$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136352e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136352e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: WZj1dsWAywjC/+WqUcKr9RkDthQyTJKiJu4LDGyftls= Subject key identifier: AE:6B:AC:53:4C:72:6C:D8:53:FC:1C:E5:BD:B4:3B:67:4C:66:26:F3 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 11C48C64016C93DAB6B865DF6AE495203013C660 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136352e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:01 +0000 ROA not before: Sun 29 Sep 2024 08:55:01 +0000 ROA not after: Sun 28 Sep 2025 09:00:01 +0000 asID: 17727 IP address blocks: 202.59.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:c4:8c:64:01:6c:93:da:b6:b8:65:df:6a:e4:95:20:30:13:c6:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:01 2024 GMT Not After : Sep 28 09:00:01 2025 GMT Subject: CN=AE6BAC534C726CD853FC1CE5BDB43B674C6626F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b1:93:9a:c5:94:58:c2:b2:81:52:16:12:a3: 30:d7:57:07:06:4a:45:d8:e2:cc:9c:ae:88:41:0c: 2c:3a:e7:a8:52:96:44:ca:a9:af:16:52:f0:8f:8e: 45:2a:45:29:87:11:32:7a:bf:3a:97:20:3a:e0:08: b3:14:64:77:71:e6:b1:81:36:5c:f2:9e:e9:c8:97: b8:86:9d:f2:3e:c9:81:3f:36:d2:c0:3c:e6:86:04: 94:d6:48:20:ae:c3:b4:54:83:f8:5e:24:d0:73:00: e8:d8:ba:72:58:ad:d0:66:a5:1a:6e:b6:3b:42:26: 29:5d:61:c6:cf:e7:4f:7b:30:39:e5:4a:6a:b8:c4: c8:1a:21:10:fb:85:72:d5:54:54:fc:f5:21:c3:bc: f3:23:57:e6:cf:9b:c9:cb:81:97:01:1b:10:ee:b3: c7:10:0f:10:72:ba:7b:29:23:c8:0c:fb:93:2d:b5: 90:93:11:ba:bf:ee:45:a9:3a:d2:9a:ca:79:f7:0c: f6:84:83:b5:c8:27:9d:91:c8:d9:f7:09:ba:33:95: 6b:7f:5f:4c:5e:9a:dc:ef:d5:ba:5c:5f:21:ad:ca: 45:02:af:0a:76:ed:87:d6:6f:3d:1a:27:fc:8f:b8: 65:a5:f9:21:8e:80:a6:be:87:cd:3f:1a:6d:59:59: 95:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6B:AC:53:4C:72:6C:D8:53:FC:1C:E5:BD:B4:3B:67:4C:66:26:F3 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136352e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.165.0/24 Signature Algorithm: sha256WithRSAEncryption ab:16:5b:33:e6:ed:e8:ca:41:17:24:04:c7:9d:1b:90:0f:03: 2e:97:1b:32:5a:e0:85:73:15:5b:6d:2d:bb:63:7f:60:e4:e4: 32:bd:1b:35:d8:c9:56:21:cc:bc:e1:54:40:8e:79:9b:4f:c9: 7c:3d:33:cb:f9:cc:3d:2b:2f:db:8a:cd:75:ee:df:f3:d1:c8: eb:4e:28:78:1a:a1:dd:d4:2e:74:0e:dc:47:d6:3d:c7:b8:e6: 29:51:37:d2:93:23:bf:97:0b:16:39:41:bb:ba:23:f0:e7:4b: 95:28:c1:b5:69:86:92:1e:0a:16:38:bd:51:0c:d4:74:6d:cc: 90:23:67:4d:ac:c4:ea:2e:2b:1c:28:a1:75:03:02:a5:d5:ee: 00:67:69:95:32:2a:b0:18:e0:0f:f9:c4:bd:33:91:7b:b2:7b: 61:e2:ec:b5:6c:a4:a7:0a:ac:d2:ea:4d:42:82:6e:ee:ee:0b: e0:20:ef:15:f2:0b:a8:1e:77:d2:0f:4d:d9:e6:b0:a6:5c:ac: 9e:0b:11:cf:81:e6:e4:01:25:c2:bd:03:f0:31:25:b4:f9:43: 93:8e:b2:e2:f0:5f:ba:10:b1:1b:23:a9:fc:33:e7:ed:b2:15: e0:a7:2d:61:c7:b5:ec:2b:58:f0:de:f9:0a:28:dc:81:78:03: 7c:af:89:b4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEcSMZAFsk9q2uGXfauSVIDATxmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDFaFw0yNTA5MjgwOTAwMDFaMDMxMTAvBgNV BAMTKEFFNkJBQzUzNEM3MjZDRDg1M0ZDMUNFNUJEQjQzQjY3NEM2NjI2RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmsZOaxZRYwrKBUhYSozDXVwcG SkXY4sycrohBDCw656hSlkTKqa8WUvCPjkUqRSmHETJ6vzqXIDrgCLMUZHdx5rGB NlzynunIl7iGnfI+yYE/NtLAPOaGBJTWSCCuw7RUg/heJNBzAOjYunJYrdBmpRpu tjtCJildYcbP5097MDnlSmq4xMgaIRD7hXLVVFT89SHDvPMjV+bPm8nLgZcBGxDu s8cQDxByunspI8gM+5MttZCTEbq/7kWpOtKaynn3DPaEg7XIJ52RyNn3CbozlWt/ X0xemtzv1bpcXyGtykUCrwp27YfWbz0aJ/yPuGWl+SGOgKa+h80/Gm1ZWZX5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrmusU0xybNhT/BzlvbQ7Z0xmJvMwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pTANBgkqhkiG 9w0BAQsFAAOCAQEAqxZbM+bt6MpBFyQEx50bkA8DLpcbMlrghXMVW20tu2N/YOTk Mr0bNdjJViHMvOFUQI55m0/JfD0zy/nMPSsv24rNde7f89HI604oeBqh3dQudA7c R9Y9x7jmKVE30pMjv5cLFjlBu7oj8OdLlSjBtWmGkh4KFji9UQzUdG3MkCNnTazE 6i4rHCihdQMCpdXuAGdplTIqsBjgD/nEvTORe7J7YeLstWykpwqs0upNQoJu7u4L 4CDvFfILqB530g9N2eawplysngsRz4Hm5AElwr0D8DEltPlDk46y4vBfuhCxGyOp /DPn7bIV4KctYce17CtY8N75CijcgXgDfK+JtA== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org