$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36362e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e36362e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: PNORB43elcSW80Yl6RL38nzYWWkI6wYy4p+h39kzB+E= Subject key identifier: 97:0E:40:14:3F:BC:2A:2B:90:5A:75:2E:73:3F:FF:C3:9C:7A:35:BC Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 146FA4BADB9B12F5D59B1C202CEB0509E35A9AF4 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36362e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Oct 2023 03:35:22 +0000 ROA not before: Tue 10 Oct 2023 03:30:22 +0000 ROA not after: Tue 08 Oct 2024 03:35:22 +0000 asID: 23695 IP address blocks: 202.173.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:6f:a4:ba:db:9b:12:f5:d5:9b:1c:20:2c:eb:05:09:e3:5a:9a:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Oct 10 03:30:22 2023 GMT Not After : Oct 8 03:35:22 2024 GMT Subject: CN=970E40143FBC2A2B905A752E733FFFC39C7A35BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8b:5d:85:96:54:f9:da:28:44:7c:a2:d4:c9: 7c:be:48:ea:a6:96:e7:13:2e:97:50:19:a3:0f:6d: 3d:55:19:36:fb:1d:a6:78:27:e3:59:f1:79:93:15: c4:30:35:90:28:14:96:de:2d:69:cd:98:44:a4:e1: df:00:25:6a:6f:f8:52:e2:81:88:cc:24:08:7f:35: 8e:e9:77:c2:9f:f3:34:85:ac:22:d1:27:79:0e:8d: e1:66:cc:8d:51:1c:33:14:9c:69:48:af:ee:f6:c4: 0e:e3:85:a9:58:28:02:04:ca:b8:68:eb:40:ea:da: cf:55:c2:a7:7b:17:8c:58:33:db:4f:6a:df:4c:f7: 43:0e:6e:bf:52:61:a7:56:74:0b:9c:a2:25:cf:eb: 0f:b7:aa:3e:20:c4:44:dc:4e:ed:60:09:1c:bf:17: 6e:a1:eb:0e:02:4b:e3:1c:cc:5d:76:0c:4a:c9:6d: 93:12:18:2e:24:6a:c0:f5:e3:d8:ec:ee:74:1d:28: ed:93:cf:a3:95:ec:4b:f5:c6:0a:24:80:03:11:2e: c7:1b:b7:fc:a0:e6:4a:af:c8:74:0a:e0:91:52:57: 49:a6:1e:b1:71:11:12:9a:b1:a6:6f:95:99:1f:96: bb:50:60:06:f9:7d:05:29:7b:e0:8b:2d:d8:96:6a: 95:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:0E:40:14:3F:BC:2A:2B:90:5A:75:2E:73:3F:FF:C3:9C:7A:35:BC X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36362e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.66.0/24 Signature Algorithm: sha256WithRSAEncryption b1:fb:be:a3:0b:bf:52:57:9a:07:3f:a8:94:6d:eb:50:b6:1e: c1:dd:c3:47:32:d8:a9:25:c6:a2:a1:c6:4e:8e:e8:1d:24:80: 30:c7:63:0f:4e:b9:b8:38:87:17:33:8d:66:c4:1e:b9:ab:ce: 3c:b2:ef:04:e2:bd:43:2d:6d:a1:d9:16:ed:33:52:2e:36:98: 09:6f:c0:c7:58:57:ad:1d:d4:74:d2:eb:c1:fe:5b:42:ff:7f: b0:4f:8d:09:92:bd:22:7b:40:2e:7b:5b:bb:91:1e:ab:cc:52: 50:b5:a4:5a:5b:d3:d4:1e:f7:bb:a3:c7:64:32:48:59:51:b5: b7:47:d7:3d:bf:50:f2:21:c6:0b:28:d9:cf:9d:cc:55:91:11: be:d3:c8:c2:d1:6e:b1:64:9f:d5:1d:d9:4f:e1:81:85:14:d2: 5f:68:54:9c:9a:55:b7:d6:9a:28:54:00:65:dd:9d:d8:48:5f: 15:f6:e6:7e:37:8d:2d:fe:78:a5:dd:f7:95:57:e0:57:fd:c2: 59:bc:d7:38:2f:09:a7:2c:2f:1b:95:58:d6:d1:6b:ac:7b:39: 20:28:63:a0:49:53:04:3d:09:3e:8c:c5:c7:56:a2:a9:e5:e5: 43:4b:ec:28:ce:38:b8:4e:b3:86:d3:ec:84:a7:25:27:59:fd: 76:fb:de:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFG+kutubEvXVmxwgLOsFCeNamvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yMzEwMTAwMzMwMjJaFw0yNDEwMDgwMzM1MjJaMDMxMTAvBgNV BAMTKDk3MEU0MDE0M0ZCQzJBMkI5MDVBNzUyRTczM0ZGRkMzOUM3QTM1QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfi12FllT52ihEfKLUyXy+SOqm lucTLpdQGaMPbT1VGTb7HaZ4J+NZ8XmTFcQwNZAoFJbeLWnNmESk4d8AJWpv+FLi gYjMJAh/NY7pd8Kf8zSFrCLRJ3kOjeFmzI1RHDMUnGlIr+72xA7jhalYKAIEyrho 60Dq2s9Vwqd7F4xYM9tPat9M90MObr9SYadWdAucoiXP6w+3qj4gxETcTu1gCRy/ F26h6w4CS+MczF12DErJbZMSGC4kasD149js7nQdKO2Tz6OV7Ev1xgokgAMRLscb t/yg5kqvyHQK4JFSV0mmHrFxERKasaZvlZkflrtQYAb5fQUpe+CLLdiWapXHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlw5AFD+8KiuQWnUucz//w5x6NbwwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtQjANBgkqhkiG 9w0BAQsFAAOCAQEAsfu+owu/UleaBz+olG3rULYewd3DRzLYqSXGoqHGTo7oHSSA MMdjD065uDiHFzONZsQeuavOPLLvBOK9Qy1todkW7TNSLjaYCW/Ax1hXrR3UdNLr wf5bQv9/sE+NCZK9IntALntbu5Eeq8xSULWkWlvT1B73u6PHZDJIWVG1t0fXPb9Q 8iHGCyjZz53MVZERvtPIwtFusWSf1R3ZT+GBhRTSX2hUnJpVt9aaKFQAZd2d2Ehf FfbmfjeNLf54pd33lVfgV/3CWbzXOC8JpywvG5VY1tFrrHs5IChjoElTBD0JPozF x1aiqeXlQ0vsKM44uE6zhtPshKclJ1n9dvveNg== -----END CERTIFICATE-----Generated at Sat Jun 1 00:11:41 2024 by rpki-client on console-ams.rpki-client.org