$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39332e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39332e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: uUWqQ+r90afq72pms35ZsH7xSBYfCse9ZKzmHy/kk18= Subject key identifier: F2:AC:49:2A:F1:48:A3:48:F6:47:E2:14:9E:BE:AE:4E:90:09:79:6F Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 09F63B78780AE0D4BA712602858EBDF0BFA1A76A Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39332e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:01 +0000 ROA not before: Tue 10 Sep 2024 03:55:01 +0000 ROA not after: Tue 09 Sep 2025 04:00:01 +0000 asID: 23695 IP address blocks: 202.173.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f6:3b:78:78:0a:e0:d4:ba:71:26:02:85:8e:bd:f0:bf:a1:a7:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:01 2024 GMT Not After : Sep 9 04:00:01 2025 GMT Subject: CN=F2AC492AF148A348F647E2149EBEAE4E9009796F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f2:35:b7:c9:7f:91:83:26:a8:6f:f5:5d:29: 74:c5:5d:3e:be:e7:82:a9:d7:da:0e:66:fc:71:b3: b5:df:67:c5:53:7f:07:e2:83:b7:39:2f:ab:e0:a5: 62:83:64:ca:f6:c8:0e:19:b4:12:58:b0:08:9e:93: f5:58:47:9f:f9:0a:f8:58:34:c2:3e:3c:67:5a:38: 92:17:5c:88:11:c1:89:b6:23:23:4f:72:90:78:a2: 9b:12:a3:5b:a6:08:f6:ef:59:d0:24:f4:42:23:c5: f4:03:e4:a1:7c:e0:ce:62:a6:28:f6:96:26:22:98: 0e:39:9f:40:fb:6c:ff:65:c8:82:7f:7c:b2:29:68: 19:9f:2e:af:69:0a:a2:55:c4:c8:39:4f:38:96:e7: 6c:96:24:75:70:36:77:98:d6:7b:cd:ee:40:9c:df: 94:74:fe:5f:96:1e:da:1f:52:17:37:ba:60:64:26: e2:ce:8a:d2:37:c3:5e:45:ac:a9:f7:5e:90:95:88: a7:d0:d0:95:0f:54:17:d0:44:6f:aa:43:53:2e:8b: db:f7:82:94:ef:75:99:61:a0:32:3b:9f:fe:b4:78: a2:c1:81:09:27:2f:0f:58:6a:bc:96:3f:88:c0:a8: f8:3f:fb:59:eb:c1:2e:7a:98:07:9e:36:6a:34:a5: 35:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:AC:49:2A:F1:48:A3:48:F6:47:E2:14:9E:BE:AE:4E:90:09:79:6F X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39332e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.93.0/24 Signature Algorithm: sha256WithRSAEncryption b9:5e:f5:05:18:b9:10:0f:60:11:f1:93:1f:f2:03:e6:e8:21: df:a6:2b:11:96:be:a0:fc:fe:fd:af:e9:20:b0:20:7b:44:65: aa:43:15:10:fb:37:07:bb:95:d2:ff:2e:3e:e0:2f:c8:61:6c: 99:7c:6a:0d:b2:73:18:40:b2:6d:71:91:e3:b2:0e:30:fb:03: 69:c4:24:e3:19:4c:21:89:6f:5a:b2:fd:37:1c:14:82:d7:45: e6:cc:b2:d8:cc:27:a5:3b:39:4a:70:16:f8:9d:ea:c8:b7:99: dc:d7:1d:2c:cd:ba:3e:63:79:f2:9b:0b:fe:3b:87:a3:0f:97: a6:0b:14:89:e9:50:69:b1:66:b5:0b:e3:10:a9:96:30:05:0d: 64:c7:bc:33:75:f2:6b:0e:8e:b8:af:22:51:3b:c4:ce:c3:06: 3b:5c:e6:c7:f2:07:f5:1f:fd:3d:68:23:bb:52:8d:36:9e:eb: 62:33:01:3a:11:aa:7b:c5:ac:e2:6a:80:88:d5:86:31:2e:19: a7:5b:36:91:d8:e5:28:bd:5d:d1:6c:3c:12:04:9a:6a:6f:04: 30:7a:3a:8c:e9:06:d9:ed:64:71:b4:cf:f9:cd:88:5c:bd:bc: 35:85:c3:cd:7a:ab:e7:14:72:34:57:4e:1e:3d:42:5d:8c:1c: 00:c3:f2:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCfY7eHgK4NS6cSYChY698L+hp2owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDFaFw0yNTA5MDkwNDAwMDFaMDMxMTAvBgNV BAMTKEYyQUM0OTJBRjE0OEEzNDhGNjQ3RTIxNDlFQkVBRTRFOTAwOTc5NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC28jW3yX+Rgyaob/VdKXTFXT6+ 54Kp19oOZvxxs7XfZ8VTfwfig7c5L6vgpWKDZMr2yA4ZtBJYsAiek/VYR5/5CvhY NMI+PGdaOJIXXIgRwYm2IyNPcpB4opsSo1umCPbvWdAk9EIjxfQD5KF84M5ipij2 liYimA45n0D7bP9lyIJ/fLIpaBmfLq9pCqJVxMg5TziW52yWJHVwNneY1nvN7kCc 35R0/l+WHtofUhc3umBkJuLOitI3w15FrKn3XpCViKfQ0JUPVBfQRG+qQ1Mui9v3 gpTvdZlhoDI7n/60eKLBgQknLw9YaryWP4jAqPg/+1nrwS56mAeeNmo0pTUVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8qxJKvFIo0j2R+IUnr6uTpAJeW8wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtXTANBgkqhkiG 9w0BAQsFAAOCAQEAuV71BRi5EA9gEfGTH/ID5ugh36YrEZa+oPz+/a/pILAge0Rl qkMVEPs3B7uV0v8uPuAvyGFsmXxqDbJzGECybXGR47IOMPsDacQk4xlMIYlvWrL9 NxwUgtdF5syy2MwnpTs5SnAW+J3qyLeZ3NcdLM26PmN58psL/juHow+XpgsUielQ abFmtQvjEKmWMAUNZMe8M3Xyaw6OuK8iUTvEzsMGO1zmx/IH9R/9PWgju1KNNp7r YjMBOhGqe8Ws4mqAiNWGMS4Zp1s2kdjlKL1d0Ww8EgSaam8EMHo6jOkG2e1kcbTP +c2IXL28NYXDzXqr5xRyNFdOHj1CXYwcAMPypA== -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org