$ rpki-client -vvf repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136322e302f32342d3234203d3e20313532303337.roa File: 3230322e34372e3136322e302f32342d3234203d3e20313532303337.roa (raw, json) Hash identifier: 0vbyY37xfecmYZZ06+vwEcy+Hnbk4rhg/muBGmLCtEA= Subject key identifier: C1:18:D8:E2:C8:E8:59:2C:A0:9B:D8:3B:F0:35:E4:93:8E:2A:2D:1E Certificate issuer: /CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Certificate serial: 531A9E12686159B8CB0415D309A2278BEC509212 Authority key identifier: 84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136322e302f32342d3234203d3e20313532303337.roa Signing time: Tue 22 Oct 2024 14:00:00 +0000 ROA not before: Tue 22 Oct 2024 13:55:00 +0000 ROA not after: Tue 21 Oct 2025 14:00:00 +0000 asID: 152037 IP address blocks: 202.47.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.crl rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:1a:9e:12:68:61:59:b8:cb:04:15:d3:09:a2:27:8b:ec:50:92:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Validity Not Before: Oct 22 13:55:00 2024 GMT Not After : Oct 21 14:00:00 2025 GMT Subject: CN=C118D8E2C8E8592CA09BD83BF035E4938E2A2D1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4f:d1:d7:b6:64:74:d5:b4:87:01:2f:e1:d8: ab:2c:63:89:d7:09:42:ce:93:06:b7:57:38:62:b2: 34:4c:91:3b:0c:48:ff:f7:f7:6b:1d:d2:b9:77:fe: 2f:94:29:d1:7d:ac:fb:8c:90:7e:51:43:4e:fe:5e: c7:6e:dc:ae:33:7f:2b:59:b2:76:e0:9d:5a:48:83: ff:bd:e1:c7:24:d1:83:e1:0c:ee:f9:17:36:24:da: f1:4c:c1:20:96:70:16:e1:b6:14:61:d6:74:63:05: 61:b5:68:39:71:fd:9e:c5:98:ad:cf:ad:75:54:bf: f2:9b:7c:0c:03:a1:c3:94:63:c9:ad:72:f9:e3:de: 4e:bc:a4:3c:f0:cf:cb:30:fd:b1:5e:ac:69:34:2c: ac:b2:94:65:fe:a2:17:c6:bf:38:8a:7b:b3:23:a9: 42:b5:61:a7:6d:5d:5d:6d:77:59:35:69:11:61:4d: 5f:42:19:bb:9c:af:34:ae:fa:9f:27:ca:aa:3f:c9: 4e:7e:90:9a:25:a3:2b:14:44:e9:8d:c7:d0:44:42: bf:29:28:b8:5c:17:36:ae:80:a1:a5:78:29:87:cc: 92:71:c5:19:bc:93:0c:84:dc:47:26:21:9e:47:df: 3a:1a:bf:fd:93:f2:17:d0:e4:be:ce:eb:4a:21:77: 12:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:18:D8:E2:C8:E8:59:2C:A0:9B:D8:3B:F0:35:E4:93:8E:2A:2D:1E X509v3 Authority Key Identifier: keyid:84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136322e302f32342d3234203d3e20313532303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.162.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:76:5b:13:25:90:31:e9:7c:83:90:ab:3d:ab:e9:bb:d4:0f: df:1e:00:48:45:54:73:0b:28:6d:02:5e:2c:ed:10:fc:9e:75: 06:86:68:21:75:e6:e1:97:66:05:76:e2:e9:86:35:92:cc:d0: 8e:c9:92:4f:21:8e:ea:ca:7a:33:a3:4c:63:bf:a7:14:45:00: 66:5c:99:0b:c1:9d:f2:3c:f1:51:94:b6:a9:8b:3a:eb:a2:24: 95:31:ce:fc:6d:3f:85:7f:bd:37:44:c5:d4:d8:fe:24:ad:34: 52:e5:a8:be:80:b5:94:1f:19:d1:47:1a:01:48:26:49:d7:89: 77:12:81:2e:26:cd:a7:88:f6:12:54:5a:5a:62:2d:d4:9f:b9: 21:0d:a5:a2:2a:0b:9c:be:0d:7a:b7:6b:19:7b:e3:33:94:ea: 44:6b:66:70:35:05:88:fe:c5:46:b9:85:f1:d1:d7:87:a6:62: 11:23:64:59:24:b0:8c:b3:52:66:3f:d7:fe:94:fc:19:8f:c1: 59:77:fc:47:b5:86:52:bd:50:0a:8a:6b:2b:68:2b:f5:b9:23: 25:58:48:62:29:c0:3d:c8:f4:b9:f9:e8:6c:eb:92:57:47:b8: 45:38:b6:8b:d6:d9:7d:42:63:8a:6b:cf:62:0c:b0:f4:63:4e: 91:29:f9:89 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUxqeEmhhWbjLBBXTCaIni+xQkhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQyMjMzRDZFNzU2QkM5M0MwREI5QTQ1REQyRjdCQ0Q5 N0NCMjlBRjAeFw0yNDEwMjIxMzU1MDBaFw0yNTEwMjExNDAwMDBaMDMxMTAvBgNV BAMTKEMxMThEOEUyQzhFODU5MkNBMDlCRDgzQkYwMzVFNDkzOEUyQTJEMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDET9HXtmR01bSHAS/h2KssY4nX CULOkwa3VzhisjRMkTsMSP/392sd0rl3/i+UKdF9rPuMkH5RQ07+Xsdu3K4zfytZ snbgnVpIg/+94cck0YPhDO75FzYk2vFMwSCWcBbhthRh1nRjBWG1aDlx/Z7FmK3P rXVUv/KbfAwDocOUY8mtcvnj3k68pDzwz8sw/bFerGk0LKyylGX+ohfGvziKe7Mj qUK1YadtXV1td1k1aRFhTV9CGbucrzSu+p8nyqo/yU5+kJoloysUROmNx9BEQr8p KLhcFzaugKGleCmHzJJxxRm8kwyE3EcmIZ5H3zoav/2T8hfQ5L7O60ohdxJfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwRjY4sjoWSygm9g78DXkk44qLR4wHwYDVR0j BBgwFoAUhCIz1udWvJPA25pF3S97zZfLKa8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODEyNzRhZi03Y2QwLTQwYWYtYTMyMS02NzY4OThkNThkYjgvMC84NDIyMzNENkU3 NTZCQzkzQzBEQjlBNDVERDJGN0JDRDk3Q0IyOUFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQyMjMzRDZFNzU2QkM5M0MwREI5QTQ1REQyRjdCQ0Q5N0NC MjlBRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MTI3NGFmLTdjZDAtNDBhZi1h MzIxLTY3Njg5OGQ1OGRiOC8wLzMyMzAzMjJlMzQzNzJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+iMA0GCSqG SIb3DQEBCwUAA4IBAQAKdlsTJZAx6XyDkKs9q+m71A/fHgBIRVRzCyhtAl4s7RD8 nnUGhmghdebhl2YFduLphjWSzNCOyZJPIY7qynozo0xjv6cURQBmXJkLwZ3yPPFR lLapizrroiSVMc78bT+Ff703RMXU2P4krTRS5ai+gLWUHxnRRxoBSCZJ14l3EoEu Js2niPYSVFpaYi3Un7khDaWiKgucvg16t2sZe+MzlOpEa2ZwNQWI/sVGuYXx0deH pmIRI2RZJLCMs1JmP9f+lPwZj8FZd/xHtYZSvVAKimsraCv1uSMlWEhiKcA9yPS5 +ehs65JXR7hFOLaL1tl9QmOKa89iDLD0Y06RKfmJ -----END CERTIFICATE-----Generated at Wed Nov 20 18:41:50 2024 by rpki-client on console-fra.rpki-client.org