$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36342e302f31392d3139203d3e203233363935.roa File: 3230322e3137332e36342e302f31392d3139203d3e203233363935.roa (raw, json) Hash identifier: /yZCz3cQD5H0U6JsLwmGkChPr0s5oThoWu3evHym3Mg= Subject key identifier: 5D:EA:75:E6:B6:3D:32:ED:D0:C6:DA:8D:23:8D:DD:A7:D8:20:47:9C Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 0EF5264118132F5C2A3BD351003515F227521BDF Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36342e302f31392d3139203d3e203233363935.roa Signing time: Wed 27 Mar 2024 06:28:52 +0000 ROA not before: Wed 27 Mar 2024 06:23:52 +0000 ROA not after: Wed 26 Mar 2025 06:28:52 +0000 asID: 23695 IP address blocks: 202.173.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f5:26:41:18:13:2f:5c:2a:3b:d3:51:00:35:15:f2:27:52:1b:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Mar 27 06:23:52 2024 GMT Not After : Mar 26 06:28:52 2025 GMT Subject: CN=5DEA75E6B63D32EDD0C6DA8D238DDDA7D820479C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2a:ef:3f:27:75:76:d9:72:85:b1:ca:a1:f7: 62:5c:db:19:e9:ef:7e:9a:93:cb:36:5c:be:ff:e9: b6:7a:5a:7d:a7:14:7b:30:49:1f:ca:b0:6a:68:d8: ca:16:9a:5c:40:37:cd:49:01:17:b1:8b:ea:12:c6: d4:2d:d6:f5:ec:2d:43:06:ed:f4:f9:e9:fd:dd:30: 3b:cf:bb:fc:76:a8:cc:98:49:c8:27:8a:8f:12:f8: 12:57:37:d7:7d:4c:a8:3d:da:f2:84:86:d1:9b:15: 73:50:a3:c2:b7:bf:59:45:29:36:38:7e:ac:0b:77: a6:53:81:21:e4:67:38:fc:bb:e9:8c:c4:73:f2:2d: 4b:5b:ee:3c:70:40:cd:59:98:61:70:27:d3:96:58: d3:e2:3c:86:1e:64:7d:00:e4:a8:86:d1:e8:15:59: 1e:87:a0:ab:59:79:76:81:68:8b:a9:16:8e:58:ca: dc:d7:58:ef:aa:69:60:e9:f1:33:6a:a4:c7:52:97: 74:bd:84:cf:ea:ec:24:0b:b2:c6:b1:04:7f:9e:94: 69:20:de:b5:10:7f:2e:a1:25:e3:99:15:51:aa:9a: 7a:b2:8c:0d:49:c7:22:95:bc:99:8e:c3:cd:86:b0: 67:16:a9:9e:83:92:e1:c0:fa:32:ff:73:be:9a:0b: 52:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:EA:75:E6:B6:3D:32:ED:D0:C6:DA:8D:23:8D:DD:A7:D8:20:47:9C X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36342e302f31392d3139203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.64.0/19 Signature Algorithm: sha256WithRSAEncryption c7:a7:ad:13:48:e5:5c:e9:c7:b9:b1:ef:85:02:aa:c3:ec:b0: 56:9c:2a:69:2d:e4:37:6a:6e:9e:f2:b5:73:7f:98:63:fa:b8: 3d:b6:52:fb:5d:8b:a4:79:58:4a:34:8f:30:fc:ac:e4:51:fb: 9e:76:72:07:25:a9:e4:c2:00:9d:31:5f:d8:b8:f7:83:ac:b0: 96:24:9b:5b:d9:88:ed:d2:db:43:ac:73:a0:a8:7d:c0:7d:d3: a9:c1:40:05:4d:54:55:f4:62:06:85:70:5a:d5:3f:d8:e7:a2: f5:de:f3:82:85:36:93:eb:f1:84:b2:d0:b2:a5:42:08:e7:b3: ad:02:9b:fe:98:57:5a:54:30:e7:6a:f1:4d:42:bb:98:59:d3: 71:9e:e9:c2:29:58:02:0f:8f:d5:90:4d:e7:44:ce:4d:0f:6d: e2:1f:08:a5:9f:f8:3c:61:67:77:a7:56:34:0f:a7:f0:7e:29: 2a:69:dc:9b:21:b5:f2:cc:0a:bc:c4:a5:89:24:da:e0:a5:1d: 4c:ca:67:19:fa:3d:b6:e0:9f:8f:f5:82:87:ff:37:8a:f5:fd: c2:e1:22:c9:9e:01:6c:d1:1b:5a:38:c8:0e:8d:46:25:1c:6f: 22:29:6a:5a:be:62:7c:85:9d:5a:aa:4f:94:1c:c8:5c:d0:81: 90:18:59:ab -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDvUmQRgTL1wqO9NRADUV8idSG98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDAzMjcwNjIzNTJaFw0yNTAzMjYwNjI4NTJaMDMxMTAvBgNV BAMTKDVERUE3NUU2QjYzRDMyRUREMEM2REE4RDIzOEREREE3RDgyMDQ3OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Ku8/J3V22XKFscqh92Jc2xnp 736ak8s2XL7/6bZ6Wn2nFHswSR/KsGpo2MoWmlxAN81JARexi+oSxtQt1vXsLUMG 7fT56f3dMDvPu/x2qMyYScgnio8S+BJXN9d9TKg92vKEhtGbFXNQo8K3v1lFKTY4 fqwLd6ZTgSHkZzj8u+mMxHPyLUtb7jxwQM1ZmGFwJ9OWWNPiPIYeZH0A5KiG0egV WR6HoKtZeXaBaIupFo5YytzXWO+qaWDp8TNqpMdSl3S9hM/q7CQLssaxBH+elGkg 3rUQfy6hJeOZFVGqmnqyjA1JxyKVvJmOw82GsGcWqZ6DkuHA+jL/c76aC1ILAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXep15rY9Mu3QxtqNI43dp9ggR5wwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNjM0MmUzMDJmMzEz OTJkMzEzOTIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcqtQDANBgkqhkiG 9w0BAQsFAAOCAQEAx6etE0jlXOnHubHvhQKqw+ywVpwqaS3kN2punvK1c3+YY/q4 PbZS+12LpHlYSjSPMPys5FH7nnZyByWp5MIAnTFf2Lj3g6ywliSbW9mI7dLbQ6xz oKh9wH3TqcFABU1UVfRiBoVwWtU/2Oei9d7zgoU2k+vxhLLQsqVCCOezrQKb/phX WlQw52rxTUK7mFnTcZ7pwilYAg+P1ZBN50TOTQ9t4h8IpZ/4PGFnd6dWNA+n8H4p KmncmyG18swKvMSliSTa4KUdTMpnGfo9tuCfj/WCh/83ivX9wuEiyZ4BbNEbWjjI Do1GJRxvIilqWr5ifIWdWqpPlBzIXNCBkBhZqw== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org