$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37372e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37372e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: fMnLos8+J1VIZ4qwJVBJ1J3B9BHaKTUBDhVAh5aNCi8= Subject key identifier: 70:79:D6:76:99:EC:F7:9D:DF:A3:9F:40:4F:7D:5F:88:51:BB:DC:01 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 1A4E649C1EC0D8D843B6CB3871908259B631E966 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37372e302f32342d3234203d3e203233363935.roa Signing time: Tue 17 Sep 2024 16:00:01 +0000 ROA not before: Tue 17 Sep 2024 15:55:01 +0000 ROA not after: Tue 16 Sep 2025 16:00:01 +0000 asID: 23695 IP address blocks: 202.173.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:4e:64:9c:1e:c0:d8:d8:43:b6:cb:38:71:90:82:59:b6:31:e9:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 17 15:55:01 2024 GMT Not After : Sep 16 16:00:01 2025 GMT Subject: CN=7079D67699ECF79DDFA39F404F7D5F8851BBDC01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d3:de:6c:fa:f5:e9:e0:8c:72:8a:c7:1b:63: 66:45:de:f2:f0:79:fe:07:68:6e:56:06:a5:45:7f: e9:c3:0d:22:ef:16:9f:6e:65:b6:fe:29:6b:25:28: 4c:35:af:f2:f9:99:74:7e:b9:71:2b:a6:69:d6:60: 8e:43:d3:3c:d5:41:41:a3:d3:68:d1:91:64:b3:33: 22:9a:ba:8d:4d:ef:7f:0d:04:41:b8:68:01:91:44: e2:e9:9e:a3:c2:73:7e:01:80:1b:03:1d:47:25:73: e2:a5:1c:ef:8b:47:31:47:f9:21:09:4d:a8:15:ee: ff:32:c2:d2:46:b7:70:78:2f:48:e1:11:e4:21:c8: 3a:f1:04:f5:de:1f:94:c2:12:34:b7:e0:c5:ad:9f: 64:4f:70:1e:94:96:64:b1:71:c9:90:ba:ee:c0:65: ca:f8:35:83:eb:17:0d:6f:36:61:3f:fc:39:76:17: 73:80:2f:85:e8:eb:ce:75:85:20:9f:68:db:7c:5b: ec:91:eb:ac:05:e6:91:7e:e9:f8:d6:52:25:a8:04: cf:e9:8a:8b:fd:84:3c:d2:5c:76:83:5b:b7:bc:26: d2:df:57:a3:01:1f:73:cc:8b:3a:0b:a8:14:c2:47: ba:1c:3b:ee:e4:16:c0:43:c7:3f:38:b8:ae:4c:4a: cd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:79:D6:76:99:EC:F7:9D:DF:A3:9F:40:4F:7D:5F:88:51:BB:DC:01 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37372e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.77.0/24 Signature Algorithm: sha256WithRSAEncryption a6:61:0c:35:70:12:81:a6:e7:a0:27:e3:3f:d3:b4:95:19:28: 6e:0e:2f:e0:0f:66:69:ed:f0:29:fd:c9:81:18:2c:af:fe:f0: 5f:85:66:ac:99:0f:c3:8c:d7:5f:da:ab:bc:97:6c:78:9e:b3: fe:1a:40:5a:22:35:6e:bd:25:27:3a:8f:1f:b6:68:c4:26:25: 84:ff:60:80:b6:3a:7e:77:0c:e9:9a:8b:fc:87:32:30:cd:53: e5:f0:1f:b4:5e:9b:39:2c:34:6d:f5:52:d9:0e:85:27:67:81: 8b:b5:95:03:93:db:75:12:cb:8f:d6:63:71:bb:3c:ef:d7:f6: 40:e7:38:a6:fc:67:bf:9d:8e:a5:1d:cb:d3:a7:3c:b5:58:50: b9:fc:cf:f1:3d:b8:03:ac:ef:be:b7:14:ba:88:9b:f7:90:55: 7d:8b:07:46:c3:35:5c:d3:57:b5:cd:8f:68:b3:03:69:22:22: a7:bb:1c:8e:cf:56:48:4b:01:d0:e4:07:87:d3:70:14:01:a5: d9:db:e2:7d:a5:ff:a3:79:a7:6f:95:eb:c2:14:c0:bc:94:90: 83:ca:6c:d0:5b:c6:51:99:51:8e:e7:16:13:f5:8d:f4:2d:36: 92:e2:e9:fd:c0:a0:a2:cd:11:17:b8:f4:1a:69:6a:3c:c7:71: 8d:15:3e:47 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGk5knB7A2NhDtss4cZCCWbYx6WYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTcxNTU1MDFaFw0yNTA5MTYxNjAwMDFaMDMxMTAvBgNV BAMTKDcwNzlENjc2OTlFQ0Y3OURERkEzOUY0MDRGN0Q1Rjg4NTFCQkRDMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR095s+vXp4IxyiscbY2ZF3vLw ef4HaG5WBqVFf+nDDSLvFp9uZbb+KWslKEw1r/L5mXR+uXErpmnWYI5D0zzVQUGj 02jRkWSzMyKauo1N738NBEG4aAGRROLpnqPCc34BgBsDHUclc+KlHO+LRzFH+SEJ TagV7v8ywtJGt3B4L0jhEeQhyDrxBPXeH5TCEjS34MWtn2RPcB6UlmSxccmQuu7A Zcr4NYPrFw1vNmE//Dl2F3OAL4Xo6851hSCfaNt8W+yR66wF5pF+6fjWUiWoBM/p iov9hDzSXHaDW7e8JtLfV6MBH3PMizoLqBTCR7ocO+7kFsBDxz84uK5MSs0hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcHnWdpns953fo59AT31fiFG73AEwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtTTANBgkqhkiG 9w0BAQsFAAOCAQEApmEMNXASgabnoCfjP9O0lRkobg4v4A9mae3wKf3JgRgsr/7w X4VmrJkPw4zXX9qrvJdseJ6z/hpAWiI1br0lJzqPH7ZoxCYlhP9ggLY6fncM6ZqL /IcyMM1T5fAftF6bOSw0bfVS2Q6FJ2eBi7WVA5PbdRLLj9Zjcbs879f2QOc4pvxn v52OpR3L06c8tVhQufzP8T24A6zvvrcUuoib95BVfYsHRsM1XNNXtc2PaLMDaSIi p7scjs9WSEsB0OQHh9NwFAGl2dvifaX/o3mnb5XrwhTAvJSQg8ps0FvGUZlRjucW E/WN9C02kuLp/cCgos0RF7j0GmlqPMdxjRU+Rw== -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org