$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136362e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136362e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: yvPor8weP7MWzIMQ13rJZFwdbua55+Dsl8W7NiXVGbo= Subject key identifier: FB:62:5F:C1:49:CA:4E:DB:50:FA:AF:FB:F3:3B:C6:86:63:A4:38:89 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 308047B242EF1065E42BE196549594B6752A8CEB Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136362e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 07:00:02 +0000 ROA not before: Sun 29 Sep 2024 06:55:02 +0000 ROA not after: Sun 28 Sep 2025 07:00:02 +0000 asID: 17727 IP address blocks: 202.59.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:80:47:b2:42:ef:10:65:e4:2b:e1:96:54:95:94:b6:75:2a:8c:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 06:55:02 2024 GMT Not After : Sep 28 07:00:02 2025 GMT Subject: CN=FB625FC149CA4EDB50FAAFFBF33BC68663A43889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b9:99:3f:75:d4:1a:ff:82:a3:50:dc:6b:52: 8f:cb:bd:46:86:bc:3f:d2:17:34:a2:b4:17:d1:7d: 1e:b5:6c:e3:dc:39:ff:35:96:5e:d5:9a:be:df:6d: a9:3d:d7:16:ef:c0:84:71:e0:93:1a:dc:07:5e:c5: 6c:59:ee:38:94:a7:13:6c:4b:5a:cc:74:74:6b:6e: 59:b0:f0:83:da:cc:6a:87:68:64:a1:3e:18:bb:83: 54:fe:50:fe:83:69:fc:4b:2d:dd:9a:03:e0:5b:46: b4:e8:a1:af:ec:e6:b0:a0:ef:28:7f:1c:0e:0a:d4: 69:d9:19:e3:08:82:0b:e4:24:99:84:51:9d:41:39: e0:92:e5:2e:ca:a4:26:19:2c:ca:28:de:c1:58:76: a7:1b:4a:0e:f5:5d:ec:f0:62:f5:85:09:1e:08:fe: 2b:d5:68:43:7a:6d:bc:b6:3d:ec:2f:10:60:6d:c6: c9:79:92:ed:75:17:03:f9:51:eb:7d:9e:3f:1f:da: a4:e2:6f:1b:02:e5:e3:2a:b1:da:03:60:7e:69:3f: f9:96:79:ca:11:7b:3d:e3:db:d4:6e:78:a9:2e:ad: f7:42:23:2a:15:9c:eb:e3:03:71:59:32:23:d8:9f: 92:ed:ee:58:d4:f6:9b:66:b0:a6:df:03:f6:d9:a5: 33:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:62:5F:C1:49:CA:4E:DB:50:FA:AF:FB:F3:3B:C6:86:63:A4:38:89 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136362e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.166.0/24 Signature Algorithm: sha256WithRSAEncryption cb:a2:f6:2a:25:50:65:b5:df:b9:85:c6:88:a9:77:6c:af:09: 97:dd:07:b2:22:65:3d:2e:d9:f2:e4:43:41:69:b3:e6:1e:5a: 93:1b:28:c0:c2:6a:aa:68:5e:2a:9a:7d:a1:94:52:91:76:a2: 29:db:89:10:5b:92:3f:fb:d0:66:2c:0a:8b:98:04:54:92:b7: 6f:67:b9:55:32:94:1b:cf:94:c5:25:74:1c:55:7f:ec:a0:3c: ba:66:3b:0d:90:41:e4:fa:53:c1:6a:81:e3:89:ff:7b:00:ab: 71:6c:83:01:85:14:3a:45:b7:3a:9c:08:71:0f:85:11:17:63: b6:2a:4f:f9:6c:89:e3:c5:91:ab:0c:37:04:6a:40:ad:dd:dd: d2:ff:d8:d5:8f:c6:39:14:dc:28:3d:79:f3:60:e3:60:8f:bd: c5:57:bd:7d:3f:48:9b:4c:49:af:eb:d1:00:c0:d8:c7:d7:3e: 64:36:4f:00:3b:68:9e:01:d1:b4:08:df:4a:f3:20:27:44:43: 53:fa:85:9c:65:2a:0e:46:e9:b1:5a:d2:2d:9e:b3:45:ab:d7: 99:1f:1f:a5:64:92:a4:5c:2d:88:b5:21:b0:97:35:a1:8c:c6: e7:92:c8:60:83:bc:f0:a8:82:68:63:98:c1:65:b2:72:84:dc: 39:3b:81:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMIBHskLvEGXkK+GWVJWUtnUqjOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNjU1MDJaFw0yNTA5MjgwNzAwMDJaMDMxMTAvBgNV BAMTKEZCNjI1RkMxNDlDQTRFREI1MEZBQUZGQkYzM0JDNjg2NjNBNDM4ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSuZk/ddQa/4KjUNxrUo/LvUaG vD/SFzSitBfRfR61bOPcOf81ll7Vmr7fbak91xbvwIRx4JMa3AdexWxZ7jiUpxNs S1rMdHRrblmw8IPazGqHaGShPhi7g1T+UP6DafxLLd2aA+BbRrTooa/s5rCg7yh/ HA4K1GnZGeMIggvkJJmEUZ1BOeCS5S7KpCYZLMoo3sFYdqcbSg71XezwYvWFCR4I /ivVaEN6bby2PewvEGBtxsl5ku11FwP5Uet9nj8f2qTibxsC5eMqsdoDYH5pP/mW ecoRez3j29RueKkurfdCIyoVnOvjA3FZMiPYn5Lt7ljU9ptmsKbfA/bZpTOJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+2JfwUnKTttQ+q/78zvGhmOkOIkwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7pjANBgkqhkiG 9w0BAQsFAAOCAQEAy6L2KiVQZbXfuYXGiKl3bK8Jl90HsiJlPS7Z8uRDQWmz5h5a kxsowMJqqmheKpp9oZRSkXaiKduJEFuSP/vQZiwKi5gEVJK3b2e5VTKUG8+UxSV0 HFV/7KA8umY7DZBB5PpTwWqB44n/ewCrcWyDAYUUOkW3OpwIcQ+FERdjtipP+WyJ 48WRqww3BGpArd3d0v/Y1Y/GORTcKD1582DjYI+9xVe9fT9Im0xJr+vRAMDYx9c+ ZDZPADtongHRtAjfSvMgJ0RDU/qFnGUqDkbpsVrSLZ6zRavXmR8fpWSSpFwtiLUh sJc1oYzG55LIYIO88KiCaGOYwWWycoTcOTuBqw== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org