$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37322e302f32332d3233203d3e203435323938.roa File: 3230322e34332e37322e302f32332d3233203d3e203435323938.roa (raw, json) Hash identifier: feRjR6nWSyfmaMgLQg5XOrxeov+50p/kElr8AbvMY8M= Subject key identifier: FA:2E:D9:E3:33:F0:04:CA:85:DE:84:2F:75:00:EF:72:4D:99:9A:DD Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 49D0905FA97587F2B9BB635A57033660257CE8A6 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37322e302f32332d3233203d3e203435323938.roa Signing time: Tue 16 Jul 2024 17:00:01 +0000 ROA not before: Tue 16 Jul 2024 16:55:01 +0000 ROA not after: Tue 15 Jul 2025 17:00:01 +0000 asID: 45298 IP address blocks: 202.43.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d0:90:5f:a9:75:87:f2:b9:bb:63:5a:57:03:36:60:25:7c:e8:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Jul 16 16:55:01 2024 GMT Not After : Jul 15 17:00:01 2025 GMT Subject: CN=FA2ED9E333F004CA85DE842F7500EF724D999ADD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:28:4d:14:f1:e3:60:d7:e4:d5:5d:71:45:9b: 19:a8:4c:34:42:1a:b5:62:22:e8:2a:23:12:a3:d4: d4:91:09:6e:4b:e1:4f:ac:8f:00:28:26:a2:29:75: c6:c6:69:13:a7:6d:7b:eb:27:0f:4f:a3:4b:0b:d0: cd:e7:21:f3:77:81:ea:3c:68:34:bb:81:bd:6a:d7: 9a:75:dd:6e:b1:b0:0a:1c:9b:eb:ad:bd:42:d0:db: f6:93:61:d6:d3:1b:d1:0e:f2:a2:8d:64:dd:7b:8c: 11:9c:35:7a:ea:54:09:74:d2:dc:7f:34:f1:fd:5c: 78:fe:c7:c7:61:b9:9a:1a:1b:be:d4:7b:19:55:fc: 3c:fa:f2:83:6f:89:02:dd:e9:46:52:2c:c4:6e:39: 63:f4:2d:9b:94:5a:26:09:2e:3b:22:73:f8:2f:a5: 8e:c2:c9:ec:2d:96:a4:6d:d5:fd:a7:54:05:70:19: b4:ea:38:72:dc:eb:0b:17:9b:27:c2:95:67:7b:f2: 8a:3d:a5:b1:c1:1c:c6:2c:17:e4:7b:33:1f:0d:ef: 5a:e6:94:9c:26:25:f9:f5:7b:7a:6a:5e:f0:e0:5d: 0d:e7:d6:60:6e:6b:68:fe:8d:42:24:38:cf:43:1f: 3e:be:c0:2b:8b:ea:71:9d:8a:45:d6:c9:5b:3f:06: 02:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2E:D9:E3:33:F0:04:CA:85:DE:84:2F:75:00:EF:72:4D:99:9A:DD X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37322e302f32332d3233203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.72.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:ab:c2:bf:86:e1:82:53:10:0f:dc:2d:cf:f0:c6:eb:c6:61: 0e:1e:f7:a4:1a:61:fb:a0:22:2d:50:08:83:70:20:02:17:ae: e6:9b:e3:a7:c0:d6:fe:a4:5b:e2:a4:07:f5:87:35:a5:6f:6d: 91:53:d1:e0:3e:00:ba:79:e6:c0:21:f0:98:4b:73:1b:6f:8f: a6:9f:fa:ac:2f:c9:2d:b8:e7:96:07:ec:1a:b8:79:e5:0f:a8: e6:0e:7d:42:65:fa:2b:5e:9a:22:6d:c5:a8:0b:f7:9f:b1:76: 57:94:9e:82:58:0f:18:e5:d1:97:e2:e6:21:5f:9a:8c:e8:58: 5e:51:d8:58:75:72:10:d9:e0:ea:0a:60:c6:96:ca:f0:b3:99: c7:66:c3:95:b1:16:d6:a8:72:02:aa:c3:ea:af:7f:49:4a:fa: 7f:c2:c6:29:c8:9d:70:3c:38:61:35:c0:68:79:59:45:56:54: df:4b:b4:2f:94:46:0d:09:10:59:56:34:03:6d:95:49:3d:f9: 34:47:7e:50:9d:fa:9d:39:65:af:8c:ff:10:36:b3:23:f3:41: b0:29:e7:23:d3:29:da:17:90:86:aa:53:01:6b:8e:2a:25:46: fd:c3:11:be:0e:4b:f1:29:1a:1f:58:9d:4e:f2:0d:a8:6c:e2: 32:59:26:a2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSdCQX6l1h/K5u2NaVwM2YCV86KYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNDA3MTYxNjU1MDFaFw0yNTA3MTUxNzAwMDFaMDMxMTAvBgNV BAMTKEZBMkVEOUUzMzNGMDA0Q0E4NURFODQyRjc1MDBFRjcyNEQ5OTlBREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLKE0U8eNg1+TVXXFFmxmoTDRC GrViIugqIxKj1NSRCW5L4U+sjwAoJqIpdcbGaROnbXvrJw9Po0sL0M3nIfN3geo8 aDS7gb1q15p13W6xsAocm+utvULQ2/aTYdbTG9EO8qKNZN17jBGcNXrqVAl00tx/ NPH9XHj+x8dhuZoaG77UexlV/Dz68oNviQLd6UZSLMRuOWP0LZuUWiYJLjsic/gv pY7CyewtlqRt1f2nVAVwGbTqOHLc6wsXmyfClWd78oo9pbHBHMYsF+R7Mx8N71rm lJwmJfn1e3pqXvDgXQ3n1mBua2j+jUIkOM9DHz6+wCuL6nGdikXWyVs/BgIjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+i7Z4zPwBMqF3oQvdQDvck2Zmt0wHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzMyMzAzMjJlMzQzMzJlMzczMjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM0MzUzMjM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKK0gwDQYJKoZIhvcN AQELBQADggEBAG+rwr+G4YJTEA/cLc/wxuvGYQ4e96QaYfugIi1QCINwIAIXruab 46fA1v6kW+KkB/WHNaVvbZFT0eA+ALp55sAh8JhLcxtvj6af+qwvyS2455YH7Bq4 eeUPqOYOfUJl+itemiJtxagL95+xdleUnoJYDxjl0Zfi5iFfmozoWF5R2Fh1chDZ 4OoKYMaWyvCzmcdmw5WxFtaocgKqw+qvf0lK+n/CxinInXA8OGE1wGh5WUVWVN9L tC+URg0JEFlWNANtlUk9+TRHflCd+p05Za+M/xA2syPzQbAp5yPTKdoXkIaqUwFr jiolRv3DEb4OS/EpGh9YnU7yDahs4jJZJqI= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org