$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137332e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137332e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: o6Q1vbopJ5rt/Bgd4dY3Kw0rNNbocvDI/w1TPMtOW9Y= Subject key identifier: F0:62:8F:DC:00:04:F4:B2:BA:0D:5C:2B:B3:96:12:F7:29:BD:FB:8E Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 6C2D6A6DCA6FA20C1F017D83703D21E2CB902187 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137332e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:01 +0000 ROA not before: Sun 29 Sep 2024 08:55:01 +0000 ROA not after: Sun 28 Sep 2025 09:00:01 +0000 asID: 17727 IP address blocks: 202.59.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:2d:6a:6d:ca:6f:a2:0c:1f:01:7d:83:70:3d:21:e2:cb:90:21:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:01 2024 GMT Not After : Sep 28 09:00:01 2025 GMT Subject: CN=F0628FDC0004F4B2BA0D5C2BB39612F729BDFB8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:e2:f1:b2:db:6f:73:0a:7a:02:e6:04:ab:de: 44:c1:b5:59:c1:f3:1f:d9:40:41:36:79:15:78:e2: 84:e1:be:a2:f9:35:28:24:39:1d:7a:96:e9:b3:0e: 85:18:54:ac:bc:28:2d:93:c3:3f:84:5c:f1:fd:fb: bf:56:80:ee:b4:2a:7b:a0:38:3b:3a:ce:96:ac:f8: 42:40:0c:81:a3:fa:af:68:b7:a6:4e:26:88:be:2c: a3:d1:3c:b7:8c:da:54:99:59:b7:2c:51:49:e1:1e: d3:8d:70:0e:c1:44:70:32:75:ef:56:88:cf:70:1b: a7:5c:3e:7f:77:ff:f5:8b:ca:4c:73:19:cd:9e:96: e2:46:38:fc:c5:09:4d:30:0f:bb:79:2a:19:12:33: ff:4a:45:4b:22:89:b7:bb:16:95:f4:bc:d5:0a:3a: 58:a2:a7:24:2b:6a:19:ad:fc:01:91:8a:d8:75:dc: cd:ca:49:3e:45:1f:a0:1d:9b:5c:fe:60:bd:45:c6: a7:d8:7f:fd:9a:c9:c1:65:50:c8:f1:a2:97:07:95: 56:42:4c:6f:54:27:60:78:68:aa:c6:d6:d4:b2:dd: 92:16:ce:56:b3:b8:95:8a:6a:0d:ad:f7:31:78:3a: 76:65:ab:46:7e:57:bd:b2:93:4a:15:2f:49:84:b6: 4b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:62:8F:DC:00:04:F4:B2:BA:0D:5C:2B:B3:96:12:F7:29:BD:FB:8E X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137332e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.173.0/24 Signature Algorithm: sha256WithRSAEncryption b9:c1:f3:33:70:75:d7:ce:be:12:9d:33:db:f5:6a:6f:88:55: 5f:f3:13:e2:24:b3:2b:75:ea:c0:67:a2:15:55:aa:e5:83:9c: 9a:0a:da:e3:da:64:44:bc:e4:8c:c5:bb:bb:03:af:e9:f9:4b: 18:3c:e4:e0:09:10:b8:d0:90:57:3b:49:6a:ec:2f:fa:a2:59: cb:39:9e:3b:2e:21:fa:63:a8:a7:44:46:e9:47:c7:fb:08:1f: c0:34:fb:82:5b:f8:ec:08:6c:d8:8c:33:3a:57:96:bd:66:3b: 51:2c:d8:e5:91:d6:f5:1f:75:3a:e3:c7:00:d9:51:5f:24:e8: c8:f1:84:07:04:ae:67:58:86:4b:d5:20:31:8f:ad:5c:90:09: df:5a:4c:8c:c1:b9:88:9e:b2:42:f9:be:fc:16:73:50:cd:5e: 76:da:eb:41:ea:92:01:ff:ad:29:02:97:98:5e:11:d8:78:43: 1e:5f:cc:42:96:fc:da:df:9e:9c:1a:06:17:25:95:ed:60:ae: 23:0b:29:17:87:7e:30:88:03:6b:df:8e:7c:3c:42:ef:7a:24: 6d:f3:27:cd:61:b4:15:a0:43:7b:96:0f:7d:75:54:3c:66:a4: 1e:54:8c:d5:0b:54:51:14:98:17:8b:bd:82:92:98:b9:3a:8f: 89:a8:a2:f2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbC1qbcpvogwfAX2DcD0h4suQIYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDFaFw0yNTA5MjgwOTAwMDFaMDMxMTAvBgNV BAMTKEYwNjI4RkRDMDAwNEY0QjJCQTBENUMyQkIzOTYxMkY3MjlCREZCOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD54vGy229zCnoC5gSr3kTBtVnB 8x/ZQEE2eRV44oThvqL5NSgkOR16lumzDoUYVKy8KC2Twz+EXPH9+79WgO60Knug ODs6zpas+EJADIGj+q9ot6ZOJoi+LKPRPLeM2lSZWbcsUUnhHtONcA7BRHAyde9W iM9wG6dcPn93//WLykxzGc2eluJGOPzFCU0wD7t5KhkSM/9KRUsiibe7FpX0vNUK OliipyQrahmt/AGRith13M3KST5FH6Adm1z+YL1FxqfYf/2aycFlUMjxopcHlVZC TG9UJ2B4aKrG1tSy3ZIWzlazuJWKag2t9zF4OnZlq0Z+V72yk0oVL0mEtks/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8GKP3AAE9LK6DVwrs5YS9ym9+44wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rTANBgkqhkiG 9w0BAQsFAAOCAQEAucHzM3B1186+Ep0z2/Vqb4hVX/MT4iSzK3XqwGeiFVWq5YOc mgra49pkRLzkjMW7uwOv6flLGDzk4AkQuNCQVztJauwv+qJZyzmeOy4h+mOop0RG 6UfH+wgfwDT7glv47Ahs2IwzOleWvWY7USzY5ZHW9R91OuPHANlRXyToyPGEBwSu Z1iGS9UgMY+tXJAJ31pMjMG5iJ6yQvm+/BZzUM1edtrrQeqSAf+tKQKXmF4R2HhD Hl/MQpb82t+enBoGFyWV7WCuIwspF4d+MIgDa9+OfDxC73okbfMnzWG0FaBDe5YP fXVUPGakHlSM1QtUURSYF4u9gpKYuTqPiaii8g== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org