$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32312e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32312e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: x6sdtPKOpWwypxDziMdRpQ0G6ul84XALgQ0X9zAVhhw= Subject key identifier: FB:7C:2B:AB:94:C3:BB:BA:1A:F4:71:1B:91:BD:C1:AA:3C:13:DE:24 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 78E5D1B63E785E6F1C0B63B45D74FAAEC9CCEC7F Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32312e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:51 +0000 ROA not before: Sun 30 Jul 2023 23:58:51 +0000 ROA not after: Mon 29 Jul 2024 00:03:51 +0000 asID: 9794 IP address blocks: 202.148.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e5:d1:b6:3e:78:5e:6f:1c:0b:63:b4:5d:74:fa:ae:c9:cc:ec:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:51 2023 GMT Not After : Jul 29 00:03:51 2024 GMT Subject: CN=FB7C2BAB94C3BBBA1AF4711B91BDC1AA3C13DE24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f5:56:5d:f2:39:54:a6:f4:26:b2:84:dc:2f: 76:fe:cb:97:c4:c4:92:cb:c4:4d:2d:41:ce:3e:bd: bd:12:ae:68:33:92:f1:8c:83:59:70:94:01:56:53: 1d:6f:0b:60:d5:70:a9:01:93:30:7a:08:09:81:03: e3:a1:38:fd:5b:6f:f9:44:d8:e6:ad:e8:5e:76:9b: ca:ed:16:40:74:71:96:92:8a:ae:49:03:55:3b:13: 22:53:d6:52:ad:f9:fa:46:48:c7:58:01:d0:45:88: 57:4d:c3:a1:61:94:6d:9f:bd:5c:89:37:aa:3c:b7: f3:fa:05:55:33:4d:02:d2:70:94:e3:51:b1:ff:b0: 6e:08:ac:02:11:e6:36:66:61:04:00:21:ff:e9:b5: 6e:38:39:27:5a:93:f5:63:da:ce:46:46:68:c4:e5: b6:76:e3:c1:82:2e:ac:99:02:c5:d0:b0:4f:6f:2d: 00:94:17:4c:a8:e6:80:56:05:df:eb:c0:88:5a:d9: e4:14:24:69:36:42:57:2d:34:9d:d9:d6:2b:52:8a: 77:de:38:15:02:ae:1b:18:ea:7c:0e:ae:34:94:05: 8b:ad:a8:06:f0:56:80:1b:d4:13:67:27:d8:72:f4: 18:54:c3:ab:75:f1:a3:0a:02:fb:d9:e3:fb:38:9f: 19:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:7C:2B:AB:94:C3:BB:BA:1A:F4:71:1B:91:BD:C1:AA:3C:13:DE:24 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32312e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.21.0/24 Signature Algorithm: sha256WithRSAEncryption 70:0e:10:9a:39:ca:da:8d:31:84:84:32:48:66:de:c0:7a:a1: 0b:63:5b:31:a8:1c:2d:65:8a:84:0b:4f:66:8c:73:18:a1:b1: e3:60:8b:db:b5:40:b7:9e:32:30:79:e3:b8:ca:9f:9f:2b:fc: a6:21:10:6e:85:8d:de:dc:69:b5:bc:40:a4:0b:b6:84:63:a6: 67:8b:00:39:21:81:40:a3:79:bd:7c:b1:50:57:61:d9:30:d8: 25:13:78:56:72:bd:14:84:3b:a3:55:a9:5d:86:76:7c:2e:06: 4b:88:36:94:12:bf:8e:b8:80:63:55:11:96:d3:91:3c:67:34: 28:9e:0b:24:bf:ea:4c:37:8f:6c:44:4e:6d:cb:30:02:29:ca: 19:06:87:02:38:21:97:33:b5:42:ea:1c:82:af:e1:24:71:8e: 65:8a:b1:15:8f:17:d8:de:94:25:4f:34:ec:28:b7:89:37:34: 97:40:f4:49:a9:20:ce:c8:6a:b4:65:33:39:03:4d:e5:f3:16: 41:39:fb:ac:1c:2e:fc:ef:36:b2:1b:d2:26:4a:49:e9:50:85: 55:90:7c:62:ae:35:3d:c9:56:a5:89:3d:36:af:e5:b2:ed:21: c9:65:75:ee:2d:4e:59:ed:d2:96:ab:82:bd:7e:25:d5:bf:32: 7b:36:52:d0 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUeOXRtj54Xm8cC2O0XXT6rsnM7H8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTFaFw0yNDA3MjkwMDAzNTFaMDMxMTAvBgNV BAMTKEZCN0MyQkFCOTRDM0JCQkExQUY0NzExQjkxQkRDMUFBM0MxM0RFMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN9VZd8jlUpvQmsoTcL3b+y5fE xJLLxE0tQc4+vb0SrmgzkvGMg1lwlAFWUx1vC2DVcKkBkzB6CAmBA+OhOP1bb/lE 2Oat6F52m8rtFkB0cZaSiq5JA1U7EyJT1lKt+fpGSMdYAdBFiFdNw6FhlG2fvVyJ N6o8t/P6BVUzTQLScJTjUbH/sG4IrAIR5jZmYQQAIf/ptW44OSdak/Vj2s5GRmjE 5bZ248GCLqyZAsXQsE9vLQCUF0yo5oBWBd/rwIha2eQUJGk2QlctNJ3Z1itSinfe OBUCrhsY6nwOrjSUBYutqAbwVoAb1BNnJ9hy9BhUw6t18aMKAvvZ4/s4nxmZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+3wrq5TDu7oa9HEbkb3BqjwT3iQwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBUwDQYJKoZIhvcN AQELBQADggEBAHAOEJo5ytqNMYSEMkhm3sB6oQtjWzGoHC1lioQLT2aMcxihseNg i9u1QLeeMjB547jKn58r/KYhEG6Fjd7cabW8QKQLtoRjpmeLADkhgUCjeb18sVBX Ydkw2CUTeFZyvRSEO6NVqV2GdnwuBkuINpQSv464gGNVEZbTkTxnNCieCyS/6kw3 j2xETm3LMAIpyhkGhwI4IZcztULqHIKv4SRxjmWKsRWPF9jelCVPNOwot4k3NJdA 9EmpIM7IarRlMzkDTeXzFkE5+6wcLvzvNrIb0iZKSelQhVWQfGKuNT3JVqWJPTav 5bLtIcllde4tTlnt0pargr1+JdW/Mns2UtA= -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:28 2024 by rpki-client on console-fra.rpki-client.org