$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136332e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136332e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: 9lS7rvs1Vu0elx90ANQenqLnxNmuJ1yR8QK5W1zRtXk= Subject key identifier: 00:6D:44:09:CF:26:7C:43:1B:20:DA:7E:DA:34:E5:5F:82:B0:6A:F7 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 35072ADA9C687E826063689BDE29E738245C19BB Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136332e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:03 +0000 ROA not before: Sun 29 Sep 2024 08:55:03 +0000 ROA not after: Sun 28 Sep 2025 09:00:03 +0000 asID: 17727 IP address blocks: 202.59.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:07:2a:da:9c:68:7e:82:60:63:68:9b:de:29:e7:38:24:5c:19:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:03 2024 GMT Not After : Sep 28 09:00:03 2025 GMT Subject: CN=006D4409CF267C431B20DA7EDA34E55F82B06AF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:04:a5:27:98:00:43:6e:f6:cf:26:7c:57:c3: 8f:17:21:d5:5d:be:ef:bd:4a:82:d6:d6:66:29:9d: c1:a4:e2:28:9d:7a:f0:e3:b6:fd:68:9e:58:7c:e4: 18:d0:98:5f:2b:42:bf:0f:3f:01:64:96:1f:74:ef: d3:f7:28:0f:0f:03:8b:82:f9:bb:7d:e4:69:aa:fb: ed:f0:62:43:e3:2a:02:f2:f7:56:93:af:27:e9:6a: ec:4f:1f:4d:42:4a:b3:44:cb:8a:e8:59:f8:b2:06: d0:1e:88:7e:59:c3:7e:49:c9:0c:dc:87:f1:21:2e: 4d:4b:7d:7b:7b:b1:fb:28:48:2b:26:47:0a:0e:9c: af:75:1c:35:d0:19:fd:15:1c:bf:ed:4d:bd:e5:75: 4c:79:c9:7f:07:b9:8e:1b:a0:37:31:e4:0b:a9:72: 73:0d:5e:02:52:13:2c:0c:01:9a:f2:dd:e5:97:a9: 82:fc:e2:cd:6b:bb:fc:d6:75:02:f9:57:0e:ba:eb: 39:6b:0c:a6:da:f8:3f:e5:6c:fb:d3:fa:72:5d:26: 1e:a3:6b:5a:f9:a8:9d:53:ff:30:25:b7:db:32:97: d8:df:44:24:72:eb:54:ef:d7:ad:40:83:17:e6:0e: d5:00:b4:ef:26:93:e4:91:4d:58:63:29:71:63:b8: 1c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6D:44:09:CF:26:7C:43:1B:20:DA:7E:DA:34:E5:5F:82:B0:6A:F7 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136332e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.163.0/24 Signature Algorithm: sha256WithRSAEncryption 66:9b:48:d2:30:7a:67:8e:6d:4b:5a:42:58:06:df:56:04:d4: 4c:33:f7:2e:88:30:e6:37:02:8a:97:0b:ec:9b:c4:a1:0f:bd: 02:9f:a4:50:e3:13:de:14:ca:da:c3:7b:74:98:0b:0d:b7:f5: b6:33:72:75:a3:93:c2:cd:f7:3f:d7:57:ad:d1:85:5f:a2:e1: 63:ce:2c:98:1a:c1:cf:9d:87:ac:54:31:12:69:78:f7:04:83: ec:72:3c:4b:62:4a:d6:cd:08:bd:11:30:9d:95:31:ed:77:09: 70:83:62:7e:f2:91:d6:1e:2b:bd:b6:cf:85:18:2f:6b:d1:5d: 0e:4f:29:9f:df:af:8a:b2:63:b8:df:42:51:e4:51:b9:ae:4a: 92:63:4f:46:10:84:04:61:7c:47:3c:fe:df:c3:6e:dd:f8:ed: 64:17:69:39:66:78:b5:93:72:cc:68:77:2d:ab:bc:c3:a4:11: ef:aa:f5:a3:89:25:50:c2:58:13:9d:40:9e:45:03:85:05:fb: 87:d2:24:ca:53:c7:b1:a0:c3:f7:1e:49:2c:ba:4b:6b:69:89: 83:25:9e:2d:c1:bc:41:d3:84:ce:47:0d:8b:a2:90:ef:b4:b5: e1:b6:49:a3:1e:a2:cc:8f:9f:19:a5:f5:68:bd:8d:c3:d6:2f: 37:80:d8:4d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNQcq2pxofoJgY2ib3innOCRcGbswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDNaFw0yNTA5MjgwOTAwMDNaMDMxMTAvBgNV BAMTKDAwNkQ0NDA5Q0YyNjdDNDMxQjIwREE3RURBMzRFNTVGODJCMDZBRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHBKUnmABDbvbPJnxXw48XIdVd vu+9SoLW1mYpncGk4iidevDjtv1onlh85BjQmF8rQr8PPwFklh9079P3KA8PA4uC +bt95Gmq++3wYkPjKgLy91aTryfpauxPH01CSrNEy4roWfiyBtAeiH5Zw35JyQzc h/EhLk1LfXt7sfsoSCsmRwoOnK91HDXQGf0VHL/tTb3ldUx5yX8HuY4boDcx5Aup cnMNXgJSEywMAZry3eWXqYL84s1ru/zWdQL5Vw666zlrDKba+D/lbPvT+nJdJh6j a1r5qJ1T/zAlt9syl9jfRCRy61Tv161AgxfmDtUAtO8mk+SRTVhjKXFjuBxDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAG1ECc8mfEMbINp+2jTlX4KwavcwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7ozANBgkqhkiG 9w0BAQsFAAOCAQEAZptI0jB6Z45tS1pCWAbfVgTUTDP3Logw5jcCipcL7JvEoQ+9 Ap+kUOMT3hTK2sN7dJgLDbf1tjNydaOTws33P9dXrdGFX6LhY84smBrBz52HrFQx Eml49wSD7HI8S2JK1s0IvREwnZUx7XcJcINifvKR1h4rvbbPhRgva9FdDk8pn9+v irJjuN9CUeRRua5KkmNPRhCEBGF8Rzz+38Nu3fjtZBdpOWZ4tZNyzGh3Lau8w6QR 76r1o4klUMJYE51AnkUDhQX7h9IkylPHsaDD9x5JLLpLa2mJgyWeLcG8QdOEzkcN i6KQ77S14bZJox6izI+fGaX1aL2Nw9YvN4DYTQ== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org