$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137342e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: u4mg2xNu7wnaiS5utH7AEF6qC024/So/kjhpxmLqgEk= Subject key identifier: 00:56:19:E4:6E:81:72:0F:A0:E6:B0:EF:00:BE:4F:5C:6A:AC:D6:01 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 5CCDE04CC7A8897D61AC99039248D831DBAC6F6A Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Oct 2023 08:00:01 +0000 ROA not before: Sun 29 Oct 2023 07:55:01 +0000 ROA not after: Sun 27 Oct 2024 08:00:01 +0000 asID: 17727 IP address blocks: 202.59.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 18:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:cd:e0:4c:c7:a8:89:7d:61:ac:99:03:92:48:d8:31:db:ac:6f:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Oct 29 07:55:01 2023 GMT Not After : Oct 27 08:00:01 2024 GMT Subject: CN=005619E46E81720FA0E6B0EF00BE4F5C6AACD601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fa:02:7f:1a:b3:32:84:1e:4c:ae:3e:5e:be: c7:0a:79:34:91:c1:25:68:c3:63:88:2d:03:f9:1b: 94:87:8f:68:d4:89:06:31:8c:a3:ad:50:d3:eb:eb: 85:50:3d:d5:35:f2:5d:11:e5:30:2f:11:c8:d9:ec: ed:e6:07:41:f2:ca:ec:45:10:fd:b4:e3:b2:25:da: 58:3f:a9:78:d9:5d:ea:ba:f4:2e:d0:f6:59:62:b8: 95:a1:9f:73:7c:a4:e6:e4:0d:31:74:32:35:2e:61: db:1e:36:79:0e:19:b7:3d:0f:95:ef:86:71:1a:54: a8:69:b8:ed:8e:a5:7a:e3:ba:3d:e8:d6:d9:5d:0c: f1:6b:96:65:05:e9:da:1b:b7:57:81:66:dc:bc:6a: 14:93:47:ee:73:f7:5e:37:cb:2b:f3:e4:79:95:fb: 68:a8:1c:05:84:a1:c8:bf:f7:c3:24:b7:fb:74:70: e7:76:f3:97:05:fb:c1:8d:1c:cd:5d:2c:6e:25:e2: 9b:a4:2a:6a:43:e2:3c:f9:8c:e8:5d:33:b6:73:69: 97:05:03:3a:0b:0a:fc:7f:0f:09:d1:0a:cb:ce:94: 68:86:08:4e:9c:65:b0:ce:45:0c:2d:02:ac:80:2c: e1:4e:bd:fb:c8:f7:20:55:49:62:ba:e2:ba:ab:3b: 0d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:56:19:E4:6E:81:72:0F:A0:E6:B0:EF:00:BE:4F:5C:6A:AC:D6:01 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.174.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:d7:d5:c1:6b:63:48:f5:1f:04:57:22:83:81:10:20:5a:a9: 23:c9:31:d0:71:b3:ed:91:27:57:b4:d3:df:7f:69:6e:3b:db: 49:9a:ec:0c:e2:8b:18:f6:7f:50:95:0f:fb:80:9c:c3:25:ff: 8e:7c:a2:a7:07:e4:9c:62:8c:43:64:84:53:00:32:a7:2c:56: 11:03:59:d5:c8:46:ba:17:9c:b5:c4:43:f9:6c:12:37:b5:8b: 8f:53:8f:37:2f:0f:cd:58:84:e0:16:e2:66:d7:88:1e:c4:09: e9:92:25:7e:3f:ee:d7:1a:3d:10:66:80:f6:fb:d9:83:3d:3c: b9:70:cc:87:18:fd:be:d6:6f:1d:99:61:6b:23:6e:a0:74:df: a2:2e:56:97:22:aa:b9:5a:17:bc:8d:52:6a:16:27:fb:79:8e: c5:7c:e1:a5:7e:b3:e2:83:e6:6a:f3:83:75:e3:b4:09:a5:89: 75:05:a6:4a:f2:21:88:79:bb:65:54:65:49:59:7f:7b:8c:c9: f6:66:db:a5:ed:00:0a:72:17:28:4d:5d:ea:a6:c2:06:7c:4a: 9b:02:b3:f8:a3:86:ef:9a:f7:57:50:61:9e:30:59:12:a5:8a: 5a:e1:81:b3:e8:f9:ab:8b:1c:13:44:0f:1f:13:e2:1b:e9:61: 44:38:48:96 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXM3gTMeoiX1hrJkDkkjYMdusb2owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yMzEwMjkwNzU1MDFaFw0yNDEwMjcwODAwMDFaMDMxMTAvBgNV BAMTKDAwNTYxOUU0NkU4MTcyMEZBMEU2QjBFRjAwQkU0RjVDNkFBQ0Q2MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8+gJ/GrMyhB5Mrj5evscKeTSR wSVow2OILQP5G5SHj2jUiQYxjKOtUNPr64VQPdU18l0R5TAvEcjZ7O3mB0HyyuxF EP2047Il2lg/qXjZXeq69C7Q9lliuJWhn3N8pObkDTF0MjUuYdseNnkOGbc9D5Xv hnEaVKhpuO2OpXrjuj3o1tldDPFrlmUF6dobt1eBZty8ahSTR+5z9143yyvz5HmV +2ioHAWEoci/98Mkt/t0cOd285cF+8GNHM1dLG4l4pukKmpD4jz5jOhdM7ZzaZcF AzoLCvx/DwnRCsvOlGiGCE6cZbDORQwtAqyALOFOvfvI9yBVSWK64rqrOw35AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAFYZ5G6Bcg+g5rDvAL5PXGqs1gEwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rjANBgkqhkiG 9w0BAQsFAAOCAQEAi9fVwWtjSPUfBFcig4EQIFqpI8kx0HGz7ZEnV7TT339pbjvb SZrsDOKLGPZ/UJUP+4CcwyX/jnyipwfknGKMQ2SEUwAypyxWEQNZ1chGuhectcRD +WwSN7WLj1OPNy8PzViE4BbiZteIHsQJ6ZIlfj/u1xo9EGaA9vvZgz08uXDMhxj9 vtZvHZlhayNuoHTfoi5WlyKquVoXvI1SahYn+3mOxXzhpX6z4oPmavODdeO0CaWJ dQWmSvIhiHm7ZVRlSVl/e4zJ9mbbpe0ACnIXKE1d6qbCBnxKmwKz+KOG75r3V1Bh njBZEqWKWuGBs+j5q4scE0QPHxPiG+lhRDhIlg== -----END CERTIFICATE-----Generated at Wed May 1 18:10:56 2024 by rpki-client on console-ams.rpki-client.org