$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e322e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e322e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: LhGWd4lBOGg2ro5/Y+8eSNIReE8VOzVHZ3tL3T/o6os= Subject key identifier: 69:E7:B2:36:88:C4:7A:C6:EF:20:32:B2:63:E8:9B:D7:FD:B0:C6:97 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 318C6BB65502D16458BBB60243D5AC238AE51D99 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e322e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:51 +0000 ROA not before: Sun 30 Jul 2023 23:58:51 +0000 ROA not after: Mon 29 Jul 2024 00:03:51 +0000 asID: 9794 IP address blocks: 202.148.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:8c:6b:b6:55:02:d1:64:58:bb:b6:02:43:d5:ac:23:8a:e5:1d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:51 2023 GMT Not After : Jul 29 00:03:51 2024 GMT Subject: CN=69E7B23688C47AC6EF2032B263E89BD7FDB0C697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f6:4f:57:d5:ec:7f:5e:1d:8f:85:3c:b4:f6: dd:8f:c3:0a:71:13:5f:cb:fa:9a:c3:1d:4f:4a:ae: 98:37:dc:8d:66:ec:72:3a:65:ce:a4:ec:da:4a:4b: 70:39:38:52:71:81:f5:e2:bb:1f:e8:f8:43:be:44: 3a:ca:0f:d9:0a:a4:9c:7b:d8:2e:68:3b:bb:ac:57: a8:69:1f:f9:db:aa:26:5b:e6:f1:de:70:52:06:0b: 36:70:71:60:b8:4e:4a:bd:8b:9a:73:52:92:67:33: bf:9d:57:25:2d:84:ac:66:7e:51:fb:38:90:37:8d: 97:ab:66:4c:d1:86:97:f8:ee:90:2a:87:84:f8:2f: ae:a0:14:13:01:bb:67:a7:5d:3d:9f:bc:21:b5:22: ce:8e:17:b4:98:df:ae:42:a1:4c:80:5c:b8:42:dc: ba:0b:33:cb:e2:89:6d:d3:18:1a:a6:50:78:93:1a: 8b:7d:f8:c5:14:88:ee:ef:15:be:cf:df:8d:70:4d: d2:b8:76:6e:c4:ed:85:99:f4:89:50:71:a3:66:f9: 3e:25:8f:b2:d7:1a:c3:5c:df:63:56:ac:df:1b:aa: da:29:52:97:79:73:4e:0d:1b:c0:3e:5f:a6:ce:eb: 24:ff:eb:20:ca:32:d6:07:52:aa:c9:c6:9a:85:74: d7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E7:B2:36:88:C4:7A:C6:EF:20:32:B2:63:E8:9B:D7:FD:B0:C6:97 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e322e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.2.0/24 Signature Algorithm: sha256WithRSAEncryption 60:fe:c7:d9:97:a7:ad:66:3c:f8:fd:1b:99:93:50:e6:49:fb: 2f:e2:a4:58:eb:be:e7:8a:30:7f:d4:87:e3:08:ea:81:54:22: 26:df:b6:cd:61:d3:4c:f4:1e:a4:51:3b:c4:9a:1f:fb:19:1c: a7:3c:2e:89:ae:1d:e6:a6:1a:c5:99:6f:1d:b0:67:a3:ef:71: 3f:6c:9e:8c:48:f8:41:ca:bf:07:9a:b9:a2:a3:b4:d7:44:a3: 4c:03:df:70:58:5b:25:32:6a:ef:be:7b:0c:a9:58:34:ff:cb: f8:49:b9:15:f9:14:a8:26:18:cb:9c:16:0e:85:61:71:ed:29: ad:50:8c:85:03:3e:7c:45:fa:a1:53:ca:33:90:91:63:0b:e4: 4b:f3:6f:a6:fa:2e:34:dc:ee:57:04:a7:69:4a:07:34:10:61: 7c:63:5d:7e:be:55:08:02:3f:04:5f:e3:e7:50:4e:80:8f:89: 7d:0b:49:4f:4a:bf:c7:08:77:b0:88:aa:99:05:89:e8:af:ea: 74:43:ea:2a:d1:88:6f:5c:f9:10:86:76:02:9f:54:dc:02:12: 18:3a:3b:c5:0d:6e:10:45:b6:d0:9a:81:d0:ca:2e:98:02:b2: 92:95:9e:ba:f6:f8:41:93:77:f1:31:95:e8:c6:3c:61:48:a0: 67:15:42:27 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUMYxrtlUC0WRYu7YCQ9WsI4rlHZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTFaFw0yNDA3MjkwMDAzNTFaMDMxMTAvBgNV BAMTKDY5RTdCMjM2ODhDNDdBQzZFRjIwMzJCMjYzRTg5QkQ3RkRCMEM2OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm9k9X1ex/Xh2PhTy09t2Pwwpx E1/L+prDHU9Krpg33I1m7HI6Zc6k7NpKS3A5OFJxgfXiux/o+EO+RDrKD9kKpJx7 2C5oO7usV6hpH/nbqiZb5vHecFIGCzZwcWC4Tkq9i5pzUpJnM7+dVyUthKxmflH7 OJA3jZerZkzRhpf47pAqh4T4L66gFBMBu2enXT2fvCG1Is6OF7SY365CoUyAXLhC 3LoLM8viiW3TGBqmUHiTGot9+MUUiO7vFb7P341wTdK4dm7E7YWZ9IlQcaNm+T4l j7LXGsNc32NWrN8bqtopUpd5c04NG8A+X6bO6yT/6yDKMtYHUqrJxpqFdNexAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUaeeyNojEesbvIDKyY+ib1/2wxpcwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTMyMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAIwDQYJKoZIhvcNAQEL BQADggEBAGD+x9mXp61mPPj9G5mTUOZJ+y/ipFjrvueKMH/Uh+MI6oFUIibfts1h 00z0HqRRO8SaH/sZHKc8LomuHeamGsWZbx2wZ6PvcT9snoxI+EHKvweauaKjtNdE o0wD33BYWyUyau++ewypWDT/y/hJuRX5FKgmGMucFg6FYXHtKa1QjIUDPnxF+qFT yjOQkWML5Evzb6b6LjTc7lcEp2lKBzQQYXxjXX6+VQgCPwRf4+dQToCPiX0LSU9K v8cId7CIqpkFieiv6nRD6irRiG9c+RCGdgKfVNwCEhg6O8UNbhBFttCagdDKLpgC spKVnrr2+EGTd/ExlejGPGFIoGcVQic= -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:26 2024 by rpki-client on console-ams.rpki-client.org