$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36352e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e36352e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: JrMofhOCMVdNP1sEAWvpSSTT2LmZl0HuhRslYJ7iy9U= Subject key identifier: A7:21:1B:A2:3E:4C:37:F6:1D:A5:24:71:91:D0:6F:0D:EC:F9:0D:ED Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 608D180CEABBEC027C289279F19A260867F0A8A7 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36352e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:01 +0000 ROA not before: Tue 10 Sep 2024 03:55:01 +0000 ROA not after: Tue 09 Sep 2025 04:00:01 +0000 asID: 23695 IP address blocks: 202.173.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:8d:18:0c:ea:bb:ec:02:7c:28:92:79:f1:9a:26:08:67:f0:a8:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:01 2024 GMT Not After : Sep 9 04:00:01 2025 GMT Subject: CN=A7211BA23E4C37F61DA5247191D06F0DECF90DED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:31:b0:6b:7f:6b:20:12:47:81:2b:58:1f:6a: b0:65:1f:2f:f3:a0:0b:fb:57:e9:f1:d9:85:6c:32: 8b:89:62:20:aa:56:5a:27:68:42:14:12:9b:a7:84: de:09:06:b8:e2:f1:0b:b3:75:f8:22:84:a4:ba:a9: 37:ce:9b:58:d8:39:a7:5e:6c:4c:16:97:ca:21:a9: 96:2b:e4:2b:62:bd:8a:22:cd:cf:99:6a:41:7a:c0: 42:fe:42:7d:93:ad:bc:66:84:1c:b3:9b:ee:0a:43: 3c:7c:be:3b:fa:d3:00:00:2e:d3:42:2c:1c:aa:9e: 80:34:9b:71:7e:b3:ed:65:74:1d:57:19:ba:81:c7: 9a:cd:2f:aa:f1:a6:26:7e:13:c1:b8:6c:0d:f4:af: 77:87:c3:f4:78:95:48:1c:82:2f:df:39:1f:bc:0c: 0f:62:e2:99:25:78:61:fd:e3:dd:9b:d1:92:9a:0e: 69:62:40:11:ec:34:af:b2:a4:9c:6c:a2:62:cd:c1: f3:bd:f5:12:d1:76:16:05:c8:f7:db:a9:92:50:20: dc:35:2d:d6:ca:32:99:80:08:53:8f:56:13:be:1b: ed:a9:48:01:36:86:22:27:8f:f0:6a:af:73:63:9e: fd:a9:50:78:78:19:c3:bf:6d:a0:9d:6c:7d:20:85: a0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:21:1B:A2:3E:4C:37:F6:1D:A5:24:71:91:D0:6F:0D:EC:F9:0D:ED X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36352e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.65.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:7a:69:d7:dd:57:9f:8e:44:d4:38:b8:5f:b1:31:6b:db:51: c0:a8:16:d2:97:04:dc:32:4f:99:6a:fb:1e:a0:6e:f0:0d:0f: 4d:1b:51:63:80:ed:27:c4:ee:74:0a:50:76:7f:c7:88:6b:0d: f8:49:cd:92:07:a9:d8:54:5d:7b:9e:d9:bd:45:e0:55:d3:0b: 56:60:72:35:35:41:c1:77:41:be:9a:64:bb:fd:f8:c7:7e:87: 3a:a4:be:87:0c:b5:7a:7f:02:6e:70:78:c5:90:e7:b9:8f:53: d3:c8:4f:28:c0:89:f2:30:15:7a:28:15:9a:1a:97:bb:1e:1a: 16:da:cc:93:ab:cc:fc:e6:d1:62:47:64:d3:ef:75:61:4e:54: a7:ea:75:cf:c1:87:37:f8:f4:af:05:6f:ce:40:40:da:d4:c1: 08:91:31:71:02:f6:81:d5:7f:8e:7a:ae:58:42:46:93:75:d9: 79:00:99:4c:03:f3:68:f6:be:16:08:c8:4d:c3:5a:9c:4f:a2: 6c:94:2e:7d:db:49:1a:4b:ce:cd:69:f5:be:60:e5:5c:86:59: c9:75:43:65:7b:0a:a2:5d:85:45:bc:c1:6a:bf:b6:5d:e3:96: f6:21:9f:ed:9f:ed:5c:9d:92:19:02:77:f6:87:e9:ae:a2:13: ea:0f:2c:84 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYI0YDOq77AJ8KJJ58ZomCGfwqKcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDFaFw0yNTA5MDkwNDAwMDFaMDMxMTAvBgNV BAMTKEE3MjExQkEyM0U0QzM3RjYxREE1MjQ3MTkxRDA2RjBERUNGOTBERUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWMbBrf2sgEkeBK1gfarBlHy/z oAv7V+nx2YVsMouJYiCqVlonaEIUEpunhN4JBrji8QuzdfgihKS6qTfOm1jYOade bEwWl8ohqZYr5CtivYoizc+ZakF6wEL+Qn2TrbxmhByzm+4KQzx8vjv60wAALtNC LByqnoA0m3F+s+1ldB1XGbqBx5rNL6rxpiZ+E8G4bA30r3eHw/R4lUgcgi/fOR+8 DA9i4pkleGH9492b0ZKaDmliQBHsNK+ypJxsomLNwfO99RLRdhYFyPfbqZJQINw1 LdbKMpmACFOPVhO+G+2pSAE2hiInj/Bqr3Njnv2pUHh4GcO/baCdbH0ghaAxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpyEboj5MN/YdpSRxkdBvDez5De0wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtQTANBgkqhkiG 9w0BAQsFAAOCAQEAHnpp191Xn45E1Di4X7Exa9tRwKgW0pcE3DJPmWr7HqBu8A0P TRtRY4DtJ8TudApQdn/HiGsN+EnNkgep2FRde57ZvUXgVdMLVmByNTVBwXdBvppk u/34x36HOqS+hwy1en8CbnB4xZDnuY9T08hPKMCJ8jAVeigVmhqXux4aFtrMk6vM /ObRYkdk0+91YU5Up+p1z8GHN/j0rwVvzkBA2tTBCJExcQL2gdV/jnquWEJGk3XZ eQCZTAPzaPa+FgjITcNanE+ibJQufdtJGkvOzWn1vmDlXIZZyXVDZXsKol2FRbzB ar+2XeOW9iGf7Z/tXJ2SGQJ39ofprqIT6g8shA== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org