$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137352e302f32342d3234203d3e203137373237.roa File: 3230322e35392e3137352e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: ct+FXMneDsLNneDmDFQJDDv2N5v+DuSXyR8s3CelEbI= Subject key identifier: E3:DF:E6:0E:DD:52:19:9D:E5:BD:D6:8C:22:59:73:2B:87:E1:5B:E0 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0DD460BD2C7EA0A3246201BF1E5006C2A7542674 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137352e302f32342d3234203d3e203137373237.roa Signing time: Sun 29 Sep 2024 09:00:02 +0000 ROA not before: Sun 29 Sep 2024 08:55:02 +0000 ROA not after: Sun 28 Sep 2025 09:00:02 +0000 asID: 17727 IP address blocks: 202.59.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:d4:60:bd:2c:7e:a0:a3:24:62:01:bf:1e:50:06:c2:a7:54:26:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 08:55:02 2024 GMT Not After : Sep 28 09:00:02 2025 GMT Subject: CN=E3DFE60EDD52199DE5BDD68C2259732B87E15BE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2e:7e:cb:e8:6a:ef:54:e2:f5:d4:63:35:c4: 68:6e:97:a5:5a:fd:b3:79:4d:8e:20:89:c6:24:05: 2a:73:1b:e1:29:6e:24:fc:15:d8:22:46:26:be:61: 41:bd:9e:74:b3:9e:de:3d:c3:58:87:68:6f:87:78: 9d:89:7e:72:5a:09:be:8e:aa:bf:16:59:f7:13:a1: b2:6c:79:a2:42:48:cf:40:53:a2:85:7a:2b:f2:0f: 04:2a:ce:ad:6f:56:0f:41:21:21:bc:c0:82:97:05: dd:03:50:96:5c:4d:85:7d:32:dd:d3:ee:92:bc:89: d8:f9:98:11:04:a3:90:c5:1c:1d:56:81:fc:1c:46: 7a:96:89:56:dc:f5:50:5b:5e:3e:bf:c8:ee:d1:74: 93:06:80:01:e6:2c:f2:bc:be:87:27:41:69:a7:35: 3c:0a:aa:58:55:99:8e:b4:98:07:48:f0:3f:e3:b1: d9:83:7e:ff:db:06:5d:bf:f8:6e:9a:5b:fa:32:f2: 9f:8e:3b:68:7e:d1:45:54:ad:38:db:55:4b:3a:8a: 34:2e:c3:31:67:7e:16:b0:a9:f0:98:b0:a3:0c:ca: 1e:ee:dc:35:66:b7:be:e0:a8:c4:50:64:92:ff:bd: 5c:84:71:af:d8:80:0b:88:a8:29:59:86:47:40:82: b1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:DF:E6:0E:DD:52:19:9D:E5:BD:D6:8C:22:59:73:2B:87:E1:5B:E0 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137352e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.59.175.0/24 Signature Algorithm: sha256WithRSAEncryption 29:15:a4:9d:5b:1c:42:67:e7:a8:c3:fb:e4:cf:41:41:66:ba: 31:3e:ea:77:1f:4e:7d:a5:a9:18:e9:d7:c7:e5:23:7a:15:f1: 8a:8c:b4:bf:91:fa:13:45:bd:1e:6f:d4:ad:a4:82:24:e9:b6: a0:ce:bd:ad:ad:7d:8a:25:0e:58:70:44:54:9e:b5:59:14:cf: 0a:bb:16:a0:87:bd:21:04:d7:7d:ba:2f:1a:3f:98:c5:d7:b1: 6a:b7:2c:bc:85:5d:6f:13:af:c7:c2:7c:3c:65:33:84:40:4a: 9f:f9:57:03:15:ec:56:c1:5c:4f:2f:19:e4:4c:69:5e:9c:eb: e6:5d:b4:08:6c:c3:38:c4:e8:59:c3:60:20:d9:fa:e3:cf:0b: fe:a1:05:ed:d7:ef:f1:37:3f:ea:97:08:8b:f5:4d:24:8f:6e: 24:59:6b:fc:33:57:be:3b:a6:22:8c:b4:00:78:8b:6f:47:6e: c6:c8:6c:17:00:df:2b:55:2c:dd:90:78:17:c2:df:32:c5:3f: a8:0c:09:00:d1:48:f5:f1:eb:17:ec:ec:d2:ec:ad:cb:86:31: 2d:18:7e:49:29:f2:25:be:e8:f0:be:84:e3:f9:27:76:91:51: 21:d8:49:15:5f:80:ae:b3:8c:92:06:83:c1:d1:5e:92:b2:01: 32:c4:94:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDdRgvSx+oKMkYgG/HlAGwqdUJnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkwODU1MDJaFw0yNTA5MjgwOTAwMDJaMDMxMTAvBgNV BAMTKEUzREZFNjBFREQ1MjE5OURFNUJERDY4QzIyNTk3MzJCODdFMTVCRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTLn7L6GrvVOL11GM1xGhul6Va /bN5TY4gicYkBSpzG+EpbiT8FdgiRia+YUG9nnSznt49w1iHaG+HeJ2JfnJaCb6O qr8WWfcTobJseaJCSM9AU6KFeivyDwQqzq1vVg9BISG8wIKXBd0DUJZcTYV9Mt3T 7pK8idj5mBEEo5DFHB1WgfwcRnqWiVbc9VBbXj6/yO7RdJMGgAHmLPK8vocnQWmn NTwKqlhVmY60mAdI8D/jsdmDfv/bBl2/+G6aW/oy8p+OO2h+0UVUrTjbVUs6ijQu wzFnfhawqfCYsKMMyh7u3DVmt77gqMRQZJL/vVyEca/YgAuIqClZhkdAgrGxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU49/mDt1SGZ3lvdaMIllzK4fhW+AwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7rzANBgkqhkiG 9w0BAQsFAAOCAQEAKRWknVscQmfnqMP75M9BQWa6MT7qdx9OfaWpGOnXx+UjehXx ioy0v5H6E0W9Hm/UraSCJOm2oM69ra19iiUOWHBEVJ61WRTPCrsWoIe9IQTXfbov Gj+YxdexarcsvIVdbxOvx8J8PGUzhEBKn/lXAxXsVsFcTy8Z5ExpXpzr5l20CGzD OMToWcNgINn6488L/qEF7dfv8Tc/6pcIi/VNJI9uJFlr/DNXvjumIoy0AHiLb0du xshsFwDfK1Us3ZB4F8LfMsU/qAwJANFI9fHrF+zs0uyty4YxLRh+SSnyJb7o8L6E 4/kndpFRIdhJFV+ArrOMkgaDwdFekrIBMsSUdg== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org