$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136372e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3136372e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: HhyIPRcbMHcBNxnWqNl1wRmSu9BtDkl/yGYptL6X5Ws= Subject key identifier: D8:7A:CB:27:CF:D0:4A:8E:CE:B9:D4:11:F0:B3:C9:B4:AA:A0:AB:B5 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 405EBDE8B7F429AEBA7054DD01E2C302AE30D055 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136372e302f32342d3234203d3e203138303539.roa Signing time: Fri 25 Oct 2024 04:00:37 +0000 ROA not before: Fri 25 Oct 2024 03:55:37 +0000 ROA not after: Fri 24 Oct 2025 04:00:37 +0000 asID: 18059 IP address blocks: 202.43.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:5e:bd:e8:b7:f4:29:ae:ba:70:54:dd:01:e2:c3:02:ae:30:d0:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Oct 25 03:55:37 2024 GMT Not After : Oct 24 04:00:37 2025 GMT Subject: CN=D87ACB27CFD04A8ECEB9D411F0B3C9B4AAA0ABB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:98:d9:99:50:b3:6f:cb:9b:60:3a:04:ad:3f: 2a:4e:5c:e1:9d:5a:ad:e5:21:d7:21:39:83:4c:bb: 0e:ac:fc:4a:82:26:90:38:27:62:f1:3b:57:d8:76: a9:78:e4:3f:9a:86:9a:e7:61:b8:1e:de:7d:f2:b7: a7:f2:aa:b0:e9:82:8e:88:4f:dc:69:08:16:56:ec: b1:b5:4e:c1:1b:77:11:38:8c:ac:13:80:6e:e3:5d: 3d:cc:12:05:ca:ef:3b:25:60:b4:52:d5:1c:29:0a: ef:0a:2e:72:16:cc:d8:c4:d3:b7:01:10:bc:bf:eb: bc:85:3c:f7:69:e8:50:7f:a6:89:7b:f4:7b:98:b0: 9a:47:a9:1a:2f:70:a3:2a:d4:96:5c:47:65:82:1b: db:45:dd:0c:23:ba:d4:64:ef:37:64:62:d1:35:60: 25:f7:4f:40:86:27:c9:59:ae:21:a7:a4:20:08:56: a9:a3:86:4f:81:6c:80:5f:09:1b:49:0c:21:88:97: 3c:79:40:32:b6:6b:fe:2e:6d:b1:d3:6e:e0:69:a9: 4d:31:97:b6:a6:1c:68:2a:78:09:3f:83:5b:bd:7e: 7a:f2:b8:51:8c:d6:de:40:4c:96:12:6c:2b:33:65: 29:a5:32:02:62:33:2c:9d:85:48:01:62:40:ca:85: b6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:7A:CB:27:CF:D0:4A:8E:CE:B9:D4:11:F0:B3:C9:B4:AA:A0:AB:B5 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136372e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.167.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:70:39:3b:00:fc:7d:e0:b7:06:e0:1c:90:dc:63:b6:c2:10: 07:ed:3f:23:87:6e:09:93:57:88:08:47:27:a3:3f:a3:5e:7a: 3c:97:03:c6:ac:a6:22:7e:70:24:55:d9:b4:31:cd:82:b9:8c: 2d:4e:fc:fd:3a:cf:23:f3:6c:b7:83:c9:c1:9b:1d:e3:3b:f7: 74:5b:e6:c6:ef:1e:2e:cf:b1:4a:5a:93:d1:1d:99:fd:c1:70: 10:84:ab:20:10:e9:fd:a3:68:64:5f:52:9f:0c:eb:6a:bd:53: 99:38:44:4d:fe:21:03:69:20:20:d3:6a:ff:bf:c8:fa:ff:0f: ac:81:84:45:03:8e:1a:a8:23:f6:50:1f:8b:8c:54:7f:8c:ac: 8c:35:ac:32:fc:5a:f0:1e:73:5c:b8:69:e9:d3:b8:96:9f:f2: 00:d5:08:44:49:7e:2e:dc:87:01:ec:38:10:30:a9:29:9b:78: 35:19:48:bf:ab:ca:ce:03:af:0c:51:dc:36:5b:89:48:c8:ab: 38:90:f6:93:40:bc:a0:10:13:f0:0a:94:d5:6d:b4:16:0d:93: 2e:9f:ce:1c:c5:c4:ab:78:c5:a1:e2:5a:d0:46:28:95:ed:87: f0:c8:b6:60:b2:2e:af:3b:45:fa:e9:55:2b:87:36:a4:c7:53: 44:a6:24:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQF696Lf0Ka66cFTdAeLDAq4w0FUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDEwMjUwMzU1MzdaFw0yNTEwMjQwNDAwMzdaMDMxMTAvBgNV BAMTKEQ4N0FDQjI3Q0ZEMDRBOEVDRUI5RDQxMUYwQjNDOUI0QUFBMEFCQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVmNmZULNvy5tgOgStPypOXOGd Wq3lIdchOYNMuw6s/EqCJpA4J2LxO1fYdql45D+ahprnYbge3n3yt6fyqrDpgo6I T9xpCBZW7LG1TsEbdxE4jKwTgG7jXT3MEgXK7zslYLRS1RwpCu8KLnIWzNjE07cB ELy/67yFPPdp6FB/pol79HuYsJpHqRovcKMq1JZcR2WCG9tF3QwjutRk7zdkYtE1 YCX3T0CGJ8lZriGnpCAIVqmjhk+BbIBfCRtJDCGIlzx5QDK2a/4ubbHTbuBpqU0x l7amHGgqeAk/g1u9fnryuFGM1t5ATJYSbCszZSmlMgJiMyydhUgBYkDKhbb5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2HrLJ8/QSo7OudQR8LPJtKqgq7UwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorpzANBgkqhkiG 9w0BAQsFAAOCAQEAXXA5OwD8feC3BuAckNxjtsIQB+0/I4duCZNXiAhHJ6M/o156 PJcDxqymIn5wJFXZtDHNgrmMLU78/TrPI/Nst4PJwZsd4zv3dFvmxu8eLs+xSlqT 0R2Z/cFwEISrIBDp/aNoZF9Snwzrar1TmThETf4hA2kgINNq/7/I+v8PrIGERQOO Gqgj9lAfi4xUf4ysjDWsMvxa8B5zXLhp6dO4lp/yANUIREl+LtyHAew4EDCpKZt4 NRlIv6vKzgOvDFHcNluJSMirOJD2k0C8oBAT8AqU1W20Fg2TLp/OHMXEq3jFoeJa 0EYole2H8Mi2YLIurztF+ulVK4c2pMdTRKYkkw== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org