$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36382e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e36382e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: kBeUG+J3aaoaEctPb/7V99FsXKX0tZO2cRt3bs0z0/k= Subject key identifier: 98:67:D2:92:01:E7:7F:D5:6D:BE:F1:BB:AC:26:CA:41:F3:95:A8:A0 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 7C70BFBE9472FF1368F75804C84A8EC71A34E5F9 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36382e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:02 +0000 ROA not before: Tue 10 Sep 2024 03:55:02 +0000 ROA not after: Tue 09 Sep 2025 04:00:02 +0000 asID: 23695 IP address blocks: 202.173.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:70:bf:be:94:72:ff:13:68:f7:58:04:c8:4a:8e:c7:1a:34:e5:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:02 2024 GMT Not After : Sep 9 04:00:02 2025 GMT Subject: CN=9867D29201E77FD56DBEF1BBAC26CA41F395A8A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:97:83:8b:df:62:08:32:b9:17:3b:34:4d:4a: ac:66:4e:e2:48:de:43:7e:42:b0:3b:09:5b:5d:d7: 38:94:88:b1:d6:d0:6a:3f:ce:e7:63:4b:9f:e7:2f: 64:79:20:ad:03:df:78:81:6f:e0:c8:74:8b:ae:5d: 7a:2d:f0:24:8a:69:b4:cf:41:64:ff:52:2c:77:d4: c7:ba:a0:02:7c:8b:c3:7d:3c:98:43:8e:1a:6c:d3: dc:04:a0:19:05:9d:a8:4e:8f:34:a4:5d:6d:fc:90: aa:7e:ec:a8:ad:2a:ca:d4:cc:1c:f8:eb:55:f0:51: 37:ba:ae:4e:64:4e:37:9a:71:70:84:5a:31:0f:b4: ed:63:07:af:54:92:a6:55:b9:50:c8:ad:ca:09:22: 32:10:b6:de:20:c7:95:b2:f8:e5:10:b3:e8:46:b8: 75:b8:5b:1b:a7:a5:68:6c:29:b4:2e:b2:ac:0f:d9: 80:bc:12:df:7a:2e:41:88:d8:f6:de:8a:2e:22:95: 0d:93:b7:a6:81:a9:7a:8d:68:b2:af:10:8e:a4:ca: 32:cb:8a:00:41:14:e7:81:6c:55:ef:e7:9b:98:01: 1b:d5:2e:a6:d8:6a:f3:52:81:05:2b:ea:c7:1d:39: 43:37:0e:7d:76:89:a1:00:e7:a1:d2:28:56:2a:2f: da:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:67:D2:92:01:E7:7F:D5:6D:BE:F1:BB:AC:26:CA:41:F3:95:A8:A0 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36382e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.68.0/24 Signature Algorithm: sha256WithRSAEncryption 46:36:79:1b:69:1a:e7:36:cd:62:b0:da:8b:78:aa:1f:c3:1f: 3a:34:89:12:06:69:f3:a0:9a:c1:04:cb:8f:09:15:e4:60:10: 26:e4:7c:ec:c7:da:71:d0:fc:84:94:6b:af:98:e0:1f:11:14: ee:e6:1d:54:a1:56:98:ce:4e:93:90:a7:95:38:28:6d:a9:82: 3c:87:a2:35:9d:a5:b5:32:e7:6a:66:af:47:fd:33:b3:00:9d: 6b:83:ae:32:b7:d1:c0:a6:f8:91:7f:23:70:fc:e8:a5:21:76: 58:8e:9d:4f:49:68:b2:b0:e1:0a:5f:1f:4e:3c:1a:e1:49:92: fe:3f:7b:9a:1c:76:be:8c:35:a7:dc:da:7a:80:9e:63:03:29: 47:08:4d:a3:e2:bc:31:87:29:9e:85:00:f6:85:83:e5:39:99: b7:07:41:2e:aa:e4:ff:cf:6b:e9:04:51:d6:6b:48:2c:77:4e: 30:49:f7:51:61:cb:eb:82:fa:01:51:f3:4a:89:15:ce:34:5e: b3:f1:1c:b0:f3:8d:5f:e4:36:ec:d8:b9:c7:a9:97:ef:c1:fe: ab:51:7c:36:2c:fd:df:24:d8:28:88:62:26:2d:e8:eb:f5:ef: 35:d9:a1:52:54:d2:f3:16:78:7a:ac:de:f4:b1:19:db:86:31: 0c:23:46:38 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfHC/vpRy/xNo91gEyEqOxxo05fkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDJaFw0yNTA5MDkwNDAwMDJaMDMxMTAvBgNV BAMTKDk4NjdEMjkyMDFFNzdGRDU2REJFRjFCQkFDMjZDQTQxRjM5NUE4QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyl4OL32IIMrkXOzRNSqxmTuJI 3kN+QrA7CVtd1ziUiLHW0Go/zudjS5/nL2R5IK0D33iBb+DIdIuuXXot8CSKabTP QWT/Uix31Me6oAJ8i8N9PJhDjhps09wEoBkFnahOjzSkXW38kKp+7KitKsrUzBz4 61XwUTe6rk5kTjeacXCEWjEPtO1jB69UkqZVuVDIrcoJIjIQtt4gx5Wy+OUQs+hG uHW4WxunpWhsKbQusqwP2YC8Et96LkGI2Pbeii4ilQ2Tt6aBqXqNaLKvEI6kyjLL igBBFOeBbFXv55uYARvVLqbYavNSgQUr6scdOUM3Dn12iaEA56HSKFYqL9p/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmGfSkgHnf9VtvvG7rCbKQfOVqKAwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtRDANBgkqhkiG 9w0BAQsFAAOCAQEARjZ5G2ka5zbNYrDai3iqH8MfOjSJEgZp86CawQTLjwkV5GAQ JuR87MfacdD8hJRrr5jgHxEU7uYdVKFWmM5Ok5CnlTgobamCPIeiNZ2ltTLnamav R/0zswCda4OuMrfRwKb4kX8jcPzopSF2WI6dT0losrDhCl8fTjwa4UmS/j97mhx2 vow1p9zaeoCeYwMpRwhNo+K8MYcpnoUA9oWD5TmZtwdBLqrk/89r6QRR1mtILHdO MEn3UWHL64L6AVHzSokVzjRes/EcsPONX+Q27Ni5x6mX78H+q1F8Niz93yTYKIhi Ji3o6/XvNdmhUlTS8xZ4eqze9LEZ24YxDCNGOA== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org