$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136332e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136332e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: wB9h8sTfd0wYw0ZS9DoUH3MPZtsFYgJY3vJAf4sbh/4= Subject key identifier: 85:54:C1:3A:64:38:7A:CC:F4:FF:78:0F:39:5F:77:44:F4:29:FC:FC Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 0667A8F88FA7DE95750E3B5FFA6D002D6ABD344F Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136332e302f32342d3234203d3e203138303539.roa Signing time: Fri 25 Oct 2024 04:00:35 +0000 ROA not before: Fri 25 Oct 2024 03:55:35 +0000 ROA not after: Fri 24 Oct 2025 04:00:35 +0000 asID: 18059 IP address blocks: 202.43.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:67:a8:f8:8f:a7:de:95:75:0e:3b:5f:fa:6d:00:2d:6a:bd:34:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Oct 25 03:55:35 2024 GMT Not After : Oct 24 04:00:35 2025 GMT Subject: CN=8554C13A64387ACCF4FF780F395F7744F429FCFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b0:8d:bc:04:93:0b:35:1e:28:57:ff:69:db: 20:22:a8:3b:b3:f1:ed:37:3c:1e:99:11:05:a5:d9: 63:2d:46:7c:ea:d7:aa:18:94:ff:f7:a2:4e:c3:eb: 03:df:03:b0:a0:bb:7e:06:16:df:23:7c:13:56:aa: 91:0c:bc:d4:83:33:10:20:a2:e0:76:56:fd:b7:d0: c3:1a:7b:e9:fa:b9:5b:b3:fa:28:c3:07:b7:02:57: bb:7a:27:24:07:36:b2:6f:dc:7e:9a:22:04:b4:80: 2f:aa:cd:23:c5:8f:25:e1:92:8a:63:2a:86:08:30: 24:43:4a:47:bc:19:6b:75:84:3d:80:bf:5b:e9:f7: 4b:ce:73:36:28:0f:ae:97:09:fb:c0:f7:87:ee:83: 0f:8b:0b:47:25:84:56:a1:fb:dd:63:33:ad:85:88: 6c:d7:26:dc:81:1f:30:6f:36:9e:0a:32:03:91:60: 3f:23:72:55:f3:98:f6:2e:60:36:b1:7a:2e:39:99: 94:2d:2b:6e:ca:61:e4:6a:b3:53:4a:8c:bd:e7:f6: 6f:b2:1a:a8:30:b3:ca:b6:d0:1c:3f:16:f1:bf:0a: b5:2d:2a:b7:91:c4:a0:b9:f3:97:7e:c5:2d:fc:e7: 82:64:79:f0:d8:4d:b8:9c:ac:bb:f0:9b:73:ee:6b: eb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:54:C1:3A:64:38:7A:CC:F4:FF:78:0F:39:5F:77:44:F4:29:FC:FC X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136332e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.163.0/24 Signature Algorithm: sha256WithRSAEncryption 59:af:c3:ca:74:46:57:ea:7d:cb:ef:da:83:03:f6:61:dd:ce: c2:a7:3a:c6:17:f7:fa:bf:ac:30:38:4a:b9:16:14:4a:dc:af: f3:56:8a:8a:32:d9:33:fa:1d:12:0b:57:4d:53:f1:5a:e0:d0: 1d:a9:1c:32:4c:e7:57:4d:c6:26:4b:f7:48:e1:07:b1:32:1b: be:1c:12:24:03:2c:02:bd:93:de:c6:92:00:3a:ee:62:2b:e4: 70:49:16:2e:0b:ae:b0:00:a8:0f:ba:a7:69:62:5c:e0:94:f1: 4e:82:7a:fa:19:d8:82:a5:09:fc:79:ff:25:1a:da:b2:73:23: f5:7e:77:e0:a3:a4:4c:1c:b5:de:22:fb:5e:34:16:3b:d3:08: 9f:c9:20:c4:d6:3f:d1:b2:15:78:d4:e7:49:18:cc:92:a8:f7: f4:50:5e:b0:8a:76:ad:18:c3:59:88:fc:b4:b6:1c:91:3c:a8: 9d:e0:9b:c4:a2:4b:54:34:54:4d:2a:2c:2e:19:3a:68:ed:21: 6f:28:d7:86:dc:17:b0:b0:de:91:50:9d:f8:69:17:9d:d5:c8: ed:59:9c:7a:13:ee:6b:2b:45:01:9e:63:20:f5:df:1c:63:cc: 17:f1:2d:27:57:ff:97:42:dd:bd:33:49:04:ee:d4:ba:b8:6f: e4:b0:6d:c2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBmeo+I+n3pV1Djtf+m0ALWq9NE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDEwMjUwMzU1MzVaFw0yNTEwMjQwNDAwMzVaMDMxMTAvBgNV BAMTKDg1NTRDMTNBNjQzODdBQ0NGNEZGNzgwRjM5NUY3NzQ0RjQyOUZDRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJsI28BJMLNR4oV/9p2yAiqDuz 8e03PB6ZEQWl2WMtRnzq16oYlP/3ok7D6wPfA7Cgu34GFt8jfBNWqpEMvNSDMxAg ouB2Vv230MMae+n6uVuz+ijDB7cCV7t6JyQHNrJv3H6aIgS0gC+qzSPFjyXhkopj KoYIMCRDSke8GWt1hD2Av1vp90vOczYoD66XCfvA94fugw+LC0clhFah+91jM62F iGzXJtyBHzBvNp4KMgORYD8jclXzmPYuYDaxei45mZQtK27KYeRqs1NKjL3n9m+y Gqgws8q20Bw/FvG/CrUtKreRxKC585d+xS3854JkefDYTbicrLvwm3Pua+s5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhVTBOmQ4esz0/3gPOV93RPQp/PwwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorozANBgkqhkiG 9w0BAQsFAAOCAQEAWa/DynRGV+p9y+/agwP2Yd3Owqc6xhf3+r+sMDhKuRYUStyv 81aKijLZM/odEgtXTVPxWuDQHakcMkznV03GJkv3SOEHsTIbvhwSJAMsAr2T3saS ADruYivkcEkWLguusACoD7qnaWJc4JTxToJ6+hnYgqUJ/Hn/JRrasnMj9X534KOk TBy13iL7XjQWO9MIn8kgxNY/0bIVeNTnSRjMkqj39FBesIp2rRjDWYj8tLYckTyo neCbxKJLVDRUTSosLhk6aO0hbyjXhtwXsLDekVCd+GkXndXI7VmcehPuaytFAZ5j IPXfHGPMF/EtJ1f/l0LdvTNJBO7Uurhv5LBtwg== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org