$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137332e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137332e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: fo/S7Ioj2KkrRRYubx5t+S/5lwX6mq4yR9KiEN2YcMM= Subject key identifier: 1A:C0:27:21:E1:C7:D4:BA:28:44:AC:F4:23:E9:25:8C:EA:E9:B7:29 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 18D73A17363F7366A22D8C4181819262AE990BB1 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137332e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Oct 2023 08:00:01 +0000 ROA not before: Sun 29 Oct 2023 07:55:01 +0000 ROA not after: Sun 27 Oct 2024 08:00:01 +0000 asID: 17727 IP address blocks: 202.59.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 19:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:d7:3a:17:36:3f:73:66:a2:2d:8c:41:81:81:92:62:ae:99:0b:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 07:55:01 2023 GMT Not After : Oct 27 08:00:01 2024 GMT Subject: CN=1AC02721E1C7D4BA2844ACF423E9258CEAE9B729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:23:92:86:b6:6a:fd:c6:0f:c1:5e:1e:87:c0: 55:ba:b2:fa:81:79:e8:8f:94:09:93:2e:52:1b:db: 92:c9:b7:58:64:d2:ba:26:37:98:09:29:a1:0d:56: 35:7e:7f:c5:a3:d1:36:20:20:44:bc:80:06:cd:96: 71:ac:e6:6b:1e:26:16:a1:8c:bb:ae:1d:27:b7:d2: 0c:21:d7:72:cc:7d:b1:1c:d3:bc:f4:68:08:c5:e3: c2:de:5f:af:33:b8:10:1b:79:c8:84:b6:f9:5d:12: 24:7c:ae:6a:49:59:ff:d5:3a:eb:f4:a9:e7:9c:fc: e0:5a:00:50:c9:bc:f7:b0:0b:07:f3:57:78:cd:59: bb:25:87:5c:05:61:26:07:5b:fe:fe:93:50:6a:c0: 97:43:e1:9e:d5:88:10:30:a8:d9:fa:d2:fc:72:71: c9:46:16:87:2b:d5:3f:cd:96:95:21:db:26:d2:e3: 65:c2:62:20:0f:b0:16:72:83:89:59:6f:1e:a2:23: da:55:f2:2e:fc:5a:5a:48:64:5c:fd:85:d3:ee:6d: ce:25:75:ed:60:7c:94:5c:c3:d7:9d:a5:c4:45:83: 3e:28:a4:d1:c5:83:d9:ef:14:0d:34:d6:2b:36:74: 05:d6:1d:96:76:fa:e2:16:c7:6f:bb:7a:c8:5c:41: 68:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C0:27:21:E1:C7:D4:BA:28:44:AC:F4:23:E9:25:8C:EA:E9:B7:29 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137332e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.173.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:e4:df:e6:0e:b4:77:65:ab:6c:f1:34:0b:59:f3:16:f6:78: 55:f3:01:76:85:4d:4c:08:00:9e:58:f4:5c:47:f7:09:70:d8: 9b:85:cf:03:e3:df:b8:48:e2:88:85:40:df:41:b4:cd:00:6b: 96:f0:b7:69:b9:d7:da:9a:c3:e2:48:6a:3e:79:e9:f8:4d:36: 72:ba:8a:66:a5:20:9f:2a:d5:1f:2f:4a:2f:6a:8e:85:92:eb: 70:47:57:4e:a5:52:b3:e1:9f:f4:df:b8:46:77:6d:9c:14:79: 8e:13:d0:69:c2:e8:4a:05:39:40:c0:49:d2:f2:fa:03:0f:0e: 3d:97:c0:80:3f:ea:02:aa:78:d9:32:eb:1c:2c:d1:71:c6:bd: 02:d1:42:be:9d:d5:26:a0:c7:dc:da:5f:3c:66:a1:ce:4b:d5: e0:00:06:16:5e:f0:1d:4b:75:9f:0c:11:63:5f:a5:89:e2:7b: d1:b1:f9:ea:b2:06:eb:07:a5:6b:b0:d5:18:51:da:6c:8b:f3: bb:72:d3:d0:3f:b4:2f:21:3d:ff:75:d5:9c:4c:90:9b:88:ab: cb:29:56:75:5b:89:a6:47:5e:a8:c2:f0:66:18:83:a7:d4:ac: 65:ea:43:4a:d3:d0:3e:cc:36:9a:61:96:f6:ba:17:e0:04:2f: 48:7a:f5:d7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGNc6FzY/c2aiLYxBgYGSYq6ZC7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNzU1MDFaFw0yNDEwMjcwODAwMDFaMDMxMTAvBgNV BAMTKDFBQzAyNzIxRTFDN0Q0QkEyODQ0QUNGNDIzRTkyNThDRUFFOUI3MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsI5KGtmr9xg/BXh6HwFW6svqB eeiPlAmTLlIb25LJt1hk0romN5gJKaENVjV+f8Wj0TYgIES8gAbNlnGs5mseJhah jLuuHSe30gwh13LMfbEc07z0aAjF48LeX68zuBAbeciEtvldEiR8rmpJWf/VOuv0 qeec/OBaAFDJvPewCwfzV3jNWbslh1wFYSYHW/7+k1BqwJdD4Z7ViBAwqNn60vxy cclGFocr1T/NlpUh2ybS42XCYiAPsBZyg4lZbx6iI9pV8i78WlpIZFz9hdPubc4l de1gfJRcw9edpcRFgz4opNHFg9nvFA001is2dAXWHZZ2+uIWx2+7eshcQWivAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGsAnIeHH1LooRKz0I+kljOrptykwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rTANBgkqhkiG 9w0BAQsFAAOCAQEADOTf5g60d2WrbPE0C1nzFvZ4VfMBdoVNTAgAnlj0XEf3CXDY m4XPA+PfuEjiiIVA30G0zQBrlvC3abnX2prD4khqPnnp+E02crqKZqUgnyrVHy9K L2qOhZLrcEdXTqVSs+Gf9N+4RndtnBR5jhPQacLoSgU5QMBJ0vL6Aw8OPZfAgD/q Aqp42TLrHCzRcca9AtFCvp3VJqDH3NpfPGahzkvV4AAGFl7wHUt1nwwRY1+lieJ7 0bH56rIG6wela7DVGFHabIvzu3LT0D+0LyE9/3XVnEyQm4iryylWdVuJpkdeqMLw ZhiDp9SsZepDStPQPsw2mmGW9roX4AQvSHr11w== -----END CERTIFICATE-----Generated at Wed May 1 19:11:08 2024 by rpki-client on console-fra.rpki-client.org