$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa File: 3230322e3134382e32342e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: n++SRNeITfdsMp6DJ9MBUs/+FI435tUUA2wenE3X/Rk= Subject key identifier: 75:45:01:CF:89:90:3C:8D:F8:05:C6:56:F9:65:47:91:5F:5F:37:0F Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 01A67478068192546B4F630301F699C0EA443466 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:59 +0000 ROA not before: Mon 01 Jul 2024 00:57:59 +0000 ROA not after: Mon 30 Jun 2025 01:02:59 +0000 asID: 38778 IP address blocks: 202.148.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:a6:74:78:06:81:92:54:6b:4f:63:03:01:f6:99:c0:ea:44:34:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:59 2024 GMT Not After : Jun 30 01:02:59 2025 GMT Subject: CN=754501CF89903C8DF805C656F96547915F5F370F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:62:ad:5a:d3:58:f6:e2:95:8d:34:b9:4f:e4: 86:c1:2f:15:9b:01:2c:33:0f:f4:7f:1e:08:3d:b7: ec:b2:9d:b5:b7:36:69:1d:35:0e:7b:c6:a1:84:cb: f5:ee:ac:54:e3:0c:2c:c4:cc:67:de:a2:b2:c4:ab: 26:ca:c4:af:ad:3b:50:91:40:b2:91:47:da:35:d8: 94:f6:08:63:3b:82:3a:43:1f:dc:ec:00:0b:e0:d0: e1:6a:d5:dc:f6:de:29:ec:65:6f:6d:2e:8f:b2:50: 30:19:e5:55:b1:10:24:72:60:7c:58:7d:b6:e2:ed: 5d:f4:7d:23:94:51:d0:2e:71:44:ef:c4:39:69:a5: 21:3b:eb:39:44:bb:c3:f5:f4:0c:81:5c:d7:3e:e6: 39:22:a0:5e:b7:54:bf:35:b0:59:63:74:26:27:0d: 0a:2a:a4:7d:fc:7c:16:72:a6:ae:d6:94:8d:1c:a1: 98:31:04:eb:a7:30:7e:44:b9:3a:56:38:e3:3b:70: 17:1d:4c:b5:f7:d8:d4:7c:6f:32:32:0f:7a:0a:07: 79:ff:ab:62:ca:8f:c4:31:e3:90:29:c5:e2:b5:02: cd:ce:77:5f:61:15:61:07:31:6c:8a:62:fe:d3:ad: 0d:30:bd:73:3f:10:e7:83:39:d7:a9:6f:5e:9e:8d: c5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:45:01:CF:89:90:3C:8D:F8:05:C6:56:F9:65:47:91:5F:5F:37:0F X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.24.0/23 Signature Algorithm: sha256WithRSAEncryption 47:0c:e0:26:59:71:2c:f6:7f:65:0a:75:49:e6:cc:6e:4a:54: 57:09:0a:51:9b:0f:6a:4f:ef:4d:85:8a:ba:52:52:f4:ca:08: ee:f9:5d:6c:56:5d:02:d2:59:7b:61:a0:7f:7e:05:28:9d:f0: 30:ac:1f:51:94:f5:d3:7c:b2:f9:14:c8:52:24:9b:68:fc:9e: 0d:39:b4:ab:dd:a8:16:d2:d3:7a:a8:fa:6c:94:48:3b:84:a6: 0c:7b:69:6f:c8:5d:74:e4:0b:5c:e0:fd:78:26:c9:a6:6e:0b: df:c7:d7:63:27:7a:0e:76:e1:86:2b:00:09:8d:3e:40:26:83: e3:6f:3f:97:ad:62:4a:4a:94:7f:f0:16:09:79:24:72:7f:9a: 82:69:fa:e6:0d:39:75:be:3c:88:5c:16:e3:dd:53:0d:1a:47: a6:5a:02:3b:52:e4:6d:76:b7:cf:ec:5d:3f:cb:fe:e3:20:6e: b1:23:b4:a7:ab:3a:89:71:10:6d:43:a2:d4:3a:f3:df:61:21: 59:28:4d:1b:d6:0b:ea:72:1d:3e:57:f3:52:08:1e:29:c0:46: a3:d6:c0:ca:4c:13:56:27:10:f8:7c:c0:42:8a:34:24:14:fc: 36:cb:6a:8f:d8:98:2f:81:8d:be:12:75:5d:68:21:26:fb:94: 94:ae:8d:0a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAaZ0eAaBklRrT2MDAfaZwOpENGYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTlaFw0yNTA2MzAwMTAyNTlaMDMxMTAvBgNV BAMTKDc1NDUwMUNGODk5MDNDOERGODA1QzY1NkY5NjU0NzkxNUY1RjM3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpYq1a01j24pWNNLlP5IbBLxWb ASwzD/R/Hgg9t+yynbW3NmkdNQ57xqGEy/XurFTjDCzEzGfeorLEqybKxK+tO1CR QLKRR9o12JT2CGM7gjpDH9zsAAvg0OFq1dz23insZW9tLo+yUDAZ5VWxECRyYHxY fbbi7V30fSOUUdAucUTvxDlppSE76zlEu8P19AyBXNc+5jkioF63VL81sFljdCYn DQoqpH38fBZypq7WlI0coZgxBOunMH5EuTpWOOM7cBcdTLX32NR8bzIyD3oKB3n/ q2LKj8Qx45ApxeK1As3Od19hFWEHMWyKYv7TrQ0wvXM/EOeDOdepb16ejcXpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdUUBz4mQPI34BcZW+WVHkV9fNw8wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcqUGDANBgkqhkiG 9w0BAQsFAAOCAQEARwzgJllxLPZ/ZQp1SebMbkpUVwkKUZsPak/vTYWKulJS9MoI 7vldbFZdAtJZe2Ggf34FKJ3wMKwfUZT103yy+RTIUiSbaPyeDTm0q92oFtLTeqj6 bJRIO4SmDHtpb8hddOQLXOD9eCbJpm4L38fXYyd6DnbhhisACY0+QCaD428/l61i SkqUf/AWCXkkcn+agmn65g05db48iFwW491TDRpHploCO1LkbXa3z+xdP8v+4yBu sSO0p6s6iXEQbUOi1Drz32EhWShNG9YL6nIdPlfzUggeKcBGo9bAykwTVicQ+HzA Qoo0JBT8Nstqj9iYL4GNvhJ1XWghJvuUlK6NCg== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org