$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38372e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e38372e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: pyq2xC8r3WDJM5WFw+/PnXJemmDlFWbbhpBwBiup4js= Subject key identifier: 8D:31:C1:5F:AF:4A:84:74:49:0F:9D:D5:34:C0:D4:8A:DD:87:CE:CB Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 64490C04BFF550C1871FE41B98B7FCC491CD62B2 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38372e302f32342d3234203d3e203233363935.roa Signing time: Sat 14 Oct 2023 07:33:31 +0000 ROA not before: Sat 14 Oct 2023 07:28:31 +0000 ROA not after: Sat 12 Oct 2024 07:33:31 +0000 asID: 23695 IP address blocks: 202.173.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:49:0c:04:bf:f5:50:c1:87:1f:e4:1b:98:b7:fc:c4:91:cd:62:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Oct 14 07:28:31 2023 GMT Not After : Oct 12 07:33:31 2024 GMT Subject: CN=8D31C15FAF4A8474490F9DD534C0D48ADD87CECB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c0:2d:ae:6a:67:9d:f1:12:15:c1:03:35:29: 55:32:4f:59:33:73:0e:8d:66:d9:32:01:26:1a:ad: db:69:a5:a5:b6:ae:84:4c:54:b8:03:a9:40:e2:7d: 66:b1:d7:5d:68:c0:62:10:6f:14:38:1d:30:18:12: ca:8a:31:54:51:ad:ab:f0:47:28:13:fa:85:e6:e1: ba:32:0f:61:1b:0e:63:c6:ae:cc:45:be:27:d2:ba: 56:0e:92:2b:b2:2a:49:4b:d6:af:8f:ea:d1:59:30: 2e:6d:c0:45:38:71:ca:05:c4:72:db:4f:f7:e8:15: c4:d6:99:06:21:4a:7b:f3:56:16:42:5c:64:bc:7b: 49:65:44:50:b6:4d:e8:7a:5b:f4:ec:97:94:4e:87: ec:ad:86:d0:b5:f1:05:7a:7b:3e:6a:f5:2d:b9:52: b2:9e:cb:ea:85:86:66:a6:0f:81:57:81:7f:96:59: 79:26:4c:6e:08:ed:7f:13:4c:bd:d9:48:bf:f4:ef: c0:8e:0a:5b:87:5c:f2:4b:84:38:2e:b5:e8:71:62: 1b:c9:00:70:22:58:1a:f6:48:36:5b:a0:39:5e:d1: 9b:86:93:ee:eb:c1:1a:d0:8e:8d:50:38:6a:eb:00: e4:46:dc:71:3e:5e:c6:76:4b:68:af:28:ee:75:7e: 52:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:31:C1:5F:AF:4A:84:74:49:0F:9D:D5:34:C0:D4:8A:DD:87:CE:CB X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38372e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.87.0/24 Signature Algorithm: sha256WithRSAEncryption b0:d3:4d:ff:fd:f5:68:ba:29:70:53:0d:0d:32:3e:ca:30:0a: bd:8f:a3:42:83:a5:56:6a:55:3c:c7:b0:d8:5d:55:5b:62:97: 72:24:b9:5e:41:52:2b:a8:cd:97:e4:0a:a5:18:1b:d3:55:6d: 4f:1f:04:60:8d:ec:55:80:e4:67:70:9f:ea:57:47:b5:e3:2e: 1f:bb:bc:4b:d6:bb:37:bb:bc:a2:d7:4f:15:91:a9:f4:75:e2: f8:44:80:0c:0f:2e:9e:1e:e6:59:a1:52:42:5b:31:2a:c5:81: ed:40:73:13:0d:0f:78:c7:c5:62:0c:97:83:b1:87:54:1d:0d: 20:f5:55:be:92:5c:d1:30:1b:a7:25:d2:8c:1e:87:db:5e:78: 6e:3d:ee:f4:b5:f9:6e:8b:00:65:4b:d3:0a:09:86:0d:74:3e: f6:3e:56:1c:d9:68:8a:2b:5f:aa:9f:b4:07:ac:98:f9:1b:85: b9:6e:15:2c:4e:af:8a:0f:17:53:c4:de:a6:23:da:5d:88:3b: f1:ab:7a:1a:6b:91:56:78:6e:f5:ef:54:38:91:d3:78:29:a7: d5:21:08:36:4d:f0:16:28:12:85:0b:85:23:e4:21:26:ea:5d: 31:a9:19:22:85:73:57:cf:50:be:ce:d2:34:92:6b:b1:ea:c2: 80:c4:4e:22 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZEkMBL/1UMGHH+QbmLf8xJHNYrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yMzEwMTQwNzI4MzFaFw0yNDEwMTIwNzMzMzFaMDMxMTAvBgNV BAMTKDhEMzFDMTVGQUY0QTg0NzQ0OTBGOURENTM0QzBENDhBREQ4N0NFQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmwC2uamed8RIVwQM1KVUyT1kz cw6NZtkyASYardtppaW2roRMVLgDqUDifWax111owGIQbxQ4HTAYEsqKMVRRravw RygT+oXm4boyD2EbDmPGrsxFvifSulYOkiuyKklL1q+P6tFZMC5twEU4ccoFxHLb T/foFcTWmQYhSnvzVhZCXGS8e0llRFC2Teh6W/Tsl5ROh+ythtC18QV6ez5q9S25 UrKey+qFhmamD4FXgX+WWXkmTG4I7X8TTL3ZSL/078COCluHXPJLhDgutehxYhvJ AHAiWBr2SDZboDle0ZuGk+7rwRrQjo1QOGrrAORG3HE+XsZ2S2ivKO51flIRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjTHBX69KhHRJD53VNMDUit2HzsswHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtVzANBgkqhkiG 9w0BAQsFAAOCAQEAsNNN//31aLopcFMNDTI+yjAKvY+jQoOlVmpVPMew2F1VW2KX ciS5XkFSK6jNl+QKpRgb01VtTx8EYI3sVYDkZ3Cf6ldHteMuH7u8S9a7N7u8otdP FZGp9HXi+ESADA8unh7mWaFSQlsxKsWB7UBzEw0PeMfFYgyXg7GHVB0NIPVVvpJc 0TAbpyXSjB6H2154bj3u9LX5bosAZUvTCgmGDXQ+9j5WHNloiitfqp+0B6yY+RuF uW4VLE6vig8XU8TepiPaXYg78at6GmuRVnhu9e9UOJHTeCmn1SEINk3wFigShQuF I+QhJupdMakZIoVzV89Qvs7SNJJrserCgMROIg== -----END CERTIFICATE-----Generated at Fri May 31 22:12:28 2024 by rpki-client on console-fra.rpki-client.org