$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37332e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37332e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: nSzlfFPpI7N3qrGPleUZ7U2AGFdMYcBNQO4RGyLMKDU= Subject key identifier: 07:6D:21:45:B8:7D:E5:30:8E:7D:54:6B:8A:51:E1:60:4A:14:98:5B Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 6110A14B079F6C215146EF5B92EF080EA1688750 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37332e302f32342d3234203d3e203233363935.roa Signing time: Tue 17 Sep 2024 16:00:01 +0000 ROA not before: Tue 17 Sep 2024 15:55:01 +0000 ROA not after: Tue 16 Sep 2025 16:00:01 +0000 asID: 23695 IP address blocks: 202.173.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:10:a1:4b:07:9f:6c:21:51:46:ef:5b:92:ef:08:0e:a1:68:87:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 17 15:55:01 2024 GMT Not After : Sep 16 16:00:01 2025 GMT Subject: CN=076D2145B87DE5308E7D546B8A51E1604A14985B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:db:99:23:6c:e1:98:b8:80:ab:99:0c:31:cd: 8a:d0:36:6a:ce:09:39:8c:fb:3e:bf:83:8d:93:b4: ee:9c:9a:3b:36:66:ae:85:58:08:a2:b6:1c:98:68: 46:70:9b:ba:c2:51:8a:98:c7:a0:70:15:08:86:0b: f2:50:92:7d:7b:01:1f:0d:d3:de:5a:7b:87:4c:5b: e9:cc:02:cb:66:76:b5:0f:ea:23:cd:a9:5a:6e:33: 11:76:5f:9e:68:9f:48:58:64:3c:72:b6:6d:82:fa: 1b:81:a7:83:b6:41:db:57:77:aa:db:c9:e7:30:bf: 7f:fb:bc:f1:83:33:6f:db:57:0c:35:06:09:f0:a0: f4:76:91:e6:ec:b2:09:16:a6:cb:be:7d:52:44:b4: a6:5a:77:74:44:3f:77:3e:2c:9d:0f:4e:f0:a5:74: 35:79:05:4c:42:e7:da:59:3e:85:67:ad:84:d6:95: 94:03:8a:95:e2:9d:55:fb:db:90:51:d5:6c:d0:35: 9f:82:03:d3:4b:9e:94:c3:c5:74:b1:a4:81:05:f5: 17:5c:03:a4:f6:a0:65:4b:0b:5f:71:20:15:7e:b1: 2d:e0:ef:fd:db:b9:a4:02:07:ac:ed:85:20:2d:52: 2c:44:ad:9d:bd:54:c0:ac:24:c2:25:89:01:52:9e: 80:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:6D:21:45:B8:7D:E5:30:8E:7D:54:6B:8A:51:E1:60:4A:14:98:5B X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37332e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.73.0/24 Signature Algorithm: sha256WithRSAEncryption 63:5a:5d:46:7f:6f:d7:7a:ee:53:c4:8e:f6:ee:0b:c4:43:a3: e6:c7:6d:da:0d:5f:9a:8d:ed:86:94:79:3d:3d:29:3a:7f:78: 33:bf:be:f0:f3:30:99:89:61:ba:11:6b:4e:7c:f8:49:a9:64: 9f:a9:6c:43:6a:27:1b:c6:af:24:35:1c:9b:41:44:db:78:68: dd:f6:70:8a:2c:4a:54:b1:2a:d3:f3:69:e8:3a:e3:3f:be:58: 5c:0e:33:4b:c2:27:06:c1:92:a1:81:74:48:e3:f3:24:03:c0: 1d:54:52:41:0f:54:cc:34:42:c5:a4:e4:84:b9:9d:16:80:bc: 21:5a:fc:5c:7e:33:c3:a7:0a:4c:5a:ab:8f:8c:70:5f:a7:32: 20:8e:68:65:1c:d4:51:b8:4d:25:22:a2:93:88:82:67:04:34: 11:82:3a:74:81:00:53:67:bd:09:b2:ea:c3:ae:f3:d5:d0:af: 83:9c:11:15:71:4b:93:ef:04:37:85:b9:10:70:ee:84:7f:9e: 76:a8:4c:00:24:02:2d:07:d7:f2:3e:de:36:22:79:fa:71:80: ec:b2:3e:9d:ff:58:20:80:ab:a9:69:7b:d6:5d:fa:3f:fb:25: ad:d0:13:e1:ce:f3:e5:f8:2c:c5:b4:2e:f1:86:b4:e3:d6:1b: 08:6d:4f:96 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYRChSwefbCFRRu9bku8IDqFoh1AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTcxNTU1MDFaFw0yNTA5MTYxNjAwMDFaMDMxMTAvBgNV BAMTKDA3NkQyMTQ1Qjg3REU1MzA4RTdENTQ2QjhBNTFFMTYwNEExNDk4NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj25kjbOGYuICrmQwxzYrQNmrO CTmM+z6/g42TtO6cmjs2Zq6FWAiithyYaEZwm7rCUYqYx6BwFQiGC/JQkn17AR8N 095ae4dMW+nMAstmdrUP6iPNqVpuMxF2X55on0hYZDxytm2C+huBp4O2QdtXd6rb yecwv3/7vPGDM2/bVww1BgnwoPR2kebssgkWpsu+fVJEtKZad3REP3c+LJ0PTvCl dDV5BUxC59pZPoVnrYTWlZQDipXinVX725BR1WzQNZ+CA9NLnpTDxXSxpIEF9Rdc A6T2oGVLC19xIBV+sS3g7/3buaQCB6zthSAtUixErZ29VMCsJMIliQFSnoBPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUB20hRbh95TCOfVRrilHhYEoUmFswHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtSTANBgkqhkiG 9w0BAQsFAAOCAQEAY1pdRn9v13ruU8SO9u4LxEOj5sdt2g1fmo3thpR5PT0pOn94 M7++8PMwmYlhuhFrTnz4Salkn6lsQ2onG8avJDUcm0FE23ho3fZwiixKVLEq0/Np 6DrjP75YXA4zS8InBsGSoYF0SOPzJAPAHVRSQQ9UzDRCxaTkhLmdFoC8IVr8XH4z w6cKTFqrj4xwX6cyII5oZRzUUbhNJSKik4iCZwQ0EYI6dIEAU2e9CbLqw67z1dCv g5wRFXFLk+8EN4W5EHDuhH+edqhMACQCLQfX8j7eNiJ5+nGA7LI+nf9YIICrqWl7 1l36P/slrdAT4c7z5fgsxbQu8Ya049YbCG1Plg== -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org