$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38312e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38312e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: t67ncvlMVFp9QWI6GBEMyGKwW2xJuF10OMLHeQ3BHSM= Subject key identifier: DE:8C:C5:4A:CE:5A:3C:80:0E:41:F3:F9:8E:01:8E:32:25:6C:73:CF Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 669942CB3073D6023818E92DB7D89FC90777897C Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38312e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Oct 2023 03:46:32 +0000 ROA not before: Tue 10 Oct 2023 03:41:32 +0000 ROA not after: Tue 08 Oct 2024 03:46:32 +0000 asID: 23695 IP address blocks: 202.173.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:99:42:cb:30:73:d6:02:38:18:e9:2d:b7:d8:9f:c9:07:77:89:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Oct 10 03:41:32 2023 GMT Not After : Oct 8 03:46:32 2024 GMT Subject: CN=DE8CC54ACE5A3C800E41F3F98E018E32256C73CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5c:9e:2e:22:5d:f2:b0:cc:1e:0e:3e:87:78: b8:94:99:0e:0e:87:25:47:46:fe:a7:83:d7:94:4a: 0c:cd:4c:c1:09:a3:da:0d:88:e8:2e:e1:25:18:3a: 47:54:c3:05:64:9a:ae:ba:ba:81:24:bc:93:36:43: 48:d0:18:79:1c:c8:53:01:fb:a1:b5:9f:32:69:92: 27:5e:7c:bc:ca:1d:f1:f6:f8:0a:08:df:62:ca:6a: 1f:43:4e:46:96:45:ff:d1:f9:1a:39:7e:64:32:71: 46:6a:63:e1:59:8c:31:0c:48:63:4d:60:4c:53:84: fc:1b:7a:68:5a:de:e8:e9:e0:92:9c:45:e6:54:de: a7:fe:6c:3f:12:57:d2:52:f8:ae:52:66:5f:d0:6f: 7e:a4:9d:44:0f:88:b3:12:fd:d7:e3:76:12:af:ce: 5b:7c:e2:a8:42:ff:34:25:c0:d9:82:31:ce:5a:60: 36:8b:f5:56:16:4e:5d:46:a1:9d:ab:28:e8:38:30: e4:95:1c:3a:16:91:15:bd:8a:e8:ca:94:e5:aa:79: 45:17:6f:5f:88:ee:63:4c:72:21:35:df:ec:f3:af: 72:81:37:4b:b1:78:8c:fc:ab:a2:a2:ce:98:eb:cc: 66:a3:97:7a:85:11:a6:b7:08:c9:4c:93:51:0d:42: 5d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:8C:C5:4A:CE:5A:3C:80:0E:41:F3:F9:8E:01:8E:32:25:6C:73:CF X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38312e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.81.0/24 Signature Algorithm: sha256WithRSAEncryption 47:6e:65:a8:d5:da:e5:17:d2:0d:14:e7:22:9e:cf:da:b4:6b: a4:f6:a7:77:4e:70:be:e7:5d:cb:47:d6:a7:4e:3f:a1:85:22: 78:78:52:e2:c8:e7:14:75:b5:a3:37:a6:db:61:b3:c7:d6:a0: 1d:35:7b:a3:2f:44:0c:38:89:16:68:39:79:cf:f4:50:65:82: 27:1b:66:23:af:e7:51:7b:d7:35:45:a8:7c:74:61:93:4e:01: 72:c6:c2:98:e2:fd:ed:68:f3:b8:43:f4:bb:e6:82:bf:bc:83: bf:00:77:fe:30:f6:d3:de:ef:b8:a7:1b:45:29:38:64:cd:a5: 71:a9:ea:41:f0:1e:43:ca:c5:e8:b5:3d:15:92:f5:21:22:f2: d8:bd:ba:5c:0d:63:8d:24:fc:a1:db:61:00:79:2c:b7:ec:4d: 6d:b9:16:e4:fe:d4:ed:16:73:42:a5:8e:c8:83:5d:45:d7:5b: e2:82:8b:4f:08:a5:25:10:08:83:a1:93:9c:61:f6:9b:71:39: f8:04:3f:66:77:df:37:5d:16:f2:45:df:35:fa:c6:3e:73:f5: 89:76:6f:15:69:6f:e9:c4:db:4b:9a:28:e3:bc:46:9e:cc:5c: eb:fd:63:8d:87:ee:a8:6b:f0:72:d4:8b:b6:96:b8:c1:4a:39: 7d:c3:de:2c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZplCyzBz1gI4GOktt9ifyQd3iXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yMzEwMTAwMzQxMzJaFw0yNDEwMDgwMzQ2MzJaMDMxMTAvBgNV BAMTKERFOENDNTRBQ0U1QTNDODAwRTQxRjNGOThFMDE4RTMyMjU2QzczQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8XJ4uIl3ysMweDj6HeLiUmQ4O hyVHRv6ng9eUSgzNTMEJo9oNiOgu4SUYOkdUwwVkmq66uoEkvJM2Q0jQGHkcyFMB +6G1nzJpkidefLzKHfH2+AoI32LKah9DTkaWRf/R+Ro5fmQycUZqY+FZjDEMSGNN YExThPwbemha3ujp4JKcReZU3qf+bD8SV9JS+K5SZl/Qb36knUQPiLMS/dfjdhKv zlt84qhC/zQlwNmCMc5aYDaL9VYWTl1GoZ2rKOg4MOSVHDoWkRW9iujKlOWqeUUX b1+I7mNMciE13+zzr3KBN0uxeIz8q6KizpjrzGajl3qFEaa3CMlMk1ENQl39AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3ozFSs5aPIAOQfP5jgGOMiVsc88wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtUTANBgkqhkiG 9w0BAQsFAAOCAQEAR25lqNXa5RfSDRTnIp7P2rRrpPand05wvuddy0fWp04/oYUi eHhS4sjnFHW1ozem22Gzx9agHTV7oy9EDDiJFmg5ec/0UGWCJxtmI6/nUXvXNUWo fHRhk04BcsbCmOL97WjzuEP0u+aCv7yDvwB3/jD2097vuKcbRSk4ZM2lcanqQfAe Q8rF6LU9FZL1ISLy2L26XA1jjST8odthAHkst+xNbbkW5P7U7RZzQqWOyINdRddb 4oKLTwilJRAIg6GTnGH2m3E5+AQ/ZnffN10W8kXfNfrGPnP1iXZvFWlv6cTbS5oo 47xGnsxc6/1jjYfuqGvwctSLtpa4wUo5fcPeLA== -----END CERTIFICATE-----Generated at Sat Jun 1 00:11:41 2024 by rpki-client on console-ams.rpki-client.org