$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37322e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37322e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: E7HX0tiOX9E+QGKdVh59rTneR22iAYAMEnIqoaBrLPw= Subject key identifier: C3:23:F2:90:67:1D:CA:78:58:54:1C:C2:FC:8F:D1:B1:A5:4F:CA:26 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 47ABB0D0EF29FCFD0176247B854032AF911F6678 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37322e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Oct 2023 03:45:53 +0000 ROA not before: Tue 10 Oct 2023 03:40:53 +0000 ROA not after: Tue 08 Oct 2024 03:45:53 +0000 asID: 23695 IP address blocks: 202.173.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ab:b0:d0:ef:29:fc:fd:01:76:24:7b:85:40:32:af:91:1f:66:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Oct 10 03:40:53 2023 GMT Not After : Oct 8 03:45:53 2024 GMT Subject: CN=C323F290671DCA7858541CC2FC8FD1B1A54FCA26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e9:61:26:1a:ba:31:31:7e:2f:d7:ba:21:a3: e4:20:49:d7:88:b3:5c:aa:63:60:2f:ea:e0:aa:a5: e4:a5:4f:51:a7:fd:df:d3:69:f5:66:13:c3:4b:37: 86:8b:f2:5f:52:0a:9b:0c:aa:11:07:65:14:1e:0e: 73:75:28:6c:46:f8:31:6a:df:ff:7a:5b:5d:7a:f1: 6c:b3:f2:db:4d:c6:0d:1c:d9:2d:74:68:fe:e5:87: 6e:ff:fe:c7:b8:0d:24:88:88:b3:b8:bf:9a:71:aa: 65:7c:48:26:b2:dc:f0:65:fb:cd:7a:80:d3:9e:fb: 75:94:05:cb:eb:f4:c4:e6:6f:49:50:eb:25:0a:ee: b7:01:b5:4e:7d:d4:d8:d4:8a:7d:f4:41:29:2b:9a: 38:35:8d:40:75:58:68:41:bd:a6:da:67:82:4a:68: 97:1e:48:62:60:dc:4b:99:78:73:17:1f:b6:69:6c: fb:73:85:ae:8a:dc:f0:fd:00:cf:2b:dc:af:d1:58: ab:ba:ff:cf:52:ac:f6:c0:bd:04:fa:50:59:87:64: 0f:4b:f2:4b:0a:93:39:4a:ff:7b:40:bb:5d:73:17: 0e:7a:11:55:4b:c7:2d:d1:26:ec:86:6b:e2:a8:3a: 02:c4:14:4f:d3:7b:01:cb:a7:9b:d0:a9:f0:18:71: 6b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:23:F2:90:67:1D:CA:78:58:54:1C:C2:FC:8F:D1:B1:A5:4F:CA:26 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37322e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.72.0/24 Signature Algorithm: sha256WithRSAEncryption cc:d9:26:1f:d3:62:f6:53:04:7c:9e:44:22:44:8c:81:8e:e8: c3:40:1e:12:bc:b5:27:77:82:8d:7a:0a:98:9f:38:f0:35:c9: 49:18:ce:72:c7:4f:3b:98:3c:a7:8d:b5:09:0f:34:50:10:3e: 84:b9:7e:f3:b4:dc:50:31:fe:9e:6f:bb:f3:ac:25:49:46:b9: c7:1d:c6:24:88:57:7c:d5:79:3d:7e:bd:ae:2f:a0:55:ba:fb: c2:01:33:cf:b7:21:6b:ff:31:bb:a7:30:4d:f4:de:a6:ed:38: 24:76:92:31:45:5d:d4:76:21:01:59:2d:31:d8:42:bc:62:f9: dc:cb:8c:ab:69:22:33:79:e7:a3:5e:fa:3a:38:2d:55:07:51: bd:55:b2:19:61:12:f5:1e:60:92:c2:2f:5c:55:73:31:9d:62: 2b:3e:e2:8b:0b:50:8b:e3:ca:20:81:28:bb:20:db:cc:84:af: b3:ea:a3:c2:8d:e7:22:7c:40:95:6e:c5:4e:1f:91:5e:4e:97: ac:3c:88:73:3a:72:e1:86:b3:5d:9a:6d:70:5f:b7:e6:9e:df: a3:b0:02:37:54:75:11:9d:45:9b:df:a9:ab:57:bb:1b:70:19: 36:00:fb:af:2f:bd:ed:b5:a5:5d:78:9d:f8:0d:33:cc:60:d2: 6b:5c:0b:1a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR6uw0O8p/P0BdiR7hUAyr5EfZngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yMzEwMTAwMzQwNTNaFw0yNDEwMDgwMzQ1NTNaMDMxMTAvBgNV BAMTKEMzMjNGMjkwNjcxRENBNzg1ODU0MUNDMkZDOEZEMUIxQTU0RkNBMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP6WEmGroxMX4v17oho+QgSdeI s1yqY2Av6uCqpeSlT1Gn/d/TafVmE8NLN4aL8l9SCpsMqhEHZRQeDnN1KGxG+DFq 3/96W1168Wyz8ttNxg0c2S10aP7lh27//se4DSSIiLO4v5pxqmV8SCay3PBl+816 gNOe+3WUBcvr9MTmb0lQ6yUK7rcBtU591NjUin30QSkrmjg1jUB1WGhBvabaZ4JK aJceSGJg3EuZeHMXH7ZpbPtzha6K3PD9AM8r3K/RWKu6/89SrPbAvQT6UFmHZA9L 8ksKkzlK/3tAu11zFw56EVVLxy3RJuyGa+KoOgLEFE/TewHLp5vQqfAYcWvnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwyPykGcdynhYVBzC/I/RsaVPyiYwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtSDANBgkqhkiG 9w0BAQsFAAOCAQEAzNkmH9Ni9lMEfJ5EIkSMgY7ow0AeEry1J3eCjXoKmJ848DXJ SRjOcsdPO5g8p421CQ80UBA+hLl+87TcUDH+nm+786wlSUa5xx3GJIhXfNV5PX69 ri+gVbr7wgEzz7cha/8xu6cwTfTepu04JHaSMUVd1HYhAVktMdhCvGL53MuMq2ki M3nno176OjgtVQdRvVWyGWES9R5gksIvXFVzMZ1iKz7iiwtQi+PKIIEouyDbzISv s+qjwo3nInxAlW7FTh+RXk6XrDyIczpy4YazXZptcF+35p7fo7ACN1R1EZ1Fm9+p q1e7G3AZNgD7ry+97bWlXXid+A0zzGDSa1wLGg== -----END CERTIFICATE-----Generated at Fri May 31 22:12:28 2024 by rpki-client on console-fra.rpki-client.org