$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137322e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137322e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: /uRnMBKcHwt+mI69AxWKYo3op07DhzoDfD+jIUXO1Jw= Subject key identifier: 57:01:D1:7C:77:5F:58:34:24:CB:EE:B0:9B:CB:22:2C:0F:07:D8:6A Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 64B762D03B34E3BDA80B60EA8B77F1A44C3A0DE1 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137322e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:03 +0000 ROA not before: Sun 29 Sep 2024 08:55:03 +0000 ROA not after: Sun 28 Sep 2025 09:00:03 +0000 asID: 17727 IP address blocks: 202.59.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:b7:62:d0:3b:34:e3:bd:a8:0b:60:ea:8b:77:f1:a4:4c:3a:0d:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:03 2024 GMT Not After : Sep 28 09:00:03 2025 GMT Subject: CN=5701D17C775F583424CBEEB09BCB222C0F07D86A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:57:90:03:43:86:8c:e0:57:5d:b2:24:f2:32: 57:c4:fe:f5:42:6f:f6:96:f1:95:ce:1d:7c:ad:09: 91:4f:9e:8c:ac:e3:76:19:8a:8b:83:2a:dc:f8:cd: 5c:9c:cc:46:da:23:78:e5:8b:c7:0d:83:43:da:d3: 0d:35:3c:f8:a8:ab:f0:c0:2e:34:e7:f4:f8:f4:78: 86:6c:50:d1:92:76:cf:b6:f7:12:e5:58:f7:e7:1e: 13:ec:06:cc:67:f5:82:20:1d:be:61:a6:8f:ee:84: a0:87:24:ba:44:34:1c:e6:92:56:97:c9:a1:ea:1b: c6:5a:27:d1:f0:57:77:02:2d:8d:24:d2:8a:e5:d2: 53:6c:33:ee:6e:9f:05:5c:bd:f4:24:08:f5:0b:f9: b0:6c:96:44:0d:44:05:7e:e6:9d:53:9d:73:c6:cb: 5b:64:7d:6b:b4:85:58:af:32:22:27:f5:75:e2:54: c8:b1:22:76:2f:60:d3:45:2d:9c:5d:2f:14:7e:30: 2f:99:83:2d:81:a7:86:00:89:12:2c:55:51:00:b8: 67:60:bd:08:fb:c8:c1:cb:ab:d7:d1:54:cd:fb:3a: 24:52:57:c6:f5:f4:8b:d6:43:07:3c:66:80:d8:a5: f7:a6:d1:fd:f5:cd:14:e1:ee:2b:de:c8:40:e1:e0: 29:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:01:D1:7C:77:5F:58:34:24:CB:EE:B0:9B:CB:22:2C:0F:07:D8:6A X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137322e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.172.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:e8:5d:80:f1:65:b9:e8:63:ab:d5:0a:ed:d3:43:ab:d2:e2: fb:4d:2c:ec:ed:a6:46:a8:dd:e6:58:be:c1:4a:94:6f:71:e1: c9:fa:d3:f6:1b:c8:81:eb:f9:c6:46:e0:e5:bf:15:9e:11:09: 43:d3:5c:0d:a0:b8:12:40:88:fd:24:ab:2d:ba:a9:d2:69:dd: 06:64:8e:4a:d4:a5:3e:bc:7e:ab:c2:50:df:1b:a2:b2:ec:6c: 12:9f:d6:df:b9:a7:93:62:e9:b1:44:62:cf:c1:f3:d6:4c:8a: 91:54:0d:e9:5e:da:28:7b:62:b4:04:36:74:3b:dd:e9:ee:13: 97:7d:82:81:73:d7:50:d6:ec:c0:5b:a9:b7:e5:a0:c9:9f:ee: 4e:69:77:10:6d:28:43:45:78:ac:1c:d1:84:a0:3f:1d:11:8c: 8b:b0:6d:f3:bb:64:80:30:e7:20:bd:40:27:bc:a5:c5:49:c4: 14:48:20:49:c3:42:98:ae:ff:f6:16:2f:53:3a:25:1e:43:72: 70:63:3d:27:b4:98:60:47:4a:e7:fc:c1:d3:9e:db:1e:de:86: 66:d4:57:1d:44:33:fe:ee:63:1e:5c:89:fb:b6:a0:7a:67:2e: 95:af:7e:e6:c3:38:32:00:5a:27:bc:8b:ff:44:74:d0:fb:ad: c2:d4:0b:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZLdi0Ds0472oC2Dqi3fxpEw6DeEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDNaFw0yNTA5MjgwOTAwMDNaMDMxMTAvBgNV BAMTKDU3MDFEMTdDNzc1RjU4MzQyNENCRUVCMDlCQ0IyMjJDMEYwN0Q4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqV5ADQ4aM4FddsiTyMlfE/vVC b/aW8ZXOHXytCZFPnoys43YZiouDKtz4zVyczEbaI3jli8cNg0Pa0w01PPioq/DA LjTn9Pj0eIZsUNGSds+29xLlWPfnHhPsBsxn9YIgHb5hpo/uhKCHJLpENBzmklaX yaHqG8ZaJ9HwV3cCLY0k0orl0lNsM+5unwVcvfQkCPUL+bBslkQNRAV+5p1TnXPG y1tkfWu0hVivMiIn9XXiVMixInYvYNNFLZxdLxR+MC+Zgy2Bp4YAiRIsVVEAuGdg vQj7yMHLq9fRVM37OiRSV8b19IvWQwc8ZoDYpfem0f31zRTh7iveyEDh4CltAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVwHRfHdfWDQky+6wm8siLA8H2GowHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rDANBgkqhkiG 9w0BAQsFAAOCAQEAnehdgPFluehjq9UK7dNDq9Li+00s7O2mRqjd5li+wUqUb3Hh yfrT9hvIgev5xkbg5b8VnhEJQ9NcDaC4EkCI/SSrLbqp0mndBmSOStSlPrx+q8JQ 3xuisuxsEp/W37mnk2LpsURiz8Hz1kyKkVQN6V7aKHtitAQ2dDvd6e4Tl32CgXPX UNbswFupt+WgyZ/uTml3EG0oQ0V4rBzRhKA/HRGMi7Bt87tkgDDnIL1AJ7ylxUnE FEggScNCmK7/9hYvUzolHkNycGM9J7SYYEdK5/zB057bHt6GZtRXHUQz/u5jHlyJ +7agemcula9+5sM4MgBaJ7yL/0R00PutwtQL7g== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org