$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32312e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32312e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: gocSzT3Y0/NmWx9HtBHHHybIqyq/LoUXssyZ+P9YeBs= Subject key identifier: AC:5C:97:DB:2A:7C:43:FA:8F:49:12:D0:61:E2:4A:B6:EF:8B:8A:0D Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 7BBEF3958406A4AC8B9946E5BD2CF02347FBA8B4 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32312e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:56 +0000 ROA not before: Mon 01 Jul 2024 00:57:56 +0000 ROA not after: Mon 30 Jun 2025 01:02:56 +0000 asID: 9794 IP address blocks: 202.148.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:be:f3:95:84:06:a4:ac:8b:99:46:e5:bd:2c:f0:23:47:fb:a8:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:56 2024 GMT Not After : Jun 30 01:02:56 2025 GMT Subject: CN=AC5C97DB2A7C43FA8F4912D061E24AB6EF8B8A0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c5:08:d6:7d:8a:fc:25:22:f1:9e:f5:61:a2: 83:c8:71:09:88:6f:45:cb:2c:9e:39:3c:b3:ca:19: 18:ae:16:3f:1d:72:64:f3:f8:b9:5a:ca:d3:86:2e: 44:b3:59:d6:0c:23:67:3f:38:1e:b0:e8:63:fc:f2: ed:2a:f9:cf:e8:71:c6:6b:be:21:45:16:a9:8b:54: df:96:0e:51:6a:49:90:aa:a8:96:ad:c5:85:0a:37: 9a:8c:ea:72:4a:4a:10:20:da:e4:4e:e8:25:e3:7a: 4f:3c:50:5b:bf:f4:2b:4d:85:13:e7:f3:e3:94:5a: 94:a1:81:7e:c8:99:fb:c3:a6:7b:71:c1:80:f7:8c: 50:5a:da:00:e3:d5:fb:76:4c:a3:2a:bb:74:7f:3b: 8e:fe:dd:36:9e:30:ed:7d:a6:59:f5:e8:f1:26:e4: b2:5a:17:23:3d:f1:c8:c6:6e:8e:6a:7d:1e:29:57: 6c:32:0e:be:d8:47:cb:b7:74:68:a2:10:76:40:ae: a9:a5:94:52:22:fb:9d:d2:b9:a9:34:11:29:cd:1b: 08:e2:f5:fb:01:5f:28:51:3e:af:d6:66:fe:86:a2: a3:83:e8:6f:58:fc:04:02:f1:e3:8e:1e:f0:75:2f: 65:2b:cd:ce:5e:78:14:39:94:6c:b3:3f:bc:fe:01: 4a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5C:97:DB:2A:7C:43:FA:8F:49:12:D0:61:E2:4A:B6:EF:8B:8A:0D X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32312e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.21.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:8b:fb:fa:fa:7c:8a:1f:76:e7:8f:05:3b:68:cb:1a:76:34: 44:77:1e:25:bd:93:a4:25:ce:c1:17:2a:2c:02:a4:8c:cd:2c: f3:b8:12:aa:2e:66:fa:cb:3b:e3:9c:39:bc:d4:54:ec:c8:1f: 4e:3e:6f:79:be:47:af:2d:c0:b6:b1:60:90:c0:6a:6f:1f:a8: ab:59:ed:f6:c0:19:38:03:c0:7f:e6:dd:30:39:5a:e3:37:c1: d7:cf:3b:9c:75:ef:f0:db:74:f4:75:b9:f6:b3:00:d4:cd:d2: 37:53:5e:c0:38:04:93:3c:d5:51:a2:e9:b9:f7:dd:5d:2a:f1: 8f:73:6d:4c:03:56:f4:2d:43:7d:cf:4a:9a:fb:7d:d5:38:a6: f4:57:de:d8:18:5d:38:07:2f:c3:24:dd:af:3e:80:49:31:b1: 01:65:a8:d7:f0:37:74:1e:c8:5b:b7:b5:45:79:33:28:a4:83: 58:c1:3b:ca:fd:b0:dc:bc:fd:16:85:57:df:5c:9f:bc:6e:66: 02:43:0f:5d:41:47:a0:3e:0a:29:8b:d6:26:66:45:70:6a:6a: db:0f:f0:1b:35:8a:a5:73:05:0a:af:f6:6a:e4:8b:54:95:3b: 3f:06:a9:e9:39:a5:14:72:65:e9:99:71:be:6e:44:68:fb:dc: 48:25:c4:63 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUe77zlYQGpKyLmUblvSzwI0f7qLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTZaFw0yNTA2MzAwMTAyNTZaMDMxMTAvBgNV BAMTKEFDNUM5N0RCMkE3QzQzRkE4RjQ5MTJEMDYxRTI0QUI2RUY4QjhBMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCixQjWfYr8JSLxnvVhooPIcQmI b0XLLJ45PLPKGRiuFj8dcmTz+LlaytOGLkSzWdYMI2c/OB6w6GP88u0q+c/occZr viFFFqmLVN+WDlFqSZCqqJatxYUKN5qM6nJKShAg2uRO6CXjek88UFu/9CtNhRPn 8+OUWpShgX7ImfvDpntxwYD3jFBa2gDj1ft2TKMqu3R/O47+3TaeMO19pln16PEm 5LJaFyM98cjGbo5qfR4pV2wyDr7YR8u3dGiiEHZArqmllFIi+53Suak0ESnNGwji 9fsBXyhRPq/WZv6GoqOD6G9Y/AQC8eOOHvB1L2Urzc5eeBQ5lGyzP7z+AUqLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUrFyX2yp8Q/qPSRLQYeJKtu+Lig0wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBUwDQYJKoZIhvcN AQELBQADggEBAI2L+/r6fIofduePBTtoyxp2NER3HiW9k6QlzsEXKiwCpIzNLPO4 EqouZvrLO+OcObzUVOzIH04+b3m+R68twLaxYJDAam8fqKtZ7fbAGTgDwH/m3TA5 WuM3wdfPO5x17/DbdPR1ufazANTN0jdTXsA4BJM81VGi6bn33V0q8Y9zbUwDVvQt Q33PSpr7fdU4pvRX3tgYXTgHL8Mk3a8+gEkxsQFlqNfwN3QeyFu3tUV5Myikg1jB O8r9sNy8/RaFV99cn7xuZgJDD11BR6A+CimL1iZmRXBqatsP8Bs1iqVzBQqv9mrk i1SVOz8Gqek5pRRyZemZcb5uRGj73EglxGM= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org