$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e34332e3131322e302f32342d3234203d3e203435333235.roa File: 3230322e34332e3131322e302f32342d3234203d3e203435333235.roa (raw, json) Hash identifier: ysRy+nrk2+7qcjRHwMFa5bwT6ZEU71YLfsCXRkR1Es0= Subject key identifier: C7:29:7F:86:99:12:17:0B:20:A0:7A:C8:BD:2D:5B:AF:47:28:C2:9D Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 4A70C836A1273A34782EB5025F4151077FED5571 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e34332e3131322e302f32342d3234203d3e203435333235.roa Signing time: Tue 05 Nov 2024 08:00:03 +0000 ROA not before: Tue 05 Nov 2024 07:55:03 +0000 ROA not after: Tue 04 Nov 2025 08:00:03 +0000 asID: 45325 IP address blocks: 202.43.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:70:c8:36:a1:27:3a:34:78:2e:b5:02:5f:41:51:07:7f:ed:55:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Nov 5 07:55:03 2024 GMT Not After : Nov 4 08:00:03 2025 GMT Subject: CN=C7297F869912170B20A07AC8BD2D5BAF4728C29D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:8c:90:e5:32:11:50:ac:ec:ab:a2:a7:7c:83: 61:e2:c5:95:29:0e:0c:45:7e:a0:9b:e9:04:e4:d8: e8:00:af:af:59:9a:43:8a:16:98:73:68:f8:84:e4: 06:12:1b:f3:2e:89:eb:17:bf:a3:66:a2:e9:29:f1: eb:dc:70:72:79:62:bc:ba:0f:0c:c4:2e:9b:af:7b: b0:68:26:78:98:eb:50:58:cc:5c:50:44:5b:2e:03: b6:1a:11:3b:a3:77:89:b5:a5:91:e4:27:76:f5:86: 2c:6f:71:c6:f7:6d:41:0e:70:2d:40:b8:b2:62:1c: a8:e6:6e:74:07:68:6a:59:a4:98:b3:4f:ad:bf:5a: e5:98:e7:84:ec:29:e2:53:6f:d9:7c:83:dc:14:04: 59:9d:09:9f:34:44:fb:6b:20:42:61:dd:c1:6c:31: 30:e7:28:d8:25:c2:10:4b:35:66:40:d7:e2:25:dc: 58:32:e6:19:f1:af:3f:85:e6:65:60:09:94:96:86: 1b:f4:c6:5c:db:71:48:6e:f5:56:1e:74:49:11:e5: 93:b9:ee:9f:dd:00:52:aa:a9:52:c3:47:b5:a6:90: 76:f4:8c:cd:93:00:50:d8:cf:31:40:50:37:de:66: c3:b5:8a:21:12:d1:00:09:16:7b:d1:26:d1:76:5f: 41:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:29:7F:86:99:12:17:0B:20:A0:7A:C8:BD:2D:5B:AF:47:28:C2:9D X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3230322e34332e3131322e302f32342d3234203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.112.0/24 Signature Algorithm: sha256WithRSAEncryption 48:ba:e5:dd:64:43:67:cc:02:94:c6:ef:46:66:11:74:2b:e6: b0:5b:34:21:e3:a6:22:9a:a3:26:a8:53:d6:de:2f:39:51:1c: de:3b:1b:d4:2a:67:57:d5:09:e5:f8:99:fa:4d:b9:4d:9e:2d: 19:6b:a8:8d:cb:ce:c5:f4:57:06:06:79:f5:80:0c:66:fe:3e: c0:ab:ff:47:5c:9e:aa:9a:8e:05:ad:ba:87:08:64:e0:77:44: b2:4e:fa:1d:27:88:e6:22:29:25:8c:4e:8f:08:15:a7:90:c5: 4d:78:29:a3:79:85:6a:15:c1:df:96:c6:46:d9:e7:98:ff:a3: 0d:50:c3:ca:2b:b3:a4:b0:e2:a5:b1:12:fe:04:29:47:4d:29: ea:07:d7:7c:54:02:df:e9:1a:68:b4:a9:ec:cc:71:e9:47:7b: 79:bc:dd:ed:1a:6e:1c:11:54:8b:ff:73:44:d4:3a:24:7c:96: 66:7f:b7:bf:73:57:28:ee:cc:e5:39:43:c3:09:06:b3:03:65: 03:12:16:a3:21:29:ca:a2:82:f1:30:3a:82:7a:bb:ee:e8:e3: 6b:58:81:60:13:9a:9c:73:38:39:d6:c2:d9:25:93:52:9a:79: dd:3a:7f:66:fe:e6:0e:e3:ea:9b:f9:96:8d:53:39:c1:aa:7e: 48:02:85:8f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSnDINqEnOjR4LrUCX0FRB3/tVXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNDExMDUwNzU1MDNaFw0yNTExMDQwODAwMDNaMDMxMTAvBgNV BAMTKEM3Mjk3Rjg2OTkxMjE3MEIyMEEwN0FDOEJEMkQ1QkFGNDcyOEMyOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwjJDlMhFQrOyroqd8g2HixZUp DgxFfqCb6QTk2OgAr69ZmkOKFphzaPiE5AYSG/MuiesXv6Nmoukp8evccHJ5Yry6 DwzELpuve7BoJniY61BYzFxQRFsuA7YaETujd4m1pZHkJ3b1hixvccb3bUEOcC1A uLJiHKjmbnQHaGpZpJizT62/WuWY54TsKeJTb9l8g9wUBFmdCZ80RPtrIEJh3cFs MTDnKNglwhBLNWZA1+Il3Fgy5hnxrz+F5mVgCZSWhhv0xlzbcUhu9VYedEkR5ZO5 7p/dAFKqqVLDR7WmkHb0jM2TAFDYzzFAUDfeZsO1iiES0QAJFnvRJtF2X0FLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxyl/hpkSFwsgoHrIvS1br0cowp0wHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzAzMjJlMzQzMzJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMorcDANBgkqhkiG 9w0BAQsFAAOCAQEASLrl3WRDZ8wClMbvRmYRdCvmsFs0IeOmIpqjJqhT1t4vOVEc 3jsb1CpnV9UJ5fiZ+k25TZ4tGWuojcvOxfRXBgZ59YAMZv4+wKv/R1yeqpqOBa26 hwhk4HdEsk76HSeI5iIpJYxOjwgVp5DFTXgpo3mFahXB35bGRtnnmP+jDVDDyiuz pLDipbES/gQpR00p6gfXfFQC3+kaaLSp7Mxx6Ud7ebzd7RpuHBFUi/9zRNQ6JHyW Zn+3v3NXKO7M5TlDwwkGswNlAxIWoyEpyqKC8TA6gnq77ujja1iBYBOanHM4OdbC 2SWTUpp53Tp/Zv7mDuPqm/mWjVM5wap+SAKFjw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:49 2024 by rpki-client on console-ams.rpki-client.org