$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31322e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31322e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 1m7+UKM++rx2XkCF81Jwrd1aJp7AILNROPrRVV4OGG4= Subject key identifier: 81:04:DB:BE:E6:D6:C6:FA:C6:0E:B1:B5:F6:FC:54:16:5E:AF:33:64 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 29A8B63E727AC1323CE2E22D16182D95ED8A42CD Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31322e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:54 +0000 ROA not before: Mon 01 Jul 2024 00:57:54 +0000 ROA not after: Mon 30 Jun 2025 01:02:54 +0000 asID: 38778 IP address blocks: 202.148.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a8:b6:3e:72:7a:c1:32:3c:e2:e2:2d:16:18:2d:95:ed:8a:42:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:54 2024 GMT Not After : Jun 30 01:02:54 2025 GMT Subject: CN=8104DBBEE6D6C6FAC60EB1B5F6FC54165EAF3364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e8:46:94:d5:d7:5a:37:85:1b:1a:77:87:3f: 76:20:23:c4:2f:73:3a:56:d8:0a:25:6a:bb:2c:de: cc:48:84:e4:88:e4:3b:81:25:c3:08:44:88:97:20: df:1d:9c:42:ea:91:14:cf:d8:93:bf:a3:08:b6:d0: 19:61:37:9a:fe:4c:d4:10:37:7a:06:4f:ba:21:23: 36:c8:ad:d5:45:52:df:29:e8:fb:a1:bf:e4:22:10: 41:78:fe:a9:d1:5b:a7:cc:f4:45:f0:67:7a:4a:af: 36:5f:94:e4:dd:3b:f2:e3:e3:77:5f:fa:10:6f:8c: 2a:ca:0a:27:44:c3:2f:08:7e:ef:51:95:e5:62:3d: db:4b:73:c0:86:7b:0c:f7:d9:88:67:7e:d1:5d:bc: 4c:88:a7:66:fd:96:ee:7e:a9:76:0b:6a:84:b9:21: 13:16:b3:e1:25:a1:3a:5d:0b:e8:68:87:97:33:59: 0d:2c:2c:a1:f9:b1:44:37:26:00:1c:f4:9b:28:c7: a1:df:0d:c2:53:15:d4:e4:09:f2:9d:64:ad:50:71: 77:d4:6b:8e:d6:86:a9:ff:cd:70:87:68:5b:d0:54: e1:a5:01:16:49:d8:07:7d:f5:5d:a3:5d:a5:ef:69: 64:e5:14:89:29:36:ab:b2:43:4b:6b:0f:f5:f4:50: 2b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:04:DB:BE:E6:D6:C6:FA:C6:0E:B1:B5:F6:FC:54:16:5E:AF:33:64 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31322e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.12.0/24 Signature Algorithm: sha256WithRSAEncryption 09:56:94:5b:02:c2:ac:87:bf:42:48:0e:49:a6:6c:1a:69:0e: e8:b6:9d:d9:f1:48:a3:98:82:2a:3b:4a:3a:f5:35:86:e3:8e: 7e:6c:0b:69:9c:5c:38:3a:0d:db:3a:89:e0:3d:c3:7e:3c:20: f8:db:db:fb:aa:33:d0:89:1d:68:b0:b8:37:4e:b0:e2:da:24: ea:f9:9b:29:9d:32:b4:df:29:60:44:ad:f4:db:67:ba:79:60: 66:71:da:29:a0:56:c2:6a:4c:63:12:1c:7e:ae:3b:c9:26:f0: 87:06:b5:cc:46:c8:c8:20:03:8e:67:51:6c:aa:cd:2b:7a:ae: fe:65:fd:64:4d:ef:13:4d:2a:3b:06:07:49:e7:90:6d:b1:6c: ee:c8:df:3b:73:7c:23:57:23:49:98:eb:c5:9c:ec:94:85:89: 80:f2:71:fd:12:9d:fe:59:52:1d:2f:a8:18:88:22:30:77:2b: 74:c2:fb:c1:39:20:46:f9:b7:81:13:43:e9:25:c3:ae:3c:75: 48:d2:b3:9a:03:fe:e1:c6:4b:ac:09:82:cf:5c:84:7a:39:df: 1a:8e:e0:34:8a:fb:1a:78:5f:42:ce:bc:af:0f:23:c2:9a:01: f7:77:95:b0:0c:42:4d:3d:f8:1e:ae:b7:a3:32:74:f4:15:03: 5a:09:2f:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKai2PnJ6wTI84uItFhgtle2KQs0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTRaFw0yNTA2MzAwMTAyNTRaMDMxMTAvBgNV BAMTKDgxMDREQkJFRTZENkM2RkFDNjBFQjFCNUY2RkM1NDE2NUVBRjMzNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW6EaU1ddaN4UbGneHP3YgI8Qv czpW2Aolarss3sxIhOSI5DuBJcMIRIiXIN8dnELqkRTP2JO/owi20BlhN5r+TNQQ N3oGT7ohIzbIrdVFUt8p6Puhv+QiEEF4/qnRW6fM9EXwZ3pKrzZflOTdO/Lj43df +hBvjCrKCidEwy8Ifu9RleViPdtLc8CGewz32YhnftFdvEyIp2b9lu5+qXYLaoS5 IRMWs+EloTpdC+hoh5czWQ0sLKH5sUQ3JgAc9Jsox6HfDcJTFdTkCfKdZK1QcXfU a47Whqn/zXCHaFvQVOGlARZJ2Ad99V2jXaXvaWTlFIkpNquyQ0trD/X0UCtPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgQTbvubWxvrGDrG19vxUFl6vM2QwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUDDANBgkqhkiG 9w0BAQsFAAOCAQEACVaUWwLCrIe/QkgOSaZsGmkO6Lad2fFIo5iCKjtKOvU1huOO fmwLaZxcODoN2zqJ4D3Dfjwg+Nvb+6oz0IkdaLC4N06w4tok6vmbKZ0ytN8pYESt 9NtnunlgZnHaKaBWwmpMYxIcfq47ySbwhwa1zEbIyCADjmdRbKrNK3qu/mX9ZE3v E00qOwYHSeeQbbFs7sjfO3N8I1cjSZjrxZzslIWJgPJx/RKd/llSHS+oGIgiMHcr dML7wTkgRvm3gRND6SXDrjx1SNKzmgP+4cZLrAmCz1yEejnfGo7gNIr7GnhfQs68 rw8jwpoB93eVsAxCTT34Hq63ozJ09BUDWgkvhg== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org