AZsPhK9GZwm1b5fbdXJeCpJwydwukCmahvODwbUvGnMvOUeXPs IVNT2yP2vH9oAKuYtatDH2aDWhs8XENzRRsbgNTBrg/BVmJAZFIuTfZFnRuP0FDG yLOPWjz/llWRISLRyfsVI9ZCj39qmqtq5/TmLjacOkgH/T5wgiZVHS7XzUpW3vt0 FzDR8u/fchETWlDO9Y10JfOXXcAHDV9HLQyBdyde3aXP8SlRdTFFW5DDME6NYat1 QZLn6tmwDLHQqz/NF/hRtBkuqYG95oTf3k5EuD1GnTzrsQKrdFIsjEpmDNORAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTtJMqsVz7DvOQhopV2F1GnL4AsgwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv8MA0GCSqG SIb3DQEBCwUAA4IBAQBxWvCdWtWTy3U7hgqm4S7GseQTd0igRZMu+quxnlstyi8R RHwhra2OJsGrCPneMC8isW1dyuXSpfxtjb/MJnIikmBi+TsXV5EcQZ92fv1Mj6IK cgxqh1bBq+j9J+JLM12a0H1/b1Z315cUFgnqWRgctu7+6X2D9beiZ2RpWFsdwmsx a7RppMUpX2bxjCZyFmiCWvgLC8AzlSwTLUZuGoYIj4CDSrG7l8620wmMx/pnSsJc S0SH3YT12n0URZbC4Eb0hKd0hlFbk3Gd8SfNXXy1+MRMAaGNr2EJ42E+iGK9zqSU uZ60MYmOJ8bD9fd3cxoSRMQiF/Ccicy9DF4KzH8L -----END CERTIFICATE-----Generated at Mon May 6 20:16:35 2024 by rpki-client on console-fra.rpki-client.org