$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31352e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31352e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: C9nWoBtR9G8ZGPFGm/m+QBVeq0ycbEh6uR/H/Lj3fgQ= Subject key identifier: 74:A8:3E:D0:99:0D:B2:C5:D0:C7:96:55:C7:F2:98:2D:D4:BC:0E:98 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 63D26411964BF0D6727D6550D66E0389276D093C Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31352e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:54 +0000 ROA not before: Mon 01 Jul 2024 00:57:54 +0000 ROA not after: Mon 30 Jun 2025 01:02:54 +0000 asID: 38778 IP address blocks: 202.148.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:d2:64:11:96:4b:f0:d6:72:7d:65:50:d6:6e:03:89:27:6d:09:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:54 2024 GMT Not After : Jun 30 01:02:54 2025 GMT Subject: CN=74A83ED0990DB2C5D0C79655C7F2982DD4BC0E98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d0:3e:37:c6:c0:f7:a9:67:85:b6:6c:1d:1c: cf:5e:c3:6b:49:8c:0f:65:94:92:dd:10:53:b3:10: d6:84:19:84:59:b5:91:39:6e:9d:a1:1b:0c:32:cb: cd:17:a0:ba:52:cd:6a:1b:22:17:d9:9b:ca:99:0b: 01:ef:de:ef:6b:c7:dc:40:77:6d:67:bb:d5:5d:8e: 8d:e9:1d:9f:af:3d:5c:6c:a1:5d:08:92:f2:45:42: b4:8e:a0:c4:d1:8a:a3:bb:b9:25:e4:d3:92:90:82: 86:c0:c3:3b:30:09:8c:9c:a1:3c:39:7b:7f:cd:d1: f6:d7:42:f6:22:c8:7e:41:af:c3:35:9d:1f:e0:70: a1:a6:77:85:14:1d:48:99:18:41:43:cf:e6:42:fd: bd:53:2d:8c:21:f3:a7:ef:53:4d:25:c4:3f:16:13: ee:0e:8d:42:63:87:cc:53:8e:af:db:33:29:5b:74: e3:94:47:54:ba:b1:e8:de:4f:59:a6:7e:62:52:55: b4:4d:61:fa:88:ba:8c:37:01:98:5e:b7:d0:67:d4: b8:05:e6:ea:53:ba:53:2d:f6:00:0d:89:03:de:0d: f0:5e:ea:d3:f6:9e:e1:51:ca:4c:99:e2:69:c6:ac: 6a:27:e5:bc:ea:30:ef:e8:e5:82:9d:20:d7:5f:6b: 5c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A8:3E:D0:99:0D:B2:C5:D0:C7:96:55:C7:F2:98:2D:D4:BC:0E:98 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31352e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.15.0/24 Signature Algorithm: sha256WithRSAEncryption 37:5d:ec:e6:74:c0:96:a2:32:c1:f3:54:f6:03:06:f0:a2:78: 5d:8a:a4:93:3d:29:a4:b3:2a:d9:60:ea:1f:e5:19:22:f0:98: f4:89:dc:20:ec:7c:40:4b:ec:65:68:95:59:da:77:a6:60:86: 01:ac:39:f6:7c:fe:29:23:45:d3:9d:8d:95:39:31:ed:89:93: e1:49:6b:ee:c1:a0:45:9b:9b:c7:60:55:00:3b:20:35:97:d0: c9:42:8f:3d:a5:16:cf:66:23:a5:79:b5:0d:33:63:d2:99:2a: b6:12:7f:98:32:3e:a6:0a:e9:7e:c9:11:61:fa:46:8a:78:6d: a0:f8:c7:ed:e7:9c:0a:9f:47:1d:b1:d3:6c:25:38:80:0b:56: fd:c5:85:f1:8c:ad:18:52:4a:4b:dd:6e:e6:09:69:e2:79:00: 14:d7:9a:cc:d4:61:81:f8:ac:9d:5d:20:20:f0:51:56:99:ac: 3b:ac:ac:e0:b4:31:e1:4c:da:55:d6:92:f5:64:6d:10:a1:69: 1a:fa:ce:73:fc:88:4f:30:03:5a:21:4d:3d:36:67:14:66:5b: 39:69:9a:d5:c9:2c:43:90:ec:5a:7e:85:ba:e2:94:03:a0:48: 58:41:de:fb:17:42:66:27:fa:d5:6d:9b:fc:9b:fe:d5:d6:8f: fe:73:3d:d6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY9JkEZZL8NZyfWVQ1m4DiSdtCTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTRaFw0yNTA2MzAwMTAyNTRaMDMxMTAvBgNV BAMTKDc0QTgzRUQwOTkwREIyQzVEMEM3OTY1NUM3RjI5ODJERDRCQzBFOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM0D43xsD3qWeFtmwdHM9ew2tJ jA9llJLdEFOzENaEGYRZtZE5bp2hGwwyy80XoLpSzWobIhfZm8qZCwHv3u9rx9xA d21nu9Vdjo3pHZ+vPVxsoV0IkvJFQrSOoMTRiqO7uSXk05KQgobAwzswCYycoTw5 e3/N0fbXQvYiyH5Br8M1nR/gcKGmd4UUHUiZGEFDz+ZC/b1TLYwh86fvU00lxD8W E+4OjUJjh8xTjq/bMylbdOOUR1S6sejeT1mmfmJSVbRNYfqIuow3AZhet9Bn1LgF 5upTulMt9gANiQPeDfBe6tP2nuFRykyZ4mnGrGon5bzqMO/o5YKdINdfa1yPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdKg+0JkNssXQx5ZVx/KYLdS8DpgwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUDzANBgkqhkiG 9w0BAQsFAAOCAQEAN13s5nTAlqIywfNU9gMG8KJ4XYqkkz0ppLMq2WDqH+UZIvCY 9IncIOx8QEvsZWiVWdp3pmCGAaw59nz+KSNF052NlTkx7YmT4Ulr7sGgRZubx2BV ADsgNZfQyUKPPaUWz2YjpXm1DTNj0pkqthJ/mDI+pgrpfskRYfpGinhtoPjH7eec Cp9HHbHTbCU4gAtW/cWF8YytGFJKS91u5glp4nkAFNeazNRhgfisnV0gIPBRVpms O6ys4LQx4UzaVdaS9WRtEKFpGvrOc/yITzADWiFNPTZnFGZbOWma1cksQ5DsWn6F uuKUA6BIWEHe+xdCZif61W2b/Jv+1daP/nM91g== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org