$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38312e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38312e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: fZQK9JY5pm3VYutUjV1YUz0UdbDku9RPZXo98IsSdnQ= Subject key identifier: EF:26:60:B2:20:88:5B:16:2B:C6:61:0C:C7:C5:1F:BE:A2:73:51:FC Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 696BA108EDB5315D7BB28F13B0C88C45B4256F86 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38312e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:01 +0000 ROA not before: Tue 10 Sep 2024 03:55:01 +0000 ROA not after: Tue 09 Sep 2025 04:00:01 +0000 asID: 23695 IP address blocks: 202.173.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:6b:a1:08:ed:b5:31:5d:7b:b2:8f:13:b0:c8:8c:45:b4:25:6f:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:01 2024 GMT Not After : Sep 9 04:00:01 2025 GMT Subject: CN=EF2660B220885B162BC6610CC7C51FBEA27351FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3d:71:b2:16:db:30:0d:c2:df:24:f5:30:e5: cd:3c:3c:5e:f1:2c:fd:09:94:6c:c5:f1:9e:81:a7: d9:30:e4:88:05:37:d7:a0:66:e6:56:2f:99:37:65: 6f:f9:90:77:8f:05:d7:8e:53:b9:81:34:66:fb:1a: 4f:bc:b0:8a:47:e5:33:33:55:cb:80:1c:80:03:bf: f7:6a:f4:d2:24:c2:90:28:d1:e7:fa:ab:f0:7f:98: c5:90:67:65:f9:ae:a2:2d:a5:26:48:cd:66:6c:ce: 8a:41:d7:17:b1:f7:d2:24:a1:b7:e1:2f:60:1f:b4: ef:fa:21:06:0b:1b:20:40:ef:ff:93:ae:4e:33:9a: b3:46:eb:20:e4:0e:f7:7c:1a:b0:ca:12:50:02:a0: e6:c3:2b:8c:65:76:f1:5b:2c:51:55:37:a7:24:6a: ff:97:af:3c:ce:4a:8a:f9:00:f7:c6:50:ba:2b:1d: cc:aa:29:64:d4:07:87:5c:63:e5:ce:61:9a:3a:14: bf:52:f1:42:57:32:5d:aa:eb:ba:dd:aa:54:ab:9c: 7a:a7:78:81:2e:62:70:84:ab:d3:13:67:19:e1:df: 40:c6:26:17:d8:5b:e6:b8:96:cf:ed:33:4f:ff:82: 5c:5a:b0:f5:dc:49:01:1e:db:de:d5:de:27:df:16: 91:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:26:60:B2:20:88:5B:16:2B:C6:61:0C:C7:C5:1F:BE:A2:73:51:FC X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38312e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.81.0/24 Signature Algorithm: sha256WithRSAEncryption b1:68:7c:aa:8b:7b:19:13:57:21:b3:90:d1:83:5e:db:df:bb: 1c:01:81:ee:d2:fa:3c:cd:70:a0:3d:e3:f3:c1:09:f0:d0:f1: 67:0d:ed:41:c8:e4:43:3d:63:1a:59:0d:3d:5e:dc:e8:53:bf: ca:ab:83:f9:83:93:33:80:05:6f:04:4b:a3:a5:83:70:73:71: 0e:09:5c:3b:0c:d5:2b:ea:95:3c:8a:aa:1f:6f:b7:07:63:af: 89:08:42:9d:dc:af:73:d5:bf:3e:5a:c5:9f:d4:7d:cf:38:95: 7d:21:e2:2b:ed:eb:9a:a2:d5:3f:6c:40:9f:dd:82:44:cc:62: c8:9d:d0:ff:99:fc:35:cd:e7:cf:77:e4:47:cb:28:b3:18:37: 8a:ff:f1:bc:64:4e:2f:a9:31:36:ab:96:30:40:3b:af:8c:d1: 12:10:56:52:f0:14:2e:33:0a:fc:5b:9a:8f:d7:d0:14:d0:1c: e5:61:2e:1d:15:91:6a:2d:f9:c9:84:91:cb:fb:73:d8:ad:8a: 27:96:e3:3b:fc:bb:53:e3:93:a5:b2:96:dd:b9:db:2c:ba:7a: 7d:a4:f9:6d:3e:ee:9c:6f:6a:8e:4e:d8:c9:48:7c:55:0a:dc: 6d:4a:9e:f5:64:32:51:6b:80:7c:6e:83:20:48:fa:34:80:0d: d6:0f:6a:02 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaWuhCO21MV17so8TsMiMRbQlb4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDFaFw0yNTA5MDkwNDAwMDFaMDMxMTAvBgNV BAMTKEVGMjY2MEIyMjA4ODVCMTYyQkM2NjEwQ0M3QzUxRkJFQTI3MzUxRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJPXGyFtswDcLfJPUw5c08PF7x LP0JlGzF8Z6Bp9kw5IgFN9egZuZWL5k3ZW/5kHePBdeOU7mBNGb7Gk+8sIpH5TMz VcuAHIADv/dq9NIkwpAo0ef6q/B/mMWQZ2X5rqItpSZIzWZszopB1xex99Ikobfh L2AftO/6IQYLGyBA7/+Trk4zmrNG6yDkDvd8GrDKElACoObDK4xldvFbLFFVN6ck av+XrzzOSor5APfGULorHcyqKWTUB4dcY+XOYZo6FL9S8UJXMl2q67rdqlSrnHqn eIEuYnCEq9MTZxnh30DGJhfYW+a4ls/tM0//glxasPXcSQEe297V3iffFpFtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7yZgsiCIWxYrxmEMx8UfvqJzUfwwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtUTANBgkqhkiG 9w0BAQsFAAOCAQEAsWh8qot7GRNXIbOQ0YNe29+7HAGB7tL6PM1woD3j88EJ8NDx Zw3tQcjkQz1jGlkNPV7c6FO/yquD+YOTM4AFbwRLo6WDcHNxDglcOwzVK+qVPIqq H2+3B2OviQhCndyvc9W/PlrFn9R9zziVfSHiK+3rmqLVP2xAn92CRMxiyJ3Q/5n8 Nc3nz3fkR8sosxg3iv/xvGROL6kxNquWMEA7r4zREhBWUvAULjMK/Fuaj9fQFNAc 5WEuHRWRai35yYSRy/tz2K2KJ5bjO/y7U+OTpbKW3bnbLLp6faT5bT7unG9qjk7Y yUh8VQrcbUqe9WQyUWuAfG6DIEj6NIAN1g9qAg== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org