$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230342e302f32342d3234203d3e203138303539.roa File: 3230322e37382e3230342e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: VfGa1gp5S3yZQF4EssJOM5k7zQfJjn+ABvnOYzEhZec= Subject key identifier: 5D:F7:8F:BB:0F:6F:FD:77:D9:6A:CF:40:3D:C4:14:C5:AB:8D:4D:60 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 015C05264F3B3934B7230BCE3EBCE0C6F4CCB37F Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230342e302f32342d3234203d3e203138303539.roa Signing time: Fri 25 Oct 2024 04:00:38 +0000 ROA not before: Fri 25 Oct 2024 03:55:38 +0000 ROA not after: Fri 24 Oct 2025 04:00:38 +0000 asID: 18059 IP address blocks: 202.78.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:5c:05:26:4f:3b:39:34:b7:23:0b:ce:3e:bc:e0:c6:f4:cc:b3:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Oct 25 03:55:38 2024 GMT Not After : Oct 24 04:00:38 2025 GMT Subject: CN=5DF78FBB0F6FFD77D96ACF403DC414C5AB8D4D60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:48:52:88:8e:da:a7:d1:71:89:b6:51:66:1c: 31:ba:c3:10:70:e0:19:e4:0b:e0:45:d8:6b:e4:d1: 11:41:4b:89:d6:9f:17:51:36:dc:46:86:f9:65:b0: 64:f0:da:50:9b:de:00:46:ce:6a:36:a0:8e:3b:35: 08:b4:1f:bc:69:ed:a3:63:e5:05:c5:ca:39:16:4b: f7:b4:76:a6:dd:41:6f:66:9c:89:69:18:99:1a:21: e2:0e:84:0a:fe:19:f6:97:25:0a:87:35:cf:3a:14: b4:c0:d1:9c:ea:ad:7a:bc:9d:dd:1c:96:39:a5:66: 38:cb:03:b4:01:78:9b:43:38:b4:49:d6:94:b7:87: 6d:0f:e5:3d:d2:a2:98:13:75:ed:c1:d8:d9:9f:9b: 40:4f:42:5a:ec:e7:a1:94:87:0c:a3:01:8d:b0:8a: 73:75:50:a8:1a:06:9f:b4:c2:23:56:dd:25:f3:3d: 7f:23:be:8b:9a:6f:be:10:2d:c4:66:ad:cf:97:8d: 4f:17:81:a9:75:2e:cc:73:c7:cf:65:e9:ef:29:ec: 12:95:28:54:d4:22:6f:45:46:3d:e6:ff:dd:5f:35: b0:00:69:f0:2e:07:ae:a6:50:32:7f:7f:fe:51:42: b9:d9:6e:bb:d3:08:21:2b:19:7c:62:f8:46:d1:ad: 37:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F7:8F:BB:0F:6F:FD:77:D9:6A:CF:40:3D:C4:14:C5:AB:8D:4D:60 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e37382e3230342e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.78.204.0/24 Signature Algorithm: sha256WithRSAEncryption 23:80:40:81:4d:a2:b0:48:6f:2e:23:f7:50:20:92:28:29:d7: 9e:63:07:aa:0b:79:3a:b6:c7:5f:25:dc:5e:09:e7:ad:28:40: c3:47:c3:fe:d9:36:2a:16:6c:10:67:52:37:b0:2d:e9:b3:1c: 50:f4:f9:1c:cd:27:13:57:11:c7:43:07:36:0b:71:34:ba:af: 78:41:b5:0d:0d:45:da:43:01:e4:5a:77:a7:5a:80:03:cf:c8: 1a:33:27:e1:8b:11:2a:b4:fa:13:39:95:31:f3:b4:94:99:6a: 4b:fd:48:2a:48:c3:ae:37:1f:75:88:48:87:59:23:c6:54:f2: ed:e3:b6:b6:25:70:9b:fe:c4:04:62:8e:38:1d:46:1f:d0:e5: b2:55:34:62:07:e3:e5:2d:3d:8a:4e:c0:93:5c:21:fd:ae:c6: 4f:2f:ed:35:f7:bd:45:93:5e:24:9f:92:3b:7a:72:85:2f:1a: e8:70:f8:e6:ed:08:ea:e5:99:aa:6d:96:b4:12:06:37:08:08: 8d:d3:3e:7c:99:a1:ec:c3:35:05:a9:42:d3:c4:63:26:12:e4: 03:5b:ad:c4:04:9c:a6:39:e7:25:4c:e3:4a:f3:76:fa:d3:1d: 4c:0c:6b:8a:d8:6b:da:da:92:19:38:5d:13:4a:ba:fa:a9:f5: ec:3b:75:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAVwFJk87OTS3IwvOPrzgxvTMs38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNDEwMjUwMzU1MzhaFw0yNTEwMjQwNDAwMzhaMDMxMTAvBgNV BAMTKDVERjc4RkJCMEY2RkZENzdEOTZBQ0Y0MDNEQzQxNEM1QUI4RDRENjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUSFKIjtqn0XGJtlFmHDG6wxBw 4BnkC+BF2Gvk0RFBS4nWnxdRNtxGhvllsGTw2lCb3gBGzmo2oI47NQi0H7xp7aNj 5QXFyjkWS/e0dqbdQW9mnIlpGJkaIeIOhAr+GfaXJQqHNc86FLTA0ZzqrXq8nd0c ljmlZjjLA7QBeJtDOLRJ1pS3h20P5T3SopgTde3B2Nmfm0BPQlrs56GUhwyjAY2w inN1UKgaBp+0wiNW3SXzPX8jvouab74QLcRmrc+XjU8Xgal1Lsxzx89l6e8p7BKV KFTUIm9FRj3m/91fNbAAafAuB66mUDJ/f/5RQrnZbrvTCCErGXxi+EbRrTcTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXfePuw9v/XfZas9APcQUxauNTWAwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h ZDBiLTRjZDViNjE5NTllZi8wLzMyMzAzMjJlMzczODJlMzIzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzODMwMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpOzDANBgkqhkiG 9w0BAQsFAAOCAQEAI4BAgU2isEhvLiP3UCCSKCnXnmMHqgt5OrbHXyXcXgnnrShA w0fD/tk2KhZsEGdSN7At6bMcUPT5HM0nE1cRx0MHNgtxNLqveEG1DQ1F2kMB5Fp3 p1qAA8/IGjMn4YsRKrT6EzmVMfO0lJlqS/1IKkjDrjcfdYhIh1kjxlTy7eO2tiVw m/7EBGKOOB1GH9DlslU0Ygfj5S09ik7Ak1wh/a7GTy/tNfe9RZNeJJ+SO3pyhS8a 6HD45u0I6uWZqm2WtBIGNwgIjdM+fJmh7MM1BalC08RjJhLkA1utxAScpjnnJUzj SvN2+tMdTAxrithr2tqSGThdE0q6+qn17Dt1EA== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org