$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137302e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: ytr5djm3FojS3AajadalflSoh3FjKgKa96RvM1vf6fE= Subject key identifier: 92:AF:60:FF:0C:D6:B8:22:4F:2D:18:8B:18:F1:EF:C0:9C:E0:F3:E9 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 4006B933345C660450D59B4AFA107BA1BBEB20B6 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:01 +0000 ROA not before: Sun 29 Sep 2024 08:55:01 +0000 ROA not after: Sun 28 Sep 2025 09:00:01 +0000 asID: 17727 IP address blocks: 202.59.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:06:b9:33:34:5c:66:04:50:d5:9b:4a:fa:10:7b:a1:bb:eb:20:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:01 2024 GMT Not After : Sep 28 09:00:01 2025 GMT Subject: CN=92AF60FF0CD6B8224F2D188B18F1EFC09CE0F3E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cf:1f:9d:65:b3:94:fe:3c:11:bb:01:9c:a6: df:92:6e:c5:2c:a0:e6:86:f1:75:fb:6c:a0:1c:58: 91:c2:3d:53:7f:d9:6f:e4:c8:d8:13:7d:aa:31:d8: 5f:69:59:cc:1b:58:87:de:f7:3c:a2:9c:4f:8e:ad: 73:ad:d1:7f:65:19:15:b4:85:72:62:d7:05:27:d3: fd:cd:ba:c9:5e:5d:78:0e:dc:a8:3c:90:f8:52:12: 1b:47:2f:84:d6:99:86:85:c1:70:5f:3b:eb:49:f3: d4:34:a3:a9:ff:9e:29:27:09:12:af:64:46:8a:ce: 35:8f:a4:a5:52:5c:80:3d:ed:a1:f0:6c:b9:f3:64: b9:a1:bb:5e:29:b5:ef:f0:da:74:57:9e:f9:11:29: 47:93:e5:d2:2b:ea:da:09:e0:6b:be:6e:7c:c3:2d: ce:01:2d:d1:b8:1a:87:82:f8:f4:df:a9:23:0f:c1: 16:d2:f9:c7:ac:10:2d:17:5e:69:a6:e9:35:9f:8b: ac:2f:1a:50:1d:e0:50:e9:ac:b1:2f:49:9c:f5:72: 65:0e:e2:e7:41:9e:3e:24:af:05:09:92:42:d2:7f: e6:d0:4e:92:e4:a8:12:2b:20:4d:7d:75:a9:08:89: a9:59:59:d6:3f:fd:a4:0a:22:61:ad:a6:6a:99:bb: c4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AF:60:FF:0C:D6:B8:22:4F:2D:18:8B:18:F1:EF:C0:9C:E0:F3:E9 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.170.0/24 Signature Algorithm: sha256WithRSAEncryption 37:72:90:63:bb:34:16:c5:54:36:76:aa:b2:43:1b:a9:da:e1: 8c:b8:69:8b:94:84:62:cd:20:90:dc:08:07:b4:49:75:e7:82: e5:70:7f:cf:a8:9d:3f:ce:f3:bc:50:e5:a8:42:e1:dd:5c:9c: 0b:7b:0f:7c:3d:74:be:22:45:e9:39:d6:fd:c7:31:ac:26:82: e1:8f:47:37:6b:30:87:56:b5:29:e0:0c:88:72:2e:15:e4:cd: cc:09:99:90:85:e7:33:36:6d:a9:15:ff:31:71:74:e9:f9:93: 77:1d:69:43:88:98:d9:50:68:87:2e:06:9b:08:ca:e3:e7:0d: b6:d5:43:ed:b1:3f:0b:b6:63:bd:02:a8:c7:00:cd:b3:e8:5c: 46:1b:41:11:d3:e6:b4:aa:0a:23:e0:7e:38:31:f8:c3:ea:78: 10:11:5e:ad:9a:7d:f7:e2:bf:3d:78:07:63:ad:0a:fe:5f:15: 2f:85:79:5d:a1:4f:0c:ab:80:5d:a5:f6:3a:65:e8:51:52:8a: 8f:c7:00:0e:7b:b8:06:e3:95:5c:8d:e2:45:fa:63:eb:a4:0b: 0a:c6:7a:74:d5:a4:19:5b:f1:9a:43:91:19:84:dd:48:bc:88: ab:c4:5b:68:75:df:18:70:cf:19:f7:90:3d:ef:53:b4:b3:b3: 4c:21:6f:96 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQAa5MzRcZgRQ1ZtK+hB7obvrILYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDFaFw0yNTA5MjgwOTAwMDFaMDMxMTAvBgNV BAMTKDkyQUY2MEZGMENENkI4MjI0RjJEMTg4QjE4RjFFRkMwOUNFMEYzRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOzx+dZbOU/jwRuwGcpt+SbsUs oOaG8XX7bKAcWJHCPVN/2W/kyNgTfaox2F9pWcwbWIfe9zyinE+OrXOt0X9lGRW0 hXJi1wUn0/3NusleXXgO3Kg8kPhSEhtHL4TWmYaFwXBfO+tJ89Q0o6n/niknCRKv ZEaKzjWPpKVSXIA97aHwbLnzZLmhu14pte/w2nRXnvkRKUeT5dIr6toJ4Gu+bnzD Lc4BLdG4GoeC+PTfqSMPwRbS+cesEC0XXmmm6TWfi6wvGlAd4FDprLEvSZz1cmUO 4udBnj4krwUJkkLSf+bQTpLkqBIrIE19dakIialZWdY//aQKImGtpmqZu8SXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkq9g/wzWuCJPLRiLGPHvwJzg8+kwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qjANBgkqhkiG 9w0BAQsFAAOCAQEAN3KQY7s0FsVUNnaqskMbqdrhjLhpi5SEYs0gkNwIB7RJdeeC 5XB/z6idP87zvFDlqELh3VycC3sPfD10viJF6TnW/ccxrCaC4Y9HN2swh1a1KeAM iHIuFeTNzAmZkIXnMzZtqRX/MXF06fmTdx1pQ4iY2VBohy4GmwjK4+cNttVD7bE/ C7ZjvQKoxwDNs+hcRhtBEdPmtKoKI+B+ODH4w+p4EBFerZp99+K/PXgHY60K/l8V L4V5XaFPDKuAXaX2OmXoUVKKj8cADnu4BuOVXI3iRfpj66QLCsZ6dNWkGVvxmkOR GYTdSLyIq8RbaHXfGHDPGfeQPe9TtLOzTCFvlg== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org