$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37352e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37352e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: kHEvnsONRQITDgcaeW14+b5i/pT074x2j6ak8xJ3qTA= Subject key identifier: 44:F6:30:EB:E7:CB:DE:17:3C:95:C0:5D:75:C0:8E:37:AB:BB:47:82 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 563CEC69B5380E7159868FBB15AD976DFA133292 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37352e302f32342d3234203d3e203233363935.roa Signing time: Tue 17 Sep 2024 16:00:01 +0000 ROA not before: Tue 17 Sep 2024 15:55:01 +0000 ROA not after: Tue 16 Sep 2025 16:00:01 +0000 asID: 23695 IP address blocks: 202.173.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:3c:ec:69:b5:38:0e:71:59:86:8f:bb:15:ad:97:6d:fa:13:32:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 17 15:55:01 2024 GMT Not After : Sep 16 16:00:01 2025 GMT Subject: CN=44F630EBE7CBDE173C95C05D75C08E37ABBB4782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:80:17:55:e9:95:3a:30:2e:df:c5:c2:d5:26: dc:54:ba:e5:52:a8:14:b7:de:1c:d7:1a:9d:0a:d6: ec:7a:a4:ca:6f:d6:ae:ff:08:ac:6a:e0:63:3b:01: 07:cd:da:1f:18:bc:0f:28:80:e4:40:d8:f1:46:e2: ab:1e:d7:78:56:72:e3:7c:ff:55:47:c5:65:1e:54: 94:dc:98:d5:74:00:ed:47:08:c1:38:28:7e:00:c1: b4:fb:29:c9:b8:58:e0:68:b8:a6:d3:be:d4:a3:80: 02:fc:82:87:2e:72:0b:4f:64:a3:dd:c6:b1:bf:3e: fe:0b:a7:c2:96:17:d1:4a:06:56:01:56:f5:0a:47: 41:22:4e:2c:3e:b4:41:c3:1e:f3:29:33:3d:29:0d: 10:59:85:0c:41:27:af:cf:2b:2e:40:4e:ae:ab:48: 41:9e:46:89:1d:d0:7e:15:ff:f0:6c:70:d4:cd:97: 55:3d:db:61:a1:30:03:a6:d9:6b:6a:63:70:31:55: 5b:d5:2b:9f:36:81:5c:2e:97:e6:26:9d:68:33:a9: 2e:d3:98:76:3c:23:b1:30:89:2a:fa:46:f3:4f:f0: 28:17:e8:3b:a3:f2:c0:b1:34:f3:a0:75:24:53:b1: 6c:79:99:aa:b0:3f:76:50:5c:90:29:44:d0:00:83: 00:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F6:30:EB:E7:CB:DE:17:3C:95:C0:5D:75:C0:8E:37:AB:BB:47:82 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37352e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.75.0/24 Signature Algorithm: sha256WithRSAEncryption 49:ab:76:5c:0f:3e:f0:cb:65:7c:df:76:57:8b:38:9c:84:5e: 6f:a1:0e:b6:85:19:e8:b7:b7:15:86:c1:ee:12:80:2b:64:6e: 99:94:64:6c:c9:39:f1:f7:c0:db:b3:78:e3:91:28:50:59:0b: 96:6e:61:cf:c6:76:0a:77:f0:cd:93:1f:5d:5a:9a:6e:3e:a8: 14:ad:3e:c5:1c:20:2a:e5:8a:df:44:31:c6:3b:d2:d6:7e:32: e0:9f:4d:ed:26:3a:ad:36:f2:3d:e3:ad:d3:fa:c0:ed:d4:74: 21:2d:98:80:ab:99:31:21:d5:37:b5:89:f6:89:40:c9:fe:28: 8d:42:ca:4d:57:3d:23:35:79:e8:7a:a1:76:60:db:78:6d:eb: 04:e6:ae:0a:fa:c8:31:17:95:7f:5a:e6:0a:dd:6b:73:50:c9: 37:95:b6:ad:1c:02:b1:d5:e0:d0:bc:35:42:c5:17:a7:30:6f: 52:91:81:8e:38:f2:11:ce:85:bc:d3:47:4e:1e:2d:4c:c9:e0: 0b:1a:a4:2d:b8:47:bc:f1:34:0d:d9:47:7f:e4:45:d1:24:a4: 0d:c2:42:8e:5d:27:18:9c:d2:53:36:2e:85:7d:d6:5c:03:36: 87:d2:fc:25:22:f3:a0:f9:ae:32:dd:a6:57:76:8d:44:b1:34: ec:b1:53:d7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVjzsabU4DnFZho+7Fa2XbfoTMpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTcxNTU1MDFaFw0yNTA5MTYxNjAwMDFaMDMxMTAvBgNV BAMTKDQ0RjYzMEVCRTdDQkRFMTczQzk1QzA1RDc1QzA4RTM3QUJCQjQ3ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVgBdV6ZU6MC7fxcLVJtxUuuVS qBS33hzXGp0K1ux6pMpv1q7/CKxq4GM7AQfN2h8YvA8ogORA2PFG4qse13hWcuN8 /1VHxWUeVJTcmNV0AO1HCME4KH4AwbT7Kcm4WOBouKbTvtSjgAL8gocucgtPZKPd xrG/Pv4Lp8KWF9FKBlYBVvUKR0EiTiw+tEHDHvMpMz0pDRBZhQxBJ6/PKy5ATq6r SEGeRokd0H4V//BscNTNl1U922GhMAOm2WtqY3AxVVvVK582gVwul+YmnWgzqS7T mHY8I7EwiSr6RvNP8CgX6Duj8sCxNPOgdSRTsWx5maqwP3ZQXJApRNAAgwAjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURPYw6+fL3hc8lcBddcCON6u7R4IwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtSzANBgkqhkiG 9w0BAQsFAAOCAQEASat2XA8+8MtlfN92V4s4nIReb6EOtoUZ6Le3FYbB7hKAK2Ru mZRkbMk58ffA27N445EoUFkLlm5hz8Z2CnfwzZMfXVqabj6oFK0+xRwgKuWK30Qx xjvS1n4y4J9N7SY6rTbyPeOt0/rA7dR0IS2YgKuZMSHVN7WJ9olAyf4ojULKTVc9 IzV56HqhdmDbeG3rBOauCvrIMReVf1rmCt1rc1DJN5W2rRwCsdXg0Lw1QsUXpzBv UpGBjjjyEc6FvNNHTh4tTMngCxqkLbhHvPE0DdlHf+RF0SSkDcJCjl0nGJzSUzYu hX3WXAM2h9L8JSLzoPmuMt2mV3aNRLE07LFT1w== -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org