$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39312e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: QpQ1/sm5zXzKMRcJ3nXPQnI+vIIBo+CCNe1F4YSgeSo= Subject key identifier: 63:D0:E8:EF:72:AE:03:5F:8E:30:AB:41:F5:CF:2C:4E:C6:60:15:23 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 4AFFE9D0146C555F60E6DB53A5626D026F61F493 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa Signing time: Sat 14 Sep 2024 08:01:09 +0000 ROA not before: Sat 14 Sep 2024 07:56:09 +0000 ROA not after: Sat 13 Sep 2025 08:01:09 +0000 asID: 23695 IP address blocks: 202.173.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ff:e9:d0:14:6c:55:5f:60:e6:db:53:a5:62:6d:02:6f:61:f4:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 14 07:56:09 2024 GMT Not After : Sep 13 08:01:09 2025 GMT Subject: CN=63D0E8EF72AE035F8E30AB41F5CF2C4EC6601523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:99:13:65:19:d1:e7:db:94:0b:1e:cb:66:5d: 82:61:00:23:03:f9:a7:0c:8d:e4:62:b7:f4:e0:04: 24:85:b2:bd:10:b1:8d:dd:1b:57:b7:49:f8:c4:f8: 5e:4b:f5:ba:5b:6a:b6:a2:8f:9f:3e:5f:16:1e:85: 72:df:9d:45:6a:b3:e0:01:69:de:e3:0e:bc:d5:93: 3d:c3:43:6c:3a:c3:df:dc:78:1f:f8:21:48:82:dd: 44:5f:c7:02:fd:d6:35:85:e2:36:15:b8:2f:ea:86: e3:1e:37:c4:00:fd:33:71:b9:02:0b:94:00:8a:43: d0:2a:02:0b:3b:a4:46:3e:04:87:d4:0c:9c:fd:87: 00:3e:a6:7f:60:66:59:2c:2f:84:0c:31:af:bb:30: 8f:ae:5c:60:ce:75:a6:0f:08:1b:17:87:7b:0a:bc: c1:1c:b9:0d:70:f0:dd:b3:60:8b:86:a6:9d:d3:10: a1:8a:d8:cb:8a:a0:31:21:0d:26:2b:82:f7:0f:fd: 7d:9c:5d:f0:c6:03:e2:7c:c8:cb:72:52:31:e0:fc: 32:4b:f2:5f:2c:b6:95:60:19:b5:02:c6:c8:52:c2: e5:be:0c:c3:4e:7a:18:88:25:cf:8a:1f:7c:3b:f6: 31:13:a1:be:1d:20:7d:9b:5c:1c:29:7c:42:81:bf: 7b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D0:E8:EF:72:AE:03:5F:8E:30:AB:41:F5:CF:2C:4E:C6:60:15:23 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.91.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:d9:af:cf:ee:c3:98:5e:c5:be:d3:dc:5a:b2:a3:06:e6:8f: 1b:bb:21:77:d8:bc:ac:0f:ec:7d:32:f9:c5:4d:2a:04:4f:27: 41:56:d1:58:ba:9b:a5:9e:15:0d:53:e9:c7:38:12:3e:38:eb: 1f:f1:a1:77:a0:24:3f:9f:e2:94:1a:0f:d8:43:86:7a:a4:6a: 9a:61:6d:8a:ba:3b:2a:6b:da:3a:4b:18:46:1c:3a:2b:9d:9f: c9:ad:20:74:f7:e2:c2:ba:18:81:d1:91:51:2a:10:44:61:7f: b3:be:45:3d:01:f1:47:0c:24:0b:7a:6f:31:0c:38:03:0a:7d: f6:db:ea:de:b8:21:5f:cb:01:3c:b5:a4:32:31:62:4e:9f:42: b2:0d:10:a0:1b:17:ac:0f:be:f8:0d:42:46:3b:ab:5f:b0:2f: 8b:8e:ea:63:4c:6d:10:a7:b5:d8:c7:db:6b:89:63:05:96:b1: 16:d1:8b:ef:63:3e:c8:ee:05:41:f3:09:31:26:14:81:b6:c9: f2:6b:c5:30:cf:3b:72:97:f6:19:75:f1:50:7f:44:59:43:98: 6d:0e:26:b2:1c:6e:aa:26:71:0a:5b:cb:cc:01:bb:09:02:4f: a6:ad:89:03:6a:80:ef:8f:41:2a:6a:b4:47:88:6a:80:49:29: 82:75:50:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSv/p0BRsVV9g5ttTpWJtAm9h9JMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTQwNzU2MDlaFw0yNTA5MTMwODAxMDlaMDMxMTAvBgNV BAMTKDYzRDBFOEVGNzJBRTAzNUY4RTMwQUI0MUY1Q0YyQzRFQzY2MDE1MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqmRNlGdHn25QLHstmXYJhACMD +acMjeRit/TgBCSFsr0QsY3dG1e3SfjE+F5L9bpbaraij58+XxYehXLfnUVqs+AB ad7jDrzVkz3DQ2w6w9/ceB/4IUiC3URfxwL91jWF4jYVuC/qhuMeN8QA/TNxuQIL lACKQ9AqAgs7pEY+BIfUDJz9hwA+pn9gZlksL4QMMa+7MI+uXGDOdaYPCBsXh3sK vMEcuQ1w8N2zYIuGpp3TEKGK2MuKoDEhDSYrgvcP/X2cXfDGA+J8yMtyUjHg/DJL 8l8stpVgGbUCxshSwuW+DMNOehiIJc+KH3w79jETob4dIH2bXBwpfEKBv3s3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUY9Do73KuA1+OMKtB9c8sTsZgFSMwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtWzANBgkqhkiG 9w0BAQsFAAOCAQEAftmvz+7DmF7FvtPcWrKjBuaPG7shd9i8rA/sfTL5xU0qBE8n QVbRWLqbpZ4VDVPpxzgSPjjrH/Ghd6AkP5/ilBoP2EOGeqRqmmFtiro7KmvaOksY Rhw6K52fya0gdPfiwroYgdGRUSoQRGF/s75FPQHxRwwkC3pvMQw4Awp99tvq3rgh X8sBPLWkMjFiTp9Csg0QoBsXrA+++A1CRjurX7Avi47qY0xtEKe12Mfba4ljBZax FtGL72M+yO4FQfMJMSYUgbbJ8mvFMM87cpf2GXXxUH9EWUOYbQ4mshxuqiZxClvL zAG7CQJPpq2JA2qA749BKmq0R4hqgEkpgnVQ3w== -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org