$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36362e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e36362e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: yeM18fVhFIvaqgN5QmmIrEdPBDtaljcx9XyjNtHhwl4= Subject key identifier: 27:CD:87:47:A0:83:61:D0:8E:2B:54:D3:63:B1:B5:31:10:D7:9C:4C Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 27483C31C390A839CA2DA625AB43332D4B3E4B60 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36362e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:01 +0000 ROA not before: Tue 10 Sep 2024 03:55:01 +0000 ROA not after: Tue 09 Sep 2025 04:00:01 +0000 asID: 23695 IP address blocks: 202.173.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:48:3c:31:c3:90:a8:39:ca:2d:a6:25:ab:43:33:2d:4b:3e:4b:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:01 2024 GMT Not After : Sep 9 04:00:01 2025 GMT Subject: CN=27CD8747A08361D08E2B54D363B1B53110D79C4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e3:74:c8:ec:c4:43:30:f5:a4:51:28:08:1f: 23:02:6c:4f:4e:59:46:af:9a:5c:18:f9:29:57:83: a1:a2:b2:04:e0:7b:87:a4:e9:52:52:3b:c6:f6:0e: 04:7b:52:7d:aa:a5:76:f7:db:36:5b:58:f0:a9:f9: 98:b9:6c:b0:a2:a5:3b:ff:18:86:fd:65:15:f2:3f: 6a:10:82:81:db:6d:82:af:1c:e5:34:71:bd:dd:74: 6d:ff:3f:27:bc:ad:d9:1a:d5:86:3e:44:9f:a1:a0: 43:45:de:81:24:2c:1e:24:a1:e8:e9:e2:76:fc:fb: 04:00:56:73:d8:d7:8a:e7:34:07:c3:15:d1:31:23: 07:f1:77:63:2b:64:0a:3a:85:1d:68:3f:1c:d5:2b: 4b:2b:1d:dd:d1:3b:37:04:f3:8f:b5:40:12:20:85: 3e:34:81:1a:54:69:6a:48:82:e9:82:ea:12:83:b7: fa:20:a3:c0:e9:06:5c:d8:a3:d4:10:38:33:ae:d6: 02:a3:37:65:73:c3:30:88:9d:ed:05:c1:32:e0:3d: 63:9f:c8:0c:1f:bf:7f:d4:e8:3d:23:f6:9e:3e:bb: 7d:c6:1b:47:3d:8c:80:4a:f4:ca:96:10:d7:c7:7f: e7:6b:54:2e:56:11:8c:0d:11:af:49:fc:29:a2:91: f9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:CD:87:47:A0:83:61:D0:8E:2B:54:D3:63:B1:B5:31:10:D7:9C:4C X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36362e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.66.0/24 Signature Algorithm: sha256WithRSAEncryption 47:93:1f:56:b9:1f:bf:ff:1c:c0:20:25:76:e5:9b:71:59:8d: 03:f8:8c:b7:59:08:6d:c8:9e:08:58:44:6a:c3:bf:9e:bf:fe: 95:0c:a3:ab:ef:b9:2b:99:10:1a:39:7e:af:04:9f:44:0e:29: b1:69:e8:1e:1d:c5:6b:4c:d0:c0:56:43:f3:7a:7c:12:c4:f9: c8:a1:2b:4f:9f:0e:69:d1:e0:45:0a:63:94:d5:18:84:95:6e: dd:67:71:95:9f:c6:f2:8d:5b:54:ee:ba:6a:fa:4d:db:30:f1: d6:e0:e0:44:7c:c1:5f:a5:c4:03:24:f1:17:51:f4:89:e8:66: a3:ea:16:93:15:de:8a:44:3b:bc:55:87:c5:05:63:ad:84:e8: ad:af:86:8d:af:66:2c:71:5c:5e:2e:84:02:76:8d:c7:f9:8a: 47:39:4d:22:33:3e:ed:b0:08:19:9b:9b:ac:74:5e:ee:57:8f: c8:2b:65:f4:40:a3:fa:f3:5f:7f:b2:16:5a:0e:86:71:f1:59: e8:45:64:b0:40:6a:c9:49:a3:e0:d0:79:79:c8:67:49:d9:a7: 8f:72:3d:06:f7:f7:a8:01:bf:97:e6:39:03:ea:33:46:fd:eb: 5d:37:99:a2:ac:f4:0e:f1:ee:f0:41:67:4e:6f:0a:13:2e:d0: 69:65:80:6c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ0g8McOQqDnKLaYlq0MzLUs+S2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDFaFw0yNTA5MDkwNDAwMDFaMDMxMTAvBgNV BAMTKDI3Q0Q4NzQ3QTA4MzYxRDA4RTJCNTREMzYzQjFCNTMxMTBENzlDNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD43TI7MRDMPWkUSgIHyMCbE9O WUavmlwY+SlXg6GisgTge4ek6VJSO8b2DgR7Un2qpXb32zZbWPCp+Zi5bLCipTv/ GIb9ZRXyP2oQgoHbbYKvHOU0cb3ddG3/Pye8rdka1YY+RJ+hoENF3oEkLB4koejp 4nb8+wQAVnPY14rnNAfDFdExIwfxd2MrZAo6hR1oPxzVK0srHd3ROzcE84+1QBIg hT40gRpUaWpIgumC6hKDt/ogo8DpBlzYo9QQODOu1gKjN2VzwzCIne0FwTLgPWOf yAwfv3/U6D0j9p4+u33GG0c9jIBK9MqWENfHf+drVC5WEYwNEa9J/CmikfnzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJ82HR6CDYdCOK1TTY7G1MRDXnEwwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtQjANBgkqhkiG 9w0BAQsFAAOCAQEAR5MfVrkfv/8cwCAlduWbcVmNA/iMt1kIbcieCFhEasO/nr/+ lQyjq++5K5kQGjl+rwSfRA4psWnoHh3Fa0zQwFZD83p8EsT5yKErT58OadHgRQpj lNUYhJVu3WdxlZ/G8o1bVO66avpN2zDx1uDgRHzBX6XEAyTxF1H0iehmo+oWkxXe ikQ7vFWHxQVjrYTora+Gja9mLHFcXi6EAnaNx/mKRzlNIjM+7bAIGZubrHRe7leP yCtl9ECj+vNff7IWWg6GcfFZ6EVksEBqyUmj4NB5echnSdmnj3I9Bvf3qAG/l+Y5 A+ozRv3rXTeZoqz0DvHu8EFnTm8KEy7QaWWAbA== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org