$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36372e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e36372e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: NGImgtjhDUZw4LYbto24tiacu1uj5ePcNIzwHQKWr60= Subject key identifier: A2:7B:A6:93:AD:E2:11:3E:D8:6F:36:C8:4C:72:6C:76:51:B0:BC:C1 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 3BAF7AE1763A9535386F90D8BF092CFB323ACB29 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36372e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:01 +0000 ROA not before: Tue 10 Sep 2024 03:55:01 +0000 ROA not after: Tue 09 Sep 2025 04:00:01 +0000 asID: 23695 IP address blocks: 202.173.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:af:7a:e1:76:3a:95:35:38:6f:90:d8:bf:09:2c:fb:32:3a:cb:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:01 2024 GMT Not After : Sep 9 04:00:01 2025 GMT Subject: CN=A27BA693ADE2113ED86F36C84C726C7651B0BCC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:eb:bd:0e:02:21:71:87:a1:51:b9:da:72:c8: da:96:7d:d4:91:cd:a5:f4:e4:d0:ec:00:1c:10:bf: 24:33:d7:00:02:6b:21:f9:af:74:16:34:bb:bf:b0: a3:7b:b7:64:42:2e:a1:fe:b6:9f:43:71:ab:b1:97: c9:72:1f:6f:0c:f8:fe:f4:0e:a8:3b:b7:b0:18:1a: 2b:62:6d:4b:01:e4:0b:29:33:c1:2d:6b:9b:a3:46: 91:6f:ca:f7:f8:b0:41:c8:07:58:d9:59:5e:6e:e9: 3c:af:f7:c4:80:84:c4:2d:cd:ee:7f:49:4f:1d:b7: 85:cf:e2:21:b2:f9:09:21:1b:c6:ee:d6:02:74:9c: a9:13:df:16:4b:ee:9a:25:b5:db:05:6f:4a:55:d9: a6:e9:a4:2d:23:09:c4:19:f3:7f:6d:76:cc:5c:ad: 01:39:04:7a:d7:51:af:d5:ee:53:01:20:21:e7:c8: 3a:3f:3b:6f:27:6b:b3:76:3d:ec:70:ea:2b:40:92: 66:f3:86:3d:c0:aa:d7:af:e2:95:c2:36:7e:32:a4: fc:e0:23:a7:c5:af:f0:57:33:11:f3:98:30:0a:a6: 84:9c:a1:9e:03:1d:80:98:01:83:64:d8:5f:ec:ef: b0:0f:5b:52:01:93:2c:b4:e7:74:02:f2:ea:c1:ff: 3b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:7B:A6:93:AD:E2:11:3E:D8:6F:36:C8:4C:72:6C:76:51:B0:BC:C1 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36372e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.67.0/24 Signature Algorithm: sha256WithRSAEncryption b2:e8:f5:4f:8c:86:ef:7d:31:ad:ca:a1:f6:be:47:31:78:c3: c2:d6:24:81:8e:bd:bf:fc:5b:8e:73:20:f6:a5:8a:df:c7:05: 40:a4:cb:38:7c:26:87:07:48:e3:68:17:01:b2:59:50:56:65: 4a:90:a8:4f:8d:20:dd:96:e0:df:41:1d:f7:ac:07:9d:8e:82: 25:54:b5:3a:7b:9d:7f:0b:87:c1:96:2b:1c:af:f4:3c:b9:8a: a8:11:84:8d:03:6f:14:ba:2b:7b:d8:26:aa:4b:79:17:55:92: 4b:9a:7e:0d:d5:d6:b1:bc:8c:61:3a:28:ef:3e:61:06:fd:f7: e1:87:91:db:20:43:9e:65:64:60:dc:8a:ab:c4:e7:75:41:16: 6f:00:a4:ce:0e:67:de:6e:7a:b7:73:5a:63:b0:05:8f:fe:79: 88:37:f0:62:9e:b2:79:be:58:b1:90:6a:13:6f:19:b0:4d:c9: 2d:b2:18:82:fe:b0:4a:a9:d6:3f:2d:8d:b8:0d:c7:21:18:d5: cb:a6:db:a7:e4:70:ae:f2:1a:65:ec:d6:45:20:5f:04:8e:49: 9b:e5:d4:ec:f6:e5:ff:f1:91:7c:8d:08:3d:10:b7:61:5d:2f: e4:0b:51:0e:67:c8:1f:b0:89:d6:64:34:b0:2a:72:3a:fb:0e: 79:2f:d0:6f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO6964XY6lTU4b5DYvwks+zI6yykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDFaFw0yNTA5MDkwNDAwMDFaMDMxMTAvBgNV BAMTKEEyN0JBNjkzQURFMjExM0VEODZGMzZDODRDNzI2Qzc2NTFCMEJDQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc670OAiFxh6FRudpyyNqWfdSR zaX05NDsABwQvyQz1wACayH5r3QWNLu/sKN7t2RCLqH+tp9Dcauxl8lyH28M+P70 Dqg7t7AYGitibUsB5AspM8Eta5ujRpFvyvf4sEHIB1jZWV5u6Tyv98SAhMQtze5/ SU8dt4XP4iGy+QkhG8bu1gJ0nKkT3xZL7poltdsFb0pV2abppC0jCcQZ839tdsxc rQE5BHrXUa/V7lMBICHnyDo/O28na7N2Pexw6itAkmbzhj3Aqtev4pXCNn4ypPzg I6fFr/BXMxHzmDAKpoScoZ4DHYCYAYNk2F/s77APW1IBkyy053QC8urB/ztfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUonumk63iET7YbzbITHJsdlGwvMEwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtQzANBgkqhkiG 9w0BAQsFAAOCAQEAsuj1T4yG730xrcqh9r5HMXjDwtYkgY69v/xbjnMg9qWK38cF QKTLOHwmhwdI42gXAbJZUFZlSpCoT40g3Zbg30Ed96wHnY6CJVS1OnudfwuHwZYr HK/0PLmKqBGEjQNvFLore9gmqkt5F1WSS5p+DdXWsbyMYToo7z5hBv334YeR2yBD nmVkYNyKq8TndUEWbwCkzg5n3m56t3NaY7AFj/55iDfwYp6yeb5YsZBqE28ZsE3J LbIYgv6wSqnWPy2NuA3HIRjVy6bbp+RwrvIaZezWRSBfBI5Jm+XU7Pbl//GRfI0I PRC3YV0v5AtRDmfIH7CJ1mQ0sCpyOvsOeS/Qbw== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org