$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136302e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: cw9lflPoK3QxEJdWCjSKERvCKNspMXtp+cQ0zq5V62I= Subject key identifier: CF:C7:E4:22:98:E4:08:59:B9:BB:0F:E4:9A:5E:A7:7F:8D:F7:0D:54 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 618961CC115217E10ABBD481F52FE73B9271B988 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:01 +0000 ROA not before: Sun 29 Sep 2024 08:55:01 +0000 ROA not after: Sun 28 Sep 2025 09:00:01 +0000 asID: 17727 IP address blocks: 202.59.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:89:61:cc:11:52:17:e1:0a:bb:d4:81:f5:2f:e7:3b:92:71:b9:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:01 2024 GMT Not After : Sep 28 09:00:01 2025 GMT Subject: CN=CFC7E42298E40859B9BB0FE49A5EA77F8DF70D54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ca:25:5b:88:25:d3:35:05:ec:13:24:15:a3: 31:df:d7:95:8d:15:aa:a8:9e:a9:19:f8:f2:80:fd: 48:ef:8d:68:75:5c:da:d2:f1:56:e5:9a:6f:3c:44: c6:39:62:d9:94:d4:0a:69:22:10:33:62:51:60:ec: 33:91:63:a4:35:5d:34:89:27:87:3f:bf:3b:07:cd: 28:7d:d8:c1:1e:75:31:68:a4:f1:36:3e:9e:17:bf: 6c:27:d1:c7:4b:4a:c5:25:b9:2d:7d:98:6b:50:fc: 0b:a0:16:28:0a:6b:4d:fa:c2:b8:40:67:d5:bc:50: c7:0a:8c:ef:60:dd:33:91:2e:bf:40:a8:3f:69:aa: f6:53:20:fc:d2:74:2a:1f:ec:b9:ac:ec:10:fe:c9: 41:82:90:77:1f:92:7a:e8:31:a1:7d:5c:fe:1c:02: c3:6b:5d:43:60:6b:64:d0:cf:b1:44:7c:b1:0f:1a: 66:57:23:5d:d4:a9:a4:7f:99:9f:45:2a:f1:63:0c: f9:7e:66:a9:ef:e6:5a:32:14:44:83:07:b0:86:80: ae:d0:2b:3e:0e:a0:3d:c6:c9:05:12:27:4d:55:2d: 09:42:7d:90:ff:32:96:b6:49:23:15:ba:52:86:bb: fe:fc:0c:88:6a:b2:db:39:5e:2f:00:8e:1c:e7:96: 9d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C7:E4:22:98:E4:08:59:B9:BB:0F:E4:9A:5E:A7:7F:8D:F7:0D:54 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.160.0/24 Signature Algorithm: sha256WithRSAEncryption 99:5a:fe:c7:ed:1d:2b:3e:c2:83:3a:75:9e:5d:08:3c:94:10: c5:ca:ae:70:f2:b1:df:dc:60:1a:f8:e1:4c:a4:89:b1:f9:b3: ce:b3:d4:7c:27:47:3a:6a:fd:e4:2c:e6:cb:1c:db:f5:e3:18: 23:4d:b9:e4:12:7f:88:7c:ac:33:b7:50:19:03:ad:77:58:13: 15:fa:83:aa:92:ba:a2:db:bb:c8:6e:f0:e7:e8:58:0a:a3:ea: 61:43:fd:c6:c5:43:b7:e6:d6:bd:c9:d0:44:2e:9b:a9:be:0f: 1d:2c:3f:de:78:83:bb:4e:f2:fd:5c:68:c4:8d:30:fe:b4:da: e7:8b:3e:c6:da:7a:25:37:9f:d5:63:32:6d:c7:54:27:ff:18: 44:71:79:c2:62:68:02:6e:af:e5:53:de:d8:f8:55:21:6a:20: ac:09:6b:f0:f0:f0:68:b7:91:eb:24:65:f6:f2:d7:ff:74:e2: 80:c4:70:88:35:af:b2:75:ba:ae:12:f7:8d:21:b8:51:1e:73: f0:72:da:14:8f:02:2e:e4:e3:16:2f:c8:f1:00:95:07:3a:13: ff:79:89:ad:db:b0:f0:2f:72:ec:cf:c7:7f:45:a8:77:cf:f6: 43:4e:fb:d6:ac:a2:22:e1:3c:2b:d1:d0:6c:de:07:7d:33:e0: 29:dd:09:c6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYYlhzBFSF+EKu9SB9S/nO5JxuYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDFaFw0yNTA5MjgwOTAwMDFaMDMxMTAvBgNV BAMTKENGQzdFNDIyOThFNDA4NTlCOUJCMEZFNDlBNUVBNzdGOERGNzBENTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKyiVbiCXTNQXsEyQVozHf15WN FaqonqkZ+PKA/UjvjWh1XNrS8Vblmm88RMY5YtmU1AppIhAzYlFg7DORY6Q1XTSJ J4c/vzsHzSh92MEedTFopPE2Pp4Xv2wn0cdLSsUluS19mGtQ/AugFigKa036wrhA Z9W8UMcKjO9g3TORLr9AqD9pqvZTIPzSdCof7Lms7BD+yUGCkHcfknroMaF9XP4c AsNrXUNga2TQz7FEfLEPGmZXI13UqaR/mZ9FKvFjDPl+Zqnv5loyFESDB7CGgK7Q Kz4OoD3GyQUSJ01VLQlCfZD/Mpa2SSMVulKGu/78DIhqsts5Xi8Ajhznlp0hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUz8fkIpjkCFm5uw/kml6nf433DVQwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7oDANBgkqhkiG 9w0BAQsFAAOCAQEAmVr+x+0dKz7Cgzp1nl0IPJQQxcqucPKx39xgGvjhTKSJsfmz zrPUfCdHOmr95Czmyxzb9eMYI0255BJ/iHysM7dQGQOtd1gTFfqDqpK6otu7yG7w 5+hYCqPqYUP9xsVDt+bWvcnQRC6bqb4PHSw/3niDu07y/VxoxI0w/rTa54s+xtp6 JTef1WMybcdUJ/8YRHF5wmJoAm6v5VPe2PhVIWogrAlr8PDwaLeR6yRl9vLX/3Ti gMRwiDWvsnW6rhL3jSG4UR5z8HLaFI8CLuTjFi/I8QCVBzoT/3mJrduw8C9y7M/H f0Wod8/2Q0771qyiIuE8K9HQbN4HfTPgKd0Jxg== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org