$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32332e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: VRZoInM1HleWCZLO6Uu7bVViDhb5OhjArXd4Yg3p00I= Subject key identifier: 77:EF:64:43:D8:8C:12:A5:99:63:B9:DD:BD:C2:75:91:21:6F:37:03 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 53089AB58EAFA78AA5FD469708D31E8A0954F461 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32332e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:54 +0000 ROA not before: Sun 30 Jul 2023 23:58:54 +0000 ROA not after: Mon 29 Jul 2024 00:03:54 +0000 asID: 9794 IP address blocks: 202.148.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:08:9a:b5:8e:af:a7:8a:a5:fd:46:97:08:d3:1e:8a:09:54:f4:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:54 2023 GMT Not After : Jul 29 00:03:54 2024 GMT Subject: CN=77EF6443D88C12A59963B9DDBDC27591216F3703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:33:9d:c8:58:ac:aa:df:b9:4b:00:a8:e1:e3: 13:9a:33:b3:11:d4:1e:83:4d:e8:9d:18:93:9f:0f: 05:50:e6:af:f7:61:52:77:cf:25:3a:96:cb:db:4b: 22:be:3b:be:0f:d0:c2:dd:c0:66:34:03:f7:28:6b: 01:68:a2:c8:32:bd:18:2f:98:de:33:e5:17:5d:79: 8c:dd:d5:8e:36:3e:8c:37:c6:58:ba:db:43:76:58: a5:f9:12:77:5a:36:0e:32:32:6c:51:f9:df:b3:57: fe:fe:94:06:db:0a:c8:38:a7:d4:63:ac:aa:f6:a4: 77:5a:f4:a4:89:ea:fc:85:fc:36:31:c8:f1:57:17: 59:50:c7:53:5a:31:f7:e5:1d:b5:79:2c:f3:9b:35: 43:ef:a2:28:4e:d5:e5:98:b2:bc:9d:3d:5d:59:89: 98:7f:83:17:2b:28:94:ee:94:85:71:be:0d:d3:08: 0d:a7:a9:ae:c6:0e:1d:3a:08:d9:80:f1:3f:65:d1: 7e:66:a3:49:70:1f:dc:e5:ec:9d:8b:4c:ca:77:e8: 1f:4b:00:ec:e2:c3:5d:f6:7d:1d:fd:cb:a0:fe:b2: 54:48:f5:27:07:d2:5e:95:30:2d:af:63:13:7a:4d: de:cc:27:bf:9b:0c:94:b7:c6:f7:3f:5d:c5:3e:b5: f9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:EF:64:43:D8:8C:12:A5:99:63:B9:DD:BD:C2:75:91:21:6F:37:03 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.23.0/24 Signature Algorithm: sha256WithRSAEncryption a7:51:a3:52:a3:88:f6:47:48:69:f5:36:c3:e3:91:38:53:7c: 80:ac:a8:95:54:82:58:18:28:3c:32:84:5d:b0:4d:77:68:26: 5c:9f:de:13:4f:86:f0:31:00:00:39:63:83:ca:96:aa:a7:45: 19:37:4f:55:ba:96:d0:15:a7:b0:35:42:42:05:60:34:e0:70: 42:84:51:3d:2e:55:42:9a:14:4a:08:55:49:76:b2:61:ce:94: 32:d0:ea:13:9a:27:be:81:0e:3a:4a:95:55:45:01:aa:2c:f3: ea:3d:87:8a:e6:ce:0b:4e:f7:32:7a:93:72:d3:f2:e0:cb:ba: 3b:f3:a8:44:71:41:22:6b:3a:d4:ba:ed:37:86:21:65:4e:27: 45:9c:c8:96:37:5c:b6:1f:27:04:60:69:ab:ab:ef:2f:b2:0e: 47:eb:af:51:f5:25:59:fa:f4:1d:b3:53:d3:b7:70:dd:f4:55: 51:44:a0:e9:7d:9f:1c:8f:6d:bc:2f:1c:cb:43:2a:fd:b8:46: 80:60:47:10:25:52:f4:13:9d:36:78:ea:d0:73:7a:e4:96:90: 64:55:05:dd:30:1a:a9:f8:7e:f2:5e:29:4e:db:03:78:5a:a3: 51:e5:4f:4f:1e:96:81:0c:ae:d6:9c:0b:2a:40:a2:d0:89:46: d3:71:0e:35 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUwiatY6vp4ql/UaXCNMeiglU9GEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTRaFw0yNDA3MjkwMDAzNTRaMDMxMTAvBgNV BAMTKDc3RUY2NDQzRDg4QzEyQTU5OTYzQjlEREJEQzI3NTkxMjE2RjM3MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcM53IWKyq37lLAKjh4xOaM7MR 1B6DTeidGJOfDwVQ5q/3YVJ3zyU6lsvbSyK+O74P0MLdwGY0A/coawFoosgyvRgv mN4z5RddeYzd1Y42Pow3xli620N2WKX5EndaNg4yMmxR+d+zV/7+lAbbCsg4p9Rj rKr2pHda9KSJ6vyF/DYxyPFXF1lQx1NaMfflHbV5LPObNUPvoihO1eWYsrydPV1Z iZh/gxcrKJTulIVxvg3TCA2nqa7GDh06CNmA8T9l0X5mo0lwH9zl7J2LTMp36B9L AOziw132fR39y6D+slRI9ScH0l6VMC2vYxN6Td7MJ7+bDJS3xvc/XcU+tfmTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUd+9kQ9iMEqWZY7ndvcJ1kSFvNwMwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBcwDQYJKoZIhvcN AQELBQADggEBAKdRo1KjiPZHSGn1NsPjkThTfICsqJVUglgYKDwyhF2wTXdoJlyf 3hNPhvAxAAA5Y4PKlqqnRRk3T1W6ltAVp7A1QkIFYDTgcEKEUT0uVUKaFEoIVUl2 smHOlDLQ6hOaJ76BDjpKlVVFAaos8+o9h4rmzgtO9zJ6k3LT8uDLujvzqERxQSJr OtS67TeGIWVOJ0WcyJY3XLYfJwRgaaur7y+yDkfrr1H1JVn69B2zU9O3cN30VVFE oOl9nxyPbbwvHMtDKv24RoBgRxAlUvQTnTZ46tBzeuSWkGRVBd0wGqn4fvJeKU7b A3hao1HlT08eloEMrtacCypAotCJRtNxDjU= -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:28 2024 by rpki-client on console-fra.rpki-client.org