$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39352e302f32342d3234203d3e203233363935.roa File: 3230322e3137332e39352e302f32342d3234203d3e203233363935.roa (raw, json) Hash identifier: jxEMMYGBNdII16zwCA0sBOmnDBQ7QD1OmhBp1hVoydk= Subject key identifier: 06:E6:9F:27:F2:49:0C:E2:8D:98:6D:9B:7B:4D:2A:90:18:43:B9:4F Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Certificate serial: 0A5243F6111223BEBC675C55FE94FE0A2D640917 Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39352e302f32342d3234203d3e203233363935.roa Signing time: Tue 10 Oct 2023 03:47:52 +0000 ROA not before: Tue 10 Oct 2023 03:42:52 +0000 ROA not after: Tue 08 Oct 2024 03:47:52 +0000 asID: 23695 IP address blocks: 202.173.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:52:43:f6:11:12:23:be:bc:67:5c:55:fe:94:fe:0a:2d:64:09:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C Validity Not Before: Oct 10 03:42:52 2023 GMT Not After : Oct 8 03:47:52 2024 GMT Subject: CN=06E69F27F2490CE28D986D9B7B4D2A901843B94F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4c:24:11:e8:30:b5:3e:69:95:7c:ea:ea:8e: 38:aa:95:bb:3e:b7:14:9c:ec:d2:19:0c:a0:50:36: 3f:c7:8e:88:2d:32:6d:0b:f7:67:64:cf:1f:cd:9b: 89:3e:66:dc:5c:fe:e8:4b:bd:f2:3b:78:0e:d7:3b: 02:fb:a6:c8:f1:37:8a:24:64:fd:bc:fb:70:29:da: 9a:9b:85:68:4e:7c:3d:0e:61:c5:82:9e:de:59:f7: c0:8d:48:1f:15:76:53:dd:1b:52:f0:49:38:44:88: c1:e1:4f:c2:76:ba:91:8d:10:ef:64:52:be:05:ec: 75:ba:11:f6:e1:87:df:4f:e6:f6:b6:b5:30:87:f1: da:c3:20:bc:5b:b3:cc:ec:11:b9:fa:d3:5a:4e:9d: 82:03:61:18:0d:79:4c:5e:35:6e:0f:97:5e:3e:96: 02:4a:08:f5:c6:ba:dc:ea:e2:51:0e:f0:38:f1:27: 8a:90:81:39:0b:47:4f:0e:b9:b7:db:6d:df:ad:64: f9:9e:b4:a6:8f:3b:93:f3:b4:82:5c:67:96:20:78: eb:30:af:e2:b7:da:9b:0e:d9:60:8e:4b:8f:2a:b0: 77:54:38:95:46:6b:a8:a7:f8:f4:f2:bc:e9:6a:a4: 1a:a3:d1:e4:44:c3:93:10:97:55:25:56:d6:a9:d7: 6b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E6:9F:27:F2:49:0C:E2:8D:98:6D:9B:7B:4D:2A:90:18:43:B9:4F X509v3 Authority Key Identifier: keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39352e302f32342d3234203d3e203233363935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.173.95.0/24 Signature Algorithm: sha256WithRSAEncryption 06:08:3e:0a:a2:4d:89:59:6a:ed:e1:55:a9:cd:a1:92:a2:5d: c3:a0:ac:2d:62:df:a0:3a:6a:5e:78:e8:cc:53:27:c0:a7:95: e9:bc:3a:8d:37:1d:cb:d1:8c:63:24:e8:b4:66:a7:42:cf:43: be:a6:66:5b:93:10:e7:b5:9d:e6:f4:ce:c8:34:e4:2d:cb:44: e4:1f:32:47:77:f7:39:d1:81:80:bb:21:6a:26:3c:d5:32:84: bd:dc:0c:25:07:92:b7:b7:d6:f3:4b:74:9b:e5:54:85:29:80: f2:d2:1f:94:4b:ab:9f:b2:f7:aa:e3:c4:44:36:f8:8b:e9:ba: 76:00:1a:5d:94:b4:dc:38:bd:13:d6:47:f6:e4:82:37:03:0e: 29:eb:6d:65:fe:48:06:de:3c:0e:54:6f:99:b8:90:ca:ef:ab: 52:de:f7:8f:e8:4f:99:29:55:f6:f0:80:bb:31:c9:f8:18:d3: 6a:d0:1e:7a:8e:84:14:70:34:66:d7:f9:fc:d4:ee:01:67:16: 48:33:63:f7:f0:ea:d2:ab:5b:58:51:cc:44:94:d0:d9:53:bb: 73:61:c8:cc:e1:a1:9a:fd:2b:40:9e:24:c0:bf:db:d9:18:3a: 70:01:70:fe:07:9e:94:92:b8:d8:36:e2:46:f1:37:0d:f1:27: dd:6a:87:ea -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUClJD9hESI768Z1xV/pT+Ci1kCRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRB RTRFMkQ4QzAeFw0yMzEwMTAwMzQyNTJaFw0yNDEwMDgwMzQ3NTJaMDMxMTAvBgNV BAMTKDA2RTY5RjI3RjI0OTBDRTI4RDk4NkQ5QjdCNEQyQTkwMTg0M0I5NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFTCQR6DC1PmmVfOrqjjiqlbs+ txSc7NIZDKBQNj/HjogtMm0L92dkzx/Nm4k+Ztxc/uhLvfI7eA7XOwL7psjxN4ok ZP28+3Ap2pqbhWhOfD0OYcWCnt5Z98CNSB8VdlPdG1LwSThEiMHhT8J2upGNEO9k Ur4F7HW6Efbhh99P5va2tTCH8drDILxbs8zsEbn601pOnYIDYRgNeUxeNW4Pl14+ lgJKCPXGutzq4lEO8DjxJ4qQgTkLR08Oubfbbd+tZPmetKaPO5PztIJcZ5YgeOsw r+K32psO2WCOS48qsHdUOJVGa6in+PTyvOlqpBqj0eREw5MQl1UlVtap12v/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBuafJ/JJDOKNmG2be00qkBhDuU8wHwYDVR0j BBgwFoAUQeCTJvaM4BE2NerK9ONzlK5OLYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZjBmMmJkOS00MmFlLTQ0OWEtOGQ1Ny1iMjZkYTA0ZDdlZTEvMC80MUUwOTMyNkY2 OENFMDExMzYzNUVBQ0FGNEUzNzM5NEFFNEUyRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDFFMDkzMjZGNjhDRTAxMTM2MzVFQUNBRjRFMzczOTRBRTRF MkQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMGYyYmQ5LTQyYWUtNDQ5YS04 ZDU3LWIyNmRhMDRkN2VlMS8wLzMyMzAzMjJlMzEzNzMzMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqtXzANBgkqhkiG 9w0BAQsFAAOCAQEABgg+CqJNiVlq7eFVqc2hkqJdw6CsLWLfoDpqXnjozFMnwKeV 6bw6jTcdy9GMYyTotGanQs9DvqZmW5MQ57Wd5vTOyDTkLctE5B8yR3f3OdGBgLsh aiY81TKEvdwMJQeSt7fW80t0m+VUhSmA8tIflEurn7L3quPERDb4i+m6dgAaXZS0 3Di9E9ZH9uSCNwMOKettZf5IBt48DlRvmbiQyu+rUt73j+hPmSlV9vCAuzHJ+BjT atAeeo6EFHA0Ztf5/NTuAWcWSDNj9/Dq0qtbWFHMRJTQ2VO7c2HIzOGhmv0rQJ4k wL/b2Rg6cAFw/geelJK42DbiRvE3DfEn3WqH6g== -----END CERTIFICATE-----Generated at Fri May 31 22:12:28 2024 by rpki-client on console-fra.rpki-client.org