$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31342e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31342e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: Zwctn0Q7YbzI5VDHhYAacvAj2XG7ycDEfDvIYfgbx2k= Subject key identifier: 3B:68:5C:D9:FC:8C:3C:98:CF:14:93:7A:C1:B6:3C:FF:F8:79:2B:0F Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 0CA3A8F42BDC7C71A5CEC99E9451C2A784566E5D Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31342e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:49 +0000 ROA not before: Sun 30 Jul 2023 23:58:49 +0000 ROA not after: Mon 29 Jul 2024 00:03:49 +0000 asID: 38778 IP address blocks: 202.148.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Apr 2024 00:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:a3:a8:f4:2b:dc:7c:71:a5:ce:c9:9e:94:51:c2:a7:84:56:6e:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:49 2023 GMT Not After : Jul 29 00:03:49 2024 GMT Subject: CN=3B685CD9FC8C3C98CF14937AC1B63CFFF8792B0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:66:5f:4f:ef:61:b7:db:84:f1:70:c1:67:3b: 33:b5:2f:34:00:fc:38:68:f4:58:17:c9:ee:c5:40: 53:30:a1:32:c9:3b:11:ac:d3:26:fb:37:5b:19:0a: ec:6b:f3:a1:6f:2c:19:63:4a:e8:80:2c:4f:dd:51: 15:65:ea:f4:32:75:c2:2f:5f:16:2d:c7:9e:9e:28: d7:24:b1:bc:10:83:0b:85:3b:95:52:c3:6b:ec:a5: 9c:f5:2c:dd:97:34:f6:a1:40:a8:18:26:00:0f:42: cc:52:9a:e1:ac:4b:28:82:c6:a9:1c:f2:95:3b:fa: 96:d0:9e:fb:b8:0c:97:24:bf:70:f6:51:5f:5e:81: 25:44:75:7d:bb:98:02:26:59:57:16:91:d4:b3:2c: 15:3b:4d:83:32:f0:39:14:d0:1f:9f:93:d0:68:38: a2:dc:4b:2b:54:c9:0e:e0:5c:e1:44:5b:cf:44:17: a7:ad:3c:7c:be:70:fb:cb:a2:c6:c8:70:74:ed:b1: ab:98:6a:9d:71:d4:fe:77:8d:ab:c1:06:ea:36:a2: 95:08:e3:b3:8f:87:d9:0e:aa:00:1b:29:a0:31:0d: 22:2b:ae:d3:46:b4:b1:ef:3f:d1:ea:6b:c9:7b:0d: 0a:ef:2f:8d:ab:55:10:f8:a0:f2:0b:74:a7:52:f5: 71:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:68:5C:D9:FC:8C:3C:98:CF:14:93:7A:C1:B6:3C:FF:F8:79:2B:0F X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31342e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.14.0/24 Signature Algorithm: sha256WithRSAEncryption 62:06:cc:b3:84:e9:7f:bd:24:bd:4a:92:6d:4f:1c:98:ae:3d: a2:92:85:dd:35:67:79:9b:af:6c:6b:74:39:f5:85:d6:67:19: ef:cd:79:c1:92:7f:4e:6e:e9:54:f5:1d:b2:58:d7:94:5c:3b: 1a:cf:48:a0:f6:50:34:b5:28:ec:ea:bf:f6:91:5a:3e:84:c9: 95:42:f9:a4:73:08:2e:c5:8c:fb:9b:87:c9:2c:16:cb:62:7c: 22:81:29:69:91:17:2f:89:57:cb:e5:2e:45:4b:e9:3b:2c:e4: 36:88:8b:7d:04:35:a0:a0:52:cc:a3:7c:40:dd:3f:7d:b2:0a: d5:68:9c:44:37:01:74:9b:ab:fe:24:21:66:ad:bc:41:6c:0b: d9:61:ec:f4:b6:80:f4:96:b6:a0:1c:90:d6:7b:78:9b:a7:92: 2c:13:d5:8d:45:2c:2d:15:47:5e:70:e5:b2:2b:17:cd:f3:97: 09:93:0d:4c:70:a6:1c:5f:6f:1f:53:1c:e0:d6:f0:96:e2:77: 28:d3:ad:28:3b:d1:e3:90:bc:c8:ba:12:b6:7e:1a:7a:75:1a: 86:cc:ba:f7:1d:60:fa:d2:41:c2:a8:91:c5:07:17:fc:bb:f8: 87:cb:88:bc:89:e9:33:8a:4d:80:e6:b6:89:67:aa:51:af:d0: 4c:88:40:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDKOo9CvcfHGlzsmelFHCp4RWbl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDlaFw0yNDA3MjkwMDAzNDlaMDMxMTAvBgNV BAMTKDNCNjg1Q0Q5RkM4QzNDOThDRjE0OTM3QUMxQjYzQ0ZGRjg3OTJCMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzZl9P72G324TxcMFnOzO1LzQA /Dho9FgXye7FQFMwoTLJOxGs0yb7N1sZCuxr86FvLBljSuiALE/dURVl6vQydcIv XxYtx56eKNcksbwQgwuFO5VSw2vspZz1LN2XNPahQKgYJgAPQsxSmuGsSyiCxqkc 8pU7+pbQnvu4DJckv3D2UV9egSVEdX27mAImWVcWkdSzLBU7TYMy8DkU0B+fk9Bo OKLcSytUyQ7gXOFEW89EF6etPHy+cPvLosbIcHTtsauYap1x1P53javBBuo2opUI 47OPh9kOqgAbKaAxDSIrrtNGtLHvP9Hqa8l7DQrvL42rVRD4oPILdKdS9XEpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUO2hc2fyMPJjPFJN6wbY8//h5Kw8wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUDjANBgkqhkiG 9w0BAQsFAAOCAQEAYgbMs4Tpf70kvUqSbU8cmK49opKF3TVneZuvbGt0OfWF1mcZ 7815wZJ/Tm7pVPUdsljXlFw7Gs9IoPZQNLUo7Oq/9pFaPoTJlUL5pHMILsWM+5uH ySwWy2J8IoEpaZEXL4lXy+UuRUvpOyzkNoiLfQQ1oKBSzKN8QN0/fbIK1WicRDcB dJur/iQhZq28QWwL2WHs9LaA9Ja2oByQ1nt4m6eSLBPVjUUsLRVHXnDlsisXzfOX CZMNTHCmHF9vH1Mc4NbwluJ3KNOtKDvR45C8yLoStn4aenUahsy69x1g+tJBwqiR xQcX/Lv4h8uIvInpM4pNgOa2iWeqUa/QTIhACg== -----END CERTIFICATE-----Generated at Sun Apr 14 23:27:56 2024 by rpki-client on console-fra.rpki-client.org