$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136322e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136322e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: ByTHy/4qA4D2yg1CY/48iVpdwB/9y2+qIzDPcI6YVCc= Subject key identifier: 59:3B:4A:6C:1A:C2:D4:78:85:1E:76:D0:D0:AC:BF:7B:4E:E4:83:DD Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 5D977C642F95E6CF5C47FC58E78AE0209F7B1B23 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136322e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:03 +0000 ROA not before: Sun 29 Sep 2024 08:55:03 +0000 ROA not after: Sun 28 Sep 2025 09:00:03 +0000 asID: 17727 IP address blocks: 202.59.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:97:7c:64:2f:95:e6:cf:5c:47:fc:58:e7:8a:e0:20:9f:7b:1b:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:03 2024 GMT Not After : Sep 28 09:00:03 2025 GMT Subject: CN=593B4A6C1AC2D478851E76D0D0ACBF7B4EE483DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:dc:49:58:8f:b2:36:3a:92:d8:25:1b:fa:4d: 50:21:1c:f0:33:2b:c2:5f:fa:6f:19:b4:ae:7c:6c: 97:aa:d6:10:5b:a4:0f:6c:39:3f:a7:be:c1:7d:8f: 3c:97:10:b3:3e:eb:88:d0:a6:f4:e8:95:77:51:52: 21:ab:a6:19:e4:de:11:6a:84:86:58:19:7b:da:96: 79:1f:da:73:ab:0c:68:16:48:33:6a:ad:9d:d3:c4: a8:15:13:1a:87:e4:6b:30:b3:b2:b6:f3:9d:82:51: d0:7f:ca:09:48:27:c2:2d:d1:57:19:44:04:96:bd: f9:df:a1:10:8e:a6:39:db:15:b9:d9:3a:1f:74:ff: 6e:fd:eb:9a:ef:85:7b:4a:15:b9:d7:0e:25:07:9b: f3:5b:49:5e:3a:f1:7a:cf:87:c3:ea:49:0f:54:c5: 29:a2:6c:5f:4b:78:3b:8d:e8:cf:0e:1d:c7:ad:e2: d7:ef:67:ad:8a:3e:a4:f2:02:6f:05:9f:90:ff:16: 5c:9a:2d:d0:a4:0a:70:29:d1:c8:20:09:0d:fa:ba: b5:a6:b9:77:c4:01:47:ae:f3:dc:fe:e6:3c:59:aa: 84:91:1d:41:ef:55:23:fc:77:75:1f:07:3a:ef:6c: 42:9c:b5:11:9a:51:0e:25:28:b1:ac:6e:2f:57:65: 31:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:3B:4A:6C:1A:C2:D4:78:85:1E:76:D0:D0:AC:BF:7B:4E:E4:83:DD X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136322e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.162.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:b3:d0:13:96:e0:83:ea:a2:b1:85:f2:75:a3:06:63:6a:a9: 3d:72:c0:58:c8:05:c6:88:56:a4:c1:62:99:3c:9c:d8:1a:06: 88:1a:6d:26:b8:8d:b1:96:0c:3d:4e:07:9c:c1:83:fa:2a:fd: 07:79:c3:79:91:cb:21:3c:45:ee:2e:b8:c9:40:0a:4f:fa:46: 4a:7d:4b:8f:d4:4c:2a:7b:cc:51:ca:a1:8b:42:24:1b:ab:d3: 34:fe:16:5a:14:6d:bd:b9:43:99:ab:70:87:d5:74:63:98:5f: b1:32:24:66:e2:e9:30:60:70:2a:8c:f6:5a:b1:56:bd:ba:e8: 33:fa:4b:df:1d:80:15:50:cd:c9:23:03:b6:3e:fe:b2:ae:7d: 3a:a6:cb:88:77:c1:60:fa:a2:e7:88:73:83:f9:1e:ac:d7:f1: 4d:2f:15:9d:13:9c:ea:e7:5c:f0:7e:61:ab:26:bb:b3:33:f5: 64:f9:71:2b:07:ec:51:ad:d3:e2:5a:2f:3a:a4:2d:33:e6:b8: 96:ad:4a:7b:9b:15:9e:ec:94:e3:f8:a4:f0:8f:90:36:ce:e1: 96:cb:73:2a:5a:90:18:ea:51:c0:9f:58:90:dd:e8:c2:55:e4: 9c:3b:15:ec:6e:ce:8a:b1:51:63:2d:79:e3:87:e7:68:7d:31: c9:17:d6:09 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXZd8ZC+V5s9cR/xY54rgIJ97GyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDNaFw0yNTA5MjgwOTAwMDNaMDMxMTAvBgNV BAMTKDU5M0I0QTZDMUFDMkQ0Nzg4NTFFNzZEMEQwQUNCRjdCNEVFNDgzREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT3ElYj7I2OpLYJRv6TVAhHPAz K8Jf+m8ZtK58bJeq1hBbpA9sOT+nvsF9jzyXELM+64jQpvTolXdRUiGrphnk3hFq hIZYGXvalnkf2nOrDGgWSDNqrZ3TxKgVExqH5Gsws7K2852CUdB/yglIJ8It0VcZ RASWvfnfoRCOpjnbFbnZOh90/27965rvhXtKFbnXDiUHm/NbSV468XrPh8PqSQ9U xSmibF9LeDuN6M8OHcet4tfvZ62KPqTyAm8Fn5D/FlyaLdCkCnAp0cggCQ36urWm uXfEAUeu89z+5jxZqoSRHUHvVSP8d3UfBzrvbEKctRGaUQ4lKLGsbi9XZTF/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWTtKbBrC1HiFHnbQ0Ky/e07kg90wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7ojANBgkqhkiG 9w0BAQsFAAOCAQEALrPQE5bgg+qisYXydaMGY2qpPXLAWMgFxohWpMFimTyc2BoG iBptJriNsZYMPU4HnMGD+ir9B3nDeZHLITxF7i64yUAKT/pGSn1Lj9RMKnvMUcqh i0IkG6vTNP4WWhRtvblDmatwh9V0Y5hfsTIkZuLpMGBwKoz2WrFWvbroM/pL3x2A FVDNySMDtj7+sq59OqbLiHfBYPqi54hzg/kerNfxTS8VnROc6udc8H5hqya7szP1 ZPlxKwfsUa3T4lovOqQtM+a4lq1Ke5sVnuyU4/ik8I+QNs7hlstzKlqQGOpRwJ9Y kN3owlXknDsV7G7OirFRYy1544fnaH0xyRfWCQ== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org