$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137322e302f32342d3234203d3e203138303539.roa File: 3230322e34332e3137322e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: Mr3tAGdWeFos9TQ05LDq1DgpE+utnbWoKGS9PtUDxOI= Subject key identifier: 1E:DC:1A:46:3E:B3:04:73:05:CE:51:50:C4:0E:07:0A:AC:59:00:5F Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 696E17E12712DC5EC52AF5E1D6DCDD39BB19ECF2 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137322e302f32342d3234203d3e203138303539.roa Signing time: Fri 25 Oct 2024 04:00:33 +0000 ROA not before: Fri 25 Oct 2024 03:55:33 +0000 ROA not after: Fri 24 Oct 2025 04:00:33 +0000 asID: 18059 IP address blocks: 202.43.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:6e:17:e1:27:12:dc:5e:c5:2a:f5:e1:d6:dc:dd:39:bb:19:ec:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Oct 25 03:55:33 2024 GMT Not After : Oct 24 04:00:33 2025 GMT Subject: CN=1EDC1A463EB3047305CE5150C40E070AAC59005F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:88:87:fb:6c:3c:38:0e:32:4f:65:b4:08:62: 3a:ce:ea:f1:1f:c9:1b:10:57:d4:a3:b4:ed:51:04: 2b:f9:cd:ea:ad:29:b1:6f:c2:4b:d4:c8:e6:dd:2b: 2d:f9:cd:70:5c:08:54:2f:e8:e8:3b:03:95:a3:25: 6b:79:b3:cf:de:c9:b7:73:42:5e:65:6c:ca:73:f9: 79:c0:74:59:1d:34:eb:9f:54:dd:25:e1:31:9e:49: 5f:b9:bc:a8:bc:12:c8:2c:ff:a9:ee:c3:d2:46:0f: 02:54:2e:f9:9b:68:7c:ae:23:ec:d3:88:26:39:a0: 17:40:ff:29:f3:8d:e1:a3:1d:a6:0a:a2:b3:ff:22: 15:36:ed:9a:89:6a:f7:4a:da:4e:9b:80:15:d3:87: c0:72:fb:79:8e:6b:b0:18:16:5e:57:eb:14:a3:33: ee:93:c9:c2:86:69:88:06:0e:83:9b:b1:34:4c:61: 63:b3:13:96:42:9a:ac:25:3e:ba:3b:72:8d:a3:32: 37:b2:42:2f:1d:ca:d3:8a:45:1a:18:60:19:34:d7: d1:6c:8b:a6:76:ba:19:26:d1:74:2c:d5:bb:cb:11: f7:10:62:95:4c:e6:e8:e6:2d:5e:56:05:23:33:66: 09:81:c6:10:69:48:8e:a8:aa:2d:81:5b:a7:d7:2b: ab:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DC:1A:46:3E:B3:04:73:05:CE:51:50:C4:0E:07:0A:AC:59:00:5F X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137322e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.172.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:51:0c:e2:89:bc:ef:30:a2:d2:19:fd:10:59:23:8f:a7:37: 3d:25:1c:47:fa:83:f9:d8:92:6f:f8:ee:9c:77:d6:1a:3b:d6: 45:38:0e:63:e5:64:da:56:c8:b5:85:46:20:65:c2:72:c5:4a: 13:0b:1e:e5:99:c0:98:09:8d:29:2c:28:8d:11:c5:d7:10:51: 93:30:34:fd:73:5b:70:f0:7e:c8:00:d3:85:87:37:5e:1c:ae: 18:47:f3:e0:50:a2:90:00:dc:3b:1e:25:7f:79:6f:11:a6:50: 8c:aa:7f:60:a8:d5:28:c9:60:a2:fc:ea:1e:54:86:c3:17:63: 63:29:59:a3:2e:60:53:42:c6:71:6c:1b:e7:ee:f0:b7:39:29: 49:d0:c9:c7:ed:c7:88:ad:fb:a8:ba:1f:55:99:58:c1:ce:57: 56:c8:a6:46:68:ab:fc:c3:42:49:ab:68:c8:e1:7f:9d:9a:87: 3b:24:5a:e0:0d:eb:3c:38:46:9f:ed:1d:30:e1:8f:33:d0:94: fd:9d:0a:42:a8:79:a9:c0:f3:a5:db:ee:85:6f:ad:72:27:46: cc:88:e6:6d:a7:95:d6:ff:18:31:ee:f7:df:74:f0:ef:93:2d: d8:68:56:a9:27:34:ec:e8:2f:e2:81:a7:45:25:f1:e6:d5:78: 7d:c2:31:e7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaW4X4ScS3F7FKvXh1tzdObsZ7PIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDEwMjUwMzU1MzNaFw0yNTEwMjQwNDAwMzNaMDMxMTAvBgNV BAMTKDFFREMxQTQ2M0VCMzA0NzMwNUNFNTE1MEM0MEUwNzBBQUM1OTAwNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHiIf7bDw4DjJPZbQIYjrO6vEf yRsQV9SjtO1RBCv5zeqtKbFvwkvUyObdKy35zXBcCFQv6Og7A5WjJWt5s8/eybdz Ql5lbMpz+XnAdFkdNOufVN0l4TGeSV+5vKi8Esgs/6nuw9JGDwJULvmbaHyuI+zT iCY5oBdA/ynzjeGjHaYKorP/IhU27ZqJavdK2k6bgBXTh8By+3mOa7AYFl5X6xSj M+6TycKGaYgGDoObsTRMYWOzE5ZCmqwlPro7co2jMjeyQi8dytOKRRoYYBk019Fs i6Z2uhkm0XQs1bvLEfcQYpVM5ujmLV5WBSMzZgmBxhBpSI6oqi2BW6fXK6u9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHtwaRj6zBHMFzlFQxA4HCqxZAF8wHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzQzMzJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorrDANBgkqhkiG 9w0BAQsFAAOCAQEAm1EM4om87zCi0hn9EFkjj6c3PSUcR/qD+diSb/junHfWGjvW RTgOY+Vk2lbItYVGIGXCcsVKEwse5ZnAmAmNKSwojRHF1xBRkzA0/XNbcPB+yADT hYc3XhyuGEfz4FCikADcOx4lf3lvEaZQjKp/YKjVKMlgovzqHlSGwxdjYylZoy5g U0LGcWwb5+7wtzkpSdDJx+3HiK37qLofVZlYwc5XVsimRmir/MNCSatoyOF/nZqH OyRa4A3rPDhGn+0dMOGPM9CU/Z0KQqh5qcDzpdvuhW+tcidGzIjmbaeV1v8YMe73 33Tw75Mt2GhWqSc07Ogv4oGnRSXx5tV4fcIx5w== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org