$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37352e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37352e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: T54B7k7LWZJrJiEsF0J85BqNWYUVr2e/fAl2Lxl2xJQ= Subject key identifier: EF:F4:55:00:83:54:30:BE:D4:AF:DE:1A:7A:F0:47:05:46:5C:9C:DC Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 437B12FCDC090033576793BB0AB91456044272EF Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37352e302f32342d3234203d3e203233363935.roa Signing time: Tue 17 Oct 2023 15:52:41 +0000 ROA not before: Tue 17 Oct 2023 15:47:41 +0000 ROA not after: Tue 15 Oct 2024 15:52:41 +0000 asID: 23695 IP address blocks: 202.173.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7b:12:fc:dc:09:00:33:57:67:93:bb:0a:b9:14:56:04:42:72:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Oct 17 15:47:41 2023 GMT Not After : Oct 15 15:52:41 2024 GMT Subject: CN=EFF45500835430BED4AFDE1A7AF04705465C9CDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a5:74:16:c9:f9:fc:bd:83:2b:82:16:e0:98: e3:35:c9:58:96:17:65:21:87:47:dc:19:94:fb:84: 4f:37:a6:80:b6:39:4e:a7:34:37:db:be:ca:fc:48: dc:fe:c3:d3:ad:a3:c1:5e:7d:2f:84:76:24:db:bc: a7:82:02:fe:86:a6:8a:66:0f:a3:e3:d9:de:83:84: 9a:40:f5:aa:96:a8:be:49:10:ce:92:9d:dd:b4:b2: f8:51:af:71:04:dd:ed:b8:2a:30:ef:b2:24:68:94: 52:b6:27:2a:8e:37:ea:67:34:8d:7c:b6:b5:89:df: 7e:a8:6c:dc:ea:44:3c:33:60:2f:fa:fa:77:35:96: 75:a1:d0:5f:f0:9e:de:1a:9a:b5:5d:ff:b1:51:39: 29:da:2e:a7:16:ea:aa:9d:bd:df:37:b0:9e:71:82: a5:36:3f:87:98:37:8e:a6:71:93:cd:cf:fe:79:fd: 8e:ff:19:b7:7c:ca:6c:29:6a:00:9a:4f:78:b0:ce: 50:72:90:80:21:12:82:0d:77:c8:16:d7:62:75:77: f6:d0:5b:37:10:6c:08:4c:1e:50:59:d6:ce:4b:bb: c1:c6:d7:9a:06:07:53:d8:75:e3:dd:ea:8d:d4:37: 72:6f:ca:d3:3e:cd:a3:06:d8:9c:cb:9b:af:fe:1f: f0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F4:55:00:83:54:30:BE:D4:AF:DE:1A:7A:F0:47:05:46:5C:9C:DC X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37352e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.75.0/24 Signature Algorithm: sha256WithRSAEncryption 95:37:10:de:e7:16:58:3a:fc:76:d5:dd:64:8c:23:51:bd:ac: cb:ba:00:b6:02:6e:e8:5b:cf:dd:4f:d3:7d:48:ec:c2:c7:da: 99:3d:88:f6:9a:77:eb:0e:b8:70:85:54:35:23:75:36:68:da: 56:cf:df:2c:95:6e:c3:88:b2:ea:3f:5d:47:82:78:1c:c9:98: 83:54:30:52:0d:86:a1:ea:ea:45:ce:f6:5d:0f:c3:ec:66:84: 64:2c:71:03:b0:9c:70:a2:ff:87:79:8d:88:10:92:d5:42:43: 7c:04:10:ea:90:a9:a5:46:a3:c9:4b:1d:5e:85:fe:a9:2f:90: 5c:3c:a6:c0:0f:0c:63:55:cd:0d:31:71:66:7f:9f:0e:5f:ea: 87:20:3a:3f:d3:36:28:29:d6:be:01:7c:84:67:f8:b6:0e:61: 0e:45:31:d8:73:e3:8d:e4:52:73:89:6f:32:e1:a5:b6:d5:62: c8:cf:70:7c:15:ff:d9:fe:f3:cd:2e:a7:0d:34:17:12:d8:12: ac:88:3d:02:c3:87:b7:40:c5:d3:bd:3a:52:d5:58:67:b7:cb: b0:08:38:0f:01:3f:12:40:9e:85:ea:4f:de:ea:ab:a8:2f:48: 6d:29:cc:44:58:6b:8e:06:ba:af:cb:2f:0c:a5:28:cf:81:b2: 16:35:81:bc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ3sS/NwJADNXZ5O7CrkUVgRCcu8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yMzEwMTcxNTQ3NDFaFw0yNDEwMTUxNTUyNDFaMDMxMTAvBgNV BAMTKEVGRjQ1NTAwODM1NDMwQkVENEFGREUxQTdBRjA0NzA1NDY1QzlDREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvpXQWyfn8vYMrghbgmOM1yViW F2Uhh0fcGZT7hE83poC2OU6nNDfbvsr8SNz+w9Oto8FefS+EdiTbvKeCAv6Gpopm D6Pj2d6DhJpA9aqWqL5JEM6Snd20svhRr3EE3e24KjDvsiRolFK2JyqON+pnNI18 trWJ336obNzqRDwzYC/6+nc1lnWh0F/wnt4amrVd/7FROSnaLqcW6qqdvd83sJ5x gqU2P4eYN46mcZPNz/55/Y7/Gbd8ymwpagCaT3iwzlBykIAhEoINd8gW12J1d/bQ WzcQbAhMHlBZ1s5Lu8HG15oGB1PYdePd6o3UN3JvytM+zaMG2JzLm6/+H/CNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7/RVAINUML7Ur94aevBHBUZcnNwwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtSzANBgkqhkiG 9w0BAQsFAAOCAQEAlTcQ3ucWWDr8dtXdZIwjUb2sy7oAtgJu6FvP3U/TfUjswsfa mT2I9pp36w64cIVUNSN1NmjaVs/fLJVuw4iy6j9dR4J4HMmYg1QwUg2GoerqRc72 XQ/D7GaEZCxxA7CccKL/h3mNiBCS1UJDfAQQ6pCppUajyUsdXoX+qS+QXDymwA8M Y1XNDTFxZn+fDl/qhyA6P9M2KCnWvgF8hGf4tg5hDkUx2HPjjeRSc4lvMuGlttVi yM9wfBX/2f7zzS6nDTQXEtgSrIg9AsOHt0DF0706UtVYZ7fLsAg4DwE/EkCehepP 3uqrqC9IbSnMRFhrjga6r8svDKUoz4GyFjWBvA== -----END CERTIFICATE-----Generated at Sat Jun 1 00:11:41 2024 by rpki-client on console-ams.rpki-client.org