$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37382e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e37382e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: qIgN11+WPom9/7TNDZoyX6fP1sCsas2zffkRRMYFeHM= Subject key identifier: AD:C4:65:A8:6F:A1:5C:0D:F3:61:49:7D:FB:B9:D4:63:9A:1B:96:EE Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 2997E7983191ED5B1C56F3168F068D83D691B789 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37382e302f32342d3234203d3e203233363935.roa Signing time: Tue 17 Sep 2024 16:00:01 +0000 ROA not before: Tue 17 Sep 2024 15:55:01 +0000 ROA not after: Tue 16 Sep 2025 16:00:01 +0000 asID: 23695 IP address blocks: 202.173.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:97:e7:98:31:91:ed:5b:1c:56:f3:16:8f:06:8d:83:d6:91:b7:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 17 15:55:01 2024 GMT Not After : Sep 16 16:00:01 2025 GMT Subject: CN=ADC465A86FA15C0DF361497DFBB9D4639A1B96EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f5:5a:9d:35:25:eb:26:af:fc:77:7d:84:0d: d0:db:f8:c5:eb:28:15:6c:44:9c:1e:ed:49:04:dc: e7:d4:b5:d4:0e:46:e0:1f:9e:63:ab:ec:6c:18:ac: e1:d4:29:78:4d:44:73:0b:86:02:ae:b3:f2:67:01: 86:20:a8:52:bb:5f:82:cd:25:fb:9c:81:94:2f:5a: b8:8e:63:0e:35:3f:7a:9b:9a:18:96:f4:19:66:5b: 14:39:e6:bb:71:66:40:40:9e:33:a2:e3:84:ee:91: 37:09:9d:0f:53:7a:1d:96:05:3a:86:a7:ec:41:08: f0:7e:e0:83:d6:39:06:7d:b7:17:98:33:14:e2:29: 1f:30:7a:f5:3f:cc:85:7a:13:f7:ed:4a:66:2e:3d: 37:8d:85:85:38:37:ad:ea:aa:32:d4:38:63:9b:1e: e7:37:0b:9b:36:d9:00:2b:17:dc:78:a9:04:7e:76: a5:6a:03:4b:4a:65:64:ac:65:a4:06:3b:48:93:7c: ca:80:8d:0d:b0:1d:ff:63:4d:de:cb:0b:e1:83:22: 33:0a:95:c3:48:27:1a:bf:b7:a0:e4:b5:56:00:d9: d0:0f:c3:78:74:9a:cb:0d:a6:e1:83:bc:7b:0e:01: 8a:d2:0c:71:de:a9:d3:c7:85:ae:f0:9b:3b:ad:d0: 1c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C4:65:A8:6F:A1:5C:0D:F3:61:49:7D:FB:B9:D4:63:9A:1B:96:EE X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37382e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.78.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:29:c0:63:9e:ae:45:f9:6c:83:c2:eb:4b:0b:b2:c8:59:37: cc:8d:67:29:cf:d3:1f:c1:03:df:d5:a4:9c:cf:cf:94:c3:da: 31:8a:7c:f2:d8:b6:0c:d1:a2:c4:2d:f2:ac:47:17:8d:7d:1b: ed:d7:40:e0:d1:17:12:0a:bb:d1:47:30:d1:3b:10:f7:70:37: ee:c3:70:ca:79:da:ae:7e:53:43:b6:2d:4a:7c:7a:c0:43:6e: 8c:e2:32:3c:54:ee:b6:4e:da:cd:74:b5:e8:41:0c:3c:cc:4b: 86:7d:d3:28:ca:97:fd:e6:34:21:36:7d:7e:a6:e7:98:d9:26: d4:a0:bb:18:7d:33:9a:04:a8:6e:03:f0:4c:0e:94:56:89:9e: 8c:f8:fb:f8:f5:e9:27:76:b7:94:fd:e7:06:0f:aa:48:78:08: e4:82:60:a1:2e:5d:9a:1e:54:3f:1e:c3:a6:69:70:fa:d0:0a: 14:23:84:47:00:9f:43:fb:5b:56:6f:a7:07:0b:d0:37:f2:37: 1a:3d:ea:06:6f:eb:b9:10:4b:b7:89:a6:e6:9f:f4:33:cc:fb: 9e:22:68:9e:0c:c8:39:d5:93:cd:42:c9:36:40:82:4e:57:b1: 1e:a6:7c:18:25:f2:d9:e4:cc:96:7d:8b:64:cd:11:90:eb:dd: c0:b4:a1:4f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKZfnmDGR7VscVvMWjwaNg9aRt4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTcxNTU1MDFaFw0yNTA5MTYxNjAwMDFaMDMxMTAvBgNV BAMTKEFEQzQ2NUE4NkZBMTVDMERGMzYxNDk3REZCQjlENDYzOUExQjk2RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz9VqdNSXrJq/8d32EDdDb+MXr KBVsRJwe7UkE3OfUtdQORuAfnmOr7GwYrOHUKXhNRHMLhgKus/JnAYYgqFK7X4LN JfucgZQvWriOYw41P3qbmhiW9BlmWxQ55rtxZkBAnjOi44TukTcJnQ9Teh2WBTqG p+xBCPB+4IPWOQZ9txeYMxTiKR8wevU/zIV6E/ftSmYuPTeNhYU4N63qqjLUOGOb Huc3C5s22QArF9x4qQR+dqVqA0tKZWSsZaQGO0iTfMqAjQ2wHf9jTd7LC+GDIjMK lcNIJxq/t6DktVYA2dAPw3h0mssNpuGDvHsOAYrSDHHeqdPHha7wmzut0ByxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrcRlqG+hXA3zYUl9+7nUY5oblu4wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtTjANBgkqhkiG 9w0BAQsFAAOCAQEAHinAY56uRflsg8LrSwuyyFk3zI1nKc/TH8ED39WknM/PlMPa MYp88ti2DNGixC3yrEcXjX0b7ddA4NEXEgq70Ucw0TsQ93A37sNwynnarn5TQ7Yt Snx6wENujOIyPFTutk7azXS16EEMPMxLhn3TKMqX/eY0ITZ9fqbnmNkm1KC7GH0z mgSobgPwTA6UVomejPj7+PXpJ3a3lP3nBg+qSHgI5IJgoS5dmh5UPx7Dpmlw+tAK FCOERwCfQ/tbVm+nBwvQN/I3Gj3qBm/ruRBLt4mm5p/0M8z7niJongzIOdWTzULJ NkCCTlexHqZ8GCXy2eTMln2LZM0RkOvdwLShTw== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org