$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136342e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136342e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: 6dA44z+519DihWs3938knTP0fu1HJGZm9wHzXNW6GTo= Subject key identifier: DA:50:48:F2:5F:72:69:DF:25:19:58:59:F3:44:C1:9A:B9:BE:87:7E Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0163A1B27EA9EF71C89BA615C6774CC6C21A0610 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136342e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Oct 2023 08:00:02 +0000 ROA not before: Sun 29 Oct 2023 07:55:02 +0000 ROA not after: Sun 27 Oct 2024 08:00:02 +0000 asID: 17727 IP address blocks: 202.59.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:63:a1:b2:7e:a9:ef:71:c8:9b:a6:15:c6:77:4c:c6:c2:1a:06:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 07:55:02 2023 GMT Not After : Oct 27 08:00:02 2024 GMT Subject: CN=DA5048F25F7269DF25195859F344C19AB9BE877E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6a:75:ad:78:92:61:d1:1b:00:f9:68:f0:44: e0:83:5a:49:28:1a:49:6c:92:c1:8e:dc:15:7f:9f: 4d:db:3a:ee:94:2f:71:d8:4f:03:43:48:1c:c5:7e: 4b:66:03:9b:5b:44:99:6a:39:ae:f0:32:fc:06:6c: a5:e9:85:65:bc:05:27:59:db:f8:1e:02:fb:ad:13: 9e:a6:1e:f9:e4:dd:a4:63:66:70:4a:e0:51:9e:b7: 1c:94:0a:b2:b4:f2:9f:44:03:dc:4a:ea:da:4d:5f: e6:cd:e2:47:90:0b:b5:e4:99:2e:ab:8a:51:56:0d: 6a:f8:97:98:fe:6c:e9:56:dd:3b:97:31:3f:02:6c: 0a:79:52:4d:e8:e9:03:68:3a:07:97:80:10:15:ee: 9e:89:63:23:06:61:d2:07:18:c3:26:28:ca:77:51: 90:bb:2c:36:cc:0e:4a:5b:0d:21:7e:de:f4:35:77: 3c:f7:18:01:fc:b3:8e:80:7c:ff:c6:0f:89:85:da: 18:54:52:d1:9e:4e:8d:0d:b2:9e:8b:dc:57:70:7b: be:5a:b9:df:18:d5:07:5c:b6:04:10:99:2e:97:1f: 0c:ff:07:56:c6:7e:3d:a6:a3:53:39:56:d5:8e:e5: 24:39:cd:d3:79:b8:f8:90:87:2a:26:74:5d:ed:14: 71:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:50:48:F2:5F:72:69:DF:25:19:58:59:F3:44:C1:9A:B9:BE:87:7E X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136342e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.164.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:09:e6:3e:e0:a7:21:d8:9e:0a:79:18:a8:04:a3:72:6c:df: d2:c8:25:55:53:f5:3a:82:3e:e3:97:cd:cd:b3:38:e8:1f:12: a1:35:d4:eb:75:8d:b8:3f:01:3b:3a:2e:48:07:96:29:fa:d1: 27:cd:17:5d:b2:05:ab:0e:72:ef:ec:39:40:f7:3c:df:52:a2: 7c:da:b2:dc:e7:b7:b7:0e:cb:49:81:93:b9:93:ff:86:5b:3b: ae:07:fc:f8:6c:e7:56:e3:eb:15:6c:0f:32:ff:09:c5:e2:2d: 6f:92:9e:cd:12:d9:0c:a7:aa:4b:05:bd:88:e0:b9:d5:e2:bd: 1a:c9:64:d7:5a:76:38:1d:67:9c:74:c1:ca:70:f0:11:c5:be: 04:0b:25:1b:76:20:15:eb:7d:d1:d1:12:63:89:cb:71:41:4a: 3f:8d:2c:ae:f8:66:2f:05:6d:84:db:59:9f:5c:0b:78:72:c0: 14:fc:3f:63:8c:96:d1:8d:d3:1a:88:0d:a7:6b:28:0f:20:0c: a8:9f:1e:74:35:6c:77:19:7b:56:b0:be:44:24:02:37:83:cb: eb:7b:ec:8c:1c:02:db:d0:24:65:69:e5:2a:6f:88:ed:4d:0b: 48:f8:6b:01:b3:09:60:f7:29:db:d9:52:aa:1d:34:35:63:db: 32:4e:47:ff -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAWOhsn6p73HIm6YVxndMxsIaBhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNzU1MDJaFw0yNDEwMjcwODAwMDJaMDMxMTAvBgNV BAMTKERBNTA0OEYyNUY3MjY5REYyNTE5NTg1OUYzNDRDMTlBQjlCRTg3N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDanWteJJh0RsA+WjwROCDWkko GklsksGO3BV/n03bOu6UL3HYTwNDSBzFfktmA5tbRJlqOa7wMvwGbKXphWW8BSdZ 2/geAvutE56mHvnk3aRjZnBK4FGetxyUCrK08p9EA9xK6tpNX+bN4keQC7XkmS6r ilFWDWr4l5j+bOlW3TuXMT8CbAp5Uk3o6QNoOgeXgBAV7p6JYyMGYdIHGMMmKMp3 UZC7LDbMDkpbDSF+3vQ1dzz3GAH8s46AfP/GD4mF2hhUUtGeTo0Nsp6L3Fdwe75a ud8Y1QdctgQQmS6XHwz/B1bGfj2mo1M5VtWO5SQ5zdN5uPiQhyomdF3tFHGdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2lBI8l9yad8lGVhZ80TBmrm+h34wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pDANBgkqhkiG 9w0BAQsFAAOCAQEAPAnmPuCnIdieCnkYqASjcmzf0sglVVP1OoI+45fNzbM46B8S oTXU63WNuD8BOzouSAeWKfrRJ80XXbIFqw5y7+w5QPc831KifNqy3Oe3tw7LSYGT uZP/hls7rgf8+GznVuPrFWwPMv8JxeItb5KezRLZDKeqSwW9iOC51eK9Gslk11p2 OB1nnHTBynDwEcW+BAslG3YgFet90dESY4nLcUFKP40srvhmLwVthNtZn1wLeHLA FPw/Y4yW0Y3TGogNp2soDyAMqJ8edDVsdxl7VrC+RCQCN4PL63vsjBwC29AkZWnl Km+I7U0LSPhrAbMJYPcp29lSqh00NWPbMk5H/w== -----END CERTIFICATE-----Generated at Wed May 1 18:10:56 2024 by rpki-client on console-ams.rpki-client.org