$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37322e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37322e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: o2ln+IfG7vkZVTnGCTylCBTI2pbcc89CV9g/agRQLtQ= Subject key identifier: 92:58:E1:15:5B:F3:2A:3C:94:62:BC:97:E5:B5:A5:F1:BF:38:D2:EC Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 12689AA72A2844837FF75A5BE643EAEBFCF78808 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37322e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:01 +0000 ROA not before: Tue 10 Sep 2024 03:55:01 +0000 ROA not after: Tue 09 Sep 2025 04:00:01 +0000 asID: 23695 IP address blocks: 202.173.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:68:9a:a7:2a:28:44:83:7f:f7:5a:5b:e6:43:ea:eb:fc:f7:88:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:01 2024 GMT Not After : Sep 9 04:00:01 2025 GMT Subject: CN=9258E1155BF32A3C9462BC97E5B5A5F1BF38D2EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:04:00:97:7d:11:de:5a:25:94:76:53:73:be: f0:00:11:ed:1d:65:d1:1e:a5:22:26:6f:6f:30:c5: dd:61:3b:7a:a1:1b:2e:a6:81:91:52:93:e7:be:3f: 6d:51:98:ea:97:7f:80:66:d9:18:e5:a4:5b:6d:59: 00:d0:bb:5f:e7:5d:b3:d6:be:46:a3:2d:41:f0:86: c9:bc:40:f2:ef:8f:33:dd:db:9b:a0:22:8c:3d:02: 0b:eb:72:50:04:08:62:5c:7b:bf:59:6f:40:e1:e1: 6f:ed:ac:cb:0b:8b:fb:ee:1d:f7:93:77:92:f4:8c: 42:3e:c5:03:47:c9:ce:6e:1a:0e:07:21:1b:ee:dc: ae:16:fe:d6:f2:42:87:f1:6e:c6:fb:10:04:27:83: c1:96:19:cb:58:5f:67:54:c0:e9:43:66:10:92:d1: 3a:a3:64:cf:f4:c1:39:e1:7f:78:5a:96:33:9a:78: 31:6f:48:b4:8e:ca:55:f1:82:58:08:ea:ec:1d:a6: 5a:d0:cd:bd:96:d1:5f:62:a0:bc:5b:e3:82:36:42: b4:dc:dc:62:1b:98:95:72:44:f5:37:14:5b:44:56: 04:85:de:36:df:9e:0d:ca:96:e1:00:b4:b6:8e:6f: d3:19:67:6c:04:8d:7d:ba:f1:f7:03:75:37:be:7a: bd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:58:E1:15:5B:F3:2A:3C:94:62:BC:97:E5:B5:A5:F1:BF:38:D2:EC X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37322e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.72.0/24 Signature Algorithm: sha256WithRSAEncryption 85:b1:70:c6:0e:ec:54:c9:5f:c3:84:4b:47:55:99:84:4c:90: a6:6c:9e:ef:00:b4:6b:74:60:65:15:fd:cf:1d:49:19:65:f3: 53:8e:f1:01:72:54:45:c7:8b:66:99:64:fe:60:b4:d9:f8:cb: 16:c2:31:3b:34:1f:a2:7a:72:29:33:46:e2:d2:30:a4:48:a8: 66:2a:54:81:9a:fb:c5:c3:57:7e:eb:49:66:e1:b1:a2:ad:6a: c0:b0:5f:46:bd:8f:41:55:c1:fd:93:72:6f:b0:de:48:98:9a: b3:d9:f1:28:f0:6b:8c:14:de:8f:7d:b9:58:8a:63:3e:fe:cb: 97:f3:05:37:49:8b:19:8a:17:12:7f:8e:ca:4b:27:71:f1:12: f0:b4:ca:13:1f:42:78:a6:fd:6c:76:7a:b6:7b:ab:50:56:22: 4f:41:6b:08:93:11:c1:47:2a:f6:c0:cb:43:08:f9:14:ac:74: 0f:ec:e4:22:94:b7:67:82:fd:35:fa:04:58:3c:05:9e:fc:ef: c5:f5:15:a1:be:24:97:c4:ee:04:25:72:8e:5f:2e:f5:df:b3: e9:c5:1a:e6:8e:ab:05:eb:50:ac:68:4d:86:3c:bc:37:4c:79: 29:69:85:4c:fa:a3:d5:56:d1:2e:ef:52:b8:e9:18:69:64:c8: 95:49:4c:59 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEmiapyooRIN/91pb5kPq6/z3iAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDFaFw0yNTA5MDkwNDAwMDFaMDMxMTAvBgNV BAMTKDkyNThFMTE1NUJGMzJBM0M5NDYyQkM5N0U1QjVBNUYxQkYzOEQyRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdBACXfRHeWiWUdlNzvvAAEe0d ZdEepSImb28wxd1hO3qhGy6mgZFSk+e+P21RmOqXf4Bm2RjlpFttWQDQu1/nXbPW vkajLUHwhsm8QPLvjzPd25ugIow9AgvrclAECGJce79Zb0Dh4W/trMsLi/vuHfeT d5L0jEI+xQNHyc5uGg4HIRvu3K4W/tbyQofxbsb7EAQng8GWGctYX2dUwOlDZhCS 0TqjZM/0wTnhf3haljOaeDFvSLSOylXxglgI6uwdplrQzb2W0V9ioLxb44I2QrTc 3GIbmJVyRPU3FFtEVgSF3jbfng3KluEAtLaOb9MZZ2wEjX268fcDdTe+er3/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkljhFVvzKjyUYryX5bWl8b840uwwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtSDANBgkqhkiG 9w0BAQsFAAOCAQEAhbFwxg7sVMlfw4RLR1WZhEyQpmye7wC0a3RgZRX9zx1JGWXz U47xAXJURceLZplk/mC02fjLFsIxOzQfonpyKTNG4tIwpEioZipUgZr7xcNXfutJ ZuGxoq1qwLBfRr2PQVXB/ZNyb7DeSJias9nxKPBrjBTej325WIpjPv7Ll/MFN0mL GYoXEn+OyksncfES8LTKEx9CeKb9bHZ6tnurUFYiT0FrCJMRwUcq9sDLQwj5FKx0 D+zkIpS3Z4L9NfoEWDwFnvzvxfUVob4kl8TuBCVyjl8u9d+z6cUa5o6rBetQrGhN hjy8N0x5KWmFTPqj1VbRLu9SuOkYaWTIlUlMWQ== -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org