$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e31372e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: sjzVF+zTZS9Xh9ttu0hK+L+b/HNnmq0kcBJkoEBrRxw= Subject key identifier: 45:63:21:5D:73:83:5D:AB:AA:A5:B0:97:54:0B:14:96:E7:65:9C:43 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 1657FAEF80A0C856DD2DCC932D5BABA88E84ABE7 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:45 +0000 ROA not before: Sun 30 Jul 2023 23:58:45 +0000 ROA not after: Mon 29 Jul 2024 00:03:45 +0000 asID: 9794 IP address blocks: 202.148.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:57:fa:ef:80:a0:c8:56:dd:2d:cc:93:2d:5b:ab:a8:8e:84:ab:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:45 2023 GMT Not After : Jul 29 00:03:45 2024 GMT Subject: CN=4563215D73835DABAAA5B097540B1496E7659C43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c6:81:e0:e2:91:3a:9e:48:41:f3:3e:6d:65: 74:9d:18:80:19:c6:0d:56:eb:85:ae:1c:60:d8:fb: 53:74:20:f4:13:44:93:83:74:07:cc:b7:ee:81:57: 64:6e:ec:28:21:49:a6:7d:25:4e:65:1e:e6:91:81: 3d:4c:48:55:b2:64:c2:12:5f:d7:c1:25:4a:56:5d: 94:76:ad:ca:84:cd:54:e8:b0:dc:3a:a6:c8:72:d6: ce:0a:1f:c5:38:c7:cb:1d:01:0c:50:3c:fa:bd:ac: 15:25:61:6a:70:b3:35:79:20:15:86:9e:65:57:26: 13:04:2c:1b:f2:b9:72:c8:67:3e:3a:2e:29:18:79: 3a:e4:ac:6f:c5:c2:b1:e6:84:72:c0:d6:0a:66:96: 2a:f4:da:77:b1:4f:1b:25:62:99:02:59:29:8f:02: 73:1e:04:22:38:5e:f6:97:96:63:df:5f:bc:3d:6a: 53:e5:42:0f:d4:2b:e2:53:29:05:f7:90:97:18:38: 74:2c:00:97:75:56:26:32:e3:ca:e1:41:05:ee:be: 43:be:70:79:25:0b:90:7e:f6:1d:2a:13:5c:c0:25: 68:ab:19:0f:f5:cb:68:d3:f3:6a:bf:4a:e4:df:b1: 7c:d2:d0:76:93:50:21:70:a6:80:dd:cf:de:5c:87: e8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:63:21:5D:73:83:5D:AB:AA:A5:B0:97:54:0B:14:96:E7:65:9C:43 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.17.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:eb:8c:b8:73:40:2c:f1:01:2e:a9:8c:7c:23:8b:2c:d4:6e: fb:30:db:01:13:18:0b:2e:41:2a:8c:62:f2:4d:90:52:f2:bd: 5b:b9:c2:ac:26:c1:fb:16:d3:ef:6e:c8:01:28:8e:cd:4c:0c: 0d:d4:02:b4:a1:58:22:fb:30:23:0d:e6:88:38:98:09:24:54: ad:fe:49:1d:d0:14:1b:3e:24:cd:d3:55:fe:5a:b3:80:ee:f2: b9:f4:31:63:15:ab:83:25:95:ae:ea:35:34:f9:36:ca:e8:05: 1c:ed:7c:56:d1:ea:cb:82:f5:79:02:ef:3b:2d:f8:35:83:5b: 20:b7:b8:da:2e:e1:05:1c:e1:15:f0:88:07:dd:32:bc:23:ef: b2:dd:3f:29:df:1a:26:5c:5b:47:3f:2f:c4:be:55:f0:02:4e: ed:81:94:57:20:56:7c:14:b1:c5:69:80:8c:06:0e:5d:66:bc: c7:95:0f:26:53:78:40:2e:89:04:c7:0a:a7:38:fc:28:9d:4c: 0b:65:7d:28:ab:ca:72:19:33:9f:c7:ae:64:84:f4:6c:0e:01: 53:a8:04:07:60:c6:f2:4f:bd:10:7e:11:77:92:3c:00:4f:ce: cb:7e:61:19:08:cf:a6:d7:54:23:ea:89:b8:9d:bc:e2:e2:d3: 55:54:8c:47 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFlf674CgyFbdLcyTLVurqI6Eq+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDVaFw0yNDA3MjkwMDAzNDVaMDMxMTAvBgNV BAMTKDQ1NjMyMTVENzM4MzVEQUJBQUE1QjA5NzU0MEIxNDk2RTc2NTlDNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuxoHg4pE6nkhB8z5tZXSdGIAZ xg1W64WuHGDY+1N0IPQTRJODdAfMt+6BV2Ru7CghSaZ9JU5lHuaRgT1MSFWyZMIS X9fBJUpWXZR2rcqEzVTosNw6pshy1s4KH8U4x8sdAQxQPPq9rBUlYWpwszV5IBWG nmVXJhMELBvyuXLIZz46LikYeTrkrG/FwrHmhHLA1gpmlir02nexTxslYpkCWSmP AnMeBCI4XvaXlmPfX7w9alPlQg/UK+JTKQX3kJcYOHQsAJd1ViYy48rhQQXuvkO+ cHklC5B+9h0qE1zAJWirGQ/1y2jT82q/SuTfsXzS0HaTUCFwpoDdz95ch+hbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQURWMhXXODXauqpbCXVAsUludlnEMwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBEwDQYJKoZIhvcN AQELBQADggEBAB3rjLhzQCzxAS6pjHwjiyzUbvsw2wETGAsuQSqMYvJNkFLyvVu5 wqwmwfsW0+9uyAEojs1MDA3UArShWCL7MCMN5og4mAkkVK3+SR3QFBs+JM3TVf5a s4Du8rn0MWMVq4Mlla7qNTT5NsroBRztfFbR6suC9XkC7zst+DWDWyC3uNou4QUc 4RXwiAfdMrwj77LdPynfGiZcW0c/L8S+VfACTu2BlFcgVnwUscVpgIwGDl1mvMeV DyZTeEAuiQTHCqc4/CidTAtlfSirynIZM5/HrmSE9GwOAVOoBAdgxvJPvRB+EXeS PABPzst+YRkIz6bXVCPqibidvOLi01VUjEc= -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:26 2024 by rpki-client on console-ams.rpki-client.org