$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136382e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3136382e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: yhNnI2xd983pZb2EJzPYDMN+oGGvyrNEG+JyWqi0fL8= Subject key identifier: 0D:C1:86:9E:D7:DE:6F:82:2E:2B:D6:E9:83:3F:35:24:45:9A:A8:51 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 7B98315D4787C99A62AEF38D0956BB678562F163 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136382e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 08:00:01 +0000 ROA not before: Sun 29 Sep 2024 07:55:01 +0000 ROA not after: Sun 28 Sep 2025 08:00:01 +0000 asID: 17727 IP address blocks: 202.59.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:98:31:5d:47:87:c9:9a:62:ae:f3:8d:09:56:bb:67:85:62:f1:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 07:55:01 2024 GMT Not After : Sep 28 08:00:01 2025 GMT Subject: CN=0DC1869ED7DE6F822E2BD6E9833F3524459AA851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b6:aa:71:69:ae:b7:95:9e:c2:98:a7:7b:4d: d4:6a:b3:4d:a2:96:c4:02:31:af:4a:0e:72:3c:92: 50:8a:27:4c:54:a7:69:e1:ce:e3:e8:fb:3b:6c:7a: 94:88:49:76:ef:36:f1:41:be:51:d2:a5:fa:bc:b5: 9c:c5:9f:d8:1c:6c:ad:94:39:e9:e5:f0:38:45:1a: 49:f2:11:28:02:0b:f1:2e:5a:26:8f:6e:63:94:97: 95:8c:6b:a2:21:37:03:80:82:3a:4f:f1:2d:43:fa: e8:25:3d:d7:cc:b8:c5:f3:70:90:e1:c1:1e:d5:9a: e1:20:56:49:e3:7a:7a:ba:26:96:df:55:7c:20:6d: e8:35:fa:ff:14:3d:63:da:88:e7:aa:d3:a1:74:ee: 11:ec:c0:79:40:d0:3f:b2:7d:7f:49:3c:df:89:a6: ea:f1:57:15:c4:7f:09:d2:9e:5b:89:fc:94:7d:49: 73:b4:60:d5:bc:ff:20:17:8e:98:b7:c1:8e:b7:77: dd:91:cd:b0:03:cf:24:17:67:e5:c8:b8:db:be:97: 19:44:e9:5f:5d:9a:b5:b3:03:1f:a1:fe:2e:63:29: a0:d7:a2:2d:28:63:12:b8:44:d0:c1:33:d6:da:4e: a2:7a:3a:86:72:2a:4c:08:3d:fb:fb:12:79:1f:8d: b4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C1:86:9E:D7:DE:6F:82:2E:2B:D6:E9:83:3F:35:24:45:9A:A8:51 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136382e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.168.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:7b:32:5d:90:5b:37:21:66:0e:45:c3:53:3e:ee:88:7b:8b: df:57:0f:6d:4f:91:e6:7e:01:64:47:d6:64:66:29:fa:af:51: 0a:29:33:1e:f0:db:67:ae:f1:66:25:e7:f3:c2:61:5f:c0:64: be:86:71:ad:6c:b4:81:df:50:9a:c3:c6:fd:a5:26:04:66:28: db:c9:34:c4:47:fa:9a:22:63:a8:72:af:e5:6c:c1:e0:f3:79: 85:d4:25:1c:0a:a1:21:7f:de:6e:5e:e3:67:19:c2:3f:9e:aa: 75:99:e6:b4:bc:de:44:d9:f1:79:e6:23:a0:d5:c6:48:7d:38: 40:76:e9:c6:41:ec:98:33:e8:72:b0:6f:75:7e:b5:ea:70:2b: 12:eb:05:96:d9:fa:1f:ce:6a:87:e4:68:eb:95:5d:6a:90:04: 5c:42:f2:73:8d:8e:c0:e2:7e:0c:26:85:2c:0f:00:bc:77:f4: 44:b9:02:1c:ee:68:a1:89:85:76:64:ae:a6:cd:48:4e:d4:7f: fa:d5:bb:82:16:70:ab:76:14:ba:f3:48:e4:6e:59:c7:01:76: ba:9a:1d:7f:f9:9a:c7:f8:bc:9e:cf:a4:02:e9:1a:ec:ab:a4: ca:bc:87:89:b1:b4:9a:48:10:93:b9:0a:46:d2:0f:9d:89:05: d0:b0:b8:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe5gxXUeHyZpirvONCVa7Z4Vi8WMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwNzU1MDFaFw0yNTA5MjgwODAwMDFaMDMxMTAvBgNV BAMTKDBEQzE4NjlFRDdERTZGODIyRTJCRDZFOTgzM0YzNTI0NDU5QUE4NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCatqpxaa63lZ7CmKd7TdRqs02i lsQCMa9KDnI8klCKJ0xUp2nhzuPo+ztsepSISXbvNvFBvlHSpfq8tZzFn9gcbK2U Oenl8DhFGknyESgCC/EuWiaPbmOUl5WMa6IhNwOAgjpP8S1D+uglPdfMuMXzcJDh wR7VmuEgVknjenq6JpbfVXwgbeg1+v8UPWPaiOeq06F07hHswHlA0D+yfX9JPN+J purxVxXEfwnSnluJ/JR9SXO0YNW8/yAXjpi3wY63d92RzbADzyQXZ+XIuNu+lxlE 6V9dmrWzAx+h/i5jKaDXoi0oYxK4RNDBM9baTqJ6OoZyKkwIPfv7EnkfjbRNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDcGGntfeb4IuK9bpgz81JEWaqFEwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qDANBgkqhkiG 9w0BAQsFAAOCAQEAOnsyXZBbNyFmDkXDUz7uiHuL31cPbU+R5n4BZEfWZGYp+q9R CikzHvDbZ67xZiXn88JhX8BkvoZxrWy0gd9QmsPG/aUmBGYo28k0xEf6miJjqHKv 5WzB4PN5hdQlHAqhIX/ebl7jZxnCP56qdZnmtLzeRNnxeeYjoNXGSH04QHbpxkHs mDPocrBvdX616nArEusFltn6H85qh+Ro65VdapAEXELyc42OwOJ+DCaFLA8AvHf0 RLkCHO5ooYmFdmSups1ITtR/+tW7ghZwq3YUuvNI5G5ZxwF2upodf/max/i8ns+k Auka7KukyryHibG0mkgQk7kKRtIPnYkF0LC41A== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org