$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136342e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136342e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: 4vrZWIKt0q08m4B3+jFI5X4tSVRsqAVI+ftdFHnELkM= Subject key identifier: F7:94:FA:85:AC:94:32:D5:63:50:EE:CA:24:1D:2C:8A:0D:AD:87:B8 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 5A53415ACC1FD00D9B93A820E93294FB02AE57B8 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136342e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:02 +0000 ROA not before: Sun 29 Sep 2024 08:55:02 +0000 ROA not after: Sun 28 Sep 2025 09:00:02 +0000 asID: 17727 IP address blocks: 202.59.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:53:41:5a:cc:1f:d0:0d:9b:93:a8:20:e9:32:94:fb:02:ae:57:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:02 2024 GMT Not After : Sep 28 09:00:02 2025 GMT Subject: CN=F794FA85AC9432D56350EECA241D2C8A0DAD87B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:72:53:ff:7c:98:14:b8:bb:04:df:72:55:73: bf:c5:9a:67:48:bf:cb:dc:0f:5f:af:89:77:bb:ee: af:30:49:3d:45:8b:6d:4c:47:ac:17:a1:58:a4:7f: fb:b5:77:c8:1b:bf:a4:eb:4c:8c:0d:94:9c:5e:2c: a9:fe:63:91:f7:ea:02:9b:c3:dd:bd:8f:ad:3f:dd: 73:22:c4:1c:fa:7a:51:87:30:ad:da:cd:e7:31:ac: ee:fe:e9:bf:19:03:d5:bb:43:0e:9f:49:e7:58:cd: 5d:11:b6:70:f1:3e:01:3e:75:8e:b4:67:56:c6:f5: f6:93:f1:0c:0d:b6:fe:dd:04:21:5c:bf:c0:db:2c: 7a:04:0d:fb:aa:cd:11:4a:a3:99:08:5e:82:83:54: de:65:96:26:0a:e0:aa:3b:a9:b8:4d:68:91:8d:5c: 73:97:83:eb:79:93:2d:49:9f:3d:31:2c:21:79:0b: 47:5a:a0:83:a8:db:db:c0:f7:88:d3:a4:84:31:5d: 60:b6:66:51:f4:57:d8:af:24:ef:25:a5:85:a7:9f: e2:d6:ee:0b:82:02:aa:ec:59:4a:0f:6e:5b:08:7c: ce:2d:ba:b3:cb:81:ce:d2:f9:9e:d2:52:a7:9b:2e: a2:a6:10:e2:b6:9b:ca:0a:57:83:da:a5:75:07:21: 9b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:94:FA:85:AC:94:32:D5:63:50:EE:CA:24:1D:2C:8A:0D:AD:87:B8 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136342e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.164.0/24 Signature Algorithm: sha256WithRSAEncryption a8:51:45:b0:f0:80:c3:4a:f6:17:d8:c5:9f:87:d7:2b:be:7c: 5f:19:bf:79:97:17:57:68:83:f9:88:da:a8:d0:ff:e7:94:f9: d2:f2:e9:cb:a7:09:f5:69:5e:18:23:b1:8c:91:56:97:15:d8: 97:bc:34:8f:5f:35:e2:b6:4e:81:08:37:f8:56:5f:25:e0:57: a7:c0:87:47:cf:5d:eb:dc:41:21:1c:c6:43:b4:af:16:87:9e: e5:0f:00:7b:74:96:f8:3a:18:75:3d:d5:16:18:c2:40:a6:4e: bc:43:a6:81:09:d8:d8:fc:32:ec:9d:de:c7:a7:c5:93:e8:8f: 0c:5f:c6:06:f5:07:cf:ed:9a:90:3f:71:8d:67:35:23:2b:7f: 30:07:a6:54:d2:91:30:4d:9d:2d:99:51:2f:af:d8:3a:ca:f8: 2f:46:42:ea:f8:68:e8:43:13:c9:95:ea:d8:b1:a1:e9:79:f4: 2a:52:c0:1f:62:a6:d0:d9:b5:d7:11:c7:7e:27:da:5d:2b:85: 5c:4a:fb:4e:cc:c4:49:26:c1:8c:fc:fe:b9:88:d5:03:4e:b6: 05:e0:05:19:c1:0d:f2:71:80:e4:97:7c:c7:34:ee:a5:89:c5: 6b:89:87:ce:a2:52:af:4d:04:4b:a2:62:f5:2c:7d:39:77:c7: 42:e2:f5:c6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWlNBWswf0A2bk6gg6TKU+wKuV7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDJaFw0yNTA5MjgwOTAwMDJaMDMxMTAvBgNV BAMTKEY3OTRGQTg1QUM5NDMyRDU2MzUwRUVDQTI0MUQyQzhBMERBRDg3QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgclP/fJgUuLsE33JVc7/FmmdI v8vcD1+viXe77q8wST1Fi21MR6wXoVikf/u1d8gbv6TrTIwNlJxeLKn+Y5H36gKb w929j60/3XMixBz6elGHMK3azecxrO7+6b8ZA9W7Qw6fSedYzV0RtnDxPgE+dY60 Z1bG9faT8QwNtv7dBCFcv8DbLHoEDfuqzRFKo5kIXoKDVN5lliYK4Ko7qbhNaJGN XHOXg+t5ky1Jnz0xLCF5C0daoIOo29vA94jTpIQxXWC2ZlH0V9ivJO8lpYWnn+LW 7guCAqrsWUoPblsIfM4turPLgc7S+Z7SUqebLqKmEOK2m8oKV4PapXUHIZtVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU95T6hayUMtVjUO7KJB0sig2th7gwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pDANBgkqhkiG 9w0BAQsFAAOCAQEAqFFFsPCAw0r2F9jFn4fXK758Xxm/eZcXV2iD+YjaqND/55T5 0vLpy6cJ9WleGCOxjJFWlxXYl7w0j1814rZOgQg3+FZfJeBXp8CHR89d69xBIRzG Q7SvFoee5Q8Ae3SW+DoYdT3VFhjCQKZOvEOmgQnY2Pwy7J3ex6fFk+iPDF/GBvUH z+2akD9xjWc1Iyt/MAemVNKRME2dLZlRL6/YOsr4L0ZC6vho6EMTyZXq2LGh6Xn0 KlLAH2Km0Nm11xHHfifaXSuFXEr7TszESSbBjPz+uYjVA062BeAFGcEN8nGA5Jd8 xzTupYnFa4mHzqJSr00ES6Ji9Sx9OXfHQuL1xg== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org