$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136302e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: byvtH35kxUCEOqCfIok78id1odTiFD/5rJ4z3MBTIb8= Subject key identifier: EB:55:77:05:96:2D:77:11:07:53:CE:3A:CD:3E:84:25:52:62:6A:06 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 3D2CA9C6DC3311CC63EAFCDAE2B599E7FCB8E553 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Oct 2023 08:00:01 +0000 ROA not before: Sun 29 Oct 2023 07:55:01 +0000 ROA not after: Sun 27 Oct 2024 08:00:01 +0000 asID: 17727 IP address blocks: 202.59.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 19:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:2c:a9:c6:dc:33:11:cc:63:ea:fc:da:e2:b5:99:e7:fc:b8:e5:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 07:55:01 2023 GMT Not After : Oct 27 08:00:01 2024 GMT Subject: CN=EB557705962D77110753CE3ACD3E842552626A06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:82:ab:49:15:09:2b:81:00:7e:68:29:b8:87: 63:ee:d3:01:1d:8b:d7:f3:91:06:22:f1:f9:77:59: 3b:29:9a:b4:c9:52:25:9d:dd:5e:23:6c:7b:50:5f: 10:cd:9e:c1:f1:fa:de:de:0f:e3:de:40:f0:25:c7: a0:7b:44:0e:19:0b:1d:80:db:fb:52:95:fa:ee:a6: d6:d6:2b:51:3d:78:91:f8:d1:7c:6d:b0:47:42:c9: aa:90:86:98:9c:29:21:c6:dd:7f:bb:78:28:22:8b: 3b:3a:11:78:65:f5:a9:01:ad:12:99:12:52:79:64: b3:63:57:85:1b:b5:15:90:3e:ae:15:20:6f:1c:15: 09:7b:4d:d4:53:94:95:8e:9b:9f:35:e0:f6:a7:20: 2c:a9:f5:34:55:3e:37:06:e7:e9:ab:3e:a5:6d:b3: 2f:8d:dd:8d:2a:c6:f0:58:c9:af:e1:5b:67:8f:f2: 7e:58:ed:cb:ca:7d:e7:3e:b9:7f:82:97:69:c4:12: 20:55:97:b9:59:90:4a:28:9e:18:74:d1:40:2d:7a: 3c:92:4e:19:54:a2:9d:7d:57:57:4b:57:14:95:96: 5e:83:1f:24:56:a9:b2:e5:1f:ec:e8:3a:90:e6:7f: 7a:7a:4c:f3:76:e3:be:63:91:6e:18:22:99:b0:4c: 32:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:55:77:05:96:2D:77:11:07:53:CE:3A:CD:3E:84:25:52:62:6A:06 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.160.0/24 Signature Algorithm: sha256WithRSAEncryption c6:92:c9:b6:c5:72:84:21:c8:2f:35:81:2c:a7:bd:1e:07:18: 6e:b9:65:92:bb:86:c0:12:ff:ba:a5:f0:ba:f2:2b:cf:37:9c: 40:38:17:19:88:c6:f3:ad:ba:af:7c:23:9b:84:f4:77:59:65: 82:0d:dc:92:8a:b0:b9:c6:65:7f:05:b6:08:38:cf:42:f3:98: 80:82:50:76:d1:91:52:40:dd:47:35:0a:7c:49:c6:b6:3e:e2: a8:91:24:f1:8b:45:3b:bf:87:9d:ea:b2:44:23:4f:5a:cc:6e: a8:8c:23:13:a2:33:ac:83:10:cf:b2:4b:83:b3:07:df:33:4a: 18:69:de:f9:b0:e5:55:96:83:56:61:ba:48:c5:2c:5e:cb:40: 08:5c:85:ff:40:6e:48:d4:a9:f2:fa:da:89:1d:c3:bd:18:6a: 6e:5d:f6:51:22:f5:21:cd:a1:08:10:2b:f6:0d:08:f5:1d:41: 2b:d0:d0:4c:91:00:b3:0a:ee:82:d3:dc:f9:17:c0:ae:9c:f5: 33:22:34:0b:d4:06:52:08:9c:db:cd:11:bc:24:51:ea:a8:07: f8:3d:de:8f:46:78:a0:cc:53:f5:07:60:88:63:33:aa:58:dc: 7a:34:4f:7e:3a:6f:37:09:e4:41:33:7d:b7:5f:17:e9:b2:ea: 42:fb:1c:56 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPSypxtwzEcxj6vza4rWZ5/y45VMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNzU1MDFaFw0yNDEwMjcwODAwMDFaMDMxMTAvBgNV BAMTKEVCNTU3NzA1OTYyRDc3MTEwNzUzQ0UzQUNEM0U4NDI1NTI2MjZBMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/gqtJFQkrgQB+aCm4h2Pu0wEd i9fzkQYi8fl3WTspmrTJUiWd3V4jbHtQXxDNnsHx+t7eD+PeQPAlx6B7RA4ZCx2A 2/tSlfruptbWK1E9eJH40XxtsEdCyaqQhpicKSHG3X+7eCgiizs6EXhl9akBrRKZ ElJ5ZLNjV4UbtRWQPq4VIG8cFQl7TdRTlJWOm5814PanICyp9TRVPjcG5+mrPqVt sy+N3Y0qxvBYya/hW2eP8n5Y7cvKfec+uX+Cl2nEEiBVl7lZkEoonhh00UAtejyS ThlUop19V1dLVxSVll6DHyRWqbLlH+zoOpDmf3p6TPN2475jkW4YIpmwTDKVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU61V3BZYtdxEHU846zT6EJVJiagYwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7oDANBgkqhkiG 9w0BAQsFAAOCAQEAxpLJtsVyhCHILzWBLKe9HgcYbrllkruGwBL/uqXwuvIrzzec QDgXGYjG8626r3wjm4T0d1llgg3ckoqwucZlfwW2CDjPQvOYgIJQdtGRUkDdRzUK fEnGtj7iqJEk8YtFO7+HneqyRCNPWsxuqIwjE6IzrIMQz7JLg7MH3zNKGGne+bDl VZaDVmG6SMUsXstACFyF/0BuSNSp8vraiR3DvRhqbl32USL1Ic2hCBAr9g0I9R1B K9DQTJEAswrugtPc+RfArpz1MyI0C9QGUgic280RvCRR6qgH+D3ej0Z4oMxT9Qdg iGMzqljcejRPfjpvNwnkQTN9t18X6bLqQvscVg== -----END CERTIFICATE-----Generated at Wed May 1 19:11:08 2024 by rpki-client on console-fra.rpki-client.org