$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31382e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e31382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: LuVPbCT16FTzixW22hgy7QAR7Eazh9C9RoGEo6fIKGY= Subject key identifier: A8:E0:AB:AC:A7:10:C3:79:63:6F:00:B8:3F:21:92:B4:10:0F:8A:01 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 25909D4B46CD7A525AB47A874E768CA72AE7FD54 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31382e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:57 +0000 ROA not before: Mon 01 Jul 2024 00:57:57 +0000 ROA not after: Mon 30 Jun 2025 01:02:57 +0000 asID: 9794 IP address blocks: 202.148.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 10:09:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:90:9d:4b:46:cd:7a:52:5a:b4:7a:87:4e:76:8c:a7:2a:e7:fd:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:57 2024 GMT Not After : Jun 30 01:02:57 2025 GMT Subject: CN=A8E0ABACA710C379636F00B83F2192B4100F8A01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:64:50:ce:15:b2:0a:d7:f7:3e:e6:55:6a:43: 2a:3b:76:06:48:27:2c:fe:58:15:0b:ea:2e:21:35: f9:bd:9e:90:50:f3:a2:8d:3a:73:fb:5f:90:f5:81: 32:83:91:ce:70:be:de:b1:a0:3b:cf:88:5b:a0:54: 45:a8:d6:08:3d:28:09:c8:1a:3f:00:99:c0:f6:da: 77:7c:b4:b9:29:24:a1:7e:10:60:d0:f1:ad:1d:3b: de:26:d7:67:5a:67:2b:16:a9:f6:cb:23:c1:a5:19: 67:ea:4a:f7:e7:72:c8:e1:ad:1c:93:6f:e2:67:44: cb:66:d4:1c:2c:e2:9f:36:31:3a:cf:7c:12:e4:ab: ea:1e:30:7e:b5:d4:07:25:66:71:0b:76:b4:fb:0b: 0d:40:4d:da:13:f1:cb:58:9c:72:01:e6:aa:6d:33: 2f:b1:59:f5:74:34:27:9f:b4:4b:69:e0:ce:18:b1: c8:2d:13:35:a1:b4:68:6e:01:7c:33:72:23:5b:a8: c7:0a:ca:af:31:6d:34:c4:3d:76:39:2d:91:58:2c: 0f:20:9f:e0:fe:ae:26:38:96:80:44:c2:00:5d:98: 54:8b:5d:ad:f9:17:0a:da:7d:72:7b:ee:cd:c5:97: 29:b6:61:4b:c9:9d:c5:d5:d0:80:eb:60:b3:7b:8c: 2a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E0:AB:AC:A7:10:C3:79:63:6F:00:B8:3F:21:92:B4:10:0F:8A:01 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.18.0/24 Signature Algorithm: sha256WithRSAEncryption 29:b1:e7:63:b0:73:cf:38:0a:43:03:5f:2e:c7:4e:f4:0d:44: 44:49:90:d9:2c:c1:13:cf:2f:93:0f:cb:4f:cb:df:2a:86:20: e7:f7:d5:26:80:25:0a:99:7e:b2:d5:85:81:6a:80:2d:f4:f2: e9:fd:97:9d:93:40:a1:0b:df:a6:8c:47:d1:3f:f7:81:0f:da: 37:d1:86:1a:3f:0b:fa:c7:7f:b8:ba:a1:f0:e2:04:ae:ad:0f: 9e:c1:66:ad:29:01:67:1c:75:4b:da:28:47:6f:3d:21:1b:0d: 90:3e:ab:e1:d1:84:2d:38:3a:cb:42:c5:a9:83:6a:50:7d:b2: bd:58:90:76:d8:8f:1a:7b:80:b3:dd:99:16:9f:59:58:52:1b: 42:9d:63:24:7f:53:1e:62:ae:1b:dd:5f:1c:36:34:df:d8:80: 7a:9f:61:b6:50:5f:e7:49:bc:f3:14:ea:bd:49:9a:84:c3:cf: 08:6b:8a:59:4f:46:d8:df:aa:50:05:9b:5e:57:41:4f:a7:9d: 49:71:b6:bd:47:2d:45:57:3c:b1:e4:a3:33:5b:71:be:90:6d: 4d:8e:4d:03:c3:fd:8f:88:aa:d3:d5:28:ce:c2:13:4b:d8:e9: c0:e9:00:f2:08:b1:9c:0d:2d:5e:a0:59:66:23:9c:ff:f7:4f: 87:41:b4:ab -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJZCdS0bNelJatHqHTnaMpyrn/VQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTdaFw0yNTA2MzAwMTAyNTdaMDMxMTAvBgNV BAMTKEE4RTBBQkFDQTcxMEMzNzk2MzZGMDBCODNGMjE5MkI0MTAwRjhBMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+ZFDOFbIK1/c+5lVqQyo7dgZI Jyz+WBUL6i4hNfm9npBQ86KNOnP7X5D1gTKDkc5wvt6xoDvPiFugVEWo1gg9KAnI Gj8AmcD22nd8tLkpJKF+EGDQ8a0dO94m12daZysWqfbLI8GlGWfqSvfncsjhrRyT b+JnRMtm1Bws4p82MTrPfBLkq+oeMH611AclZnELdrT7Cw1ATdoT8ctYnHIB5qpt My+xWfV0NCeftEtp4M4YscgtEzWhtGhuAXwzciNbqMcKyq8xbTTEPXY5LZFYLA8g n+D+riY4loBEwgBdmFSLXa35FwrafXJ77s3Flym2YUvJncXV0IDrYLN7jCq7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUqOCrrKcQw3ljbwC4PyGStBAPigEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBIwDQYJKoZIhvcN AQELBQADggEBACmx52Owc884CkMDXy7HTvQNRERJkNkswRPPL5MPy0/L3yqGIOf3 1SaAJQqZfrLVhYFqgC308un9l52TQKEL36aMR9E/94EP2jfRhho/C/rHf7i6ofDi BK6tD57BZq0pAWccdUvaKEdvPSEbDZA+q+HRhC04OstCxamDalB9sr1YkHbYjxp7 gLPdmRafWVhSG0KdYyR/Ux5irhvdXxw2NN/YgHqfYbZQX+dJvPMU6r1JmoTDzwhr illPRtjfqlAFm15XQU+nnUlxtr1HLUVXPLHkozNbcb6QbU2OTQPD/Y+IqtPVKM7C E0vY6cDpAPIIsZwNLV6gWWYjnP/3T4dBtKs= -----END CERTIFICATE-----Generated at Tue Mar 11 05:00:55 2025 by rpki-client