$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39302e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39302e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: Vcu3cvP6TpAtiqIJRyIG86FnbkyFCwZwDKOk+Zdad3Y= Subject key identifier: 85:02:D5:2E:FE:FA:FD:8F:52:A9:D8:18:E7:32:33:7B:76:B6:33:37 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 0220A1E993008D847CCC304B48A6F85B4C98BB68 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39302e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:02 +0000 ROA not before: Tue 10 Sep 2024 03:55:02 +0000 ROA not after: Tue 09 Sep 2025 04:00:02 +0000 asID: 23695 IP address blocks: 202.173.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:20:a1:e9:93:00:8d:84:7c:cc:30:4b:48:a6:f8:5b:4c:98:bb:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:02 2024 GMT Not After : Sep 9 04:00:02 2025 GMT Subject: CN=8502D52EFEFAFD8F52A9D818E732337B76B63337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c2:a6:86:f2:d8:53:8a:58:9b:34:ef:05:62: e5:9e:95:c7:e6:37:bd:d3:17:e0:17:24:c4:f4:e5: 24:0b:cb:d4:b3:d5:c6:b3:01:b7:7b:94:d1:45:09: 3e:c0:2f:86:4d:58:68:2a:b1:9c:b9:a0:c3:39:aa: 78:3b:d2:28:c1:15:a0:3d:af:d2:de:48:94:6d:7d: 42:e6:f2:27:f4:c1:db:93:57:1e:80:19:61:a8:0e: ef:c3:7a:55:ca:f2:66:df:de:a1:27:d1:a8:97:f8: 8e:cd:8a:18:d5:bf:31:e4:88:a6:09:86:eb:97:9b: d4:ee:eb:6a:74:1a:7e:f0:75:bd:c9:3a:9b:66:e6: c4:1c:a2:4a:d5:e8:27:db:83:49:32:00:7b:11:70: fc:10:0b:b6:62:c9:0a:1e:33:eb:7f:35:ee:dc:3d: 92:5d:ea:4b:98:06:7a:e1:d9:05:12:d6:72:7a:02: 4d:89:7c:59:3a:6e:45:33:01:0a:d1:78:bc:c1:32: a2:bb:64:eb:97:b6:0f:ca:65:45:8a:f5:10:25:a5: 78:95:ef:50:b1:ec:f6:af:c1:86:c0:09:f9:a0:8e: ed:12:4b:9e:66:d9:c1:77:30:4b:92:20:9b:85:ca: 00:33:58:bb:9f:f2:f1:22:d8:00:b2:07:87:6a:29: c1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:02:D5:2E:FE:FA:FD:8F:52:A9:D8:18:E7:32:33:7B:76:B6:33:37 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39302e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.90.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:5b:47:31:3b:62:f0:6b:12:4b:38:fb:5b:e2:ab:1f:1b:7a: f6:19:d1:44:d8:db:1c:88:77:03:ae:36:94:9e:b5:99:b4:85: 8d:d6:a3:90:c2:c7:37:c2:81:5a:90:c6:21:26:fc:ad:9d:62: d3:e8:5b:e2:b5:0a:c4:80:2a:10:7d:1c:2e:44:24:72:c4:e2: 14:4d:79:71:2c:e1:6f:81:ba:ae:8f:30:d2:8c:84:a1:29:89: 46:74:4c:b4:0c:f3:35:14:66:eb:78:65:e5:5f:60:19:6e:1e: bc:58:a7:b6:f8:2c:16:35:3d:4d:b0:af:b0:06:99:1c:a4:9b: 84:54:73:07:3b:01:53:7a:47:df:e2:da:19:8e:19:d9:31:97: 25:26:c1:af:04:c6:1b:11:a7:f6:92:82:82:82:76:87:ec:4b: 1a:00:77:0e:87:a1:bf:ae:3f:c2:0f:89:ba:08:45:16:55:fb: 69:a0:fd:bf:6f:fe:c1:4f:00:f1:67:1d:0d:d4:25:63:28:f1: 0b:b0:25:f8:69:8e:5f:cc:7f:a3:e5:a6:02:bc:a5:a8:f3:a8: 0f:21:b3:2c:d1:61:02:98:bd:0c:40:c3:d6:ac:e6:2c:aa:f2: 60:de:f1:a4:75:4b:c9:45:7d:49:22:d9:45:3a:b5:f0:b1:78: 19:f3:4e:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAiCh6ZMAjYR8zDBLSKb4W0yYu2gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDJaFw0yNTA5MDkwNDAwMDJaMDMxMTAvBgNV BAMTKDg1MDJENTJFRkVGQUZEOEY1MkE5RDgxOEU3MzIzMzdCNzZCNjMzMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnwqaG8thTilibNO8FYuWelcfm N73TF+AXJMT05SQLy9Sz1cazAbd7lNFFCT7AL4ZNWGgqsZy5oMM5qng70ijBFaA9 r9LeSJRtfULm8if0wduTVx6AGWGoDu/DelXK8mbf3qEn0aiX+I7NihjVvzHkiKYJ huuXm9Tu62p0Gn7wdb3JOptm5sQcokrV6Cfbg0kyAHsRcPwQC7ZiyQoeM+t/Ne7c PZJd6kuYBnrh2QUS1nJ6Ak2JfFk6bkUzAQrReLzBMqK7ZOuXtg/KZUWK9RAlpXiV 71Cx7PavwYbACfmgju0SS55m2cF3MEuSIJuFygAzWLuf8vEi2ACyB4dqKcE1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhQLVLv76/Y9SqdgY5zIze3a2MzcwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtWjANBgkqhkiG 9w0BAQsFAAOCAQEAm1tHMTti8GsSSzj7W+KrHxt69hnRRNjbHIh3A642lJ61mbSF jdajkMLHN8KBWpDGISb8rZ1i0+hb4rUKxIAqEH0cLkQkcsTiFE15cSzhb4G6ro8w 0oyEoSmJRnRMtAzzNRRm63hl5V9gGW4evFintvgsFjU9TbCvsAaZHKSbhFRzBzsB U3pH3+LaGY4Z2TGXJSbBrwTGGxGn9pKCgoJ2h+xLGgB3Doehv64/wg+JughFFlX7 aaD9v2/+wU8A8WcdDdQlYyjxC7Al+GmOX8x/o+WmArylqPOoDyGzLNFhApi9DEDD 1qzmLKryYN7xpHVLyUV9SSLZRTq18LF4GfNOEA== -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org