$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31352e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31352e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: Zuiv3F/Vj7ozkiVhz2E2N5ybzq9HArFWgnyj9WPK4mU= Subject key identifier: 3B:4A:F9:15:28:54:18:69:71:F3:83:18:DE:30:48:7C:D6:00:A8:89 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 5B6B363C15FEFC30332A23EB363AAB8B4A70BECA Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31352e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:49 +0000 ROA not before: Sun 30 Jul 2023 23:58:49 +0000 ROA not after: Mon 29 Jul 2024 00:03:49 +0000 asID: 38778 IP address blocks: 202.148.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:6b:36:3c:15:fe:fc:30:33:2a:23:eb:36:3a:ab:8b:4a:70:be:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:49 2023 GMT Not After : Jul 29 00:03:49 2024 GMT Subject: CN=3B4AF9152854186971F38318DE30487CD600A889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e4:e5:48:88:f7:f6:c4:5f:d1:a0:5a:86:fe: ed:23:ca:c6:e8:8f:da:14:84:12:34:91:7e:2d:45: 1d:05:09:3d:9e:dd:67:61:0d:e6:3e:9b:62:ce:0a: 30:a3:6b:b6:d2:cc:f8:ce:83:97:d6:24:f5:b2:4c: 5a:76:cf:bb:ed:cb:b1:60:9e:8b:34:64:45:f3:72: 3a:c7:95:82:ba:ec:fc:51:5c:db:ce:ef:a6:85:be: f3:43:ef:51:84:4d:2b:fe:ad:12:31:14:44:62:c1: 5a:8f:be:ae:46:6a:ff:8d:57:ad:9c:98:a9:1a:a5: 12:58:28:93:44:30:9e:50:d6:1b:21:5f:65:d9:0c: 39:8d:b4:46:d9:cf:18:d6:03:36:ee:a2:9f:94:39: 70:af:1d:b7:b9:0b:ce:8c:0e:47:9b:90:4f:7a:e1: 3d:85:50:b0:4e:d4:ea:9d:df:69:48:aa:c6:8c:e9: c9:3a:b9:52:ca:6a:90:39:03:e0:cf:b3:20:45:83: 59:61:db:62:51:ae:a5:ce:f3:a8:1f:01:8f:1b:5c: 3e:6f:0b:06:62:7e:48:2e:74:b7:42:88:0f:dc:63: d2:52:0d:5f:e6:77:ae:82:cb:00:bd:f2:cd:12:b6: c6:c0:9e:fd:fc:62:1b:49:5a:2e:45:c4:88:c0:9f: 5a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:4A:F9:15:28:54:18:69:71:F3:83:18:DE:30:48:7C:D6:00:A8:89 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31352e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.15.0/24 Signature Algorithm: sha256WithRSAEncryption c7:07:83:98:7d:24:98:1b:1a:71:f2:bb:66:93:5a:68:05:45: 25:b1:45:28:ba:d9:9d:31:6f:6e:ea:4e:71:c0:e8:c1:63:8a: e6:ff:63:4e:78:7d:a3:66:66:d2:4d:6d:e1:3a:9c:f8:0c:ca: 8f:b6:8d:34:75:a1:39:58:97:0f:d8:58:0d:fe:c7:1f:21:05: 2a:cc:ef:d1:e6:88:f2:41:ba:44:23:f8:b5:f5:1a:ef:34:61: 8d:ac:38:ea:67:5f:9e:41:6d:75:ea:0b:de:5e:94:35:66:40: 86:1b:27:4b:b5:f5:09:e1:e0:98:9e:53:32:f9:2d:96:fe:12: ec:2b:0d:41:7a:63:79:8b:af:9e:e5:10:b9:f6:db:2e:02:5d: c1:32:95:8b:ad:8e:16:37:33:1a:f4:29:0e:70:02:4c:f3:95: 4b:ac:42:6a:4c:be:63:0c:18:c7:e8:91:1d:81:1d:63:49:46: 31:af:c1:18:b1:f7:e4:f1:76:a8:40:f2:7a:0b:49:f3:e6:60: f3:47:41:0b:67:32:4f:47:40:ff:3d:ec:d4:ab:0d:6d:5c:a9: 56:05:18:c1:c6:ee:17:34:19:e7:e4:72:e1:0d:03:fa:e7:3a: 44:d8:42:0e:05:63:24:9d:e3:9e:fb:75:46:55:33:07:27:5c: f3:ab:4f:9a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW2s2PBX+/DAzKiPrNjqri0pwvsowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDlaFw0yNDA3MjkwMDAzNDlaMDMxMTAvBgNV BAMTKDNCNEFGOTE1Mjg1NDE4Njk3MUYzODMxOERFMzA0ODdDRDYwMEE4ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD25OVIiPf2xF/RoFqG/u0jysbo j9oUhBI0kX4tRR0FCT2e3WdhDeY+m2LOCjCja7bSzPjOg5fWJPWyTFp2z7vty7Fg nos0ZEXzcjrHlYK67PxRXNvO76aFvvND71GETSv+rRIxFERiwVqPvq5Gav+NV62c mKkapRJYKJNEMJ5Q1hshX2XZDDmNtEbZzxjWAzbuop+UOXCvHbe5C86MDkebkE96 4T2FULBO1Oqd32lIqsaM6ck6uVLKapA5A+DPsyBFg1lh22JRrqXO86gfAY8bXD5v CwZifkgudLdCiA/cY9JSDV/md66CywC98s0StsbAnv38YhtJWi5FxIjAn1oXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUO0r5FShUGGlx84MY3jBIfNYAqIkwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUDzANBgkqhkiG 9w0BAQsFAAOCAQEAxweDmH0kmBsacfK7ZpNaaAVFJbFFKLrZnTFvbupOccDowWOK 5v9jTnh9o2Zm0k1t4Tqc+AzKj7aNNHWhOViXD9hYDf7HHyEFKszv0eaI8kG6RCP4 tfUa7zRhjaw46mdfnkFtdeoL3l6UNWZAhhsnS7X1CeHgmJ5TMvktlv4S7CsNQXpj eYuvnuUQufbbLgJdwTKVi62OFjczGvQpDnACTPOVS6xCaky+YwwYx+iRHYEdY0lG Ma/BGLH35PF2qEDyegtJ8+Zg80dBC2cyT0dA/z3s1KsNbVypVgUYwcbuFzQZ5+Ry 4Q0D+uc6RNhCDgVjJJ3jnvt1RlUzBydc86tPmg== -----END CERTIFICATE-----Generated at Wed Apr 24 04:46:23 2024 by rpki-client on console-fra.rpki-client.org