$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32302e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: +Yc7nJ+J1zEO0CLWHX6Uol12ONI7FQjNto8obFqxdNE= Subject key identifier: F5:DF:71:34:79:1B:01:E7:1E:4D:74:2C:79:77:FC:C2:D4:44:E4:D1 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 0938D8C8CDF0FDDA5CD6A9CBBCCC9F7D6E323946 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:45 +0000 ROA not before: Sun 30 Jul 2023 23:58:45 +0000 ROA not after: Mon 29 Jul 2024 00:03:45 +0000 asID: 9794 IP address blocks: 202.148.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:38:d8:c8:cd:f0:fd:da:5c:d6:a9:cb:bc:cc:9f:7d:6e:32:39:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:45 2023 GMT Not After : Jul 29 00:03:45 2024 GMT Subject: CN=F5DF7134791B01E71E4D742C7977FCC2D444E4D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d8:ab:0a:c5:37:06:87:78:71:4e:0f:ae:19: 18:1e:c7:d7:4e:8c:a4:0e:ee:4e:e7:34:71:3a:29: 7c:ea:6d:13:27:d3:58:b2:98:10:5b:51:03:6b:25: 22:f2:3e:16:c2:1c:e7:e7:c1:06:c4:d2:8c:af:20: 2a:34:3a:ac:3d:b3:53:c9:9a:6b:4d:ff:bb:88:89: 25:4e:de:bf:2f:25:d3:81:55:a2:d8:df:99:94:7d: de:3c:ae:ab:b2:e2:23:4b:1a:36:30:6e:63:44:bc: ef:36:93:3e:cb:62:89:79:d7:3d:46:c7:61:75:d9: b7:fc:e8:48:30:b8:0e:c1:23:b5:bb:07:83:d6:8b: fd:02:5d:75:8b:b9:f3:9d:a1:18:a5:0c:50:e4:70: 27:a3:4c:b1:0b:d1:0e:39:22:09:7c:13:f9:63:d3: 5d:9f:17:14:20:11:f0:5c:f1:98:ea:87:8a:27:e2: 94:4f:81:e9:17:c5:5d:12:a3:f8:38:14:2f:b4:f1: b9:76:d4:84:0a:5e:a2:3b:35:6c:76:01:6c:45:dc: 99:90:60:4d:2d:df:33:91:65:d0:e6:95:21:99:1d: 64:7d:eb:c8:52:f7:f0:10:2a:9c:3c:dc:1f:78:03: e3:11:ab:42:03:97:74:79:6a:5b:dd:4b:a5:62:9a: 0c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:DF:71:34:79:1B:01:E7:1E:4D:74:2C:79:77:FC:C2:D4:44:E4:D1 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.20.0/24 Signature Algorithm: sha256WithRSAEncryption 19:ce:2c:0e:04:95:69:39:eb:87:9c:76:70:71:28:58:fc:b4: 3c:71:a9:6c:3a:ce:d2:8e:85:74:3b:c0:cd:5f:e9:82:4a:c4: 8f:e8:99:2b:50:e0:fd:2e:3f:d6:ab:58:cb:79:12:20:4f:a6: c0:72:01:c6:43:2a:5b:49:27:e3:cd:4e:f9:21:f7:2d:9b:0e: ad:6d:33:f7:fd:13:70:40:df:f8:92:70:c1:12:e3:c5:f0:a8: 88:a7:23:20:62:c2:7b:2c:22:c0:59:30:4e:a9:fa:d0:3e:04: 6a:79:1d:4d:27:f3:09:6d:ce:32:8d:1c:f8:d5:ed:74:6d:b9: e1:12:1a:5e:36:70:47:81:7c:2c:4f:9c:74:05:07:a9:f4:fc: f2:e5:72:a6:3f:7c:ca:6b:51:e7:b6:1d:c5:53:56:ca:d1:7e: 1c:39:cc:fa:b2:71:aa:e3:98:b8:fa:c7:27:cf:60:ed:96:2a: d3:00:60:51:e4:2b:11:12:f4:35:50:28:ee:df:95:01:3c:ca: b1:f9:b4:25:7d:34:e9:d9:ee:a0:a4:f4:e7:c7:57:e9:c7:4d: 40:0d:90:84:0b:0b:14:55:6e:01:90:3a:cd:47:93:f6:6f:bf: 50:a7:74:db:f8:10:e7:f7:a6:71:fe:07:b1:09:07:b3:71:d0: e4:c5:7b:78 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCTjYyM3w/dpc1qnLvMyffW4yOUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDVaFw0yNDA3MjkwMDAzNDVaMDMxMTAvBgNV BAMTKEY1REY3MTM0NzkxQjAxRTcxRTRENzQyQzc5NzdGQ0MyRDQ0NEU0RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe2KsKxTcGh3hxTg+uGRgex9dO jKQO7k7nNHE6KXzqbRMn01iymBBbUQNrJSLyPhbCHOfnwQbE0oyvICo0Oqw9s1PJ mmtN/7uIiSVO3r8vJdOBVaLY35mUfd48rquy4iNLGjYwbmNEvO82kz7LYol51z1G x2F12bf86EgwuA7BI7W7B4PWi/0CXXWLufOdoRilDFDkcCejTLEL0Q45Igl8E/lj 012fFxQgEfBc8Zjqh4on4pRPgekXxV0So/g4FC+08bl21IQKXqI7NWx2AWxF3JmQ YE0t3zORZdDmlSGZHWR968hS9/AQKpw83B94A+MRq0IDl3R5alvdS6VimgwTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU9d9xNHkbAeceTXQseXf8wtRE5NEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBQwDQYJKoZIhvcN AQELBQADggEBABnOLA4ElWk564ecdnBxKFj8tDxxqWw6ztKOhXQ7wM1f6YJKxI/o mStQ4P0uP9arWMt5EiBPpsByAcZDKltJJ+PNTvkh9y2bDq1tM/f9E3BA3/iScMES 48XwqIinIyBiwnssIsBZME6p+tA+BGp5HU0n8wltzjKNHPjV7XRtueESGl42cEeB fCxPnHQFB6n0/PLlcqY/fMprUee2HcVTVsrRfhw5zPqycarjmLj6xyfPYO2WKtMA YFHkKxES9DVQKO7flQE8yrH5tCV9NOnZ7qCk9OfHV+nHTUANkIQLCxRVbgGQOs1H k/Zvv1CndNv4EOf3pnH+B7EJB7Nx0OTFe3g= -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:28 2024 by rpki-client on console-fra.rpki-client.org