$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136312e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: gPzBO1sdTsyv2H3eQUhBLlWEj+Myi9045yAH95LrgHU= Subject key identifier: 29:55:82:4C:A8:CF:B7:0C:3F:4F:14:DA:A4:A7:2B:FF:F8:E4:02:28 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 116A0739843E0593329B2FC14B67791779D70A59 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136312e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:03 +0000 ROA not before: Sun 29 Sep 2024 08:55:03 +0000 ROA not after: Sun 28 Sep 2025 09:00:03 +0000 asID: 17727 IP address blocks: 202.59.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:6a:07:39:84:3e:05:93:32:9b:2f:c1:4b:67:79:17:79:d7:0a:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:03 2024 GMT Not After : Sep 28 09:00:03 2025 GMT Subject: CN=2955824CA8CFB70C3F4F14DAA4A72BFFF8E40228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:45:d4:47:8a:c0:a0:18:d2:a0:fc:da:2e:51: 85:65:72:3e:3c:b4:7a:f7:f1:72:46:a2:18:c1:34: b8:1f:bd:43:69:70:c9:fc:4f:be:e5:87:2e:5f:a6: d2:27:c3:30:80:ba:1d:c2:4f:ac:81:b5:bd:52:b4: 45:d8:b1:48:05:f3:be:a9:a8:d9:0f:23:d6:ea:54: 7d:9f:d6:e6:97:b1:0d:92:32:13:07:5b:b0:82:23: ec:9c:38:d3:5c:92:9b:03:63:d1:b9:ee:ea:f5:96: 1a:a4:13:1d:a6:03:65:65:32:37:6c:a3:05:ae:99: 65:e0:10:4d:42:46:a8:42:f9:ff:97:70:ec:21:7b: ef:28:82:3b:2f:cc:81:b3:7c:b3:7d:18:b1:2f:e6: 9b:f8:81:3b:46:b1:d5:ff:00:da:0c:87:bc:c5:40: 42:31:c2:c4:15:de:01:0c:c4:2c:f1:e2:b2:c5:67: 2f:6e:2e:98:82:65:8b:98:09:0d:6c:3d:69:3f:f2: 50:35:64:21:17:5e:2d:d0:fe:54:71:96:72:74:a0: 0a:d7:87:00:59:81:ff:b1:bd:91:77:eb:db:33:4b: 9a:cb:83:a7:2a:59:5a:73:10:a9:e9:d8:c6:ad:d4: 59:a6:db:56:da:e5:1d:32:d6:0f:cd:0a:0b:fa:83: 6f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:55:82:4C:A8:CF:B7:0C:3F:4F:14:DA:A4:A7:2B:FF:F8:E4:02:28 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.161.0/24 Signature Algorithm: sha256WithRSAEncryption 41:fc:7a:a9:52:e6:fd:3d:4b:9a:32:6c:43:81:fb:a2:08:93: ec:bc:a9:e2:40:52:48:dc:ae:07:7c:7b:d9:51:ba:7f:c8:95: 09:ab:7b:4b:ea:86:b2:b7:03:04:5f:b1:07:0a:e3:bd:72:db: 4f:14:09:47:ec:49:12:61:8c:51:59:2f:0a:69:50:58:ed:7f: 40:a5:8c:bd:23:8c:9b:05:30:fb:ca:4b:1d:8f:f3:a4:2b:28: 6f:d7:9c:a2:0a:6e:0e:d5:ab:6c:c3:b1:35:75:9d:76:ef:72: 41:e3:94:b2:d8:8c:72:e0:17:7e:25:85:b0:c2:47:f1:66:15: 29:f8:c4:90:b9:58:0c:7c:f8:d0:fa:19:26:0a:11:83:ed:fd: e8:80:4c:86:71:66:57:ad:97:43:22:0e:c2:c8:7a:5e:3c:1f: 7f:be:82:b9:b0:6f:7d:b4:db:64:52:14:33:7e:09:54:29:d4: eb:2f:b2:92:7c:e4:81:d7:90:e2:a1:eb:d2:c8:e1:46:ae:5f: 0a:c3:fb:ee:14:f8:9c:0d:04:24:7f:aa:d7:9b:49:a6:69:99: c9:37:30:40:91:8f:da:d5:fc:c0:7f:8f:6c:0a:c9:ca:59:fc: 0e:e7:64:f8:5f:4c:32:86:cc:ee:e6:3b:85:8e:37:6e:eb:9b: 5c:59:93:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEWoHOYQ+BZMymy/BS2d5F3nXClkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDNaFw0yNTA5MjgwOTAwMDNaMDMxMTAvBgNV BAMTKDI5NTU4MjRDQThDRkI3MEMzRjRGMTREQUE0QTcyQkZGRjhFNDAyMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHRdRHisCgGNKg/NouUYVlcj48 tHr38XJGohjBNLgfvUNpcMn8T77lhy5fptInwzCAuh3CT6yBtb1StEXYsUgF876p qNkPI9bqVH2f1uaXsQ2SMhMHW7CCI+ycONNckpsDY9G57ur1lhqkEx2mA2VlMjds owWumWXgEE1CRqhC+f+XcOwhe+8ogjsvzIGzfLN9GLEv5pv4gTtGsdX/ANoMh7zF QEIxwsQV3gEMxCzx4rLFZy9uLpiCZYuYCQ1sPWk/8lA1ZCEXXi3Q/lRxlnJ0oArX hwBZgf+xvZF369szS5rLg6cqWVpzEKnp2Mat1Fmm21ba5R0y1g/NCgv6g29NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKVWCTKjPtww/TxTapKcr//jkAigwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7oTANBgkqhkiG 9w0BAQsFAAOCAQEAQfx6qVLm/T1LmjJsQ4H7ogiT7Lyp4kBSSNyuB3x72VG6f8iV Cat7S+qGsrcDBF+xBwrjvXLbTxQJR+xJEmGMUVkvCmlQWO1/QKWMvSOMmwUw+8pL HY/zpCsob9ecogpuDtWrbMOxNXWddu9yQeOUstiMcuAXfiWFsMJH8WYVKfjEkLlY DHz40PoZJgoRg+396IBMhnFmV62XQyIOwsh6Xjwff76CubBvfbTbZFIUM34JVCnU 6y+yknzkgdeQ4qHr0sjhRq5fCsP77hT4nA0EJH+q15tJpmmZyTcwQJGP2tX8wH+P bArJyln8Dudk+F9MMobM7uY7hY43buubXFmTsA== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org