$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31342e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31342e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: /Podaksc6UiJsAhrWUluvnv5XCkI5Abfh7Ls7VaFvns= Subject key identifier: 85:C1:16:8B:7D:99:4C:B2:C6:6C:F3:59:62:C0:0B:9E:90:BF:55:69 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 23F3EE930F8A9257ED952B2F3E6E73C079C2D8B4 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31342e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:58 +0000 ROA not before: Mon 01 Jul 2024 00:57:58 +0000 ROA not after: Mon 30 Jun 2025 01:02:58 +0000 asID: 38778 IP address blocks: 202.148.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:f3:ee:93:0f:8a:92:57:ed:95:2b:2f:3e:6e:73:c0:79:c2:d8:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:58 2024 GMT Not After : Jun 30 01:02:58 2025 GMT Subject: CN=85C1168B7D994CB2C66CF35962C00B9E90BF5569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6c:b2:a2:44:01:9c:44:45:3d:55:65:dd:bb: 7b:15:aa:e3:c6:25:a1:7d:f2:07:34:1c:7e:9f:ef: 3f:a8:03:75:b2:a6:60:0d:e6:18:65:17:f6:5a:7b: 0f:ca:43:28:92:0d:20:bf:07:67:3d:1d:24:44:cf: 1f:49:f0:2d:ab:3f:5b:bf:fe:0c:f9:2c:9c:9f:12: 31:54:9b:27:0c:bc:bc:af:92:88:ea:6e:b2:2d:26: 8d:fd:3f:66:04:e4:66:14:e1:1f:ba:82:43:dd:5f: 4a:2b:6b:a8:ba:67:9e:96:45:46:f4:7d:3d:23:dd: 53:d5:2a:e0:ea:b7:4b:67:d2:0a:60:77:7f:fa:8f: 72:9e:0c:99:7b:6b:64:17:79:0a:9c:49:44:40:f3: 5f:cd:0f:18:72:41:97:e4:50:74:e2:95:7b:ae:8e: 2e:90:d7:ba:0d:a7:52:4d:b7:7f:4b:ce:65:15:02: 07:9a:e3:1f:3d:e5:e8:42:f1:3a:bd:ff:f8:66:6b: 0c:8f:7b:0f:97:72:a3:d3:d0:d1:16:c2:3f:9a:2b: 04:ec:48:26:13:38:fd:83:f3:54:fa:ce:5d:6b:ca: 43:45:b4:e7:58:1b:80:f3:86:59:e9:ff:0d:e1:59: 1e:1b:0f:d0:2b:c7:57:aa:c1:dd:1d:8c:b6:84:bd: d1:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C1:16:8B:7D:99:4C:B2:C6:6C:F3:59:62:C0:0B:9E:90:BF:55:69 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31342e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.14.0/24 Signature Algorithm: sha256WithRSAEncryption ac:55:74:a3:86:3b:c3:56:b1:73:6b:c1:67:f3:1f:a7:b7:5a: 1b:0f:95:86:54:d5:36:28:9d:0b:4d:ce:ce:55:b5:dc:80:4b: 90:88:b7:1e:3b:c4:f5:5b:6b:52:be:62:4f:4e:8a:86:31:bf: d2:c7:e5:9f:35:14:c3:67:49:d9:46:ba:2b:43:7a:c0:99:f0: fe:48:5f:40:cd:6d:b0:fb:5d:af:5d:f2:44:30:67:8e:53:68: a7:d2:af:d4:e1:6b:f1:8d:72:8a:ea:db:87:f6:dd:e6:9b:25: 90:a9:f9:78:44:8c:df:ba:18:20:c8:03:73:a9:c5:14:58:ee: 6a:a0:cd:5c:44:a2:b6:ac:d6:d6:bf:7e:f0:91:e3:b4:97:30: 0f:bb:0b:0b:fc:d8:e5:56:88:5a:dd:47:25:46:58:8b:36:59: 4d:1b:e4:15:f6:72:5e:88:6e:73:5d:43:50:2e:65:70:11:5e: 91:d1:ee:1b:92:96:b4:a3:1a:a3:d8:2c:3b:ef:3a:2b:32:55: fc:c1:91:9a:1d:85:88:b5:80:ed:65:53:17:e0:f9:88:0f:63: e3:0d:ca:f8:f2:f4:24:a7:2c:25:45:30:1a:fe:b9:0d:69:07: b8:af:93:eb:6a:f7:f5:f3:02:c3:99:b2:2a:42:b6:0d:78:63: 24:f8:a8:1c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI/Pukw+KklftlSsvPm5zwHnC2LQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NThaFw0yNTA2MzAwMTAyNThaMDMxMTAvBgNV BAMTKDg1QzExNjhCN0Q5OTRDQjJDNjZDRjM1OTYyQzAwQjlFOTBCRjU1NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkbLKiRAGcREU9VWXdu3sVquPG JaF98gc0HH6f7z+oA3WypmAN5hhlF/Zaew/KQyiSDSC/B2c9HSREzx9J8C2rP1u/ /gz5LJyfEjFUmycMvLyvkojqbrItJo39P2YE5GYU4R+6gkPdX0ora6i6Z56WRUb0 fT0j3VPVKuDqt0tn0gpgd3/6j3KeDJl7a2QXeQqcSURA81/NDxhyQZfkUHTilXuu ji6Q17oNp1JNt39LzmUVAgea4x895ehC8Tq9//hmawyPew+XcqPT0NEWwj+aKwTs SCYTOP2D81T6zl1rykNFtOdYG4Dzhlnp/w3hWR4bD9Arx1eqwd0djLaEvdHzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhcEWi32ZTLLGbPNZYsALnpC/VWkwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUDjANBgkqhkiG 9w0BAQsFAAOCAQEArFV0o4Y7w1axc2vBZ/Mfp7daGw+VhlTVNiidC03OzlW13IBL kIi3HjvE9VtrUr5iT06KhjG/0sflnzUUw2dJ2Ua6K0N6wJnw/khfQM1tsPtdr13y RDBnjlNop9Kv1OFr8Y1yiurbh/bd5pslkKn5eESM37oYIMgDc6nFFFjuaqDNXESi tqzW1r9+8JHjtJcwD7sLC/zY5VaIWt1HJUZYizZZTRvkFfZyXohuc11DUC5lcBFe kdHuG5KWtKMao9gsO+86KzJV/MGRmh2FiLWA7WVTF+D5iA9j4w3K+PL0JKcsJUUw Gv65DWkHuK+T62r39fMCw5myKkK2DXhjJPioHA== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org