$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136362e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136362e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: FoEA+D3K4vrFF3J1B/yiwZ2+HIQMQdMRgmYErrOU7A4= Subject key identifier: 9C:E0:BD:E1:40:2F:FC:6D:A8:12:B6:E6:18:C6:37:B3:93:F4:5D:9C Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 62C75215F3A801D496AB865D2E2360FF8B641786 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136362e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Oct 2023 07:00:00 +0000 ROA not before: Sun 29 Oct 2023 06:55:00 +0000 ROA not after: Sun 27 Oct 2024 07:00:00 +0000 asID: 17727 IP address blocks: 202.59.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:c7:52:15:f3:a8:01:d4:96:ab:86:5d:2e:23:60:ff:8b:64:17:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 06:55:00 2023 GMT Not After : Oct 27 07:00:00 2024 GMT Subject: CN=9CE0BDE1402FFC6DA812B6E618C637B393F45D9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6e:9c:ef:a3:0f:c3:c5:ea:6e:26:4c:18:a8: e1:a6:e5:5b:24:46:1b:a7:76:7f:39:9e:8d:cc:60: 28:57:64:80:d7:34:a8:be:f5:e3:7b:33:f3:8f:5d: ff:90:ef:d3:aa:9d:6a:c2:60:3c:f0:4f:45:ca:c5: e3:69:02:7f:69:73:c0:a9:72:86:89:53:4a:5b:8b: 96:cb:8c:eb:c7:e8:20:1b:5f:de:07:11:35:ad:ab: c0:4b:ef:1b:d6:2e:06:1a:7d:37:af:3e:8d:b3:9a: 09:74:d7:d9:8f:ea:05:e7:38:94:b1:a1:5c:8c:30: a0:c8:db:7f:bf:76:8f:89:82:83:21:8d:8b:f7:26: 9b:d1:44:bf:7f:08:51:40:dd:99:f5:60:2f:74:9e: bf:b5:73:a3:ab:e2:71:09:f8:da:7c:ed:6b:c8:37: 82:57:e4:59:e2:8f:f8:ff:46:87:86:4c:ce:9e:ae: e4:b8:b1:f1:6c:cb:bf:f6:64:38:1c:23:a9:98:7d: 88:27:e7:87:c2:93:20:37:50:db:d7:01:f9:43:79: 81:1d:e0:a5:fd:7f:28:eb:9b:01:13:5e:3b:9c:31: 5e:f4:3e:b7:7d:b0:00:be:1d:e6:43:af:a4:01:af: 9a:77:e5:c6:b4:b2:ab:45:46:de:f4:32:80:c7:a8: a1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E0:BD:E1:40:2F:FC:6D:A8:12:B6:E6:18:C6:37:B3:93:F4:5D:9C X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136362e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.166.0/24 Signature Algorithm: sha256WithRSAEncryption 00:a6:66:e1:6d:d4:49:e6:ee:50:e5:c3:35:76:6a:e4:6c:42: 46:36:fe:ea:fe:4a:90:bc:f9:e7:31:a7:3a:85:fb:18:09:38: ef:ff:5d:2b:44:f5:37:92:21:74:1f:7b:2d:bb:a4:3c:90:3f: 19:a2:a3:95:07:19:7e:8c:2a:31:cc:a2:67:39:ee:c0:d7:04: 63:c0:92:53:64:bb:f2:12:da:ec:08:76:f2:e4:a4:89:92:97: a0:56:71:d8:82:6d:4a:39:fa:92:60:5c:42:dc:a1:06:1a:21: da:5e:2d:6b:75:85:0a:20:ff:9a:91:82:75:6e:fa:34:88:e9: 52:29:96:29:41:ba:0b:96:cc:45:b6:a7:03:8b:fa:10:46:ac: 0c:30:9a:e9:b3:a8:57:d7:f5:52:f6:ff:f7:0b:f3:c7:0d:43: 7c:18:53:c9:5c:61:50:e8:9a:a8:9a:74:1c:bb:da:59:cd:dd: e5:61:fe:a7:5d:f8:40:1e:ad:48:00:f9:51:cf:d7:db:c6:5e: 1e:60:4a:11:44:e8:40:74:03:4b:ca:81:ad:04:02:b5:93:ce: bf:08:1a:80:af:c9:51:73:20:d7:0f:ea:d1:7c:ae:cd:f6:c1: 3d:00:c8:c4:f6:ac:af:86:f1:dc:87:00:4c:00:cf:e1:32:d7: b2:ac:d6:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYsdSFfOoAdSWq4ZdLiNg/4tkF4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNjU1MDBaFw0yNDEwMjcwNzAwMDBaMDMxMTAvBgNV BAMTKDlDRTBCREUxNDAyRkZDNkRBODEyQjZFNjE4QzYzN0IzOTNGNDVEOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClbpzvow/DxepuJkwYqOGm5Vsk Rhundn85no3MYChXZIDXNKi+9eN7M/OPXf+Q79OqnWrCYDzwT0XKxeNpAn9pc8Cp coaJU0pbi5bLjOvH6CAbX94HETWtq8BL7xvWLgYafTevPo2zmgl019mP6gXnOJSx oVyMMKDI23+/do+JgoMhjYv3JpvRRL9/CFFA3Zn1YC90nr+1c6Or4nEJ+Np87WvI N4JX5Fnij/j/RoeGTM6eruS4sfFsy7/2ZDgcI6mYfYgn54fCkyA3UNvXAflDeYEd 4KX9fyjrmwETXjucMV70Prd9sAC+HeZDr6QBr5p35ca0sqtFRt70MoDHqKFPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnOC94UAv/G2oErbmGMY3s5P0XZwwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pjANBgkqhkiG 9w0BAQsFAAOCAQEAAKZm4W3USebuUOXDNXZq5GxCRjb+6v5KkLz55zGnOoX7GAk4 7/9dK0T1N5IhdB97LbukPJA/GaKjlQcZfowqMcyiZznuwNcEY8CSU2S78hLa7Ah2 8uSkiZKXoFZx2IJtSjn6kmBcQtyhBhoh2l4ta3WFCiD/mpGCdW76NIjpUimWKUG6 C5bMRbanA4v6EEasDDCa6bOoV9f1Uvb/9wvzxw1DfBhTyVxhUOiaqJp0HLvaWc3d 5WH+p134QB6tSAD5Uc/X28ZeHmBKEUToQHQDS8qBrQQCtZPOvwgagK/JUXMg1w/q 0XyuzfbBPQDIxPasr4bx3IcATADP4TLXsqzWqw== -----END CERTIFICATE-----Generated at Wed May 1 18:10:56 2024 by rpki-client on console-ams.rpki-client.org