$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39312e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: c69GWOTzcTWKYVWYETcY3n1GQl1wIXV6fUk/exD+8eQ= Subject key identifier: 8D:67:6E:7B:FA:FB:67:8A:4E:19:63:66:04:8F:FA:7F:97:EE:11:98 Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 41BB75AB88540B064878A91FF54ABC41147A7749 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa Signing time: Sat 14 Oct 2023 07:30:43 +0000 ROA not before: Sat 14 Oct 2023 07:25:43 +0000 ROA not after: Sat 12 Oct 2024 07:30:43 +0000 asID: 23695 IP address blocks: 202.173.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:bb:75:ab:88:54:0b:06:48:78:a9:1f:f5:4a:bc:41:14:7a:77:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Oct 14 07:25:43 2023 GMT Not After : Oct 12 07:30:43 2024 GMT Subject: CN=8D676E7BFAFB678A4E196366048FFA7F97EE1198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5b:84:a6:88:9a:76:75:67:a0:38:cd:c4:a9: 68:15:7f:cb:e9:f6:e8:31:6c:f8:02:b0:81:41:f9: 3d:ed:df:09:99:b2:8a:ea:03:a6:fe:8f:b5:69:26: 06:80:13:7c:d8:6c:27:89:72:80:e9:01:b6:67:db: 0c:9e:83:3e:3d:6b:8b:6c:4b:20:e2:dc:45:75:fd: ea:87:eb:72:6b:15:2c:1a:6d:bc:9c:62:fd:10:04: 91:e2:81:91:38:45:21:b8:94:7c:c9:6d:df:ab:7f: 4f:de:72:fb:ed:f3:a8:ed:1b:50:db:a5:1d:43:62: dc:c1:b1:64:d1:a4:22:da:3f:6a:80:02:45:8d:17: 82:73:4e:7a:ea:27:cb:9c:d8:f5:b1:aa:e7:5d:29: b3:fd:ad:6f:b5:b8:b4:ab:85:78:15:39:c3:46:46: 3a:f2:79:ba:a3:f9:e1:57:cd:a0:14:64:84:30:32: 61:a9:ac:c1:55:f3:d3:3a:63:b6:9d:5a:3d:99:c9: 1f:83:57:02:31:bf:fb:fc:d2:b7:81:0a:fc:e1:8a: 0a:cf:ef:9b:32:4e:af:5b:fe:ac:a6:a5:05:76:ff: b5:61:ee:fa:7f:b3:c3:ee:94:6d:6a:66:af:3e:94: 1c:0f:aa:52:83:38:f2:3c:04:07:35:16:2c:f3:77: 77:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:67:6E:7B:FA:FB:67:8A:4E:19:63:66:04:8F:FA:7F:97:EE:11:98 X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.91.0/24 Signature Algorithm: sha256WithRSAEncryption ce:d2:bd:a0:86:66:70:4d:8e:04:4d:a3:2b:1a:ca:af:83:05: ce:af:3a:9c:74:ae:c2:17:43:e4:df:29:9b:1f:33:c2:f6:65: 35:54:d7:eb:8d:dd:92:93:87:f5:09:c0:3f:f8:2e:0a:c1:7f: ae:b9:0c:23:e6:4b:47:d7:7d:32:8c:06:60:8f:f0:ed:72:83: 2b:a3:25:00:35:50:90:74:80:93:a5:7c:1b:e0:c5:88:d3:b1: bb:8b:49:19:a6:29:ad:0d:c9:5e:79:98:4f:53:c7:c4:e9:0d: 54:f5:f7:cd:01:00:49:11:4d:81:86:75:2e:55:74:14:a6:40: e5:e2:2b:21:b6:6d:92:b7:14:81:a9:52:5b:cf:6a:26:14:2a: a1:99:e3:10:77:be:97:e7:af:01:89:4f:68:e5:80:54:36:a7: 45:b4:77:5d:32:dc:2c:63:ad:d8:7a:25:bc:96:c9:46:52:11: 24:17:15:24:4b:28:2a:67:2b:bd:c9:74:6a:9c:88:a9:0b:d7: 81:4a:63:55:05:ba:fa:5c:53:10:9c:68:36:be:9c:4c:73:dd: 58:a9:81:e6:ee:67:92:e2:5e:4b:26:d6:45:63:69:a8:25:57: 28:a6:22:4d:8c:80:89:a2:f9:70:8a:7c:10:28:cc:bc:31:74: 27:f8:4c:e4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQbt1q4hUCwZIeKkf9Uq8QRR6d0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yMzEwMTQwNzI1NDNaFw0yNDEwMTIwNzMwNDNaMDMxMTAvBgNV BAMTKDhENjc2RTdCRkFGQjY3OEE0RTE5NjM2NjA0OEZGQTdGOTdFRTExOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdW4SmiJp2dWegOM3EqWgVf8vp 9ugxbPgCsIFB+T3t3wmZsorqA6b+j7VpJgaAE3zYbCeJcoDpAbZn2wyegz49a4ts SyDi3EV1/eqH63JrFSwabbycYv0QBJHigZE4RSG4lHzJbd+rf0/ecvvt86jtG1Db pR1DYtzBsWTRpCLaP2qAAkWNF4JzTnrqJ8uc2PWxquddKbP9rW+1uLSrhXgVOcNG Rjryebqj+eFXzaAUZIQwMmGprMFV89M6Y7adWj2ZyR+DVwIxv/v80reBCvzhigrP 75syTq9b/qympQV2/7Vh7vp/s8PulG1qZq8+lBwPqlKDOPI8BAc1Fizzd3d/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjWdue/r7Z4pOGWNmBI/6f5fuEZgwHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtWzANBgkqhkiG 9w0BAQsFAAOCAQEAztK9oIZmcE2OBE2jKxrKr4MFzq86nHSuwhdD5N8pmx8zwvZl NVTX643dkpOH9QnAP/guCsF/rrkMI+ZLR9d9MowGYI/w7XKDK6MlADVQkHSAk6V8 G+DFiNOxu4tJGaYprQ3JXnmYT1PHxOkNVPX3zQEASRFNgYZ1LlV0FKZA5eIrIbZt krcUgalSW89qJhQqoZnjEHe+l+evAYlPaOWAVDanRbR3XTLcLGOt2HolvJbJRlIR JBcVJEsoKmcrvcl0apyIqQvXgUpjVQW6+lxTEJxoNr6cTHPdWKmB5u5nkuJeSybW RWNpqCVXKKYiTYyAiaL5cIp8ECjMvDF0J/hM5A== -----END CERTIFICATE-----Generated at Fri May 31 22:12:28 2024 by rpki-client on console-fra.rpki-client.org