$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa File: 3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa (raw, json) Hash identifier: Duv7had9qz23magj0/7Gknmw1o3t5P/2ZxbNo+6irPU= Subject key identifier: BE:3E:6D:69:B9:43:8F:4A:D2:B7:2A:64:54:DD:EB:F2:D4:67:03:F8 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 67AC482EA3D8A2CFADB149BD459F0DA274A965C3 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa Signing time: Mon 01 Jul 2024 01:05:46 +0000 ROA not before: Mon 01 Jul 2024 01:00:46 +0000 ROA not after: Mon 30 Jun 2025 01:05:46 +0000 asID: 24532 IP address blocks: 202.129.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ac:48:2e:a3:d8:a2:cf:ad:b1:49:bd:45:9f:0d:a2:74:a9:65:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jul 1 01:00:46 2024 GMT Not After : Jun 30 01:05:46 2025 GMT Subject: CN=BE3E6D69B9438F4AD2B72A6454DDEBF2D46703F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:d1:29:83:a0:e7:43:0d:e5:a4:04:50:76: e8:a0:12:38:63:72:58:26:01:50:f3:30:d0:6f:c9: 4c:28:81:a9:34:8a:d0:28:58:b0:25:b7:86:e0:6c: e4:ed:36:d2:54:cb:de:3c:60:84:a9:4c:d0:a5:19: 7a:8f:85:af:53:85:4d:6f:a8:cf:b6:a5:e0:08:dc: 36:c7:d5:cb:b0:cd:fa:db:61:a2:e0:6f:59:00:67: 1f:d4:4d:fe:cd:57:b7:89:76:15:aa:85:4d:3c:31: 89:39:bb:89:23:fe:25:a3:f6:88:ec:b3:ad:20:1a: 0b:06:ad:40:ad:88:67:fa:9c:33:de:e7:2f:61:e9: 4a:31:2a:d0:79:82:b0:3f:fc:a4:22:c4:36:6a:3a: 84:06:a6:e8:1c:2c:d6:fa:64:2a:c0:e9:b6:e7:29: ab:f9:3b:5b:d6:e7:91:0b:27:7f:cd:6d:0c:5f:5d: b3:0e:8a:19:41:3a:a3:31:4e:dc:5a:a2:38:94:53: 89:7d:67:72:35:d9:1c:e0:40:5a:42:cb:c5:35:a6: e4:46:96:83:c7:ab:73:48:45:d2:52:84:5b:5a:80: 6a:e9:2c:d7:af:82:49:50:88:e3:1e:03:9b:38:4c: 46:40:22:34:dc:23:df:1d:02:bd:2d:3d:6f:20:63: 3b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:3E:6D:69:B9:43:8F:4A:D2:B7:2A:64:54:DD:EB:F2:D4:67:03:F8 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.129.184.0/22 Signature Algorithm: sha256WithRSAEncryption 67:bf:e4:d9:98:90:c3:67:26:ff:e7:c0:07:a2:b8:89:23:9a: dc:86:71:a9:8d:46:52:55:1b:d1:45:f6:4d:7a:fd:f7:d5:0a: 73:41:35:fa:f7:d5:32:c4:ad:8b:c6:47:fb:75:11:a4:0c:12: 74:68:2e:8f:d4:69:91:81:20:4b:a6:5e:fb:ae:a4:92:f1:17: 9c:07:5c:fa:d2:a2:5b:ba:d0:8f:b7:f3:73:87:0b:ec:7f:af: 72:fc:ae:5f:de:fb:1f:e8:18:1b:52:3a:49:18:83:dd:d8:7e: 34:d9:d0:2d:cc:b1:99:08:d3:1d:23:45:f8:31:fc:73:05:cd: 6c:37:5a:d8:45:46:0a:13:48:18:ee:cc:77:5f:86:40:01:87: 05:38:2b:43:25:d6:94:cc:85:3b:cd:e3:68:dd:6c:f8:20:e6: 86:d1:d9:c5:c8:d9:a9:f1:97:3c:69:42:59:a7:67:69:b1:30: 82:b6:26:6f:51:26:3d:9b:b0:7f:b7:ca:3b:85:89:43:ad:68: c0:1a:2e:6d:3b:fe:29:51:b8:16:e1:85:c4:2d:c7:ec:0c:ad: 20:98:a6:34:a9:7e:c7:72:ec:18:93:3f:58:50:5c:df:3a:94: 6c:1f:5f:0c:98:1c:8f:f1:82:8b:78:68:b9:60:98:3d:3e:fd: c2:98:97:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ6xILqPYos+tsUm9RZ8NonSpZcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNDA3MDEwMTAwNDZaFw0yNTA2MzAwMTA1NDZaMDMxMTAvBgNV BAMTKEJFM0U2RDY5Qjk0MzhGNEFEMkI3MkE2NDU0RERFQkYyRDQ2NzAzRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKX9Epg6DnQw3lpARQduigEjhj clgmAVDzMNBvyUwogak0itAoWLAlt4bgbOTtNtJUy948YISpTNClGXqPha9ThU1v qM+2peAI3DbH1cuwzfrbYaLgb1kAZx/UTf7NV7eJdhWqhU08MYk5u4kj/iWj9ojs s60gGgsGrUCtiGf6nDPe5y9h6UoxKtB5grA//KQixDZqOoQGpugcLNb6ZCrA6bbn Kav5O1vW55ELJ3/NbQxfXbMOihlBOqMxTtxaojiUU4l9Z3I12RzgQFpCy8U1puRG loPHq3NIRdJShFtagGrpLNevgklQiOMeA5s4TEZAIjTcI98dAr0tPW8gYzvVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvj5tablDj0rStypkVN3r8tRnA/gwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzAzMjJlMzEzMjM5MmUzMTM4MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMjM0MzUzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCyoG4MA0GCSqG SIb3DQEBCwUAA4IBAQBnv+TZmJDDZyb/58AHoriJI5rchnGpjUZSVRvRRfZNev33 1QpzQTX699UyxK2Lxkf7dRGkDBJ0aC6P1GmRgSBLpl77rqSS8RecB1z60qJbutCP t/Nzhwvsf69y/K5f3vsf6BgbUjpJGIPd2H402dAtzLGZCNMdI0X4MfxzBc1sN1rY RUYKE0gY7sx3X4ZAAYcFOCtDJdaUzIU7zeNo3Wz4IOaG0dnFyNmp8Zc8aUJZp2dp sTCCtiZvUSY9m7B/t8o7hYlDrWjAGi5tO/4pUbgW4YXELcfsDK0gmKY0qX7HcuwY kz9YUFzfOpRsH18MmByP8YKLeGi5YJg9Pv3CmJeu -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org