$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38342e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38342e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: /M96/pws9kivlRYa0+i4BYNvDz/p2rZ90Io4VVOKQlY= Subject key identifier: D7:B2:13:0F:1B:6D:E8:F2:66:2E:B7:E6:F2:79:2A:72:E8:B3:A6:B4 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 274A4CD6B3DBF7998331A1ED6279EA0D1F26AF2D Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38342e302f32342d3234203d3e203233363935.roa Signing time: Tue 17 Oct 2023 15:59:47 +0000 ROA not before: Tue 17 Oct 2023 15:54:47 +0000 ROA not after: Tue 15 Oct 2024 15:59:47 +0000 asID: 23695 IP address blocks: 202.173.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4a:4c:d6:b3:db:f7:99:83:31:a1:ed:62:79:ea:0d:1f:26:af:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Oct 17 15:54:47 2023 GMT Not After : Oct 15 15:59:47 2024 GMT Subject: CN=D7B2130F1B6DE8F2662EB7E6F2792A72E8B3A6B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ab:b0:5c:ad:38:58:ef:e7:3c:4e:f2:22:fd: a8:c0:fe:aa:cc:4a:ae:09:cd:30:5d:60:56:c2:16: 96:40:43:e0:3e:63:b7:e9:32:25:72:64:e5:0a:85: 00:e6:03:1a:53:1b:16:2e:81:5e:ad:83:f3:5e:3e: ee:8f:f3:30:d7:a5:37:0a:78:87:ec:1d:93:22:10: 74:a0:25:90:45:2e:b5:3d:d4:ad:f9:11:76:fb:04: 71:85:83:74:5f:ce:d4:f0:47:cc:32:af:2f:a0:43: 17:84:99:9d:de:87:7a:96:cc:9f:87:1a:93:ad:0e: d0:d1:85:ad:29:ec:81:2e:21:27:4f:ef:07:c0:d2: 8c:a9:fb:aa:9a:26:8d:2f:ba:07:6a:0b:14:e7:16: 5e:4a:81:0d:72:dc:ea:a3:f8:40:67:f9:31:7c:aa: 02:6d:23:2c:ec:97:4a:d8:78:77:f8:79:83:3f:47: 62:c1:1d:2d:30:7e:16:32:8d:30:9c:c1:b9:d9:93: 0d:2a:b1:b3:e2:c4:b3:79:4f:68:19:b7:c6:99:e1: ec:8f:c4:96:47:66:6f:e7:c4:6c:60:3e:ba:bd:a2: 78:d8:99:16:f3:cf:e6:ba:6d:db:08:07:90:77:7d: 3f:85:7a:b5:21:c3:fa:0a:de:01:d2:2c:85:d7:e6: 04:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B2:13:0F:1B:6D:E8:F2:66:2E:B7:E6:F2:79:2A:72:E8:B3:A6:B4 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38342e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.84.0/24 Signature Algorithm: sha256WithRSAEncryption 12:a8:78:50:37:07:e1:e9:7f:39:60:af:4d:d1:07:01:b1:5b: d8:b5:e2:ff:8a:bd:37:bf:33:d9:3a:99:4d:bb:e2:8d:e2:a3: 8b:8c:9a:44:3c:7d:c9:19:66:c7:30:9d:85:1a:73:a4:85:d8: e2:92:2c:e5:23:75:b5:e0:fc:2f:5e:d3:12:99:9f:28:cd:32: d3:8e:21:e2:2a:15:17:94:05:ea:ef:1e:61:2a:7b:27:96:a1: 28:a5:de:13:ae:d1:9c:85:54:ce:2b:fc:a5:95:08:bc:0a:2f: a5:b6:9e:80:57:e4:ed:d6:b3:53:08:82:61:3c:f3:c4:68:24: 9b:8b:45:2f:14:47:e4:41:17:97:2b:5a:bf:ac:92:10:3d:e3: ad:16:21:a1:a0:c5:db:5b:37:c4:30:45:46:79:25:db:3a:61: c7:7f:85:25:88:81:fd:61:4e:91:39:8f:fd:48:f7:f6:6d:59: 9f:a4:87:22:f5:37:7e:b3:42:ee:03:02:a4:bb:88:de:94:cb: 84:29:ea:ee:55:53:71:ab:42:27:a4:fd:99:4a:dd:82:7a:36: 23:97:d7:4a:3b:1b:f9:be:cf:0f:a4:8f:45:f2:5e:11:5a:d5: b2:0f:f5:0d:be:e0:32:af:cf:72:2e:8c:66:1e:16:a1:33:8f: bc:b7:00:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ0pM1rPb95mDMaHtYnnqDR8mry0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yMzEwMTcxNTU0NDdaFw0yNDEwMTUxNTU5NDdaMDMxMTAvBgNV BAMTKEQ3QjIxMzBGMUI2REU4RjI2NjJFQjdFNkYyNzkyQTcyRThCM0E2QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuq7BcrThY7+c8TvIi/ajA/qrM Sq4JzTBdYFbCFpZAQ+A+Y7fpMiVyZOUKhQDmAxpTGxYugV6tg/NePu6P8zDXpTcK eIfsHZMiEHSgJZBFLrU91K35EXb7BHGFg3RfztTwR8wyry+gQxeEmZ3eh3qWzJ+H GpOtDtDRha0p7IEuISdP7wfA0oyp+6qaJo0vugdqCxTnFl5KgQ1y3Oqj+EBn+TF8 qgJtIyzsl0rYeHf4eYM/R2LBHS0wfhYyjTCcwbnZkw0qsbPixLN5T2gZt8aZ4eyP xJZHZm/nxGxgPrq9onjYmRbzz+a6bdsIB5B3fT+FerUhw/oK3gHSLIXX5gS/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU17ITDxtt6PJmLrfm8nkqcuizprQwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtVDANBgkqhkiG 9w0BAQsFAAOCAQEAEqh4UDcH4el/OWCvTdEHAbFb2LXi/4q9N78z2TqZTbvijeKj i4yaRDx9yRlmxzCdhRpzpIXY4pIs5SN1teD8L17TEpmfKM0y044h4ioVF5QF6u8e YSp7J5ahKKXeE67RnIVUziv8pZUIvAovpbaegFfk7dazUwiCYTzzxGgkm4tFLxRH 5EEXlytav6ySED3jrRYhoaDF21s3xDBFRnkl2zphx3+FJYiB/WFOkTmP/Uj39m1Z n6SHIvU3frNC7gMCpLuI3pTLhCnq7lVTcatCJ6T9mUrdgno2I5fXSjsb+b7PD6SP RfJeEVrVsg/1Db7gMq/Pci6MZh4WoTOPvLcAsw== -----END CERTIFICATE-----Generated at Sat Jun 1 00:11:41 2024 by rpki-client on console-ams.rpki-client.org