$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32302d3230203d3e203137373237.roa File: 3230322e35392e3136302e302f32302d3230203d3e203137373237.roa (raw, json) Hash identifier: Y3tXIY6Jg9oNsvMIOjrTk0+3MFXKnOcKSSmNNasyeJ4= Subject key identifier: 14:C2:A5:AE:AD:97:04:A0:8F:F8:B3:EB:B0:48:58:F4:7A:99:4F:C5 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 4F6D477FDB456E56030E3AB678CB14ABD8664147 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32302d3230203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:02 +0000 ROA not before: Sun 29 Sep 2024 08:55:02 +0000 ROA not after: Sun 28 Sep 2025 09:00:02 +0000 asID: 17727 IP address blocks: 202.59.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:6d:47:7f:db:45:6e:56:03:0e:3a:b6:78:cb:14:ab:d8:66:41:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:02 2024 GMT Not After : Sep 28 09:00:02 2025 GMT Subject: CN=14C2A5AEAD9704A08FF8B3EBB04858F47A994FC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:82:2b:1c:20:d4:58:75:80:47:e1:1e:99:05: 50:2b:f4:6c:ce:eb:ca:5f:92:c8:59:b1:15:46:3b: e4:71:8b:85:a6:ea:46:b2:82:17:9b:0b:bc:9f:b5: 78:d9:08:39:b8:71:54:1a:52:8e:a0:55:e4:29:89: ed:25:3e:f0:59:af:84:81:25:bf:2e:02:de:7b:b4: 8b:c2:c6:3f:26:50:bb:b1:a5:26:b8:5d:de:1b:9a: 1e:09:b9:cc:14:ba:9a:94:36:63:20:15:45:ff:dd: f0:e9:a5:28:10:29:ad:8d:c7:cf:10:6a:1b:1b:41: 27:23:3d:c7:c7:38:e4:d4:ff:4f:15:fb:e7:ec:0e: 7c:cf:41:6e:65:b0:b9:f5:22:5f:82:60:1a:a3:12: 59:5c:fe:2f:69:90:45:ff:0b:bc:c5:53:9b:35:f2: 35:be:34:fc:f1:28:e6:c1:83:b5:a2:73:75:1a:cb: 2e:63:50:de:bf:a4:1b:f0:12:8e:a2:9a:04:94:45: ee:12:1b:4f:75:69:13:a3:46:fc:2e:45:42:92:b1: 0c:01:d4:4d:c0:e3:9f:24:68:fe:ed:2b:71:ed:44: 87:cf:4f:b9:25:9e:1a:5d:0b:60:18:fa:34:36:2b: 09:58:23:76:c3:d1:ea:39:57:bc:3f:b7:e7:67:14: 35:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C2:A5:AE:AD:97:04:A0:8F:F8:B3:EB:B0:48:58:F4:7A:99:4F:C5 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32302d3230203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.160.0/20 Signature Algorithm: sha256WithRSAEncryption a3:63:8d:5f:dd:dd:f1:be:02:8f:b2:f6:bc:a5:cb:2c:66:25: c3:6e:7c:9b:01:55:30:f7:0f:30:1b:c1:d3:92:12:1c:09:ac: 62:8c:41:ff:9e:21:ee:60:eb:62:1e:05:56:37:39:36:08:ae: cf:48:dd:ea:34:39:86:84:3e:25:01:e3:fd:53:60:b9:fc:be: 15:b8:00:7c:89:2d:e0:ed:68:a9:bb:2b:da:15:19:58:df:ee: 6a:0b:57:8a:8a:fd:2f:28:a6:41:fa:c4:78:0e:71:93:c9:11: 96:14:05:55:9e:87:ed:23:5b:b7:14:5a:0f:de:6c:d6:fd:3f: 6e:03:e6:b3:b7:f2:fd:40:ef:b8:65:d9:af:f4:77:9a:d1:53: 01:31:3b:49:9c:f2:c7:fe:1b:03:51:e9:25:bf:18:92:94:1a: c3:d2:99:1a:07:a3:4c:b3:cc:6e:7d:0b:7e:c8:01:4c:80:37: b5:b9:0f:c3:e4:da:c9:0b:ac:4f:bb:21:49:bf:94:6b:b3:c2: f7:2e:44:4c:7a:8c:c9:67:64:6c:1a:d8:0b:9b:01:22:cf:0b: d5:df:cb:18:a6:f2:02:fd:b2:24:0e:22:e3:39:56:b7:5e:50: af:06:a8:f1:0b:1a:f2:0f:7a:16:f9:2f:28:a3:cc:66:f9:8f: 04:3f:af:47 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT21Hf9tFblYDDjq2eMsUq9hmQUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDJaFw0yNTA5MjgwOTAwMDJaMDMxMTAvBgNV BAMTKDE0QzJBNUFFQUQ5NzA0QTA4RkY4QjNFQkIwNDg1OEY0N0E5OTRGQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNgiscINRYdYBH4R6ZBVAr9GzO 68pfkshZsRVGO+Rxi4Wm6kayghebC7yftXjZCDm4cVQaUo6gVeQpie0lPvBZr4SB Jb8uAt57tIvCxj8mULuxpSa4Xd4bmh4JucwUupqUNmMgFUX/3fDppSgQKa2Nx88Q ahsbQScjPcfHOOTU/08V++fsDnzPQW5lsLn1Il+CYBqjEllc/i9pkEX/C7zFU5s1 8jW+NPzxKObBg7Wic3Uayy5jUN6/pBvwEo6imgSURe4SG091aROjRvwuRUKSsQwB 1E3A458kaP7tK3HtRIfPT7klnhpdC2AY+jQ2KwlYI3bD0eo5V7w/t+dnFDWBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFMKlrq2XBKCP+LPrsEhY9HqZT8UwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMwMmUzMDJmMzIz MDJkMzIzMDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMo7oDANBgkqhkiG 9w0BAQsFAAOCAQEAo2ONX93d8b4Cj7L2vKXLLGYlw258mwFVMPcPMBvB05ISHAms YoxB/54h7mDrYh4FVjc5Ngiuz0jd6jQ5hoQ+JQHj/VNgufy+FbgAfIkt4O1oqbsr 2hUZWN/uagtXior9LyimQfrEeA5xk8kRlhQFVZ6H7SNbtxRaD95s1v0/bgPms7fy /UDvuGXZr/R3mtFTATE7SZzyx/4bA1HpJb8YkpQaw9KZGgejTLPMbn0LfsgBTIA3 tbkPw+TayQusT7shSb+Ua7PC9y5ETHqMyWdkbBrYC5sBIs8L1d/LGKbyAv2yJA4i 4zlWt15Qrwao8Qsa8g96FvkvKKPMZvmPBD+vRw== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org