$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38342e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38342e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: X9OlKSdhEP9aR8QcezvNKe8bo7GaRw8yvBmdk6EUw2A= Subject key identifier: C9:EF:FC:FA:EE:45:C0:50:03:1B:65:CD:6A:C6:2E:CB:85:04:4F:78 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 47E27C12A39DCF951AA6F03E78094F52DF40FB56 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38342e302f32342d3234203d3e203233363935.roa Signing time: Tue 17 Sep 2024 16:00:01 +0000 ROA not before: Tue 17 Sep 2024 15:55:01 +0000 ROA not after: Tue 16 Sep 2025 16:00:01 +0000 asID: 23695 IP address blocks: 202.173.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:e2:7c:12:a3:9d:cf:95:1a:a6:f0:3e:78:09:4f:52:df:40:fb:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 17 15:55:01 2024 GMT Not After : Sep 16 16:00:01 2025 GMT Subject: CN=C9EFFCFAEE45C050031B65CD6AC62ECB85044F78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9a:76:a5:fd:6a:d4:cf:7d:af:a7:30:fc:69: ac:eb:b5:75:0f:ad:2a:53:eb:c6:68:c2:af:6f:fc: 22:55:5c:56:25:b9:b8:16:7d:7b:0d:c9:d0:d8:f4: 5c:b7:26:8f:e1:25:c7:63:43:0a:00:fc:f3:1b:6e: cc:99:94:1b:04:97:be:32:a2:d2:1e:12:37:cb:04: 20:d1:17:49:17:bf:7a:2c:d4:d7:82:da:ea:47:9b: f1:ff:27:82:e3:85:2e:8b:ec:99:25:29:c2:82:59: cc:9a:ba:4e:ed:fe:3e:53:75:97:03:2a:3e:0e:54: de:18:2b:8c:e3:57:10:14:f9:a7:be:bf:0d:c5:45: bb:f8:c8:1d:6d:d4:23:92:2a:96:ba:d6:1c:5e:99: 83:2c:f8:d1:2c:6c:eb:8c:d2:f2:5c:e8:12:17:35: 2c:41:eb:cf:17:82:56:b0:ce:6a:a3:b8:19:ea:4d: 4a:bf:b6:03:94:d2:7a:1a:7e:b8:77:01:a3:ab:bf: dc:9c:fc:66:d3:c9:c2:29:83:72:7e:5b:b1:cb:79: 0b:25:a5:6a:bf:99:6a:1f:24:66:2f:2b:e0:70:0d: ec:55:d0:e4:75:73:ed:8a:22:94:67:35:29:09:40: 80:97:37:a1:6b:e7:32:71:8a:b9:da:5d:c3:e8:4b: 78:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EF:FC:FA:EE:45:C0:50:03:1B:65:CD:6A:C6:2E:CB:85:04:4F:78 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38342e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.84.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:11:4e:01:b0:2a:8e:6c:b3:3b:b4:b2:b6:da:b2:a8:4a:cf: 48:f7:da:ad:fe:ae:82:d4:0d:e0:47:ae:de:5a:03:4a:0b:b2: 59:1e:1e:85:c3:cc:55:21:77:0b:0b:4f:bd:d2:a1:b1:11:18: 8d:03:20:45:1b:29:06:83:04:76:f0:4f:14:49:e2:86:e7:e9: 3a:9f:3d:82:f8:1b:24:9e:0f:c9:83:32:cd:2b:83:36:82:2a: 5d:aa:22:a6:ad:22:b4:94:f9:52:00:0c:1f:c4:7d:25:2b:89: 92:f1:6a:bd:b5:c6:fb:3a:15:f4:6e:7a:5f:5c:ad:5d:bf:08: e8:20:81:5d:ef:5b:74:52:1f:45:c2:61:21:d5:1a:df:68:eb: 36:74:38:2e:ad:e6:86:05:07:ad:64:1e:30:4d:15:1e:b6:7e: 64:44:24:38:ee:13:ef:4c:50:49:16:91:92:6b:42:80:99:1d: 7b:81:7b:a9:b3:8c:93:f6:8e:18:98:19:62:bf:7f:6e:b9:2e: 53:d1:f0:0c:21:49:ae:1f:6d:18:ce:67:53:72:2c:81:8c:db: 6a:b2:f7:7f:a9:b9:25:89:35:53:a6:0b:dd:dd:72:2f:d6:82: c8:de:c2:22:9d:c0:50:94:07:1a:85:9d:78:5a:d9:00:49:ff: 08:c0:c4:a2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR+J8EqOdz5UapvA+eAlPUt9A+1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTcxNTU1MDFaFw0yNTA5MTYxNjAwMDFaMDMxMTAvBgNV BAMTKEM5RUZGQ0ZBRUU0NUMwNTAwMzFCNjVDRDZBQzYyRUNCODUwNDRGNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGmnal/WrUz32vpzD8aazrtXUP rSpT68Zowq9v/CJVXFYlubgWfXsNydDY9Fy3Jo/hJcdjQwoA/PMbbsyZlBsEl74y otIeEjfLBCDRF0kXv3os1NeC2upHm/H/J4LjhS6L7JklKcKCWcyauk7t/j5TdZcD Kj4OVN4YK4zjVxAU+ae+vw3FRbv4yB1t1COSKpa61hxemYMs+NEsbOuM0vJc6BIX NSxB688XglawzmqjuBnqTUq/tgOU0noafrh3AaOrv9yc/GbTycIpg3J+W7HLeQsl pWq/mWofJGYvK+BwDexV0OR1c+2KIpRnNSkJQICXN6Fr5zJxirnaXcPoS3gBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUye/8+u5FwFADG2XNasYuy4UET3gwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtVDANBgkqhkiG 9w0BAQsFAAOCAQEAChFOAbAqjmyzO7SyttqyqErPSPfarf6ugtQN4Eeu3loDSguy WR4ehcPMVSF3CwtPvdKhsREYjQMgRRspBoMEdvBPFEnihufpOp89gvgbJJ4PyYMy zSuDNoIqXaoipq0itJT5UgAMH8R9JSuJkvFqvbXG+zoV9G56X1ytXb8I6CCBXe9b dFIfRcJhIdUa32jrNnQ4Lq3mhgUHrWQeME0VHrZ+ZEQkOO4T70xQSRaRkmtCgJkd e4F7qbOMk/aOGJgZYr9/brkuU9HwDCFJrh9tGM5nU3IsgYzbarL3f6m5JYk1U6YL 3d1yL9aCyN7CIp3AUJQHGoWdeFrZAEn/CMDEog== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org