$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e312e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e312e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: NVOT/ao9xYxPUZHQqbBJBK07QhttW+vycVNPTgZehbg= Subject key identifier: 19:D4:4B:09:25:E7:71:52:51:40:E3:20:1E:0E:DD:D2:64:06:22:18 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 197CAEFFBD98B6B96EAF4004B8BA47A78C42B67E Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e312e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:03:00 +0000 ROA not before: Mon 01 Jul 2024 00:58:00 +0000 ROA not after: Mon 30 Jun 2025 01:03:00 +0000 asID: 9794 IP address blocks: 202.148.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:7c:ae:ff:bd:98:b6:b9:6e:af:40:04:b8:ba:47:a7:8c:42:b6:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:00 2024 GMT Not After : Jun 30 01:03:00 2025 GMT Subject: CN=19D44B0925E771525140E3201E0EDDD264062218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4e:1c:28:ff:2d:28:95:97:79:a2:64:41:a9: 13:08:ba:1d:7c:aa:1a:a2:8d:3a:b6:2d:27:c1:18: 28:02:dc:b1:7a:f5:d6:01:e4:b6:b6:91:55:8a:02: e5:2b:f8:ab:ad:cd:f8:fb:a0:c3:25:fa:67:d5:04: 60:e1:70:ec:43:13:fb:62:67:45:89:06:f7:7e:0f: 50:96:a4:77:7c:dc:b1:0a:99:54:c5:a0:ec:9a:24: 98:55:09:28:33:9d:80:af:4b:13:b4:06:73:c1:5e: 30:17:ae:10:65:b2:cc:ac:6f:db:e6:39:dc:a5:f7: 15:03:a8:06:c6:0c:fd:41:63:0d:c9:91:02:2e:8b: 16:cd:74:e6:06:68:00:ff:c6:b0:e8:f9:9c:0b:49: 8c:e7:4e:0d:a4:65:86:ab:43:bf:6e:e6:77:14:af: 08:e1:a4:cd:90:ef:73:fd:c5:e5:46:f0:72:ee:b7: e6:0a:81:19:2c:56:fa:cc:27:1f:b4:71:c9:df:d0: e3:51:e2:3b:47:8f:51:d2:48:d7:ec:08:36:50:a6: 22:17:75:5b:1c:34:4c:e3:18:a3:a4:f3:a5:ea:d0: 48:f7:0a:61:92:ad:6c:ef:90:49:0a:63:d2:1b:d4: 3c:5e:47:37:e3:a6:13:51:cb:53:70:dc:46:a8:07: 17:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D4:4B:09:25:E7:71:52:51:40:E3:20:1E:0E:DD:D2:64:06:22:18 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e312e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.1.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:32:a5:9e:ef:ff:23:7c:6e:37:d3:89:75:96:76:bc:a5:a8: 4c:ce:60:9f:9e:c7:b4:0d:62:d0:50:5b:ef:e0:a5:79:a9:9c: 16:24:24:08:5a:7c:0a:ff:8c:7b:19:2c:77:c7:67:3f:80:a8: eb:e6:91:72:1c:a3:ef:a4:8a:b1:3d:74:4f:4f:74:c4:0b:35: 8e:3c:44:dc:e2:47:4f:fe:2a:3b:e9:6f:8f:fb:d8:68:4d:55: 75:92:d9:15:96:b1:60:75:96:a2:73:b2:f3:44:47:c9:24:dc: 6d:56:fd:fc:b4:02:38:0c:17:53:de:ee:52:b3:d9:14:fa:c6: d2:54:3a:55:14:eb:ca:4a:a7:03:4c:20:98:38:d3:6b:74:a1: b6:61:bb:a8:da:d3:b4:cc:ba:6a:1c:03:b4:96:35:bb:02:c1: f5:4f:1c:ce:14:d8:fb:45:2d:e4:75:4e:9a:37:5f:c8:39:ed: 1e:32:c1:9d:b2:08:84:61:db:08:47:ce:30:c7:c9:4e:88:94: 01:2e:2c:37:c2:5b:6c:75:fa:ce:2b:bf:b0:52:37:f7:b3:c6: f6:ce:11:4d:a9:a0:27:75:74:bf:42:25:af:76:d4:3b:e0:12: 27:78:5c:b3:92:a8:51:8f:04:8c:11:b4:70:1b:6c:9d:9b:44: 70:a1:da:cc -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUGXyu/72Ytrlur0AEuLpHp4xCtn4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDBaFw0yNTA2MzAwMTAzMDBaMDMxMTAvBgNV BAMTKDE5RDQ0QjA5MjVFNzcxNTI1MTQwRTMyMDFFMEVEREQyNjQwNjIyMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Thwo/y0olZd5omRBqRMIuh18 qhqijTq2LSfBGCgC3LF69dYB5La2kVWKAuUr+Kutzfj7oMMl+mfVBGDhcOxDE/ti Z0WJBvd+D1CWpHd83LEKmVTFoOyaJJhVCSgznYCvSxO0BnPBXjAXrhBlssysb9vm Odyl9xUDqAbGDP1BYw3JkQIuixbNdOYGaAD/xrDo+ZwLSYznTg2kZYarQ79u5ncU rwjhpM2Q73P9xeVG8HLut+YKgRksVvrMJx+0ccnf0ONR4jtHj1HSSNfsCDZQpiIX dVscNEzjGKOk86Xq0Ej3CmGSrWzvkEkKY9Ib1DxeRzfjphNRy1Nw3EaoBxeRAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUGdRLCSXncVJRQOMgHg7d0mQGIhgwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTMxMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAEwDQYJKoZIhvcNAQEL BQADggEBAE0ypZ7v/yN8bjfTiXWWdrylqEzOYJ+ex7QNYtBQW+/gpXmpnBYkJAha fAr/jHsZLHfHZz+AqOvmkXIco++kirE9dE9PdMQLNY48RNziR0/+Kjvpb4/72GhN VXWS2RWWsWB1lqJzsvNER8kk3G1W/fy0AjgMF1Pe7lKz2RT6xtJUOlUU68pKpwNM IJg402t0obZhu6ja07TMumocA7SWNbsCwfVPHM4U2PtFLeR1Tpo3X8g57R4ywZ2y CIRh2whHzjDHyU6IlAEuLDfCW2x1+s4rv7BSN/ezxvbOEU2poCd1dL9CJa921Dvg Eid4XLOSqFGPBIwRtHAbbJ2bRHCh2sw= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org