$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32302e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 9rsdJYN7dIh+7N+x9x8x6gIiEeYRBWzkle2MVl3OuA8= Subject key identifier: D5:98:3A:07:A9:3D:30:C0:F2:80:EA:5D:1E:D8:3B:95:16:CA:A9:A2 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 6F652EDA2A1F8C2A45ED54617BCF5E1920E68E2F Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:59 +0000 ROA not before: Mon 01 Jul 2024 00:57:59 +0000 ROA not after: Mon 30 Jun 2025 01:02:59 +0000 asID: 9794 IP address blocks: 202.148.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:65:2e:da:2a:1f:8c:2a:45:ed:54:61:7b:cf:5e:19:20:e6:8e:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:59 2024 GMT Not After : Jun 30 01:02:59 2025 GMT Subject: CN=D5983A07A93D30C0F280EA5D1ED83B9516CAA9A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:dc:9f:2e:4a:8f:38:e3:dc:cc:31:fa:d7:7b: 6f:33:49:5f:29:37:2a:40:31:bd:7c:8e:e3:79:3d: 05:83:9f:20:01:d5:d4:b5:82:04:f1:8a:ea:c0:1d: 8f:1a:94:f6:2a:2b:9f:53:a7:a9:2b:7f:e6:5c:9e: 3c:a9:2e:ad:e6:ec:6e:70:59:a9:ad:a1:ba:ef:0d: 5a:51:97:ec:de:2b:ea:7d:04:b4:fe:74:c3:3f:77: 3b:c1:db:67:c2:3e:36:2c:da:8e:ac:a3:aa:7e:23: de:3a:8f:3b:e2:bd:d7:9d:20:0f:fd:6f:b5:69:38: 79:88:e1:f9:c3:69:de:9a:e6:38:0e:e1:5b:78:82: 1d:c7:43:7e:f5:dc:98:ce:db:13:1c:30:0e:52:fb: 9f:77:61:c6:ac:5d:69:0c:c4:90:28:bf:85:4a:84: 94:bc:fd:36:66:33:ac:e9:15:ee:a2:68:71:73:53: 59:73:93:cc:e4:5e:ee:46:5e:02:48:ec:9a:79:5b: e8:3e:f5:61:7b:2e:5a:d9:98:7c:dc:3e:28:68:22: 5b:74:5a:8b:44:4a:f3:57:24:87:a5:f9:38:83:ad: ea:34:34:a0:ae:66:a1:1d:da:d0:1a:78:89:f9:9f: 77:7c:08:2a:32:8d:12:17:b9:52:f9:be:24:27:cc: 25:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:98:3A:07:A9:3D:30:C0:F2:80:EA:5D:1E:D8:3B:95:16:CA:A9:A2 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.20.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:da:bc:69:1f:68:7c:fc:28:43:ea:2c:18:64:bd:60:df:fc: 06:fe:5a:07:4e:14:b0:63:e5:77:52:20:3c:04:55:ff:f9:c2: c0:83:e2:27:34:c3:1a:b6:1a:4d:9f:50:5d:ec:b8:79:cd:60: 29:c9:98:b1:be:52:2a:3b:e4:66:10:87:c0:58:9a:bc:c2:fa: d3:ff:9b:a1:6b:8f:11:f9:f1:5c:ba:f3:ae:6d:a3:90:81:2a: 11:48:3a:6d:e7:f6:5b:bd:2a:09:5a:a5:96:e5:d7:f2:72:82: 93:12:5c:28:e0:09:8b:cc:1a:9c:a4:b9:8f:8d:a0:ea:65:2a: 86:a8:b9:ed:17:0d:4e:16:f5:80:1f:69:4f:ba:b0:7d:c9:ab: 99:69:f8:46:27:24:0e:83:6b:58:72:cc:3c:72:fe:0e:98:f7: dd:eb:45:0f:95:4a:66:5d:40:d4:c9:ec:0a:db:3f:61:21:40: 21:ce:b5:9b:88:e3:e1:b7:ec:b3:c7:cc:b2:d9:b3:95:94:72: be:ab:63:c4:3a:9d:06:c0:68:4e:34:95:06:77:37:4c:94:e5: ef:86:81:39:95:ca:19:c1:2a:6a:c9:f3:2b:f5:e7:77:2c:45: 23:7a:26:df:d6:c0:de:df:74:3d:7a:a4:95:28:19:47:00:e0: a7:a0:d2:91 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUb2Uu2iofjCpF7VRhe89eGSDmji8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTlaFw0yNTA2MzAwMTAyNTlaMDMxMTAvBgNV BAMTKEQ1OTgzQTA3QTkzRDMwQzBGMjgwRUE1RDFFRDgzQjk1MTZDQUE5QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb3J8uSo8449zMMfrXe28zSV8p NypAMb18juN5PQWDnyAB1dS1ggTxiurAHY8alPYqK59Tp6krf+ZcnjypLq3m7G5w WamtobrvDVpRl+zeK+p9BLT+dMM/dzvB22fCPjYs2o6so6p+I946jzvivdedIA/9 b7VpOHmI4fnDad6a5jgO4Vt4gh3HQ3713JjO2xMcMA5S+593YcasXWkMxJAov4VK hJS8/TZmM6zpFe6iaHFzU1lzk8zkXu5GXgJI7Jp5W+g+9WF7LlrZmHzcPihoIlt0 WotESvNXJIel+TiDreo0NKCuZqEd2tAaeIn5n3d8CCoyjRIXuVL5viQnzCXdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1Zg6B6k9MMDygOpdHtg7lRbKqaIwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBQwDQYJKoZIhvcN AQELBQADggEBAE3avGkfaHz8KEPqLBhkvWDf/Ab+WgdOFLBj5XdSIDwEVf/5wsCD 4ic0wxq2Gk2fUF3suHnNYCnJmLG+Uio75GYQh8BYmrzC+tP/m6FrjxH58Vy6865t o5CBKhFIOm3n9lu9KglapZbl1/JygpMSXCjgCYvMGpykuY+NoOplKoaoue0XDU4W 9YAfaU+6sH3Jq5lp+EYnJA6Da1hyzDxy/g6Y993rRQ+VSmZdQNTJ7ArbP2EhQCHO tZuI4+G37LPHzLLZs5WUcr6rY8Q6nQbAaE40lQZ3N0yU5e+GgTmVyhnBKmrJ8yv1 53csRSN6Jt/WwN7fdD16pJUoGUcA4Keg0pE= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org