$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235352e302f32342d3234203d3e20313338303734.roa File: 3230322e34332e3235352e302f32342d3234203d3e20313338303734.roa (raw, json) Hash identifier: 3Ljvih8s5k4JRjf2dV5PRj3RzrrS3qrasuv8sChH6SI= Subject key identifier: 0E:D2:02:E7:22:63:BD:DB:20:DD:FD:F7:79:8D:0F:99:CD:89:B1:C7 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 1580DE3C60664E95D7407B4BFFB9333DE3226801 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235352e302f32342d3234203d3e20313338303734.roa Signing time: Mon 29 Jan 2024 01:29:45 +0000 ROA not before: Mon 29 Jan 2024 01:24:45 +0000 ROA not after: Mon 27 Jan 2025 01:29:45 +0000 asID: 138074 IP address blocks: 202.43.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:80:de:3c:60:66:4e:95:d7:40:7b:4b:ff:b9:33:3d:e3:22:68:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jan 29 01:24:45 2024 GMT Not After : Jan 27 01:29:45 2025 GMT Subject: CN=0ED202E72263BDDB20DDFDF7798D0F99CD89B1C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:a6:5f:e3:e0:e7:6f:a3:c1:ae:ad:87:2c: 5b:1c:21:48:84:fe:6d:50:fc:1d:26:18:1c:81:0e: 6b:13:b6:14:b1:f6:15:00:a9:59:ed:c8:01:e8:93: 1a:70:5f:48:cc:50:46:4a:9a:95:dc:ea:b7:3a:1c: 62:b5:70:ef:d3:bb:b8:dc:b3:ba:ee:ea:31:d7:81: 69:23:c1:6c:dc:6e:c1:95:a2:46:fb:8b:b2:13:d8: 3a:ea:3a:b2:ed:ab:ef:04:c5:06:62:78:22:cd:78: bf:18:5f:e3:e0:52:25:85:39:8e:d1:9a:72:03:3b: c2:d7:92:6a:96:ad:78:f8:30:84:d5:e8:d4:bf:f5: 2a:e8:3d:35:39:82:2c:51:51:4e:8e:e0:11:1b:a3: 0b:64:17:d6:6d:81:e4:81:d5:c5:b6:a0:82:66:bd: 09:44:09:0d:e8:e3:b0:0f:1a:75:29:68:52:2e:e8: f9:e9:b7:64:55:ff:f4:0e:5b:03:83:c9:20:5d:68: 17:45:e8:2f:15:a4:3a:22:4a:9c:d9:27:c4:7d:9f: 6d:3c:08:9b:be:2c:41:25:e8:0f:a2:d8:af:87:9f: 26:ec:87:1b:61:a1:9a:43:8e:50:b2:9f:e6:f4:50: d0:a4:01:e2:32:77:59:a9:d4:0e:dc:42:45:85:ef: a7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D2:02:E7:22:63:BD:DB:20:DD:FD:F7:79:8D:0F:99:CD:89:B1:C7 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235352e302f32342d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.255.0/24 Signature Algorithm: sha256WithRSAEncryption 46:e5:c0:7d:09:25:dd:fc:26:4e:83:30:d2:e8:89:dc:04:09: b5:f0:fc:06:9f:0f:af:8e:1a:a3:22:c0:89:91:c7:aa:21:a9: af:fb:63:5c:6b:2b:d7:34:1a:93:a1:0d:e6:b5:39:4d:f3:44: 4c:42:37:90:4a:a3:33:ba:0e:06:d1:a1:85:ed:04:a9:65:2e: 62:ff:6b:da:35:aa:e4:12:56:61:58:c6:67:58:4b:a0:44:a8: a5:cb:c7:78:be:9f:e6:63:e9:9a:4f:f4:c6:7a:62:96:2a:d7: 18:ce:96:db:f2:c0:de:26:f9:a7:90:17:3d:bb:ac:c1:7b:d4: 39:a9:52:63:74:8e:e3:1e:a0:45:92:80:5b:54:39:10:ee:6b: 3d:df:27:28:d7:ef:8a:e8:72:27:f7:48:6a:eb:de:c4:4a:aa: 80:f1:06:11:34:65:a5:79:45:f5:9f:dc:2e:23:dc:f1:11:4d: 58:e3:66:00:2d:cf:69:88:1b:4a:22:e5:b8:f8:6d:2c:21:cd: 46:b7:2d:51:a2:8a:a0:a7:d4:11:41:d7:f4:e6:21:c0:37:be: a0:5a:a7:a5:f5:9b:19:54:8d:67:3e:d3:3b:5b:23:8f:e3:79: 4f:88:09:9b:9f:4d:44:a0:5a:70:ea:87:7c:15:ec:e6:de:32: 1e:10:77:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFYDePGBmTpXXQHtL/7kzPeMiaAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDAxMjkwMTI0NDVaFw0yNTAxMjcwMTI5NDVaMDMxMTAvBgNV BAMTKDBFRDIwMkU3MjI2M0JEREIyMERERkRGNzc5OEQwRjk5Q0Q4OUIxQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8IKZf4+Dnb6PBrq2HLFscIUiE /m1Q/B0mGByBDmsTthSx9hUAqVntyAHokxpwX0jMUEZKmpXc6rc6HGK1cO/Tu7jc s7ru6jHXgWkjwWzcbsGVokb7i7IT2DrqOrLtq+8ExQZieCLNeL8YX+PgUiWFOY7R mnIDO8LXkmqWrXj4MITV6NS/9SroPTU5gixRUU6O4BEbowtkF9ZtgeSB1cW2oIJm vQlECQ3o47APGnUpaFIu6Pnpt2RV//QOWwODySBdaBdF6C8VpDoiSpzZJ8R9n208 CJu+LEEl6A+i2K+HnybshxthoZpDjlCyn+b0UNCkAeIyd1mp1A7cQkWF76eLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDtIC5yJjvdsg3f33eY0Pmc2JsccwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv/MA0GCSqG SIb3DQEBCwUAA4IBAQBG5cB9CSXd/CZOgzDS6IncBAm18PwGnw+vjhqjIsCJkceq Iamv+2NcayvXNBqToQ3mtTlN80RMQjeQSqMzug4G0aGF7QSpZS5i/2vaNarkElZh WMZnWEugRKily8d4vp/mY+maT/TGemKWKtcYzpbb8sDeJvmnkBc9u6zBe9Q5qVJj dI7jHqBFkoBbVDkQ7ms93yco1++K6HIn90hq697ESqqA8QYRNGWleUX1n9wuI9zx EU1Y42YALc9piBtKIuW4+G0sIc1Gty1Rooqgp9QRQdf05iHAN76gWqel9ZsZVI1n PtM7WyOP43lPiAmbn01EoFpw6od8Fezm3jIeEHeh -----END CERTIFICATE-----Generated at Mon May 6 20:16:37 2024 by rpki-client on console-ams.rpki-client.org