$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: jYNSIu8cqx34ibNdEgc084Uj9VErdOvvx7kxJpmrjEs= Subject key identifier: CA:F6:24:14:75:6B:B0:3F:B9:99:3D:67:AA:C3:B3:0D:A1:C6:5C:85 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 6D8A282B6901F6FD21F08A91D35C53FD92EF7B92 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Oct 2023 08:00:02 +0000 ROA not before: Sun 29 Oct 2023 07:55:02 +0000 ROA not after: Sun 27 Oct 2024 08:00:02 +0000 asID: 17727 IP address blocks: 202.59.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:8a:28:2b:69:01:f6:fd:21:f0:8a:91:d3:5c:53:fd:92:ef:7b:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 07:55:02 2023 GMT Not After : Oct 27 08:00:02 2024 GMT Subject: CN=CAF62414756BB03FB9993D67AAC3B30DA1C65C85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d0:2e:21:69:d4:86:7c:34:50:75:00:29:c6: df:dc:a8:2e:d9:2c:83:ed:6d:82:6d:8a:06:35:99: 2a:7d:bb:a0:8c:73:c9:41:cb:71:4a:4c:8a:ac:3a: 79:62:c6:64:0e:b8:4c:f3:26:d9:57:bd:a5:db:73: 9c:14:8b:1f:22:2f:77:dd:51:47:03:c4:58:fa:c8: bd:12:51:cd:61:a3:14:14:90:3b:c6:a1:19:ed:21: 23:21:32:00:81:6f:e5:3e:72:bd:bb:08:1a:02:0d: 89:d2:2f:03:a0:67:a9:98:90:5e:e3:ad:08:a8:14: 39:5e:71:9f:6d:dc:ab:42:52:43:d4:4a:ac:5c:f2: af:c4:e9:c8:aa:be:27:10:e1:55:09:a2:bd:57:ae: 2c:ad:73:11:7f:3f:29:aa:ef:3a:41:f3:08:7f:e6: 1e:d3:77:ba:14:ee:26:d2:18:47:db:0b:9f:a8:0d: a3:0b:f3:19:04:df:4e:ba:9f:fd:44:76:da:47:77: 17:6f:58:b6:f1:36:78:c0:0e:e3:2b:60:8e:50:1e: 18:93:7c:86:0c:15:72:da:23:18:1d:8a:2b:d4:41: 9f:b0:cf:dc:59:d2:da:20:0d:53:ac:7e:f0:fe:e3: 19:49:66:99:cc:97:82:99:68:00:d1:ab:fa:9b:8a: e4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F6:24:14:75:6B:B0:3F:B9:99:3D:67:AA:C3:B3:0D:A1:C6:5C:85 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.171.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:24:04:f2:98:2e:c3:a5:fd:1d:da:06:3c:09:26:81:6c:5b: b5:1e:7f:17:3a:b2:53:95:a7:bf:c4:6f:80:02:7c:0f:29:52: 80:57:40:12:a6:d5:e7:ba:d8:9e:33:b5:72:1e:03:c9:a4:9b: 5f:e4:cd:de:4d:97:3f:8f:09:35:1a:82:af:16:29:fa:35:5a: 2c:98:da:9f:63:2a:74:c2:96:d5:ff:29:b2:4b:51:c2:f0:ab: 2f:22:f1:74:25:50:de:c3:2d:e3:6d:bf:a7:60:7a:31:2b:e8: ed:df:05:7e:3d:5e:6f:85:46:2f:91:70:b8:d9:6b:35:01:84: 56:d2:12:a6:38:af:ca:8b:bb:83:bb:e4:67:c8:86:0c:c7:2d: 68:f2:4d:d9:c9:49:22:b5:91:43:f1:f4:40:21:76:8e:1b:04: a9:8e:d4:3c:ca:c9:d7:05:47:05:bc:eb:ba:2e:07:80:e2:fc: b7:17:38:42:95:6d:c9:ea:68:1f:86:13:6d:fc:ba:a9:3b:df: 8b:e3:e8:9c:14:8e:28:bf:fe:c1:35:a0:f2:fb:ce:d1:87:fd: 33:c3:37:90:8e:be:ea:18:01:44:35:84:85:95:44:06:b9:13: 1a:8e:21:5e:56:24:23:17:6b:ca:52:4a:ab:85:e4:f7:5b:2e: ba:1e:74:82 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbYooK2kB9v0h8IqR01xT/ZLve5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNzU1MDJaFw0yNDEwMjcwODAwMDJaMDMxMTAvBgNV BAMTKENBRjYyNDE0NzU2QkIwM0ZCOTk5M0Q2N0FBQzNCMzBEQTFDNjVDODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC80C4hadSGfDRQdQApxt/cqC7Z LIPtbYJtigY1mSp9u6CMc8lBy3FKTIqsOnlixmQOuEzzJtlXvaXbc5wUix8iL3fd UUcDxFj6yL0SUc1hoxQUkDvGoRntISMhMgCBb+U+cr27CBoCDYnSLwOgZ6mYkF7j rQioFDlecZ9t3KtCUkPUSqxc8q/E6ciqvicQ4VUJor1XriytcxF/Pymq7zpB8wh/ 5h7Td7oU7ibSGEfbC5+oDaML8xkE3066n/1EdtpHdxdvWLbxNnjADuMrYI5QHhiT fIYMFXLaIxgdiivUQZ+wz9xZ0togDVOsfvD+4xlJZpnMl4KZaADRq/qbiuRHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUyvYkFHVrsD+5mT1nqsOzDaHGXIUwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qzANBgkqhkiG 9w0BAQsFAAOCAQEAWyQE8pguw6X9HdoGPAkmgWxbtR5/FzqyU5Wnv8RvgAJ8DylS gFdAEqbV57rYnjO1ch4DyaSbX+TN3k2XP48JNRqCrxYp+jVaLJjan2MqdMKW1f8p sktRwvCrLyLxdCVQ3sMt422/p2B6MSvo7d8Ffj1eb4VGL5FwuNlrNQGEVtISpjiv you7g7vkZ8iGDMctaPJN2clJIrWRQ/H0QCF2jhsEqY7UPMrJ1wVHBbzrui4HgOL8 txc4QpVtyepoH4YTbfy6qTvfi+PonBSOKL/+wTWg8vvO0Yf9M8M3kI6+6hgBRDWE hZVEBrkTGo4hXlYkIxdrylJKq4Xk91suuh50gg== -----END CERTIFICATE-----Generated at Wed May 1 18:10:56 2024 by rpki-client on console-ams.rpki-client.org