$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38372e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38372e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: SmTukg2uSres2nPLyHTBL++dFIaU5SWdWD9V1LnZKzA= Subject key identifier: 4A:6C:3D:57:13:9F:C5:FD:F7:A4:44:DC:B7:C0:F2:18:43:90:6A:4E Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 5FB9D667A1705E2D72833CF1998C50775905B51E Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38372e302f32342d3234203d3e203233363935.roa Signing time: Sat 14 Sep 2024 08:01:08 +0000 ROA not before: Sat 14 Sep 2024 07:56:08 +0000 ROA not after: Sat 13 Sep 2025 08:01:08 +0000 asID: 23695 IP address blocks: 202.173.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 06:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b9:d6:67:a1:70:5e:2d:72:83:3c:f1:99:8c:50:77:59:05:b5:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 14 07:56:08 2024 GMT Not After : Sep 13 08:01:08 2025 GMT Subject: CN=4A6C3D57139FC5FDF7A444DCB7C0F21843906A4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5b:e2:1e:22:f4:4c:2d:2e:7c:24:fb:0f:40: ad:4e:9b:22:32:df:c7:15:c0:49:90:a1:1f:ab:0b: ab:32:61:71:37:83:1a:83:f2:de:92:5e:84:45:48: 0e:55:0e:2c:5a:1c:e9:9b:78:a6:b6:37:a5:96:1f: 19:bf:65:c6:fe:ae:06:02:18:a4:20:40:fa:ec:10: ba:20:b2:54:f7:77:f8:af:c1:8d:b2:df:9f:41:85: 42:44:5c:91:ff:4f:8a:3f:9f:7b:12:b1:e8:1c:e4: 34:7d:b0:e9:b7:dc:4d:99:b5:73:bc:83:30:c0:19: 40:37:63:e5:5d:94:a0:68:f7:34:13:c4:fc:f5:78: 9d:b9:e1:89:32:55:ef:65:7b:19:7f:0e:60:a8:7b: 7c:14:95:08:47:9b:4e:0a:57:31:e6:28:13:03:a8: e8:ae:e7:aa:82:f6:e3:d4:04:ad:c1:3e:48:f5:9c: 13:72:29:46:47:d4:9c:36:84:56:5e:08:65:88:14: c8:d4:f2:fc:af:a0:29:32:fc:94:40:1c:65:3c:fb: 41:9e:dd:da:37:68:dc:5a:eb:c8:34:20:60:51:2e: 49:16:ff:72:05:2c:c8:d2:25:cf:37:81:42:42:1d: ba:0b:73:30:37:ab:f2:84:00:66:42:6c:c1:1b:0e: cc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6C:3D:57:13:9F:C5:FD:F7:A4:44:DC:B7:C0:F2:18:43:90:6A:4E X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38372e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.87.0/24 Signature Algorithm: sha256WithRSAEncryption ab:bd:07:00:5e:ac:bc:4d:9e:d4:b2:63:af:31:04:92:57:a0: 17:4a:f7:03:0b:3b:7b:41:7a:f0:57:b7:b8:c1:95:d1:77:1c: bc:fa:62:37:97:c7:82:02:c4:5d:eb:c9:8e:bc:bc:12:71:c6: 3c:09:8c:e7:46:58:7f:1f:9f:66:70:3e:85:53:17:44:b8:e7: 5b:f2:ab:03:e2:31:86:ab:8f:f0:72:82:6b:f4:4a:59:33:88: 4b:b0:f1:38:68:b0:20:72:17:13:4e:d6:09:ff:b7:ce:c7:75: 6c:d3:e1:32:ed:e4:46:50:e3:5a:e6:15:1e:39:46:d8:25:a7: 90:87:67:38:38:87:3b:15:5e:a1:e0:b8:59:a1:da:ed:67:6d: 0c:17:ca:84:4e:97:b2:85:36:bc:f1:af:46:33:1a:d2:b0:d7: ce:45:c7:cb:29:7f:4a:7e:94:af:56:2a:87:59:2c:6e:e7:4f: c3:c4:32:6d:ab:29:86:17:a6:05:ce:42:99:2a:2d:8f:f7:bc: a5:ba:c2:10:ed:ff:4c:00:68:ac:11:f7:cc:c7:ec:ae:cf:60: 75:c4:25:74:e3:00:eb:60:74:fe:8c:5f:b4:7a:bd:36:f1:db: 90:be:b2:71:32:1c:22:61:65:19:bb:be:20:77:95:d5:c6:2a: c9:7b:aa:36 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUX7nWZ6FwXi1ygzzxmYxQd1kFtR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTQwNzU2MDhaFw0yNTA5MTMwODAxMDhaMDMxMTAvBgNV BAMTKDRBNkMzRDU3MTM5RkM1RkRGN0E0NDREQ0I3QzBGMjE4NDM5MDZBNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQW+IeIvRMLS58JPsPQK1OmyIy 38cVwEmQoR+rC6syYXE3gxqD8t6SXoRFSA5VDixaHOmbeKa2N6WWHxm/Zcb+rgYC GKQgQPrsELogslT3d/ivwY2y359BhUJEXJH/T4o/n3sSsegc5DR9sOm33E2ZtXO8 gzDAGUA3Y+VdlKBo9zQTxPz1eJ254YkyVe9lexl/DmCoe3wUlQhHm04KVzHmKBMD qOiu56qC9uPUBK3BPkj1nBNyKUZH1Jw2hFZeCGWIFMjU8vyvoCky/JRAHGU8+0Ge 3do3aNxa68g0IGBRLkkW/3IFLMjSJc83gUJCHboLczA3q/KEAGZCbMEbDsw7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSmw9VxOfxf33pETct8DyGEOQak4wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtVzANBgkqhkiG 9w0BAQsFAAOCAQEAq70HAF6svE2e1LJjrzEEklegF0r3Aws7e0F68Fe3uMGV0Xcc vPpiN5fHggLEXevJjry8EnHGPAmM50ZYfx+fZnA+hVMXRLjnW/KrA+IxhquP8HKC a/RKWTOIS7DxOGiwIHIXE07WCf+3zsd1bNPhMu3kRlDjWuYVHjlG2CWnkIdnODiH OxVeoeC4WaHa7WdtDBfKhE6XsoU2vPGvRjMa0rDXzkXHyyl/Sn6Ur1Yqh1ksbudP w8QybasphhemBc5CmSotj/e8pbrCEO3/TABorBH3zMfsrs9gdcQldOMA62B0/oxf tHq9NvHbkL6ycTIcImFlGbu+IHeV1cYqyXuqNg== -----END CERTIFICATE-----Generated at Thu Nov 28 03:17:07 2024 by rpki-client on console-ams.rpki-client.org