$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136372e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136372e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: HWyWblltg0J+8V4r1VcqZPbEDJKHPlo52muCFRZbbCs= Subject key identifier: 00:28:CB:35:48:92:AB:CD:2B:8D:00:39:6C:F5:EB:7D:C7:A4:29:E6 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 10F5567AA89A45D45D751EFE0F629179ADB7938A Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136372e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Oct 2023 08:00:04 +0000 ROA not before: Sun 29 Oct 2023 07:55:04 +0000 ROA not after: Sun 27 Oct 2024 08:00:04 +0000 asID: 17727 IP address blocks: 202.59.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 19:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f5:56:7a:a8:9a:45:d4:5d:75:1e:fe:0f:62:91:79:ad:b7:93:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 07:55:04 2023 GMT Not After : Oct 27 08:00:04 2024 GMT Subject: CN=0028CB354892ABCD2B8D00396CF5EB7DC7A429E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4f:ee:c4:93:4b:1c:e0:14:4b:b1:bb:b7:c2: d3:b5:5f:96:82:fe:4c:c0:5e:d2:28:dd:fc:05:c8: 3b:d2:1b:03:44:52:91:2a:6f:4e:5b:16:7e:5e:00: c0:65:dd:3a:64:ce:ff:c1:16:fc:3e:ec:d3:dd:43: 24:0f:b0:54:7b:7f:d9:ac:87:7a:b0:9a:6c:a5:3e: 81:c5:e2:7e:e2:c8:7b:e3:74:5c:09:73:9a:66:d9: 5d:9b:9b:89:8f:fd:2a:5e:0b:2e:6c:67:0d:44:f3: 5f:fd:3f:83:96:e3:d5:93:72:c4:91:5b:43:4c:a5: c3:22:78:f7:7f:cf:56:70:fe:a2:5b:33:a6:92:d9: 2b:bf:ae:31:44:a2:43:2d:6d:62:11:2b:6f:ff:b0: 8f:ab:c0:39:a6:ff:60:f8:30:6a:85:e4:2e:71:8a: d1:a3:91:48:0c:5f:91:84:87:6f:64:ab:ba:48:42: ba:37:6b:f4:7e:68:08:cb:0b:cc:f4:5c:d6:14:09: 2c:dd:15:b9:f5:0c:fb:b9:a0:6e:8c:0c:28:27:aa: 57:8d:23:7f:56:b8:11:95:bf:bb:ce:d9:28:a7:42: 7d:53:b3:4f:90:ed:af:51:95:99:89:d0:d2:5c:2f: 36:65:00:8b:08:15:6f:eb:f0:f7:14:70:19:8f:5f: dc:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:28:CB:35:48:92:AB:CD:2B:8D:00:39:6C:F5:EB:7D:C7:A4:29:E6 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136372e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.167.0/24 Signature Algorithm: sha256WithRSAEncryption 32:9c:51:55:27:8e:d2:1e:b9:1f:11:76:69:a4:f9:1c:f2:f4: 8e:29:df:5f:08:93:26:17:7e:ba:2f:4c:3b:56:d9:2b:f9:e0: ae:db:15:59:30:86:06:eb:f2:29:28:96:b2:e6:40:c1:aa:70: 0a:fc:b0:b6:06:09:da:33:37:9b:33:7d:66:e7:3b:69:8f:c1: 12:42:39:af:af:98:84:3e:0e:47:6c:ba:3c:f0:f5:49:b0:ed: 74:99:7a:89:fd:a5:ad:27:ad:4b:4e:14:78:f1:96:72:2f:f4: b6:61:bd:b2:1d:64:28:67:87:c8:d8:4d:04:57:d8:e1:2a:5d: 78:6b:cd:9f:29:8f:3b:65:ee:1e:04:8d:d0:da:9a:db:c0:cd: a8:9a:ab:fe:86:bc:28:9d:cf:42:1b:1d:de:a8:9f:a9:16:e0: b8:51:e3:fb:4a:59:51:6e:10:b1:c7:f7:4e:78:f8:bc:dd:b3: 3a:3b:5a:44:fe:26:9e:5d:9e:d9:2d:24:d6:c7:94:4f:ac:50: ff:e7:71:da:8f:70:15:68:90:2f:88:67:9f:aa:81:01:b5:d2: 8b:ff:37:01:cb:e8:8d:bc:66:36:d8:dc:1c:c3:a7:b2:7f:e5: 3b:a8:ca:a9:6a:2a:26:1d:bd:29:96:27:31:96:79:74:17:26: 85:30:48:f1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEPVWeqiaRdRddR7+D2KRea23k4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNzU1MDRaFw0yNDEwMjcwODAwMDRaMDMxMTAvBgNV BAMTKDAwMjhDQjM1NDg5MkFCQ0QyQjhEMDAzOTZDRjVFQjdEQzdBNDI5RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJT+7Ek0sc4BRLsbu3wtO1X5aC /kzAXtIo3fwFyDvSGwNEUpEqb05bFn5eAMBl3Tpkzv/BFvw+7NPdQyQPsFR7f9ms h3qwmmylPoHF4n7iyHvjdFwJc5pm2V2bm4mP/SpeCy5sZw1E81/9P4OW49WTcsSR W0NMpcMiePd/z1Zw/qJbM6aS2Su/rjFEokMtbWIRK2//sI+rwDmm/2D4MGqF5C5x itGjkUgMX5GEh29kq7pIQro3a/R+aAjLC8z0XNYUCSzdFbn1DPu5oG6MDCgnqleN I39WuBGVv7vO2SinQn1Ts0+Q7a9RlZmJ0NJcLzZlAIsIFW/r8PcUcBmPX9wBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUACjLNUiSq80rjQA5bPXrfcekKeYwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pzANBgkqhkiG 9w0BAQsFAAOCAQEAMpxRVSeO0h65HxF2aaT5HPL0jinfXwiTJhd+ui9MO1bZK/ng rtsVWTCGBuvyKSiWsuZAwapwCvywtgYJ2jM3mzN9Zuc7aY/BEkI5r6+YhD4OR2y6 PPD1SbDtdJl6if2lrSetS04UePGWci/0tmG9sh1kKGeHyNhNBFfY4SpdeGvNnymP O2XuHgSN0Nqa28DNqJqr/oa8KJ3PQhsd3qifqRbguFHj+0pZUW4Qscf3Tnj4vN2z OjtaRP4mnl2e2S0k1seUT6xQ/+dx2o9wFWiQL4hnn6qBAbXSi/83AcvojbxmNtjc HMOnsn/lO6jKqWoqJh29KZYnMZZ5dBcmhTBI8Q== -----END CERTIFICATE-----Generated at Wed May 1 19:11:08 2024 by rpki-client on console-fra.rpki-client.org