$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136352e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136352e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: mW5Ox3HafaP76Mpn6f1suPsWm7nmvzg3FNQwexxDHI4= Subject key identifier: 3B:49:CA:F3:7A:CD:F7:D6:56:FB:06:8A:51:DD:A1:64:57:95:2D:74 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 708DD29F345A78116A04703E8D03B840B93494CB Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136352e302f32342d3234203d3e203138303539.roa Signing time: Fri 25 Oct 2024 04:00:36 +0000 ROA not before: Fri 25 Oct 2024 03:55:36 +0000 ROA not after: Fri 24 Oct 2025 04:00:36 +0000 asID: 18059 IP address blocks: 202.43.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:8d:d2:9f:34:5a:78:11:6a:04:70:3e:8d:03:b8:40:b9:34:94:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Oct 25 03:55:36 2024 GMT Not After : Oct 24 04:00:36 2025 GMT Subject: CN=3B49CAF37ACDF7D656FB068A51DDA16457952D74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:64:ae:e9:38:ea:e9:34:d7:fc:25:db:cd:84: a2:e7:7f:a2:d6:5b:22:35:03:60:a9:af:ef:ee:5b: be:35:37:9c:1a:da:57:93:68:93:d3:2e:fa:ca:23: cb:8c:7e:61:25:bb:68:8e:d4:06:de:a1:f7:c0:60: 49:6d:0b:1f:f2:56:f9:c2:00:02:c7:b8:6e:bd:ea: 04:8c:e5:28:19:d3:66:49:0f:0e:a7:1e:e9:55:bb: 24:45:fe:79:7b:64:7f:f1:fa:8f:b7:22:f7:fc:1f: f7:88:70:df:25:a8:f0:30:97:a4:e3:48:5e:46:6f: 12:be:7c:38:6f:98:01:4e:e7:e3:01:1f:68:17:b7: 61:07:c8:78:06:50:1e:d8:fb:f8:70:47:69:82:31: 64:d7:85:f1:a5:06:0e:9b:fb:19:4c:2b:92:b8:fe: 8d:c9:1f:12:0a:d2:14:83:b8:5f:b9:3b:34:14:18: 77:3e:80:07:9a:ad:df:1a:f9:b3:6b:b9:59:15:06: a0:7a:d4:09:c5:fa:fc:43:50:0a:e7:c0:c8:66:a9: 50:8a:f8:3d:1d:ba:bb:4d:de:86:0b:71:66:a4:69: a4:fd:16:be:fe:77:2d:b9:34:fb:25:3b:a9:ac:67: 28:f9:63:d5:b4:42:75:18:4b:6e:0a:b5:c9:33:aa: 30:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:49:CA:F3:7A:CD:F7:D6:56:FB:06:8A:51:DD:A1:64:57:95:2D:74 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136352e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.165.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:99:8b:38:3e:c7:27:f7:a7:1a:a2:6b:4f:34:6d:e3:b2:52: 34:9d:7a:d0:73:8d:7f:91:e4:08:07:84:2f:e8:74:cd:75:df: 69:31:36:fc:97:b6:8a:57:fe:2a:41:61:80:18:5d:15:5b:90: a8:f8:ed:e2:e9:51:cd:ff:50:0b:ae:ec:b8:f2:55:71:8f:be: f5:d3:20:a4:da:6d:2d:c4:fb:72:41:8c:b4:90:5e:d4:6e:f3: 12:4d:33:89:4b:17:07:6b:fa:d0:12:5a:ed:c1:9c:06:2a:1d: 61:36:1e:7d:ff:26:f2:8a:fc:58:f7:e5:6d:df:f9:b6:51:77: e6:38:f5:99:1f:f8:1f:c5:e9:f8:db:b6:5e:9d:0d:9b:c6:6d: 27:90:dc:75:65:38:c6:0b:d9:75:d0:36:62:bc:1f:3c:17:25: f9:61:8c:55:7c:04:a8:61:7f:b6:3a:33:15:04:c3:f8:27:36: 8b:44:19:c0:6e:f1:80:b5:15:56:d2:dd:3f:a5:0d:12:c3:87: 49:5c:1d:14:4f:3d:03:96:42:44:58:b4:6c:80:75:f0:b3:f8: 59:be:2a:b0:37:4a:ca:59:24:04:c1:d5:e0:01:03:01:4e:05: 85:09:76:80:bf:0c:84:6f:55:6d:57:92:23:73:50:81:bc:6f: 8d:75:a5:78 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcI3SnzRaeBFqBHA+jQO4QLk0lMswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDEwMjUwMzU1MzZaFw0yNTEwMjQwNDAwMzZaMDMxMTAvBgNV BAMTKDNCNDlDQUYzN0FDREY3RDY1NkZCMDY4QTUxRERBMTY0NTc5NTJENzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZK7pOOrpNNf8JdvNhKLnf6LW WyI1A2Cpr+/uW741N5wa2leTaJPTLvrKI8uMfmElu2iO1AbeoffAYEltCx/yVvnC AALHuG696gSM5SgZ02ZJDw6nHulVuyRF/nl7ZH/x+o+3Ivf8H/eIcN8lqPAwl6Tj SF5GbxK+fDhvmAFO5+MBH2gXt2EHyHgGUB7Y+/hwR2mCMWTXhfGlBg6b+xlMK5K4 /o3JHxIK0hSDuF+5OzQUGHc+gAeard8a+bNruVkVBqB61AnF+vxDUArnwMhmqVCK +D0durtN3oYLcWakaaT9Fr7+dy25NPslO6msZyj5Y9W0QnUYS24KtckzqjC3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUO0nK83rN99ZW+waKUd2hZFeVLXQwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorpTANBgkqhkiG 9w0BAQsFAAOCAQEAn5mLOD7HJ/enGqJrTzRt47JSNJ160HONf5HkCAeEL+h0zXXf aTE2/Je2ilf+KkFhgBhdFVuQqPjt4ulRzf9QC67suPJVcY++9dMgpNptLcT7ckGM tJBe1G7zEk0ziUsXB2v60BJa7cGcBiodYTYeff8m8or8WPflbd/5tlF35jj1mR/4 H8Xp+Nu2Xp0Nm8ZtJ5DcdWU4xgvZddA2YrwfPBcl+WGMVXwEqGF/tjozFQTD+Cc2 i0QZwG7xgLUVVtLdP6UNEsOHSVwdFE89A5ZCRFi0bIB18LP4Wb4qsDdKylkkBMHV 4AEDAU4FhQl2gL8MhG9VbVeSI3NQgbxvjXWleA== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org