$ rpki-client -vvf repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136322e302f32332d3233203d3e20313532303337.roa File: 3230322e34372e3136322e302f32332d3233203d3e20313532303337.roa (raw, json) Hash identifier: GdFQ16ys5THdsOt0JvI+f1x6ys8/DZCpLZHhWmZPVdg= Subject key identifier: 07:8C:83:D3:22:7F:65:C7:D2:5A:78:DA:3A:19:13:F9:3A:D9:4B:D1 Certificate issuer: /CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Certificate serial: 28F32AED953FAA376370ED02D75164C09117F168 Authority key identifier: 84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136322e302f32332d3233203d3e20313532303337.roa Signing time: Tue 22 Oct 2024 14:00:00 +0000 ROA not before: Tue 22 Oct 2024 13:55:00 +0000 ROA not after: Tue 21 Oct 2025 14:00:00 +0000 asID: 152037 IP address blocks: 202.47.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.crl rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:f3:2a:ed:95:3f:aa:37:63:70:ed:02:d7:51:64:c0:91:17:f1:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Validity Not Before: Oct 22 13:55:00 2024 GMT Not After : Oct 21 14:00:00 2025 GMT Subject: CN=078C83D3227F65C7D25A78DA3A1913F93AD94BD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1a:ed:90:1f:68:2b:e8:17:9a:9f:d2:3f:bb: dc:fc:28:6b:da:11:24:f6:15:8a:d2:2f:71:fb:80: dd:28:29:12:e4:1c:75:0d:34:bd:37:ad:46:b9:7a: 3e:10:96:27:81:2a:5e:12:37:a1:36:88:39:25:79: 49:b1:fd:cb:ea:17:64:52:e4:fe:cc:9c:90:63:32: 1c:a9:e9:3c:97:cb:f1:80:bf:64:73:80:b8:32:0d: e0:98:f3:a0:36:2d:10:50:1f:3a:d1:af:59:3a:32: e9:35:94:7c:0c:55:9d:de:80:a0:b6:f4:04:8d:4d: 7b:9a:23:08:c0:e0:33:31:42:57:b4:7c:9d:5f:44: 6e:b3:2f:3b:b6:6e:11:49:17:c6:6a:1e:21:4c:16: bf:c6:8f:e8:a8:15:39:1e:90:16:ff:e3:72:d2:09: 6c:6f:18:9e:41:f0:39:45:fd:61:2e:b7:f6:95:a3: 35:a0:3b:5f:8b:93:1c:25:2d:a2:51:8e:48:d1:d8: 31:53:e2:b2:92:76:3c:2e:95:9b:91:b6:37:a4:11: fd:95:07:68:48:6b:b2:bb:5c:99:c7:d5:d3:1f:84: 0a:cf:35:dd:5e:52:9a:04:0e:1c:34:2a:45:72:e4: 1c:73:d3:77:c0:82:a9:75:0d:e6:2f:c7:75:f5:12: 24:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8C:83:D3:22:7F:65:C7:D2:5A:78:DA:3A:19:13:F9:3A:D9:4B:D1 X509v3 Authority Key Identifier: keyid:84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136322e302f32332d3233203d3e20313532303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.162.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:f0:71:ca:44:a7:98:af:ce:b9:3d:93:d3:39:bd:f9:7a:ed: b1:9f:11:46:f4:1e:47:9b:ba:51:a8:8c:81:cd:46:47:44:f7: b6:36:af:63:ce:5a:3c:b9:4c:01:5a:f2:87:3c:f8:2a:3b:48: 82:bd:be:13:c5:15:06:fb:8b:56:8b:14:c5:e4:2f:6c:ce:6b: 20:63:12:47:cf:04:48:45:9d:04:1f:99:73:63:b6:aa:29:96: 62:58:d7:06:1d:0b:7e:a8:43:77:d9:d5:96:14:7a:63:1f:83: d5:5c:9d:c4:e2:01:b5:0d:93:c3:2f:e7:9e:34:0a:cc:89:dd: 7a:57:9b:12:9f:a5:25:17:3a:f2:75:24:f8:e4:9c:d0:18:ba: fa:55:f0:d5:94:78:01:17:ee:f7:38:30:31:c0:84:89:2a:37: 55:73:9a:3d:f3:40:fa:59:bc:5e:d1:0c:23:44:ef:69:82:5c: 78:52:d4:0d:31:5d:20:d3:c5:b8:70:bd:9b:b9:c0:75:38:ae: 91:e2:a1:0d:dd:36:a3:61:ca:cf:3e:b0:7b:47:06:80:83:68: 85:64:6a:56:91:8b:94:b7:4b:d2:a4:b4:09:6a:55:c3:37:7e: 54:8b:03:51:0b:62:8e:f8:e2:1f:7d:01:50:3a:04:e1:27:67: db:c1:50:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKPMq7ZU/qjdjcO0C11FkwJEX8WgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQyMjMzRDZFNzU2QkM5M0MwREI5QTQ1REQyRjdCQ0Q5 N0NCMjlBRjAeFw0yNDEwMjIxMzU1MDBaFw0yNTEwMjExNDAwMDBaMDMxMTAvBgNV BAMTKDA3OEM4M0QzMjI3RjY1QzdEMjVBNzhEQTNBMTkxM0Y5M0FEOTRCRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEGu2QH2gr6Bean9I/u9z8KGva EST2FYrSL3H7gN0oKRLkHHUNNL03rUa5ej4QlieBKl4SN6E2iDkleUmx/cvqF2RS 5P7MnJBjMhyp6TyXy/GAv2RzgLgyDeCY86A2LRBQHzrRr1k6Muk1lHwMVZ3egKC2 9ASNTXuaIwjA4DMxQle0fJ1fRG6zLzu2bhFJF8ZqHiFMFr/Gj+ioFTkekBb/43LS CWxvGJ5B8DlF/WEut/aVozWgO1+LkxwlLaJRjkjR2DFT4rKSdjwulZuRtjekEf2V B2hIa7K7XJnH1dMfhArPNd1eUpoEDhw0KkVy5Bxz03fAgql1DeYvx3X1EiQbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB4yD0yJ/ZcfSWnjaOhkT+TrZS9EwHwYDVR0j BBgwFoAUhCIz1udWvJPA25pF3S97zZfLKa8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODEyNzRhZi03Y2QwLTQwYWYtYTMyMS02NzY4OThkNThkYjgvMC84NDIyMzNENkU3 NTZCQzkzQzBEQjlBNDVERDJGN0JDRDk3Q0IyOUFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQyMjMzRDZFNzU2QkM5M0MwREI5QTQ1REQyRjdCQ0Q5N0NC MjlBRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MTI3NGFmLTdjZDAtNDBhZi1h MzIxLTY3Njg5OGQ1OGRiOC8wLzMyMzAzMjJlMzQzNzJlMzEzNjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzAzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByi+iMA0GCSqG SIb3DQEBCwUAA4IBAQBb8HHKRKeYr865PZPTOb35eu2xnxFG9B5Hm7pRqIyBzUZH RPe2Nq9jzlo8uUwBWvKHPPgqO0iCvb4TxRUG+4tWixTF5C9szmsgYxJHzwRIRZ0E H5lzY7aqKZZiWNcGHQt+qEN32dWWFHpjH4PVXJ3E4gG1DZPDL+eeNArMid16V5sS n6UlFzrydST45JzQGLr6VfDVlHgBF+73ODAxwISJKjdVc5o980D6Wbxe0QwjRO9p glx4UtQNMV0g08W4cL2bucB1OK6R4qEN3TajYcrPPrB7RwaAg2iFZGpWkYuUt0vS pLQJalXDN35UiwNRC2KO+OIffQFQOgThJ2fbwVBk -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:25 2024 by rpki-client on console-ams.rpki-client.org