$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e31372e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: tezQRMPQIhXNPsQs7q8Z5Lbow275EwCYOnOn6JJgnlw= Subject key identifier: 38:9A:3A:EA:1E:7B:C3:26:65:92:75:C3:BA:B4:7F:93:62:04:FD:12 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 5F1F726B35348C0110240AFA752BC213F61D6E71 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:57 +0000 ROA not before: Mon 01 Jul 2024 00:57:57 +0000 ROA not after: Mon 30 Jun 2025 01:02:57 +0000 asID: 9794 IP address blocks: 202.148.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:1f:72:6b:35:34:8c:01:10:24:0a:fa:75:2b:c2:13:f6:1d:6e:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:57 2024 GMT Not After : Jun 30 01:02:57 2025 GMT Subject: CN=389A3AEA1E7BC326659275C3BAB47F936204FD12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:97:2f:51:cc:98:37:74:47:6d:3f:c5:b5:cc: e5:51:23:4e:49:6f:26:56:fd:4c:ea:ee:07:c7:b0: 60:51:c8:31:e4:fc:b8:25:df:13:75:5b:a9:83:ff: 3e:a3:48:bf:43:dd:dc:f8:0e:5b:6f:48:cf:65:97: 62:c1:22:16:0a:ed:55:d0:94:5b:a7:d9:c5:ab:95: 0b:0b:d1:37:90:eb:fe:db:90:58:56:51:d0:49:d3: ae:36:e3:20:cf:c9:8e:88:cf:b0:81:16:66:64:3b: 10:7e:4a:84:c1:48:81:a9:2b:ab:48:6b:a5:0d:90: 78:97:ea:c3:83:c7:f8:7f:75:8f:fd:22:47:90:7c: a6:bf:16:4a:23:78:2d:4d:85:17:ef:4d:a5:49:dd: db:07:b5:40:ba:8b:85:9e:c4:9c:8c:3a:bb:7e:fd: 13:90:f9:33:ed:f6:91:a9:fe:60:fc:de:ed:8f:a4: db:b5:5f:0c:83:5e:d7:ac:64:66:c8:b9:24:95:4f: f0:8d:5e:5d:44:7e:6d:62:97:65:5d:82:bc:5b:af: f2:8a:b1:7c:c6:bf:9d:d3:91:cf:0c:a2:10:e3:49: 9d:6c:39:5f:b9:c8:29:5b:76:a6:72:fa:6e:42:cc: 9d:c7:5d:d8:e6:41:68:08:42:98:9b:f7:52:c2:e4: b2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:9A:3A:EA:1E:7B:C3:26:65:92:75:C3:BA:B4:7F:93:62:04:FD:12 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.17.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:7c:b7:72:a3:f9:11:43:ad:be:f0:95:bf:82:b1:c9:18:c3: 88:b7:1d:05:d6:30:78:97:38:39:8e:3b:d5:c9:ab:6a:c8:4e: de:fb:68:27:db:4a:69:9c:51:2e:50:c6:cf:80:5a:9a:31:97: e9:f7:73:83:b6:fa:bf:f2:f3:84:44:64:1b:8d:b7:c5:b7:6c: 34:c5:e0:40:a3:4d:1b:ee:88:b8:c8:d9:c6:4a:22:c3:4a:45: 98:38:7d:5f:f6:7f:10:28:21:0e:9e:ea:1e:41:49:ec:15:10: e1:b4:90:c7:e3:40:83:76:fb:cd:ad:d3:6a:1b:48:23:4b:11: a5:94:9b:6f:d4:d6:60:80:da:c6:cc:48:3d:78:ff:7f:26:38: 9c:ec:ac:3a:bd:a8:f8:20:8c:3f:40:4b:96:49:05:7e:b3:26: 73:a6:a7:7d:9e:bf:f1:c7:95:30:b1:7b:ed:0e:be:a2:a1:40: b7:66:35:fd:d2:0b:f8:68:b8:3b:c8:c7:85:fe:4d:d6:89:35: 1c:ee:0c:a2:29:d8:0f:ef:48:fa:82:84:80:d9:a6:ec:8e:53: b2:da:fc:5a:6c:56:6e:c5:82:53:f9:73:c9:f5:10:14:5f:c5: d0:64:48:7d:0c:bd:ce:1e:61:fb:8a:63:d0:8e:ba:24:89:fe: 41:82:d7:53 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXx9yazU0jAEQJAr6dSvCE/YdbnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTdaFw0yNTA2MzAwMTAyNTdaMDMxMTAvBgNV BAMTKDM4OUEzQUVBMUU3QkMzMjY2NTkyNzVDM0JBQjQ3RjkzNjIwNEZEMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyly9RzJg3dEdtP8W1zOVRI05J byZW/Uzq7gfHsGBRyDHk/Lgl3xN1W6mD/z6jSL9D3dz4DltvSM9ll2LBIhYK7VXQ lFun2cWrlQsL0TeQ6/7bkFhWUdBJ06424yDPyY6Iz7CBFmZkOxB+SoTBSIGpK6tI a6UNkHiX6sODx/h/dY/9IkeQfKa/FkojeC1NhRfvTaVJ3dsHtUC6i4WexJyMOrt+ /ROQ+TPt9pGp/mD83u2PpNu1XwyDXtesZGbIuSSVT/CNXl1Efm1il2Vdgrxbr/KK sXzGv53Tkc8MohDjSZ1sOV+5yClbdqZy+m5CzJ3HXdjmQWgIQpib91LC5LJfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUOJo66h57wyZlknXDurR/k2IE/RIwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBEwDQYJKoZIhvcN AQELBQADggEBAG18t3Kj+RFDrb7wlb+CsckYw4i3HQXWMHiXODmOO9XJq2rITt77 aCfbSmmcUS5Qxs+AWpoxl+n3c4O2+r/y84REZBuNt8W3bDTF4ECjTRvuiLjI2cZK IsNKRZg4fV/2fxAoIQ6e6h5BSewVEOG0kMfjQIN2+82t02obSCNLEaWUm2/U1mCA 2sbMSD14/38mOJzsrDq9qPggjD9AS5ZJBX6zJnOmp32ev/HHlTCxe+0OvqKhQLdm Nf3SC/houDvIx4X+TdaJNRzuDKIp2A/vSPqChIDZpuyOU7La/FpsVm7FglP5c8n1 EBRfxdBkSH0Mvc4eYfuKY9COuiSJ/kGC11M= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org