$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235342e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235342e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: XHwz7oHKAD+bVzb82LnhadWxzqWahrz7asG1+V+ECY8= Subject key identifier: EB:DC:AC:B9:8C:26:45:F4:D0:55:D0:B5:30:89:CC:AA:D9:5B:06:02 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 05B8D1E02F1B1FA1E03E7165DF0CDFA2C102EE0D Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235342e302f32342d3234203d3e20313338303734.roa Signing time: Mon 29 Jan 2024 01:29:19 +0000 ROA not before: Mon 29 Jan 2024 01:24:19 +0000 ROA not after: Mon 27 Jan 2025 01:29:19 +0000 asID: 138074 IP address blocks: 202.43.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:b8:d1:e0:2f:1b:1f:a1:e0:3e:71:65:df:0c:df:a2:c1:02:ee:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jan 29 01:24:19 2024 GMT Not After : Jan 27 01:29:19 2025 GMT Subject: CN=EBDCACB98C2645F4D055D0B53089CCAAD95B0602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5c:cb:da:b0:c7:63:1e:c1:0e:42:e9:ae:f7: 51:4d:64:6a:7b:c6:bc:60:5b:89:98:96:63:c9:77: 61:73:54:99:cf:ba:36:75:c4:0f:25:87:af:6e:eb: 6b:49:70:a1:30:30:c7:75:25:18:92:eb:d0:c9:0c: b6:36:42:0b:85:15:fe:21:d7:d5:1d:ae:34:d6:7b: 5b:52:d9:31:da:fd:d3:88:4f:61:22:81:89:5b:3e: 8c:70:8e:e6:4c:6a:61:39:df:77:c9:8d:8f:4c:e4: c8:27:52:d9:a2:c5:14:95:a0:8a:64:18:8c:3a:77: d7:e4:1d:ad:bd:76:e0:7d:1d:dd:9e:ec:10:fa:88: e3:f0:3a:3e:6d:cb:f6:d9:e2:79:df:f3:e0:13:3e: 4f:63:48:c6:0d:34:eb:45:91:b2:b7:99:7d:31:78: c1:f1:8e:4f:5c:59:20:df:5a:f4:60:a7:9b:f2:e7: 85:dc:7e:ab:f7:f3:a0:2e:ca:f7:28:04:29:b2:8a: 4e:cd:c2:22:08:bb:95:14:90:3a:5b:97:9e:13:24: c8:77:d7:f8:2d:e8:84:3c:99:c1:bb:31:66:88:25: 23:b5:a5:12:c3:36:e6:e2:69:dd:2f:09:2e:5b:9c: 8f:ae:74:5d:b5:e0:5e:42:4a:ad:53:81:31:c5:2f: c6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:DC:AC:B9:8C:26:45:F4:D0:55:D0:B5:30:89:CC:AA:D9:5B:06:02 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235342e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.254.0/24 Signature Algorithm: sha256WithRSAEncryption 58:b7:f2:ba:e4:a0:d4:2c:e6:de:13:90:cc:8f:32:9b:4c:b9: 6b:1f:dc:b1:60:50:3d:53:d6:1f:36:c6:da:e7:3f:f2:09:4d: 1b:8b:fa:10:24:fe:69:73:31:f0:79:0c:52:c9:ee:1b:3e:5c: 43:c3:92:ab:30:ab:34:f6:2e:83:4d:ba:e8:13:85:cf:cf:14: 64:2a:0e:ca:88:01:7f:8c:92:8c:78:7c:7a:8c:37:14:55:09: 6e:48:7f:86:88:f3:1e:d0:04:25:26:80:d0:c1:72:82:77:ff: c5:c4:cc:f6:0b:d2:3c:cb:24:90:a4:48:37:c2:a4:cf:46:84: 19:1e:ac:fa:d5:10:ec:04:20:3d:ed:d7:f3:76:a7:30:3c:46: 48:34:36:e1:4d:af:ab:b8:0a:cd:de:43:b2:50:c2:d0:a4:19: 8d:a7:c8:3f:fd:c9:9f:0a:78:50:94:ca:67:24:37:bd:d4:6b: 0e:03:5a:a6:97:cb:0c:14:0d:cb:94:e6:13:c1:6b:f5:ca:c2: 13:41:68:09:26:d1:3a:93:23:ef:c6:4c:f1:76:e0:de:31:25: 05:f3:eb:a1:3c:77:24:54:a2:03:4d:c2:91:f2:08:8d:a5:e1: 5c:ed:ce:36:80:59:6c:d6:16:50:c5:14:03:f5:7e:7f:54:cf: 53:df:de:cf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBbjR4C8bH6HgPnFl3wzfosEC7g0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDAxMjkwMTI0MTlaFw0yNTAxMjcwMTI5MTlaMDMxMTAvBgNV BAMTKEVCRENBQ0I5OEMyNjQ1RjREMDU1RDBCNTMwODlDQ0FBRDk1QjA2MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGXMvasMdjHsEOQumu91FNZGp7 xrxgW4mYlmPJd2FzVJnPujZ1xA8lh69u62tJcKEwMMd1JRiS69DJDLY2QguFFf4h 19UdrjTWe1tS2THa/dOIT2EigYlbPoxwjuZMamE533fJjY9M5MgnUtmixRSVoIpk GIw6d9fkHa29duB9Hd2e7BD6iOPwOj5ty/bZ4nnf8+ATPk9jSMYNNOtFkbK3mX0x eMHxjk9cWSDfWvRgp5vy54Xcfqv386AuyvcoBCmyik7NwiIIu5UUkDpbl54TJMh3 1/gt6IQ8mcG7MWaIJSO1pRLDNubiad0vCS5bnI+udF214F5CSq1TgTHFL8a3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU69ysuYwmRfTQVdC1MInMqtlbBgIwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv+MA0GCSqG SIb3DQEBCwUAA4IBAQBYt/K65KDULObeE5DMjzKbTLlrH9yxYFA9U9YfNsba5z/y CU0bi/oQJP5pczHweQxSye4bPlxDw5KrMKs09i6DTbroE4XPzxRkKg7KiAF/jJKM eHx6jDcUVQluSH+GiPMe0AQlJoDQwXKCd//FxMz2C9I8yySQpEg3wqTPRoQZHqz6 1RDsBCA97dfzdqcwPEZINDbhTa+ruArN3kOyUMLQpBmNp8g//cmfCnhQlMpnJDe9 1GsOA1qml8sMFA3LlOYTwWv1ysITQWgJJtE6kyPvxkzxduDeMSUF8+uhPHckVKID TcKR8giNpeFc7c42gFls1hZQxRQD9X5/VM9T397P -----END CERTIFICATE-----Generated at Wed May 8 23:47:15 2024 by rpki-client on console-ams.rpki-client.org