$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31302e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: EHYxE12SGAYzpqbo5pvtX6/4MA8QnYq6/wzOpCEtYIY= Subject key identifier: 88:CF:47:77:42:E0:06:2D:E5:F7:CD:E0:3D:95:DB:98:23:DD:69:50 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 176EAF5F60C287B15788F2A00E8965FB1DE1C56A Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31302e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:55 +0000 ROA not before: Mon 01 Jul 2024 00:57:55 +0000 ROA not after: Mon 30 Jun 2025 01:02:55 +0000 asID: 38778 IP address blocks: 202.148.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:6e:af:5f:60:c2:87:b1:57:88:f2:a0:0e:89:65:fb:1d:e1:c5:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:55 2024 GMT Not After : Jun 30 01:02:55 2025 GMT Subject: CN=88CF477742E0062DE5F7CDE03D95DB9823DD6950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a8:3a:31:0a:87:b5:b7:51:46:e8:b9:ea:fa: 74:2f:f4:cf:15:e7:2a:24:32:26:a5:fb:90:f3:84: 3c:0d:87:2b:4c:93:d1:91:e4:d9:bc:38:21:e1:46: 1c:8d:19:42:08:82:12:40:b9:8c:dd:1c:7f:0c:b4: 10:c7:4e:6c:29:af:e8:46:d4:2d:d3:54:77:59:8f: 5e:04:ce:57:b3:42:45:90:ea:d5:17:fb:69:a3:97: 22:04:f7:08:9a:3c:f5:11:f5:04:93:db:ee:a0:3a: cb:dd:20:c2:f9:f5:6c:fe:2c:12:34:f0:e7:e9:09: 4f:84:34:85:51:48:81:e1:41:63:0d:0b:9f:b9:00: 44:04:04:67:03:29:f7:c2:78:35:16:a7:62:51:41: 86:6e:12:7e:a1:db:6e:ca:cb:95:d9:30:23:c4:3b: c3:9b:d9:85:14:12:03:b1:4e:01:ed:a0:38:7e:0d: 71:fc:b3:e5:11:eb:12:5a:44:ef:5c:d8:36:a7:c2: f6:a1:4d:d1:70:9d:71:79:76:52:30:18:38:9b:1c: 8f:28:81:60:ac:04:e0:e6:9e:a3:b8:0e:1e:8e:24: 93:cd:1e:d4:bb:70:64:a7:be:e5:e0:6d:89:06:c6: 75:14:80:16:32:f2:34:ad:21:22:ac:fb:f9:c3:2e: a3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CF:47:77:42:E0:06:2D:E5:F7:CD:E0:3D:95:DB:98:23:DD:69:50 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.10.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:ca:73:f5:60:41:b5:c1:39:f3:10:ff:61:99:32:b9:c0:b6: 50:b1:b4:86:ad:89:c3:9c:6d:71:7a:67:d4:5e:0e:b9:fb:64: 84:88:0b:a5:78:7e:c6:a4:f8:73:07:df:32:44:93:ba:5d:76: d8:ff:e8:ff:a8:93:0c:6c:8a:5e:f6:1d:89:91:68:48:da:5c: 51:cb:5f:54:b8:c7:3a:63:eb:ce:7e:13:73:a4:f8:7c:20:e9: f4:81:8b:57:11:c9:c7:aa:30:63:42:77:c8:a4:9d:47:ec:ca: 8b:aa:77:d3:1b:fe:1f:6f:f7:34:be:ad:4c:3a:07:c7:a3:b7: d4:85:a4:10:11:4d:37:18:ee:92:70:4e:01:cf:34:a1:f0:4f: e9:43:3a:35:43:c4:25:e3:5b:28:84:10:88:09:7b:35:0e:37: 9d:a1:2e:51:d4:59:15:c5:90:c8:f1:e0:bf:38:20:6a:83:c2: eb:72:e1:0d:da:f0:8f:b5:4c:e6:98:2d:ce:b7:1a:9f:5a:40: 38:f0:0a:3c:46:8c:e5:56:8c:48:2f:42:74:ae:59:2d:78:06: 0c:25:ca:3e:7f:de:41:fa:99:bc:19:e1:59:28:36:38:58:8b: 23:1d:d3:9a:74:8b:d2:7e:94:90:b4:70:ee:5b:93:45:57:d5: 1d:49:13:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF26vX2DCh7FXiPKgDoll+x3hxWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTVaFw0yNTA2MzAwMTAyNTVaMDMxMTAvBgNV BAMTKDg4Q0Y0Nzc3NDJFMDA2MkRFNUY3Q0RFMDNEOTVEQjk4MjNERDY5NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaqDoxCoe1t1FG6Lnq+nQv9M8V 5yokMial+5DzhDwNhytMk9GR5Nm8OCHhRhyNGUIIghJAuYzdHH8MtBDHTmwpr+hG 1C3TVHdZj14EzlezQkWQ6tUX+2mjlyIE9wiaPPUR9QST2+6gOsvdIML59Wz+LBI0 8OfpCU+ENIVRSIHhQWMNC5+5AEQEBGcDKffCeDUWp2JRQYZuEn6h227Ky5XZMCPE O8Ob2YUUEgOxTgHtoDh+DXH8s+UR6xJaRO9c2DanwvahTdFwnXF5dlIwGDibHI8o gWCsBODmnqO4Dh6OJJPNHtS7cGSnvuXgbYkGxnUUgBYy8jStISKs+/nDLqNXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUiM9Hd0LgBi3l983gPZXbmCPdaVAwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUCjANBgkqhkiG 9w0BAQsFAAOCAQEAK8pz9WBBtcE58xD/YZkyucC2ULG0hq2Jw5xtcXpn1F4Ouftk hIgLpXh+xqT4cwffMkSTul122P/o/6iTDGyKXvYdiZFoSNpcUctfVLjHOmPrzn4T c6T4fCDp9IGLVxHJx6owY0J3yKSdR+zKi6p30xv+H2/3NL6tTDoHx6O31IWkEBFN NxjuknBOAc80ofBP6UM6NUPEJeNbKIQQiAl7NQ43naEuUdRZFcWQyPHgvzggaoPC 63LhDdrwj7VM5pgtzrcan1pAOPAKPEaM5VaMSC9CdK5ZLXgGDCXKPn/eQfqZvBnh WSg2OFiLIx3TmnSL0n6UkLRw7luTRVfVHUkTYw== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org