$ rpki-client -vvf repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136332e302f32342d3234203d3e20313532303337.roa File: 3230322e34372e3136332e302f32342d3234203d3e20313532303337.roa (raw, json) Hash identifier: 8rRzKbXxM7JbqlliFf/wDyC7Rc9CVk2AoWCVylO5lhs= Subject key identifier: 16:3E:17:C6:F7:46:16:68:DB:05:F7:6D:23:E3:56:31:0A:A2:C0:FB Certificate issuer: /CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Certificate serial: 6E55BE6451F845A16750BBCD191F3CEE08995DF0 Authority key identifier: 84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136332e302f32342d3234203d3e20313532303337.roa Signing time: Tue 22 Oct 2024 14:00:00 +0000 ROA not before: Tue 22 Oct 2024 13:55:00 +0000 ROA not after: Tue 21 Oct 2025 14:00:00 +0000 asID: 152037 IP address blocks: 202.47.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.crl rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:55:be:64:51:f8:45:a1:67:50:bb:cd:19:1f:3c:ee:08:99:5d:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Validity Not Before: Oct 22 13:55:00 2024 GMT Not After : Oct 21 14:00:00 2025 GMT Subject: CN=163E17C6F7461668DB05F76D23E356310AA2C0FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bd:34:39:51:71:a6:b3:f7:99:bd:e0:d7:24: ec:cb:00:6b:24:29:9a:98:3a:56:9d:3d:3f:f2:16: 7a:7f:b2:63:87:13:7e:89:55:a0:75:0c:02:ff:2d: 4b:d8:ed:be:b5:15:92:e2:41:f7:9f:31:84:15:a6: 7f:92:11:7f:a5:fc:14:54:dd:8c:71:27:07:8b:af: 67:d0:47:b0:e5:7e:38:48:e6:2e:c7:7d:46:8a:6b: 3c:c1:1a:67:70:40:5f:ba:b5:e1:df:20:75:a4:63: 42:03:46:19:01:40:0b:68:a1:27:6d:d6:ac:c3:e6: fc:39:6f:12:81:31:1c:6c:ae:fe:5b:1c:b3:87:3a: 26:14:80:6c:a1:f3:66:21:26:29:ff:31:e1:18:e3: 1d:e7:2f:d7:a2:10:f3:b6:5c:69:bb:77:cb:ae:29: 05:b6:19:2c:c6:99:68:bc:17:93:c6:68:62:b7:54: 43:5c:ac:1b:07:5f:2c:9e:0b:20:cd:6c:67:a8:fd: 3a:12:96:64:db:b4:06:f7:e1:4c:98:78:cb:a9:8c: 51:89:87:77:e7:27:11:7e:bc:ee:92:fb:8c:ea:6b: c9:be:21:6f:12:47:91:15:22:3f:68:0e:72:a6:47: f7:d0:d3:f9:7a:a5:48:c0:53:b6:06:42:84:50:ff: 33:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3E:17:C6:F7:46:16:68:DB:05:F7:6D:23:E3:56:31:0A:A2:C0:FB X509v3 Authority Key Identifier: keyid:84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/3230322e34372e3136332e302f32342d3234203d3e20313532303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.163.0/24 Signature Algorithm: sha256WithRSAEncryption b4:d6:cc:26:cd:87:73:60:15:1c:66:11:82:a4:a3:eb:74:13: 5a:e9:1f:40:ee:90:36:b2:f1:d7:e9:99:5a:4c:c4:ee:cb:4b: 01:5a:0c:a8:d5:80:4e:e1:85:8d:46:80:b0:ee:ec:3a:02:07: 11:9f:46:73:4f:04:bc:97:be:b5:84:60:bb:70:53:97:a0:7b: 15:21:88:7a:e3:3f:29:c6:0f:3f:51:89:9f:57:29:02:27:3b: 87:84:c3:e1:42:af:78:53:de:8b:53:88:4a:12:fe:b6:53:6b: 7e:33:bd:98:20:0b:9a:28:d5:1e:58:2d:dc:44:79:b5:6c:76: b0:d6:f8:5e:0e:9c:11:52:b1:c9:28:52:8c:73:c4:94:e1:86: 26:8f:74:aa:78:0c:cf:c9:0a:5b:79:f5:11:a5:7d:d1:a3:84: e0:d7:77:6e:3b:0c:e3:44:25:48:da:f3:bf:7d:40:7e:39:6c: 4d:fc:85:85:fb:5e:90:59:d6:7d:55:6a:08:2b:f4:66:a5:bc: 83:35:57:6b:21:91:58:e3:d6:18:ad:f8:bc:72:3e:f1:73:95: 1f:bb:32:44:e4:e1:7c:dc:26:2e:ee:13:3a:b7:4f:df:2b:fa: b3:5f:eb:61:8f:df:24:dd:74:57:0b:e6:88:ce:a9:25:a8:b5: 53:0d:e9:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUblW+ZFH4RaFnULvNGR887giZXfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQyMjMzRDZFNzU2QkM5M0MwREI5QTQ1REQyRjdCQ0Q5 N0NCMjlBRjAeFw0yNDEwMjIxMzU1MDBaFw0yNTEwMjExNDAwMDBaMDMxMTAvBgNV BAMTKDE2M0UxN0M2Rjc0NjE2NjhEQjA1Rjc2RDIzRTM1NjMxMEFBMkMwRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7vTQ5UXGms/eZveDXJOzLAGsk KZqYOladPT/yFnp/smOHE36JVaB1DAL/LUvY7b61FZLiQfefMYQVpn+SEX+l/BRU 3YxxJweLr2fQR7DlfjhI5i7HfUaKazzBGmdwQF+6teHfIHWkY0IDRhkBQAtooSdt 1qzD5vw5bxKBMRxsrv5bHLOHOiYUgGyh82YhJin/MeEY4x3nL9eiEPO2XGm7d8uu KQW2GSzGmWi8F5PGaGK3VENcrBsHXyyeCyDNbGeo/ToSlmTbtAb34UyYeMupjFGJ h3fnJxF+vO6S+4zqa8m+IW8SR5EVIj9oDnKmR/fQ0/l6pUjAU7YGQoRQ/zOHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFj4XxvdGFmjbBfdtI+NWMQqiwPswHwYDVR0j BBgwFoAUhCIz1udWvJPA25pF3S97zZfLKa8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODEyNzRhZi03Y2QwLTQwYWYtYTMyMS02NzY4OThkNThkYjgvMC84NDIyMzNENkU3 NTZCQzkzQzBEQjlBNDVERDJGN0JDRDk3Q0IyOUFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQyMjMzRDZFNzU2QkM5M0MwREI5QTQ1REQyRjdCQ0Q5N0NC MjlBRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MTI3NGFmLTdjZDAtNDBhZi1h MzIxLTY3Njg5OGQ1OGRiOC8wLzMyMzAzMjJlMzQzNzJlMzEzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+jMA0GCSqG SIb3DQEBCwUAA4IBAQC01swmzYdzYBUcZhGCpKPrdBNa6R9A7pA2svHX6ZlaTMTu y0sBWgyo1YBO4YWNRoCw7uw6AgcRn0ZzTwS8l761hGC7cFOXoHsVIYh64z8pxg8/ UYmfVykCJzuHhMPhQq94U96LU4hKEv62U2t+M72YIAuaKNUeWC3cRHm1bHaw1vhe DpwRUrHJKFKMc8SU4YYmj3SqeAzPyQpbefURpX3Ro4Tg13duOwzjRCVI2vO/fUB+ OWxN/IWF+16QWdZ9VWoIK/RmpbyDNVdrIZFY49YYrfi8cj7xc5UfuzJE5OF83CYu 7hM6t0/fK/qzX+thj98k3XRXC+aIzqklqLVTDelt -----END CERTIFICATE-----Generated at Wed Nov 20 18:41:50 2024 by rpki-client on console-fra.rpki-client.org