$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39352e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39352e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: bXcYT55Yk5nGWBx7FCOVlDHnPL+/TKis1JRYYVSX17o= Subject key identifier: 33:7A:BA:24:19:28:94:EF:28:64:F9:CB:15:27:71:48:45:90:1F:9D Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 75B21449AAE66F8A540D931DEF134A1FF82115CF Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39352e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Sep 2024 04:00:02 +0000 ROA not before: Tue 10 Sep 2024 03:55:02 +0000 ROA not after: Tue 09 Sep 2025 04:00:02 +0000 asID: 23695 IP address blocks: 202.173.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 06:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:b2:14:49:aa:e6:6f:8a:54:0d:93:1d:ef:13:4a:1f:f8:21:15:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Sep 10 03:55:02 2024 GMT Not After : Sep 9 04:00:02 2025 GMT Subject: CN=337ABA24192894EF2864F9CB1527714845901F9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:48:1a:c2:2e:7c:92:ae:71:00:b2:10:3c:71: 3c:1c:b3:5f:1c:81:8f:46:a6:62:cf:85:81:6c:81: 73:e2:c3:c9:f7:97:1e:42:79:e9:0c:06:d1:04:87: 67:36:56:28:63:4a:d4:56:ec:cc:e1:10:2a:b0:3d: 73:11:35:49:a9:29:af:4f:af:e3:21:26:c2:b5:54: d0:f0:51:b1:56:16:43:da:d3:2b:3e:c9:84:af:27: cb:2f:43:94:ed:2a:f8:29:af:58:42:13:31:98:b1: 5f:0c:51:ff:b2:f1:22:15:62:5e:15:c3:38:d3:a7: 5a:b7:76:8f:f8:38:98:22:25:4b:b7:f8:f8:f4:54: f1:4e:63:dc:0c:f6:a4:08:cf:79:e5:a3:a9:d0:61: 72:b7:f2:e3:32:b7:69:d3:5e:38:5b:5b:31:ba:d2: 63:29:6f:fa:44:ff:b6:88:74:0a:0b:fc:cc:5b:a5: 24:fd:ce:e0:3d:bf:39:36:69:69:25:16:e6:fb:f0: 02:71:1e:0c:64:00:ab:6b:db:0f:48:11:7e:4b:2b: b6:d9:5c:f5:4d:2c:f9:5b:6f:f2:3d:54:b8:7d:43: e1:a5:36:7a:cb:be:e8:ed:98:8f:16:70:1b:ff:10: e6:c1:71:66:a4:30:f9:f3:53:e5:69:cd:4a:22:a8: 61:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:7A:BA:24:19:28:94:EF:28:64:F9:CB:15:27:71:48:45:90:1F:9D X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39352e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.95.0/24 Signature Algorithm: sha256WithRSAEncryption bf:85:c4:93:d0:2e:ab:97:2f:37:75:66:4a:fe:cc:38:5b:89: 6f:e9:06:a5:e1:b8:01:60:80:02:55:8c:54:d0:e9:58:c6:1e: 3e:c7:e5:38:3d:52:82:84:ac:23:94:82:b8:56:6d:15:e9:18: 2d:8d:30:9f:63:f0:99:58:7c:87:13:2c:1f:82:3c:03:ab:f6: ac:81:6c:37:2d:31:8e:84:49:3e:e3:16:97:42:17:97:b0:2c: c8:46:74:67:dc:b0:14:dd:11:a8:7d:8d:b2:03:2d:40:9d:ec: 01:5f:0f:f6:06:c3:53:c6:54:52:2f:ea:f7:5d:b6:95:8b:dd: d3:63:9a:47:a0:65:49:3e:2d:ac:d0:5e:e8:44:c0:ba:29:37: fb:a0:c4:b3:be:00:ce:07:42:41:ae:4e:47:2a:74:2c:df:9c: 4f:bc:6f:e7:09:ef:47:ba:e9:90:2a:60:34:dc:d6:70:98:e9: 94:9b:3f:f3:ad:90:15:8e:15:6f:31:f7:aa:d5:0c:e6:ad:53: 45:d3:82:d4:da:1f:d1:85:7b:83:fb:01:44:10:6c:b0:25:8a: 5d:40:dd:d8:01:21:5d:c3:3e:8e:8b:f9:74:fa:68:49:e2:3e: 16:a6:6f:14:b6:16:f8:e4:4e:c3:37:f6:20:ec:9d:6b:38:37: 9e:76:b6:46 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdbIUSarmb4pUDZMd7xNKH/ghFc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yNDA5MTAwMzU1MDJaFw0yNTA5MDkwNDAwMDJaMDMxMTAvBgNV BAMTKDMzN0FCQTI0MTkyODk0RUYyODY0RjlDQjE1Mjc3MTQ4NDU5MDFGOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMSBrCLnySrnEAshA8cTwcs18c gY9GpmLPhYFsgXPiw8n3lx5CeekMBtEEh2c2VihjStRW7MzhECqwPXMRNUmpKa9P r+MhJsK1VNDwUbFWFkPa0ys+yYSvJ8svQ5TtKvgpr1hCEzGYsV8MUf+y8SIVYl4V wzjTp1q3do/4OJgiJUu3+Pj0VPFOY9wM9qQIz3nlo6nQYXK38uMyt2nTXjhbWzG6 0mMpb/pE/7aIdAoL/MxbpST9zuA9vzk2aWklFub78AJxHgxkAKtr2w9IEX5LK7bZ XPVNLPlbb/I9VLh9Q+GlNnrLvujtmI8WcBv/EObBcWakMPnzU+VpzUoiqGFHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUM3q6JBkolO8oZPnLFSdxSEWQH50wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtXzANBgkqhkiG 9w0BAQsFAAOCAQEAv4XEk9Auq5cvN3VmSv7MOFuJb+kGpeG4AWCAAlWMVNDpWMYe PsflOD1SgoSsI5SCuFZtFekYLY0wn2PwmVh8hxMsH4I8A6v2rIFsNy0xjoRJPuMW l0IXl7AsyEZ0Z9ywFN0RqH2NsgMtQJ3sAV8P9gbDU8ZUUi/q9122lYvd02OaR6Bl ST4trNBe6ETAuik3+6DEs74AzgdCQa5ORyp0LN+cT7xv5wnvR7rpkCpgNNzWcJjp lJs/862QFY4VbzH3qtUM5q1TRdOC1Nof0YV7g/sBRBBssCWKXUDd2AEhXcM+jov5 dPpoSeI+FqZvFLYW+OROwzf2IOydazg3nna2Rg== -----END CERTIFICATE-----Generated at Thu Nov 28 03:17:08 2024 by rpki-client on console-ams.rpki-client.org