$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137342e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: yV6n1vN7yYjPUofsiT2wryWxOVpvGT9HGb5GVY2o+PM= Subject key identifier: A2:57:88:0D:25:7C:80:74:2B:7A:8D:E6:A6:EF:87:CE:45:E0:7E:A0 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 78DE7AFC8E9F5C17B0048BF7FEBB58C531F4827C Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:00 +0000 ROA not before: Sun 29 Sep 2024 08:55:00 +0000 ROA not after: Sun 28 Sep 2025 09:00:00 +0000 asID: 17727 IP address blocks: 202.59.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:de:7a:fc:8e:9f:5c:17:b0:04:8b:f7:fe:bb:58:c5:31:f4:82:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:00 2024 GMT Not After : Sep 28 09:00:00 2025 GMT Subject: CN=A257880D257C80742B7A8DE6A6EF87CE45E07EA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:13:10:92:55:55:2f:b5:e2:d2:73:d0:5e:ef: 55:b3:d9:27:c5:6b:79:f1:e7:f1:1b:67:3b:c7:d5: a5:5b:68:c8:03:4f:07:f3:fb:3a:ee:91:13:4c:d3: c1:84:c9:79:70:aa:6c:11:87:e5:52:c4:bd:7c:51: ce:5b:3a:5c:e8:ab:19:a8:23:e9:a0:36:d8:f9:ef: 48:e5:c9:a5:4e:a7:d9:87:d0:08:ac:af:84:55:02: c9:2b:7c:31:34:9d:8d:5a:97:36:1a:ab:e4:44:14: d7:ce:a4:cc:6d:99:d9:59:cc:45:0a:91:3c:c7:63: c9:56:cd:42:cc:12:cc:34:2c:96:fd:eb:0f:f7:a7: 3e:76:bc:dd:97:08:17:be:8f:33:f3:b7:7f:5a:eb: bd:f0:e0:c6:9e:ce:91:f5:ef:c6:1c:36:c5:ec:cc: ac:eb:19:69:f8:89:17:58:02:1b:8d:ec:a2:fb:92: 3d:f5:9f:90:97:1a:15:b1:1c:7d:0b:46:8b:53:05: c5:4d:61:5e:85:1e:fe:1f:8d:6f:e8:60:0b:8d:ec: 77:6e:7f:f1:90:7c:e8:4a:d8:bb:29:e6:26:d0:fb: f2:0e:62:e2:99:77:0d:9e:6f:25:88:fd:78:0c:be: c6:38:83:aa:32:f4:0e:c6:35:dd:14:50:72:ac:32: df:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:57:88:0D:25:7C:80:74:2B:7A:8D:E6:A6:EF:87:CE:45:E0:7E:A0 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.174.0/24 Signature Algorithm: sha256WithRSAEncryption 76:18:10:c9:70:c8:45:78:f7:72:1f:f1:87:0a:15:ec:e6:a2: e7:82:ae:6d:e5:5c:79:0d:dc:f1:d3:96:ff:9c:d2:33:7d:14: c2:5f:80:11:e5:d0:66:0e:c9:8b:7f:59:66:94:1d:ca:4e:ed: be:20:ca:dd:c2:dc:12:5e:47:ee:b0:fd:42:2d:ee:f7:a2:e7: df:89:33:f0:98:45:47:92:f4:00:67:3d:e7:6f:37:b5:c6:f6: f7:a7:da:2d:66:e7:71:96:cb:b6:72:86:eb:b4:23:da:f1:9f: df:f1:33:ad:82:16:20:58:34:4c:bc:9c:61:49:34:0f:af:f1: ce:c9:0b:ec:9c:4b:7f:06:9d:a9:a2:35:ee:3d:cc:ee:98:01: be:0b:04:19:36:53:ce:7a:dd:c7:3a:97:89:68:63:39:02:7c: 24:0c:43:b1:df:f4:53:74:a0:c0:a9:b8:26:52:a9:06:b4:fd: 4b:41:33:cd:cd:69:3b:f6:e3:d4:0c:d3:84:90:5a:1f:5b:5f: 7f:f0:de:d9:58:ec:12:25:d4:fa:63:d7:16:8b:dd:eb:78:13: 89:0d:df:fd:f0:1a:cb:93:59:13:13:cb:36:9a:ca:5b:0a:7a: 4d:3e:dd:db:90:09:4e:17:49:72:de:c0:08:b7:da:fd:10:75: bd:6c:4a:8a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeN56/I6fXBewBIv3/rtYxTH0gnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDBaFw0yNTA5MjgwOTAwMDBaMDMxMTAvBgNV BAMTKEEyNTc4ODBEMjU3QzgwNzQyQjdBOERFNkE2RUY4N0NFNDVFMDdFQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrExCSVVUvteLSc9Be71Wz2SfF a3nx5/EbZzvH1aVbaMgDTwfz+zrukRNM08GEyXlwqmwRh+VSxL18Uc5bOlzoqxmo I+mgNtj570jlyaVOp9mH0Aisr4RVAskrfDE0nY1alzYaq+REFNfOpMxtmdlZzEUK kTzHY8lWzULMEsw0LJb96w/3pz52vN2XCBe+jzPzt39a673w4MaezpH178YcNsXs zKzrGWn4iRdYAhuN7KL7kj31n5CXGhWxHH0LRotTBcVNYV6FHv4fjW/oYAuN7Hdu f/GQfOhK2Lsp5ibQ+/IOYuKZdw2ebyWI/XgMvsY4g6oy9A7GNd0UUHKsMt+LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoleIDSV8gHQreo3mpu+HzkXgfqAwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rjANBgkqhkiG 9w0BAQsFAAOCAQEAdhgQyXDIRXj3ch/xhwoV7Oai54KubeVceQ3c8dOW/5zSM30U wl+AEeXQZg7Ji39ZZpQdyk7tviDK3cLcEl5H7rD9Qi3u96Ln34kz8JhFR5L0AGc9 5283tcb296faLWbncZbLtnKG67Qj2vGf3/EzrYIWIFg0TLycYUk0D6/xzskL7JxL fwadqaI17j3M7pgBvgsEGTZTznrdxzqXiWhjOQJ8JAxDsd/0U3SgwKm4JlKpBrT9 S0Ezzc1pO/bj1AzThJBaH1tff/De2VjsEiXU+mPXFovd63gTiQ3f/fAay5NZExPL NprKWwp6TT7d25AJThdJct7ACLfa/RB1vWxKig== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org