$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32322e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32322e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: xSZZEwzoeh08koVY1v3oJTq7ifwQKSurhT9cMIZrrZs= Subject key identifier: 3C:19:C4:7E:9D:7E:CF:30:77:76:A8:34:82:AF:40:1B:AC:A6:7D:51 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 436ACBDCD514428DC70DE545B6D8D11D0693D753 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32322e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:03:01 +0000 ROA not before: Mon 01 Jul 2024 00:58:01 +0000 ROA not after: Mon 30 Jun 2025 01:03:01 +0000 asID: 9794 IP address blocks: 202.148.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:6a:cb:dc:d5:14:42:8d:c7:0d:e5:45:b6:d8:d1:1d:06:93:d7:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:01 2024 GMT Not After : Jun 30 01:03:01 2025 GMT Subject: CN=3C19C47E9D7ECF307776A83482AF401BACA67D51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:25:96:4d:06:a1:65:d3:7e:a6:c0:20:71:35: 48:93:1f:7c:2a:a5:d2:a5:4c:6e:07:33:ef:9c:0b: 62:d1:0d:b4:8b:8d:30:23:42:08:bd:e2:75:bc:66: 01:bf:c6:7d:12:91:92:2c:6a:e1:94:2d:93:e6:e2: 56:b7:12:92:ad:81:7b:c1:e7:b3:a6:6d:74:47:0e: 5b:47:fa:c5:af:7e:41:38:49:18:5d:6a:6f:1e:c3: 57:78:c8:69:64:24:fa:43:39:29:bc:15:15:06:9f: 14:b5:3e:62:bf:a3:0e:10:b6:0a:cb:17:02:d6:39: 97:f9:e8:54:00:eb:3c:8f:59:91:b0:88:f4:82:04: bf:1c:ac:1a:5f:dc:ff:6d:c9:8e:3f:35:a0:8c:2b: 5b:d3:0d:8a:d1:31:81:92:7c:fd:eb:47:00:d0:87: 2c:d7:17:90:61:e8:21:cd:8d:f1:0a:f3:22:8a:a9: 5d:68:40:26:4d:6e:8e:d1:d9:11:f0:08:ff:2b:26: cc:8a:dc:ff:5f:ef:6a:b5:83:bb:0a:9c:8b:db:14: 8a:8c:5a:f5:6f:49:f9:de:8c:ce:51:f9:f6:a7:08: 0d:77:f3:07:5e:b6:93:61:c8:d9:2f:21:a7:3d:29: 36:cc:ce:89:2f:7c:58:0d:6d:01:d8:e6:b1:fe:36: ae:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:19:C4:7E:9D:7E:CF:30:77:76:A8:34:82:AF:40:1B:AC:A6:7D:51 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32322e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.22.0/24 Signature Algorithm: sha256WithRSAEncryption 41:c1:e2:cf:24:a8:17:0b:3a:98:61:36:19:5b:21:2b:12:1e: 59:90:7a:18:68:80:d5:c2:97:9c:1f:b0:33:58:28:43:55:96: c7:36:48:b5:77:93:8e:3f:5c:57:15:1d:ba:50:5e:e0:89:52: 69:31:60:52:80:70:13:58:25:5c:bd:84:65:17:84:64:b0:23: 45:8b:da:1c:28:0a:6d:f8:ed:58:ef:87:23:f1:16:08:a8:b9: 4c:45:62:6a:bd:3a:0e:39:40:30:2d:00:ae:de:08:41:23:8a: 18:15:46:f0:2f:78:5f:eb:a3:76:89:2d:2b:42:86:3c:2a:13: b5:f0:6c:bb:51:62:f8:2c:d2:1a:1f:5e:03:94:70:28:93:fa: d2:94:e3:70:e3:9a:56:e0:f0:e0:3d:5b:45:46:6c:60:f6:7b: 9e:d3:ec:99:3c:7c:62:2b:12:6d:a7:7a:d9:8d:2b:9d:a0:72: c9:19:5b:0f:03:28:13:2e:43:80:94:31:6b:8c:28:8e:67:94: 95:71:d7:4e:9a:8a:4a:0a:18:56:5e:9c:43:13:6c:e6:33:3e: 01:81:38:0a:35:e9:75:3e:75:17:af:5e:c3:88:97:c5:57:b5: 08:9b:20:43:21:d5:4b:48:2d:df:07:2d:ad:41:3d:bc:22:e3: 00:09:d8:f2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQ2rL3NUUQo3HDeVFttjRHQaT11MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDFaFw0yNTA2MzAwMTAzMDFaMDMxMTAvBgNV BAMTKDNDMTlDNDdFOUQ3RUNGMzA3Nzc2QTgzNDgyQUY0MDFCQUNBNjdENTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnJZZNBqFl036mwCBxNUiTH3wq pdKlTG4HM++cC2LRDbSLjTAjQgi94nW8ZgG/xn0SkZIsauGULZPm4la3EpKtgXvB 57OmbXRHDltH+sWvfkE4SRhdam8ew1d4yGlkJPpDOSm8FRUGnxS1PmK/ow4QtgrL FwLWOZf56FQA6zyPWZGwiPSCBL8crBpf3P9tyY4/NaCMK1vTDYrRMYGSfP3rRwDQ hyzXF5Bh6CHNjfEK8yKKqV1oQCZNbo7R2RHwCP8rJsyK3P9f72q1g7sKnIvbFIqM WvVvSfnejM5R+fanCA138wdetpNhyNkvIac9KTbMzokvfFgNbQHY5rH+Nq6fAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUPBnEfp1+zzB3dqg0gq9AG6ymfVEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBYwDQYJKoZIhvcN AQELBQADggEBAEHB4s8kqBcLOphhNhlbISsSHlmQehhogNXCl5wfsDNYKENVlsc2 SLV3k44/XFcVHbpQXuCJUmkxYFKAcBNYJVy9hGUXhGSwI0WL2hwoCm347VjvhyPx FgiouUxFYmq9Og45QDAtAK7eCEEjihgVRvAveF/ro3aJLStChjwqE7XwbLtRYvgs 0hofXgOUcCiT+tKU43Djmlbg8OA9W0VGbGD2e57T7Jk8fGIrEm2netmNK52gcskZ Ww8DKBMuQ4CUMWuMKI5nlJVx106aikoKGFZenEMTbOYzPgGBOAo16XU+dRevXsOI l8VXtQibIEMh1UtILd8HLa1BPbwi4wAJ2PI= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org