$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137312e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3137312e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: FmcO03+pJb/e/XWQMJ3D4agx3upTwiYBnI6CYKxUq4w= Subject key identifier: C8:EA:D5:FD:2E:E0:AC:A8:8C:2B:4A:44:4B:9B:F1:77:01:0B:8E:EA Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 378C43C04D4719A561C10BF3330CB136ED8737D1 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137312e302f32342d3234203d3e203138303539.roa Signing time: Fri 25 Oct 2024 04:00:32 +0000 ROA not before: Fri 25 Oct 2024 03:55:32 +0000 ROA not after: Fri 24 Oct 2025 04:00:32 +0000 asID: 18059 IP address blocks: 202.43.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:8c:43:c0:4d:47:19:a5:61:c1:0b:f3:33:0c:b1:36:ed:87:37:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Oct 25 03:55:32 2024 GMT Not After : Oct 24 04:00:32 2025 GMT Subject: CN=C8EAD5FD2EE0ACA88C2B4A444B9BF177010B8EEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3b:65:ee:f8:1f:60:12:13:bc:fa:21:c8:35: 51:0c:cb:4a:b9:56:49:48:fc:e1:c4:09:d6:bc:f4: a2:9c:ac:84:52:e1:2f:ca:dc:ef:1d:f6:24:b1:00: 64:8d:73:32:c6:db:1a:ab:c9:20:79:6f:ab:b7:46: b0:a5:d2:21:6f:58:e0:36:ba:3e:d1:87:c8:71:37: 58:1f:6e:81:d8:29:86:f6:f2:27:30:04:94:17:8c: a6:83:0d:e9:3a:ed:e9:8f:99:dc:2f:9d:8b:53:8b: 41:ad:11:0f:30:23:0f:75:e3:59:82:5f:73:f1:44: 9a:d6:7c:5e:36:e1:06:a6:8a:d0:19:eb:56:e9:ac: 46:40:30:95:e1:2f:85:21:57:64:5f:61:73:a1:f9: d4:19:55:09:dd:04:62:82:ca:b4:68:0c:31:1c:34: 6e:17:e0:2a:2e:a5:c4:2b:33:55:91:97:3a:9b:48: 8e:61:98:53:08:87:f8:eb:68:21:21:5c:b0:69:1e: f2:97:ea:ee:df:91:c0:81:6a:5d:d2:3b:e2:31:62: 90:d2:c6:ca:7f:cb:96:22:50:58:85:30:90:9c:cd: 80:e4:2a:11:49:e4:e3:0b:69:47:b3:82:14:75:02: f0:f8:69:55:ae:8b:29:f6:9c:7f:79:60:cc:a9:6c: 32:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EA:D5:FD:2E:E0:AC:A8:8C:2B:4A:44:4B:9B:F1:77:01:0B:8E:EA X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137312e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.171.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:51:f7:f5:35:2e:30:c2:66:06:0b:7e:63:36:03:be:eb:d5: df:cd:95:1b:64:4f:e0:1d:71:c0:7b:fb:a1:68:ba:12:39:ff: cc:b2:db:ae:5a:dd:73:c8:f3:e0:c6:93:9e:23:cc:3f:1f:bf: d7:50:78:57:02:d5:15:54:90:6c:5a:05:e5:7e:2c:0c:98:77: 1d:fb:b4:6e:ef:6a:9c:b5:d2:3c:07:06:86:56:e1:b2:e6:9b: a1:df:43:3e:a9:3a:ce:48:b8:01:a8:58:eb:98:68:4f:fd:47: 0e:98:0d:2b:82:2f:92:15:7f:f0:1e:5e:6b:c4:e1:be:c6:a5: aa:82:f8:3f:66:c0:1c:ab:d1:da:26:84:8b:4d:ae:aa:3a:0b: 56:fb:48:a6:d9:97:36:16:b2:cf:85:aa:00:41:03:b8:61:e4: 03:da:e8:c0:9b:5c:b2:a2:2d:e6:79:4f:33:50:1b:96:56:8c: 6d:f8:8a:25:b3:46:a1:1f:d1:4d:6e:44:d4:ec:ad:18:4b:15: 5c:2d:4b:06:4e:e4:32:2e:61:cc:b4:bc:f9:b7:a9:fa:9e:e8: 43:06:d5:80:49:11:87:13:a9:d7:9b:04:88:25:6f:ee:af:0b: a0:f9:54:46:56:d3:19:79:ff:a0:5f:0a:18:00:29:73:1b:ba: 9d:e5:6e:69 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN4xDwE1HGaVhwQvzMwyxNu2HN9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDEwMjUwMzU1MzJaFw0yNTEwMjQwNDAwMzJaMDMxMTAvBgNV BAMTKEM4RUFENUZEMkVFMEFDQTg4QzJCNEE0NDRCOUJGMTc3MDEwQjhFRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0O2Xu+B9gEhO8+iHINVEMy0q5 VklI/OHECda89KKcrIRS4S/K3O8d9iSxAGSNczLG2xqrySB5b6u3RrCl0iFvWOA2 uj7Rh8hxN1gfboHYKYb28icwBJQXjKaDDek67emPmdwvnYtTi0GtEQ8wIw9141mC X3PxRJrWfF424QamitAZ61bprEZAMJXhL4UhV2RfYXOh+dQZVQndBGKCyrRoDDEc NG4X4CoupcQrM1WRlzqbSI5hmFMIh/jraCEhXLBpHvKX6u7fkcCBal3SO+IxYpDS xsp/y5YiUFiFMJCczYDkKhFJ5OMLaUezghR1AvD4aVWuiyn2nH95YMypbDKVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyOrV/S7grKiMK0pES5vxdwELjuowHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorqzANBgkqhkiG 9w0BAQsFAAOCAQEAOlH39TUuMMJmBgt+YzYDvuvV382VG2RP4B1xwHv7oWi6Ejn/ zLLbrlrdc8jz4MaTniPMPx+/11B4VwLVFVSQbFoF5X4sDJh3Hfu0bu9qnLXSPAcG hlbhsuabod9DPqk6zki4AahY65hoT/1HDpgNK4IvkhV/8B5ea8ThvsalqoL4P2bA HKvR2iaEi02uqjoLVvtIptmXNhayz4WqAEEDuGHkA9rowJtcsqIt5nlPM1AbllaM bfiKJbNGoR/RTW5E1OytGEsVXC1LBk7kMi5hzLS8+bep+p7oQwbVgEkRhxOp15sE iCVv7q8LoPlURlbTGXn/oF8KGAApcxu6neVuaQ== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org