$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136322e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: CR9ubqorVqEU2vdXQ48VMFE8nsjBOl5w25OZu8U28lg= Subject key identifier: 47:E6:B6:93:43:64:7E:13:B4:9C:7F:07:50:99:FA:C8:0F:A7:97:05 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 66C523141871946365054E2ECF441BD00C20F786 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa Signing time: Fri 25 Oct 2024 04:00:31 +0000 ROA not before: Fri 25 Oct 2024 03:55:31 +0000 ROA not after: Fri 24 Oct 2025 04:00:31 +0000 asID: 18059 IP address blocks: 202.43.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:c5:23:14:18:71:94:63:65:05:4e:2e:cf:44:1b:d0:0c:20:f7:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Oct 25 03:55:31 2024 GMT Not After : Oct 24 04:00:31 2025 GMT Subject: CN=47E6B69343647E13B49C7F075099FAC80FA79705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:01:6c:6b:dd:42:37:9d:bc:fc:47:02:76:20: 1a:19:48:6d:e3:3b:9d:43:d8:6a:ad:85:2e:80:90: 86:a9:08:12:14:2a:09:5d:71:1c:da:ca:ac:68:2b: 47:62:91:5d:7f:ec:84:b3:ef:4d:51:a4:08:4c:d6: 38:c0:27:1a:b7:37:9f:ba:e8:be:f7:80:e7:2d:b2: b8:f0:1d:af:cd:fe:d5:2a:d2:74:7f:b1:eb:f9:1e: 1d:f3:58:86:4e:4f:e4:8e:8a:ab:50:a3:95:5d:6b: 90:ff:27:fd:23:2c:24:50:2b:bb:83:af:e8:34:22: c3:60:6c:08:83:52:19:3f:e7:4f:0d:91:c6:6a:a6: de:b5:0b:e1:02:49:cf:32:ba:cd:3a:ac:fd:57:8d: fe:ff:ff:09:ef:69:c5:44:7c:57:df:1b:d2:f4:07: 0b:31:14:da:37:6b:f0:39:dd:24:8b:a9:b0:cb:99: 83:b3:d2:e5:9a:ba:5c:8f:90:47:30:e4:13:21:e4: 86:92:39:b5:63:17:34:f0:74:50:f5:28:56:2a:b9: 2a:ae:06:e4:a7:df:67:64:61:af:e1:b6:52:7f:16: 43:6c:e7:33:38:d9:97:6e:9a:11:0a:cf:88:a2:b2: 87:d9:aa:26:23:72:79:ae:8d:e0:ab:0d:c8:1f:f1: ba:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E6:B6:93:43:64:7E:13:B4:9C:7F:07:50:99:FA:C8:0F:A7:97:05 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.162.0/24 Signature Algorithm: sha256WithRSAEncryption 83:ab:03:b8:47:7a:53:87:31:d0:8a:6d:f5:5a:1f:a8:40:d7: dd:22:5e:1f:30:f3:54:e2:6e:ab:73:f6:b0:24:80:04:26:64: 38:b4:ee:d6:8a:6c:24:07:47:6b:ee:ac:d9:1b:c9:8e:95:a1: af:57:19:b7:4b:9c:5e:92:5f:6e:5e:87:25:4a:6f:76:1a:c7: 78:51:4d:6f:0c:c6:2c:90:7c:70:d0:ff:78:5b:5a:1f:21:4b: 30:51:51:c2:41:ff:b3:14:05:b2:29:64:01:a3:4a:0f:f2:5a: 54:b2:36:fb:2e:a3:71:c9:e2:65:cf:d0:fe:13:fb:77:8f:2d: 55:c5:a0:4e:1f:54:94:a3:45:5b:81:c5:c5:1f:6a:2e:86:43: 59:a4:0c:62:8b:b4:83:eb:68:04:f4:6b:17:5e:24:db:61:99: 9e:6e:69:7e:48:67:44:b1:50:2d:63:69:36:f0:2d:ea:81:24: c2:a9:cf:64:33:4a:59:3d:a3:ba:b2:a9:17:4a:fe:44:87:bc: 10:9b:dc:ad:1f:65:0c:4c:8c:05:e5:09:25:71:da:4d:82:03: a0:54:4c:f5:b0:7b:1b:6a:da:45:d7:1f:2d:97:99:00:72:c7: 6a:37:44:50:fa:c4:a3:e1:c5:c2:cc:15:93:54:d3:9c:7f:2e: b7:88:9d:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZsUjFBhxlGNlBU4uz0Qb0Awg94YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDEwMjUwMzU1MzFaFw0yNTEwMjQwNDAwMzFaMDMxMTAvBgNV BAMTKDQ3RTZCNjkzNDM2NDdFMTNCNDlDN0YwNzUwOTlGQUM4MEZBNzk3MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJAWxr3UI3nbz8RwJ2IBoZSG3j O51D2GqthS6AkIapCBIUKgldcRzayqxoK0dikV1/7ISz701RpAhM1jjAJxq3N5+6 6L73gOctsrjwHa/N/tUq0nR/sev5Hh3zWIZOT+SOiqtQo5Vda5D/J/0jLCRQK7uD r+g0IsNgbAiDUhk/508NkcZqpt61C+ECSc8yus06rP1Xjf7//wnvacVEfFffG9L0 BwsxFNo3a/A53SSLqbDLmYOz0uWaulyPkEcw5BMh5IaSObVjFzTwdFD1KFYquSqu BuSn32dkYa/htlJ/FkNs5zM42ZdumhEKz4iisofZqiYjcnmujeCrDcgf8bqvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUR+a2k0NkfhO0nH8HUJn6yA+nlwUwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorojANBgkqhkiG 9w0BAQsFAAOCAQEAg6sDuEd6U4cx0Ipt9VofqEDX3SJeHzDzVOJuq3P2sCSABCZk OLTu1opsJAdHa+6s2RvJjpWhr1cZt0ucXpJfbl6HJUpvdhrHeFFNbwzGLJB8cND/ eFtaHyFLMFFRwkH/sxQFsilkAaNKD/JaVLI2+y6jccniZc/Q/hP7d48tVcWgTh9U lKNFW4HFxR9qLoZDWaQMYou0g+toBPRrF14k22GZnm5pfkhnRLFQLWNpNvAt6oEk wqnPZDNKWT2jurKpF0r+RIe8EJvcrR9lDEyMBeUJJXHaTYIDoFRM9bB7G2raRdcf LZeZAHLHajdEUPrEo+HFwswVk1TTnH8ut4idXw== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org