$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37342e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37342e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: 6QSQEwf0Vg6SaXjS+GIzWwNuYlP7VRzDWIXvyWeiVCo= Subject key identifier: B4:96:B6:90:50:1C:22:A1:B6:00:5A:CA:16:63:BC:A4:0F:C8:C7:43 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 38DA22CFCE4A155A9BAD610C6E5F67BD817D691B Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37342e302f32342d3234203d3e203233363935.roa Signing time: Tue 17 Sep 2024 16:00:02 +0000 ROA not before: Tue 17 Sep 2024 15:55:02 +0000 ROA not after: Tue 16 Sep 2025 16:00:02 +0000 asID: 23695 IP address blocks: 202.173.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:da:22:cf:ce:4a:15:5a:9b:ad:61:0c:6e:5f:67:bd:81:7d:69:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 17 15:55:02 2024 GMT Not After : Sep 16 16:00:02 2025 GMT Subject: CN=B496B690501C22A1B6005ACA1663BCA40FC8C743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1d:ae:66:ab:c2:89:f3:56:52:fa:05:63:89: bc:cc:1a:b5:a2:19:54:4d:8b:a9:84:d5:41:20:05: ba:cb:6c:02:94:70:ac:ce:ca:d8:40:7c:af:87:81: d7:60:b0:9a:c5:d0:bf:c4:d5:f9:7e:00:68:69:5c: b9:4c:e9:a2:32:db:0e:61:a9:40:7f:54:a6:e7:cd: e3:1d:6f:46:d4:b5:c8:93:ea:21:04:81:fd:84:a5: b9:1a:6c:98:98:45:50:d0:31:fb:41:3d:d9:f4:9e: 3c:c6:b7:01:cb:0b:60:39:ba:99:ab:54:d4:9a:b0: 67:fd:fa:9b:a2:e2:bd:0f:a8:2b:80:ac:62:6b:92: 20:03:c8:b5:ce:b4:a3:ab:d3:df:3f:c1:57:1b:07: be:51:84:1c:9b:32:ef:a7:f0:33:a6:ce:bc:74:f3: c4:12:79:23:02:0e:7e:d3:1a:05:c9:18:49:4b:92: d2:53:bf:95:92:b6:e6:05:e2:a9:c6:ee:fb:51:ec: 94:74:9b:51:a0:d6:b3:29:c0:ea:20:4b:f9:cc:2f: 72:69:5b:e9:b4:b3:e9:fe:e4:90:38:c1:bc:48:bb: e8:e6:fa:8a:db:cb:3b:58:85:97:17:f4:89:19:0e: 08:73:f1:d6:81:3f:b4:81:62:71:56:d6:8a:95:57: 41:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:96:B6:90:50:1C:22:A1:B6:00:5A:CA:16:63:BC:A4:0F:C8:C7:43 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37342e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.74.0/24 Signature Algorithm: sha256WithRSAEncryption a5:50:06:4a:37:a9:97:b9:94:56:b2:b9:bc:e4:7b:b1:79:4a: 4a:9b:74:88:bf:ec:7b:75:52:73:dc:b6:3a:1f:fe:3c:55:bb: 4a:fd:36:54:e1:a8:11:50:16:22:3c:27:b2:b4:6c:e8:b1:04: 36:00:87:b7:11:63:93:81:2c:00:66:37:06:af:e2:f6:82:b9: 9e:7c:80:da:5e:f2:a1:0b:0a:f8:7c:7d:2d:ab:51:75:a7:64: 88:90:d0:f9:bb:5a:b5:ba:0e:19:68:71:f5:78:0a:6f:27:aa: 4c:1d:b8:84:da:1a:8e:51:85:94:08:cf:2f:a0:89:1e:4d:55: 12:d5:7a:d5:c9:95:0e:db:27:43:04:6e:3e:55:e2:d4:38:9a: 1d:e1:c5:fa:c7:57:fd:23:9c:43:6b:f1:0b:06:0f:63:b8:c6: 1b:49:b6:68:db:b8:48:d7:49:6e:f6:c9:ea:f0:7f:09:bf:6f: ab:48:e4:75:15:e9:50:82:20:16:20:92:96:8d:97:b5:be:f5: 4e:c0:6d:e0:62:ea:47:ac:68:20:e6:5d:5b:52:f3:87:cd:e2: 06:28:07:93:aa:fe:b6:70:29:81:b6:15:4e:cf:3b:50:15:07: 88:bb:15:b7:97:71:0d:d2:c1:83:9b:5c:1b:2c:1a:0d:ce:5c: e4:1b:94:ce -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUONoiz85KFVqbrWEMbl9nvYF9aRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTcxNTU1MDJaFw0yNTA5MTYxNjAwMDJaMDMxMTAvBgNV BAMTKEI0OTZCNjkwNTAxQzIyQTFCNjAwNUFDQTE2NjNCQ0E0MEZDOEM3NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaHa5mq8KJ81ZS+gVjibzMGrWi GVRNi6mE1UEgBbrLbAKUcKzOythAfK+HgddgsJrF0L/E1fl+AGhpXLlM6aIy2w5h qUB/VKbnzeMdb0bUtciT6iEEgf2EpbkabJiYRVDQMftBPdn0njzGtwHLC2A5upmr VNSasGf9+pui4r0PqCuArGJrkiADyLXOtKOr098/wVcbB75RhBybMu+n8DOmzrx0 88QSeSMCDn7TGgXJGElLktJTv5WStuYF4qnG7vtR7JR0m1Gg1rMpwOogS/nML3Jp W+m0s+n+5JA4wbxIu+jm+orbyztYhZcX9IkZDghz8daBP7SBYnFW1oqVV0FFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtJa2kFAcIqG2AFrKFmO8pA/Ix0MwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtSjANBgkqhkiG 9w0BAQsFAAOCAQEApVAGSjepl7mUVrK5vOR7sXlKSpt0iL/se3VSc9y2Oh/+PFW7 Sv02VOGoEVAWIjwnsrRs6LEENgCHtxFjk4EsAGY3Bq/i9oK5nnyA2l7yoQsK+Hx9 LatRdadkiJDQ+btatboOGWhx9XgKbyeqTB24hNoajlGFlAjPL6CJHk1VEtV61cmV DtsnQwRuPlXi1DiaHeHF+sdX/SOcQ2vxCwYPY7jGG0m2aNu4SNdJbvbJ6vB/Cb9v q0jkdRXpUIIgFiCSlo2Xtb71TsBt4GLqR6xoIOZdW1Lzh83iBigHk6r+tnApgbYV Ts87UBUHiLsVt5dxDdLBg5tcGywaDc5c5BuUzg== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org