$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32332e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: N0xCkgnW8MkqiksWpxm1dr49UZkGoYTCwSHmSdfYcJE= Subject key identifier: E2:DF:48:2F:52:B7:75:5A:0F:B5:33:06:48:E2:1B:42:35:45:09:E7 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2728D2EE4821687DB47EBF992D4B4A842E252995 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32332e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:59 +0000 ROA not before: Mon 01 Jul 2024 00:57:59 +0000 ROA not after: Mon 30 Jun 2025 01:02:59 +0000 asID: 9794 IP address blocks: 202.148.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:28:d2:ee:48:21:68:7d:b4:7e:bf:99:2d:4b:4a:84:2e:25:29:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:59 2024 GMT Not After : Jun 30 01:02:59 2025 GMT Subject: CN=E2DF482F52B7755A0FB5330648E21B42354509E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f1:a2:15:03:cc:2c:50:35:f0:a0:6b:7b:3e: 2d:57:b3:b3:c5:19:d5:b9:c3:49:44:bc:c1:84:c2: 60:e7:6f:95:9e:9a:e5:55:23:61:24:c8:7d:66:a6: 0d:2a:35:b0:c2:88:b9:4f:43:e2:82:55:41:af:1a: 8e:d9:70:6e:67:f7:8d:df:e6:73:b9:d8:ef:c3:49: a4:66:ef:99:31:98:8f:b3:44:35:bf:2f:c0:eb:25: 9f:07:49:2f:3a:d0:75:10:51:fc:61:52:5d:21:8c: 35:a9:f2:fe:3f:a4:34:6a:05:0d:5a:df:6f:3f:c0: da:40:5f:90:a6:45:5d:40:5a:1b:67:57:3b:e1:2c: ee:17:9b:60:43:a0:9d:9b:ad:29:2a:cd:79:20:68: ef:e8:71:ec:5a:c0:6d:54:f8:52:47:ba:56:13:99: dc:ad:19:c9:bd:a5:17:c3:08:b9:a7:ac:8f:5a:1a: ca:0e:6a:ae:27:66:72:c2:34:6d:66:9b:39:d3:27: 76:79:b9:63:bc:7c:41:a5:08:a5:ae:58:57:7e:97: 4c:4f:38:53:48:b7:11:b4:9a:9b:e1:fd:24:ee:7d: 07:e4:df:23:51:97:62:0e:d9:aa:2d:25:4b:b0:24: 6b:7a:1f:cc:a1:b6:1b:00:ee:a9:ef:42:67:bc:b7: a3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:DF:48:2F:52:B7:75:5A:0F:B5:33:06:48:E2:1B:42:35:45:09:E7 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.23.0/24 Signature Algorithm: sha256WithRSAEncryption 67:48:dc:99:4f:e0:8c:61:32:cc:ec:75:21:9c:08:76:0f:49: 9c:63:7b:6c:01:34:34:c8:07:a1:f7:0f:a5:df:97:45:3d:54: 89:8d:dc:34:5e:82:db:37:48:2c:99:01:77:98:fe:2b:c8:b3: 54:ad:03:6b:de:e2:5a:49:28:95:89:b6:06:9b:06:60:b9:99: 30:7c:4b:2a:36:70:2d:64:a5:c1:dc:5d:45:1b:d5:97:b3:b3: 81:6b:f4:80:23:a8:27:5a:af:01:72:86:98:f9:80:32:9d:3b: cf:ec:84:f9:88:ee:89:d0:17:71:14:48:d1:28:45:7e:0f:c3: ec:ae:95:c1:51:c1:3e:2c:6c:d3:44:d6:f9:7d:37:a4:81:1d: 9d:ad:a4:64:3f:eb:07:28:eb:e4:41:76:30:d9:79:a7:73:2f: 0a:69:eb:be:d7:c0:49:af:51:60:57:10:45:3b:e5:bb:6c:d5: 5f:e6:03:a3:42:d1:ce:5a:95:21:f6:8a:e2:85:2c:b3:73:aa: 88:8f:13:ef:a1:3e:09:59:03:3a:d2:ed:53:77:36:77:64:a3: 01:98:e0:52:41:ab:35:3a:75:2e:8a:15:92:6b:30:61:7d:1a: 28:57:cc:30:4b:4f:e1:f5:bb:b4:0a:78:f2:72:b8:c5:1a:7e: 59:0f:90:b5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJyjS7kghaH20fr+ZLUtKhC4lKZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTlaFw0yNTA2MzAwMTAyNTlaMDMxMTAvBgNV BAMTKEUyREY0ODJGNTJCNzc1NUEwRkI1MzMwNjQ4RTIxQjQyMzU0NTA5RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC98aIVA8wsUDXwoGt7Pi1Xs7PF GdW5w0lEvMGEwmDnb5WemuVVI2EkyH1mpg0qNbDCiLlPQ+KCVUGvGo7ZcG5n943f 5nO52O/DSaRm75kxmI+zRDW/L8DrJZ8HSS860HUQUfxhUl0hjDWp8v4/pDRqBQ1a 328/wNpAX5CmRV1AWhtnVzvhLO4Xm2BDoJ2brSkqzXkgaO/ocexawG1U+FJHulYT mdytGcm9pRfDCLmnrI9aGsoOaq4nZnLCNG1mmznTJ3Z5uWO8fEGlCKWuWFd+l0xP OFNItxG0mpvh/STufQfk3yNRl2IO2aotJUuwJGt6H8yhthsA7qnvQme8t6OzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU4t9IL1K3dVoPtTMGSOIbQjVFCecwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBcwDQYJKoZIhvcN AQELBQADggEBAGdI3JlP4IxhMszsdSGcCHYPSZxje2wBNDTIB6H3D6Xfl0U9VImN 3DRegts3SCyZAXeY/ivIs1StA2ve4lpJKJWJtgabBmC5mTB8Syo2cC1kpcHcXUUb 1Zezs4Fr9IAjqCdarwFyhpj5gDKdO8/shPmI7onQF3EUSNEoRX4Pw+yulcFRwT4s bNNE1vl9N6SBHZ2tpGQ/6wco6+RBdjDZeadzLwpp677XwEmvUWBXEEU75bts1V/m A6NC0c5alSH2iuKFLLNzqoiPE++hPglZAzrS7VN3NndkowGY4FJBqzU6dS6KFZJr MGF9GihXzDBLT+H1u7QKePJyuMUaflkPkLU= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org