$ rpki-client -vvf repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3230322e392e36392e302f32342d3234203d3e203436303437.roa File: 3230322e392e36392e302f32342d3234203d3e203436303437.roa (raw, json) Hash identifier: arkQJziYn0l3cLycvM1yDT0/xdDeA+qlTU9SMskmap4= Subject key identifier: 92:4A:99:57:5C:67:D4:3E:98:2B:31:3B:29:FA:38:D8:BF:C1:4E:BC Certificate issuer: /CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A Certificate serial: 5B0D59AF3D6CA24EDBD01A76244BA1448EF9CB3B Authority key identifier: 1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3230322e392e36392e302f32342d3234203d3e203436303437.roa Signing time: Fri 10 Nov 2023 07:00:00 +0000 ROA not before: Fri 10 Nov 2023 06:55:00 +0000 ROA not after: Fri 08 Nov 2024 07:00:00 +0000 asID: 46047 IP address blocks: 202.9.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.crl rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 20:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:0d:59:af:3d:6c:a2:4e:db:d0:1a:76:24:4b:a1:44:8e:f9:cb:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A Validity Not Before: Nov 10 06:55:00 2023 GMT Not After : Nov 8 07:00:00 2024 GMT Subject: CN=924A99575C67D43E982B313B29FA38D8BFC14EBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a6:28:28:ff:cf:b1:05:50:2f:86:39:6f:54: ee:9b:21:0e:aa:cc:7f:d5:4e:52:63:3c:55:d1:32: 5a:f5:02:77:47:02:f5:27:e2:e5:0f:c6:2e:1d:99: 0d:4d:4a:27:1b:48:9c:39:e0:5b:78:a4:88:77:3f: 93:b0:1d:c9:57:39:26:cf:03:2d:33:9c:fb:6d:81: 2a:cc:3c:35:20:73:ee:ac:44:df:85:89:ca:f0:3f: 4b:61:84:2b:ce:5e:af:76:76:91:cf:4d:53:5b:f8: 38:4b:a6:e8:43:fe:2a:b1:36:88:95:36:f4:f8:43: 15:47:02:27:44:e9:22:d5:51:b1:92:7b:6e:5c:f5: 88:77:24:62:5d:c1:96:4c:32:77:28:cf:75:4f:41: 43:3c:78:7e:88:62:83:8f:f9:94:96:0b:0b:0b:1b: 8f:ce:2a:6c:49:50:fe:d7:80:72:55:10:c6:33:01: 7b:d6:ed:94:51:46:27:d5:a1:44:3b:c1:6e:da:e3: e5:10:34:43:fd:f0:36:db:68:42:47:0d:36:a9:d4: 64:3a:f5:4c:14:25:01:06:2b:99:c0:fc:88:7e:16: cd:3a:d1:5d:8b:96:ce:d7:e6:1b:ab:d9:e4:c6:4b: 8d:81:3e:26:86:9b:bf:46:39:34:a6:15:22:df:75: 53:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4A:99:57:5C:67:D4:3E:98:2B:31:3B:29:FA:38:D8:BF:C1:4E:BC X509v3 Authority Key Identifier: keyid:1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/3230322e392e36392e302f32342d3234203d3e203436303437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.9.69.0/24 Signature Algorithm: sha256WithRSAEncryption 63:33:32:a3:fc:a1:d0:68:d4:a2:33:e4:42:02:a4:4e:2b:7b: 00:0f:3e:33:dc:1d:a1:d4:b5:c1:ef:c5:5b:75:9c:82:da:10: 0e:f9:39:cb:fd:b8:73:43:9d:ba:2a:3c:03:f1:5e:15:aa:92: 9f:24:3c:28:0d:aa:03:31:35:91:32:a6:a0:ae:b8:26:52:4c: d6:f9:f0:db:62:38:fe:88:d2:59:a1:c0:f8:d4:6a:56:8f:2c: 90:3f:c3:94:5d:54:ec:b4:9b:8a:c3:11:d6:46:91:3c:db:fc: a4:cb:4a:01:94:03:a3:db:5c:5c:ae:9c:83:e5:d2:74:ce:c8: f4:48:97:f2:f7:f1:87:c5:fa:ff:8b:c3:05:ee:e2:53:a6:96: ee:02:a4:3d:43:17:c2:94:83:4d:2d:a5:dd:8e:39:51:cd:e3: 5c:3c:1f:0d:65:45:72:9b:e7:0e:ab:52:cf:85:1f:e2:db:45: d2:4c:d5:12:ad:10:88:57:4b:4e:de:5e:d8:bd:30:fc:27:42: 09:b5:8f:f2:d0:dc:75:f9:18:56:77:d8:af:78:b6:12:31:a7: 95:39:80:3b:eb:06:1c:a3:10:97:1b:5e:8b:2c:50:84:09:70: e1:65:b2:d3:27:db:c2:7c:ab:42:d1:e9:01:61:0a:6a:4f:95: 9a:9f:ea:12 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWw1Zrz1sok7b0Bp2JEuhRI75yzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZEN0NFRUM2OURFQTc4MzgzODMzMTdGRkIwRDRBMTA3 QUY0NTcyQTAeFw0yMzExMTAwNjU1MDBaFw0yNDExMDgwNzAwMDBaMDMxMTAvBgNV BAMTKDkyNEE5OTU3NUM2N0Q0M0U5ODJCMzEzQjI5RkEzOEQ4QkZDMTRFQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkpigo/8+xBVAvhjlvVO6bIQ6q zH/VTlJjPFXRMlr1AndHAvUn4uUPxi4dmQ1NSicbSJw54Ft4pIh3P5OwHclXOSbP Ay0znPttgSrMPDUgc+6sRN+FicrwP0thhCvOXq92dpHPTVNb+DhLpuhD/iqxNoiV NvT4QxVHAidE6SLVUbGSe25c9Yh3JGJdwZZMMncoz3VPQUM8eH6IYoOP+ZSWCwsL G4/OKmxJUP7XgHJVEMYzAXvW7ZRRRifVoUQ7wW7a4+UQNEP98DbbaEJHDTap1GQ6 9UwUJQEGK5nA/Ih+Fs060V2Lls7X5hur2eTGS42BPiaGm79GOTSmFSLfdVPhAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUkkqZV1xn1D6YKzE7Kfo42L/BTrwwHwYDVR0j BBgwFoAUH9fO7Gnep4ODgzF/+w1KEHr0VyowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTEyOWM5NC1jNWE2LTRkZDQtYjM0YS03ZTM1M2RlNmNlODEvMC8xRkQ3Q0VFQzY5 REVBNzgzODM4MzMxN0ZGQjBENEExMDdBRjQ1NzJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZEN0NFRUM2OURFQTc4MzgzODMzMTdGRkIwRDRBMTA3QUY0 NTcyQS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWUxMjljOTQtYzVhNi00ZGQ0LWIz NGEtN2UzNTNkZTZjZTgxLzAvMzIzMDMyMmUzOTJlMzYzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzYzMDM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCUUwDQYJKoZIhvcNAQEL BQADggEBAGMzMqP8odBo1KIz5EICpE4rewAPPjPcHaHUtcHvxVt1nILaEA75Ocv9 uHNDnboqPAPxXhWqkp8kPCgNqgMxNZEypqCuuCZSTNb58NtiOP6I0lmhwPjUalaP LJA/w5RdVOy0m4rDEdZGkTzb/KTLSgGUA6PbXFyunIPl0nTOyPRIl/L38YfF+v+L wwXu4lOmlu4CpD1DF8KUg00tpd2OOVHN41w8Hw1lRXKb5w6rUs+FH+LbRdJM1RKt EIhXS07eXti9MPwnQgm1j/LQ3HX5GFZ32K94thIxp5U5gDvrBhyjEJcbXossUIQJ cOFlstMn28J8q0LR6QFhCmpPlZqf6hI= -----END CERTIFICATE-----Generated at Fri May 31 19:47:01 2024 by rpki-client on console-fra.rpki-client.org