$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa File: 3230322e3134382e32342e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: klKz+X9k6GxjHiVz/0v4jjic1KWXNWPJ6cIZ+VIrajU= Subject key identifier: 2F:E3:9C:40:C3:34:17:11:E8:14:BA:F7:9F:0C:64:E4:2D:FF:D7:84 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 3205B525E4314C67E80624ABE7F376CD738ECB3D Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:48 +0000 ROA not before: Sun 30 Jul 2023 23:58:48 +0000 ROA not after: Mon 29 Jul 2024 00:03:48 +0000 asID: 38778 IP address blocks: 202.148.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:05:b5:25:e4:31:4c:67:e8:06:24:ab:e7:f3:76:cd:73:8e:cb:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:48 2023 GMT Not After : Jul 29 00:03:48 2024 GMT Subject: CN=2FE39C40C3341711E814BAF79F0C64E42DFFD784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5d:80:c1:f6:23:f3:b7:71:7e:b6:51:97:65: 3c:41:8e:8c:9c:42:d2:24:42:b5:a8:27:c9:d8:8d: 46:c2:02:25:09:ef:e8:12:6a:2b:39:16:de:38:8e: 45:85:a4:59:4e:87:4b:4f:95:79:6c:a5:bf:2c:d3: 03:bd:a8:0a:7b:61:f0:4a:16:e6:8f:3e:ff:13:79: 76:0f:08:4e:f9:95:1f:c4:6d:65:e3:f1:30:1f:08: 1d:f0:07:0a:2e:b7:96:35:f7:f8:1b:bd:5f:32:30: 98:ae:1e:78:14:34:b7:b1:73:e3:c1:6d:b3:df:84: fe:ff:bb:9d:f0:91:55:4c:91:57:43:8e:6c:a4:c7: 42:4e:6e:a3:0d:03:8f:96:7a:51:9e:11:49:2e:1d: 81:5e:63:3b:d9:86:d3:c4:24:8a:23:c7:27:fe:2c: fa:85:d2:2e:4a:a8:35:5c:e2:10:45:f9:65:3b:f3: a3:8d:b2:63:c1:c4:0e:3f:b3:de:27:27:74:b0:73: 39:e2:32:2e:af:07:a8:e2:34:60:8f:f1:5c:fb:cf: c4:5d:fc:4c:ed:71:17:77:6d:4e:f4:2d:30:a3:3a: 29:68:b2:de:d9:19:88:d2:9a:10:0f:66:87:c9:4d: 34:c3:71:05:62:cc:67:6d:ee:5e:64:35:18:10:33: 1b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:E3:9C:40:C3:34:17:11:E8:14:BA:F7:9F:0C:64:E4:2D:FF:D7:84 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.24.0/23 Signature Algorithm: sha256WithRSAEncryption 77:ba:2a:20:b3:0a:85:61:48:d6:90:17:85:ba:ac:8a:8b:c8: 5d:b7:6b:ab:f7:3c:bd:30:57:8c:46:f7:1d:65:37:62:85:1b: 51:ed:0c:80:1e:9f:66:82:5a:21:62:fc:bf:8d:48:a3:fc:bb: c1:cc:4f:6e:e8:3d:d0:b0:4d:7d:5e:72:93:95:b8:7b:84:f6: de:04:cb:90:58:be:39:6e:37:de:70:d4:91:a3:7f:52:2d:3e: 76:7d:b7:02:dd:b1:d6:a4:42:70:0c:92:96:6a:b8:12:7a:7c: a1:f4:b4:87:13:0d:59:d6:a0:ec:08:00:78:2a:82:92:1e:90: 34:b2:47:d9:e9:ef:58:d9:90:9d:86:1c:f7:bc:9d:1c:47:b0: 84:e3:67:a7:fa:d6:51:7c:b3:18:08:dd:6b:2d:14:21:23:20: 40:b6:7d:d5:13:94:aa:bb:62:88:d3:fb:b2:d5:07:8d:2c:fe: 0e:68:58:3b:51:de:5b:c0:c9:f2:c7:d9:9a:ac:6a:76:ba:9a: 29:53:98:ef:6a:2c:1e:89:5c:4b:96:fb:2f:64:df:bf:71:06: 6a:05:01:3b:c3:96:21:47:0a:9b:68:9c:a3:98:fe:f7:3d:1e: 1a:c3:9f:ff:4c:7f:c3:7c:d4:5f:67:1a:80:b3:fa:ac:24:b0: b4:e3:4d:15 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMgW1JeQxTGfoBiSr5/N2zXOOyz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDhaFw0yNDA3MjkwMDAzNDhaMDMxMTAvBgNV BAMTKDJGRTM5QzQwQzMzNDE3MTFFODE0QkFGNzlGMEM2NEU0MkRGRkQ3ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1XYDB9iPzt3F+tlGXZTxBjoyc QtIkQrWoJ8nYjUbCAiUJ7+gSais5Ft44jkWFpFlOh0tPlXlspb8s0wO9qAp7YfBK FuaPPv8TeXYPCE75lR/EbWXj8TAfCB3wBwout5Y19/gbvV8yMJiuHngUNLexc+PB bbPfhP7/u53wkVVMkVdDjmykx0JObqMNA4+WelGeEUkuHYFeYzvZhtPEJIojxyf+ LPqF0i5KqDVc4hBF+WU786ONsmPBxA4/s94nJ3SwczniMi6vB6jiNGCP8Vz7z8Rd /EztcRd3bU70LTCjOilost7ZGYjSmhAPZofJTTTDcQVizGdt7l5kNRgQMxtTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUL+OcQMM0FxHoFLr3nwxk5C3/14QwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcqUGDANBgkqhkiG 9w0BAQsFAAOCAQEAd7oqILMKhWFI1pAXhbqsiovIXbdrq/c8vTBXjEb3HWU3YoUb Ue0MgB6fZoJaIWL8v41Io/y7wcxPbug90LBNfV5yk5W4e4T23gTLkFi+OW433nDU kaN/Ui0+dn23At2x1qRCcAySlmq4Enp8ofS0hxMNWdag7AgAeCqCkh6QNLJH2env WNmQnYYc97ydHEewhONnp/rWUXyzGAjday0UISMgQLZ91ROUqrtiiNP7stUHjSz+ DmhYO1HeW8DJ8sfZmqxqdrqaKVOY72osHolcS5b7L2Tfv3EGagUBO8OWIUcKm2ic o5j+9z0eGsOf/0x/w3zUX2cagLP6rCSwtONNFQ== -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:28 2024 by rpki-client on console-fra.rpki-client.org