$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137312e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: a6FCHbvF1isoQb4CYRJN8y2bppkN0AShUw/wrh280Zw= Subject key identifier: FB:0E:94:96:FD:C4:8D:29:84:77:E1:63:D8:AC:23:46:CC:FF:1F:E6 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 43EE866F07D0C29D8D56FA2D09560760930DA131 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:02 +0000 ROA not before: Sun 29 Sep 2024 08:55:02 +0000 ROA not after: Sun 28 Sep 2025 09:00:02 +0000 asID: 17727 IP address blocks: 202.59.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ee:86:6f:07:d0:c2:9d:8d:56:fa:2d:09:56:07:60:93:0d:a1:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:02 2024 GMT Not After : Sep 28 09:00:02 2025 GMT Subject: CN=FB0E9496FDC48D298477E163D8AC2346CCFF1FE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2b:35:f4:e6:6c:4e:66:7e:f0:c0:a7:0a:a9: 6e:fa:7c:90:ed:06:9c:d6:f3:7b:41:3b:8e:90:9f: 0a:39:d0:d8:b6:db:a1:1e:fb:30:29:57:1b:5b:19: d0:ff:b4:69:14:f1:f7:a1:71:b7:9d:be:ed:c6:14: 47:56:7c:35:ee:22:55:6a:80:7b:b0:c4:6d:c9:17: 99:a9:85:8a:cd:91:c4:40:c3:81:32:eb:0e:54:f0: a4:ff:57:14:78:d5:a1:21:2e:95:de:92:74:7a:18: e9:f0:32:44:cf:39:87:7c:5f:cb:c8:26:20:82:39: ba:f4:49:7c:d3:1f:99:dd:c0:c8:13:e9:33:eb:93: b7:7e:91:5e:b1:f2:03:6c:a6:d6:4f:ac:c0:51:cc: 5f:05:13:18:29:63:6e:41:88:a2:8a:f4:d7:55:d2: a0:37:72:8d:22:25:35:07:00:1e:3b:8c:71:64:41: 20:ca:9e:33:da:e7:e8:eb:8f:24:4d:6f:ab:5e:37: 2c:a7:a0:e1:3f:58:57:27:9b:63:4e:8d:57:c5:c1: ea:59:2f:d5:6e:e4:22:eb:6e:db:af:d5:13:75:af: 53:b9:6b:05:85:ce:6b:c8:05:f8:8b:eb:10:30:8b: 3a:80:97:62:f5:d6:2d:6f:30:ec:c0:0e:87:88:0d: df:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:0E:94:96:FD:C4:8D:29:84:77:E1:63:D8:AC:23:46:CC:FF:1F:E6 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137312e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.171.0/24 Signature Algorithm: sha256WithRSAEncryption 46:5f:db:63:93:99:65:40:e7:27:36:12:8c:ed:fe:d2:c3:f7: 38:ee:a0:07:55:8f:99:a2:68:ae:e1:fa:44:e5:2c:2a:03:2d: 52:c0:2d:eb:78:85:55:bc:c6:d4:14:88:85:d4:88:77:bc:b9: 98:d3:f9:ae:a1:ab:37:df:31:22:44:4b:be:20:8e:cc:fa:e3: b5:9b:b5:7d:45:63:ed:d3:35:e3:01:e0:85:53:7c:8c:ae:f2: 70:a6:1a:f8:76:bd:07:25:4e:ee:f4:87:eb:19:44:0e:4d:f0: 0c:53:43:24:40:dd:46:da:a6:35:1c:5b:9d:0a:80:d2:b2:21: 49:2b:36:55:59:21:8f:8b:cd:e9:c3:4c:96:5a:09:b5:ad:56: 59:4b:c1:ae:f6:2b:b9:08:14:40:1c:f6:b8:c2:35:fd:b1:09: 74:d2:51:89:90:2a:2b:50:31:66:82:6b:e1:10:28:3b:1e:9f: bd:b7:ed:54:70:21:2e:08:e7:27:ae:e8:cc:da:cc:cf:18:3c: 81:40:c2:f0:3d:46:fc:59:5f:20:89:09:2b:61:c6:dc:27:3a: 81:3c:8d:6e:fc:3e:9b:c3:87:23:9f:d3:3e:5e:38:10:6b:ad: 1f:27:de:c6:a7:b3:a3:df:f9:10:c1:f3:39:a5:ee:7f:c8:3e: bb:72:96:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ+6GbwfQwp2NVvotCVYHYJMNoTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDJaFw0yNTA5MjgwOTAwMDJaMDMxMTAvBgNV BAMTKEZCMEU5NDk2RkRDNDhEMjk4NDc3RTE2M0Q4QUMyMzQ2Q0NGRjFGRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhKzX05mxOZn7wwKcKqW76fJDt BpzW83tBO46Qnwo50Ni226Ee+zApVxtbGdD/tGkU8fehcbedvu3GFEdWfDXuIlVq gHuwxG3JF5mphYrNkcRAw4Ey6w5U8KT/VxR41aEhLpXeknR6GOnwMkTPOYd8X8vI JiCCObr0SXzTH5ndwMgT6TPrk7d+kV6x8gNsptZPrMBRzF8FExgpY25BiKKK9NdV 0qA3co0iJTUHAB47jHFkQSDKnjPa5+jrjyRNb6teNyynoOE/WFcnm2NOjVfFwepZ L9Vu5CLrbtuv1RN1r1O5awWFzmvIBfiL6xAwizqAl2L11i1vMOzADoeIDd/RAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+w6Ulv3EjSmEd+Fj2KwjRsz/H+YwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qzANBgkqhkiG 9w0BAQsFAAOCAQEARl/bY5OZZUDnJzYSjO3+0sP3OO6gB1WPmaJoruH6ROUsKgMt UsAt63iFVbzG1BSIhdSId7y5mNP5rqGrN98xIkRLviCOzPrjtZu1fUVj7dM14wHg hVN8jK7ycKYa+Ha9ByVO7vSH6xlEDk3wDFNDJEDdRtqmNRxbnQqA0rIhSSs2VVkh j4vN6cNMlloJta1WWUvBrvYruQgUQBz2uMI1/bEJdNJRiZAqK1AxZoJr4RAoOx6f vbftVHAhLgjnJ67ozNrMzxg8gUDC8D1G/FlfIIkJK2HG3Cc6gTyNbvw+m8OHI5/T Pl44EGutHyfexqezo9/5EMHzOaXuf8g+u3KWyg== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org