$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31322e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31322e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: H6n0LcO4sURqMTyYg17g+NO4YOBBcmUp1NUqUV9uD4w= Subject key identifier: CD:A0:2A:B5:3E:56:14:81:68:0F:60:F5:F8:37:59:DA:8A:AC:C7:C3 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 45C00F715035FEFABE06A17B9EAB2C14B7FC5518 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31322e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:51 +0000 ROA not before: Sun 30 Jul 2023 23:58:51 +0000 ROA not after: Mon 29 Jul 2024 00:03:51 +0000 asID: 38778 IP address blocks: 202.148.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 21:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c0:0f:71:50:35:fe:fa:be:06:a1:7b:9e:ab:2c:14:b7:fc:55:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:51 2023 GMT Not After : Jul 29 00:03:51 2024 GMT Subject: CN=CDA02AB53E561481680F60F5F83759DA8AACC7C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a5:86:03:63:ec:4c:8f:38:a1:ca:b5:58:6a: 6c:24:0e:39:57:3f:b5:b1:d1:77:4e:5d:6e:de:15: 22:51:39:23:11:17:60:52:48:80:fb:74:33:18:24: 28:af:e7:0b:6f:5e:04:f0:18:b9:8b:67:45:24:50: 51:f1:d9:3b:93:02:61:f8:07:73:31:a3:34:59:12: be:08:6b:e3:c5:fd:50:b0:38:0e:ce:07:57:ee:45: 0a:32:b2:6d:ba:9b:b0:94:b3:30:a6:3b:99:76:5c: 9d:ac:a9:b4:b4:ad:9e:cb:0c:4e:8a:2f:e6:39:b4: 71:2c:2a:53:ec:8c:4e:50:ba:5b:7e:1e:79:15:7f: bb:87:49:fc:a8:2f:77:e4:9f:64:60:7c:a5:d6:48: 8e:1f:12:a5:8b:bd:9f:23:81:31:37:f5:6b:4e:26: 9a:23:77:cd:10:a0:c7:ce:6a:cc:95:ae:70:b2:7c: 2e:30:10:21:17:b0:57:81:f4:ea:8b:31:f5:91:78: 6b:ae:36:dd:d3:38:88:fd:0c:d5:0c:97:c8:cf:b8: 84:44:5d:b1:c0:de:5d:49:3f:2d:1e:45:1e:3d:a1: 07:2c:95:87:9a:9e:92:3d:7b:fa:65:83:9e:7e:80: 19:c5:7c:0c:84:6b:44:42:f0:57:61:6d:50:4e:90: cf:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A0:2A:B5:3E:56:14:81:68:0F:60:F5:F8:37:59:DA:8A:AC:C7:C3 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31322e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.12.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:d2:1a:ba:50:45:cd:52:56:46:7d:0d:66:a7:ea:2c:7a:6f: a2:2e:11:95:0c:e3:c4:87:26:f6:a8:dc:74:4e:16:e7:44:e0: eb:fa:29:74:49:bd:1d:98:0c:e2:c4:e9:a1:5d:87:d5:d7:b3: ba:f1:c9:fd:c0:8a:34:1e:fe:24:cd:7c:78:da:1b:aa:c2:c8: 87:e6:b0:b1:4b:ee:57:f3:68:c8:c1:0a:3f:8e:64:73:3e:32: 3f:45:34:6e:27:61:ca:79:7c:fa:6a:df:7c:c3:a5:53:16:01: 78:7d:ba:4b:e0:17:04:43:6f:7a:05:80:32:37:72:bf:b7:a7: c4:e3:8b:27:b9:e7:d8:bb:5c:79:81:a9:a3:e9:fe:3b:74:4f: 0f:33:cc:32:3f:97:77:73:2a:a2:4f:05:99:70:9d:46:1d:d5: 7d:a7:12:2a:66:ee:70:ca:a5:00:24:7c:d1:bf:7c:23:58:89: c9:c9:07:0b:42:eb:b2:9a:c3:14:2a:23:85:02:79:42:a8:3d: f2:a2:de:e6:94:a6:ce:67:11:4f:de:e1:18:2d:cc:96:d2:ed: d2:77:96:bd:91:20:4d:f0:60:57:4b:3c:ba:16:3d:25:f2:62: e0:10:e4:d0:f7:79:9d:ab:63:64:83:d1:45:9e:bb:b9:2f:8d: 1b:c5:da:d7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURcAPcVA1/vq+BqF7nqssFLf8VRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTFaFw0yNDA3MjkwMDAzNTFaMDMxMTAvBgNV BAMTKENEQTAyQUI1M0U1NjE0ODE2ODBGNjBGNUY4Mzc1OURBOEFBQ0M3QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXpYYDY+xMjzihyrVYamwkDjlX P7Wx0XdOXW7eFSJROSMRF2BSSID7dDMYJCiv5wtvXgTwGLmLZ0UkUFHx2TuTAmH4 B3MxozRZEr4Ia+PF/VCwOA7OB1fuRQoysm26m7CUszCmO5l2XJ2sqbS0rZ7LDE6K L+Y5tHEsKlPsjE5Qult+HnkVf7uHSfyoL3fkn2RgfKXWSI4fEqWLvZ8jgTE39WtO Jpojd80QoMfOasyVrnCyfC4wECEXsFeB9OqLMfWReGuuNt3TOIj9DNUMl8jPuIRE XbHA3l1JPy0eRR49oQcslYeanpI9e/plg55+gBnFfAyEa0RC8FdhbVBOkM/DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzaAqtT5WFIFoD2D1+DdZ2oqsx8MwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUDDANBgkqhkiG 9w0BAQsFAAOCAQEAftIaulBFzVJWRn0NZqfqLHpvoi4RlQzjxIcm9qjcdE4W50Tg 6/opdEm9HZgM4sTpoV2H1dezuvHJ/cCKNB7+JM18eNobqsLIh+awsUvuV/NoyMEK P45kcz4yP0U0bidhynl8+mrffMOlUxYBeH26S+AXBENvegWAMjdyv7enxOOLJ7nn 2LtceYGpo+n+O3RPDzPMMj+Xd3Mqok8FmXCdRh3VfacSKmbucMqlACR80b98I1iJ yckHC0LrsprDFCojhQJ5Qqg98qLe5pSmzmcRT97hGC3MltLt0neWvZEgTfBgV0s8 uhY9JfJi4BDk0Pd5natjZIPRRZ67uS+NG8Xa1w== -----END CERTIFICATE-----Generated at Fri Apr 19 15:09:07 2024 by rpki-client on console-fra.rpki-client.org