$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36392e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e36392e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: vDU9gcRo8sjLDkCnZOzt+rm8fLZLUHyOqnl2eV08+uU= Subject key identifier: 0C:AC:C1:B6:87:50:18:C4:1F:84:74:7F:3C:07:11:67:E1:58:7C:83 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 0763F813E01934CB4602499F2B403A188DA6F474 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36392e302f32342d3234203d3e203233363935.roa Signing time: Sat 14 Sep 2024 08:01:08 +0000 ROA not before: Sat 14 Sep 2024 07:56:08 +0000 ROA not after: Sat 13 Sep 2025 08:01:08 +0000 asID: 23695 IP address blocks: 202.173.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:63:f8:13:e0:19:34:cb:46:02:49:9f:2b:40:3a:18:8d:a6:f4:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 14 07:56:08 2024 GMT Not After : Sep 13 08:01:08 2025 GMT Subject: CN=0CACC1B6875018C41F84747F3C071167E1587C83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2b:ca:21:d9:be:21:5f:f4:0e:b4:9b:09:23: cc:a7:15:84:84:9f:66:0c:94:45:9e:26:8c:88:80: a1:22:13:18:37:18:61:8a:94:f1:24:d1:5a:32:00: 13:30:a5:76:d1:b8:06:7b:82:c0:41:e0:b6:ba:0f: d1:0f:4b:a9:24:3a:c2:f6:fc:8e:64:f2:27:c1:f6: e5:1a:1e:3f:17:d3:ab:c0:32:1e:36:e3:2a:07:c8: 12:36:45:ae:de:3f:2b:9a:3a:2f:0e:a4:b2:44:e6: 15:01:4e:62:1c:a8:b0:e6:d6:a2:8a:f2:0d:3d:dc: d5:63:c4:46:da:9f:ef:2b:a7:03:7e:47:4c:70:71: f6:ac:6e:97:7b:72:03:79:3f:1e:0a:26:d5:b3:a8: 62:16:ae:37:73:dc:b3:ab:17:44:7e:00:a2:57:c7: bf:f5:84:c1:b0:96:d8:a6:81:49:ff:bd:41:c7:67: 80:22:7a:d7:cb:96:45:3f:ba:06:29:ba:da:6c:b4: 14:ca:1c:ef:ab:58:43:3c:21:1d:c3:23:12:08:f5: 7a:2d:98:bb:c6:e1:5b:f3:24:a8:0b:37:f1:89:2c: 9e:07:61:da:0d:53:5a:c2:65:51:51:03:4d:15:37: 2c:e2:8c:df:43:7c:f8:7c:f4:78:06:63:4d:10:38: 45:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:AC:C1:B6:87:50:18:C4:1F:84:74:7F:3C:07:11:67:E1:58:7C:83 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e36392e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.69.0/24 Signature Algorithm: sha256WithRSAEncryption 18:3b:98:95:e2:54:21:cb:37:db:68:16:ba:73:63:d6:86:54: f2:9c:25:e9:e3:e9:de:2f:6b:ef:5e:a1:6a:be:c3:91:4c:c9: 6c:44:4f:f5:4a:8b:0b:18:60:57:aa:d0:9e:c7:b0:8e:a9:7e: de:34:bd:df:81:1e:e6:4b:6d:c3:dc:7e:47:e7:22:c4:e9:d4: 3b:47:2b:87:e4:9c:a8:e3:57:ca:90:1f:95:3d:80:54:6f:f5: df:d4:10:e8:3c:7a:ef:9e:42:81:52:3e:25:47:14:c8:49:fa: 7b:fb:64:6e:30:fb:10:a0:9a:4b:e0:8a:97:61:ac:d1:6c:dd: fc:f4:dc:c4:95:b4:bd:91:9e:50:8c:bc:e3:26:c4:c6:f6:7f: a7:0a:f5:dc:7a:2b:e7:cc:bc:aa:c7:6b:fd:61:56:56:c4:06: 35:5a:4c:ae:03:76:12:a5:61:d5:1c:db:b8:65:b3:24:63:b2: 5f:1c:34:19:1f:0b:6d:6f:87:aa:35:92:7b:d6:f4:81:80:9d: 74:b8:c6:de:c1:d9:91:38:5a:b5:45:db:52:41:92:ae:84:15: 1d:6e:40:2c:bd:cb:4b:45:4d:31:62:29:91:65:bb:98:c9:12: e5:af:8f:47:fc:34:87:e7:ab:60:0c:64:2f:5a:cd:9f:7e:6f: 5c:5b:35:ec -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB2P4E+AZNMtGAkmfK0A6GI2m9HQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTQwNzU2MDhaFw0yNTA5MTMwODAxMDhaMDMxMTAvBgNV BAMTKDBDQUNDMUI2ODc1MDE4QzQxRjg0NzQ3RjNDMDcxMTY3RTE1ODdDODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeK8oh2b4hX/QOtJsJI8ynFYSE n2YMlEWeJoyIgKEiExg3GGGKlPEk0VoyABMwpXbRuAZ7gsBB4La6D9EPS6kkOsL2 /I5k8ifB9uUaHj8X06vAMh424yoHyBI2Ra7ePyuaOi8OpLJE5hUBTmIcqLDm1qKK 8g093NVjxEban+8rpwN+R0xwcfasbpd7cgN5Px4KJtWzqGIWrjdz3LOrF0R+AKJX x7/1hMGwltimgUn/vUHHZ4AietfLlkU/ugYputpstBTKHO+rWEM8IR3DIxII9Xot mLvG4VvzJKgLN/GJLJ4HYdoNU1rCZVFRA00VNyzijN9DfPh89HgGY00QOEUTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDKzBtodQGMQfhHR/PAcRZ+FYfIMwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtRTANBgkqhkiG 9w0BAQsFAAOCAQEAGDuYleJUIcs322gWunNj1oZU8pwl6ePp3i9r716har7DkUzJ bERP9UqLCxhgV6rQnsewjql+3jS934Ee5kttw9x+R+cixOnUO0crh+ScqONXypAf lT2AVG/139QQ6Dx6755CgVI+JUcUyEn6e/tkbjD7EKCaS+CKl2Gs0Wzd/PTcxJW0 vZGeUIy84ybExvZ/pwr13Hor58y8qsdr/WFWVsQGNVpMrgN2EqVh1RzbuGWzJGOy Xxw0GR8LbW+HqjWSe9b0gYCddLjG3sHZkThatUXbUkGSroQVHW5ALL3LS0VNMWIp kWW7mMkS5a+PR/w0h+erYAxkL1rNn35vXFs17A== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org