$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e32342e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: KBo/YMP77ypQezB9EpkV00pRBqe2sfMiDTD/xMyDGaI= Subject key identifier: 15:60:A0:1F:9C:BB:E6:B1:2F:40:FB:0D:7C:E3:3B:87:F3:8D:5C:52 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 53023746005802FD111C48A3C2056D3D890CD887 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:52 +0000 ROA not before: Sun 30 Jul 2023 23:58:52 +0000 ROA not after: Mon 29 Jul 2024 00:03:52 +0000 asID: 38778 IP address blocks: 202.148.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 21:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:02:37:46:00:58:02:fd:11:1c:48:a3:c2:05:6d:3d:89:0c:d8:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:52 2023 GMT Not After : Jul 29 00:03:52 2024 GMT Subject: CN=1560A01F9CBBE6B12F40FB0D7CE33B87F38D5C52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0e:76:32:2b:98:ae:60:e1:c7:8c:47:46:a6: b0:d0:23:10:47:8a:1b:72:6d:46:c8:34:01:36:0f: bd:be:c6:2c:34:b2:9a:c3:fb:36:af:29:f9:4c:ca: b9:35:7b:7e:8d:d2:94:5a:f5:1b:1e:bb:f7:58:c6: de:44:2e:9e:f3:90:fa:8a:07:c6:aa:7d:ae:a5:c0: 25:65:65:d4:2a:35:17:7b:b3:46:4d:81:61:65:39: 82:40:b6:2d:b3:54:e7:6f:cc:64:78:89:96:a9:60: 80:97:bc:85:82:ab:d5:c0:df:8f:02:01:2f:da:19: 88:bb:16:12:12:5f:35:6d:d6:9d:0a:7e:db:18:5a: d1:d5:11:d6:9d:10:f5:0c:61:13:eb:38:f9:4a:16: 1c:5c:07:93:fd:e0:72:b7:6a:2a:21:78:f4:ca:af: 5e:15:7c:31:d5:d9:90:2d:9f:d9:12:0e:d5:30:a2: 62:1f:f1:02:40:ed:76:2a:19:6e:3b:aa:f3:ed:63: e5:0c:e6:ef:b7:be:4a:3f:dd:c2:ed:9a:56:21:a4: 33:fc:9b:49:b1:ce:1e:7a:89:d5:19:ef:2c:11:4b: 4c:d2:2a:99:a9:8a:ce:ef:6e:ba:a9:a0:1d:b2:47: e6:81:0d:9a:f8:54:1f:2b:fa:27:38:e9:04:f9:3a: 3f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:60:A0:1F:9C:BB:E6:B1:2F:40:FB:0D:7C:E3:3B:87:F3:8D:5C:52 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.24.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:bb:6a:27:36:5b:5e:50:39:ce:d7:77:30:fd:20:5f:c0:03: 7d:f6:7f:37:da:c1:89:8d:c3:0d:b4:b2:df:bb:48:3a:6f:b6: 3d:24:47:10:89:7a:58:e7:f7:85:16:a1:09:8c:34:f4:34:9b: 42:e3:ff:f2:f3:9d:30:0d:30:d4:0c:7f:f9:d0:aa:08:cb:17: 47:b2:1c:85:d2:4f:8a:1c:f0:d2:9d:83:92:5d:9b:31:3a:8c: e3:68:97:97:bf:86:ab:6c:21:2c:88:ca:60:e1:9f:f4:bf:be: 82:dd:f8:9d:7a:fa:b2:0e:6f:96:cf:8a:c9:ef:67:ee:6c:51: 90:49:2e:84:58:a0:41:e1:3c:92:c9:8e:eb:ce:cd:01:62:5e: a0:43:79:1c:96:ea:07:d0:59:71:39:06:53:af:6e:cc:0a:61: 45:77:54:b9:f6:96:aa:d1:75:bc:01:36:3f:87:88:e6:d0:c3: e8:f5:86:dc:90:b4:75:55:dd:b7:b9:f6:2a:67:c6:b0:40:7b: 56:af:7d:cd:d5:ff:4c:a3:b6:07:dd:16:d0:83:c0:b1:33:52: 40:3c:5a:34:8c:1a:fb:5a:70:b9:79:c0:2e:73:bd:5f:d6:43: 06:20:f3:0b:c5:d8:8b:30:8e:e3:14:73:cd:b2:b7:0d:de:0e: 78:a7:0f:ec -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUwI3RgBYAv0RHEijwgVtPYkM2IcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTJaFw0yNDA3MjkwMDAzNTJaMDMxMTAvBgNV BAMTKDE1NjBBMDFGOUNCQkU2QjEyRjQwRkIwRDdDRTMzQjg3RjM4RDVDNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMDnYyK5iuYOHHjEdGprDQIxBH ihtybUbINAE2D72+xiw0sprD+zavKflMyrk1e36N0pRa9Rseu/dYxt5ELp7zkPqK B8aqfa6lwCVlZdQqNRd7s0ZNgWFlOYJAti2zVOdvzGR4iZapYICXvIWCq9XA348C AS/aGYi7FhISXzVt1p0KftsYWtHVEdadEPUMYRPrOPlKFhxcB5P94HK3aiohePTK r14VfDHV2ZAtn9kSDtUwomIf8QJA7XYqGW47qvPtY+UM5u+3vko/3cLtmlYhpDP8 m0mxzh56idUZ7ywRS0zSKpmpis7vbrqpoB2yR+aBDZr4VB8r+ic46QT5Oj8lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFWCgH5y75rEvQPsNfOM7h/ONXFIwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUGDANBgkqhkiG 9w0BAQsFAAOCAQEAP7tqJzZbXlA5ztd3MP0gX8ADffZ/N9rBiY3DDbSy37tIOm+2 PSRHEIl6WOf3hRahCYw09DSbQuP/8vOdMA0w1Ax/+dCqCMsXR7IchdJPihzw0p2D kl2bMTqM42iXl7+Gq2whLIjKYOGf9L++gt34nXr6sg5vls+Kye9n7mxRkEkuhFig QeE8ksmO687NAWJeoEN5HJbqB9BZcTkGU69uzAphRXdUufaWqtF1vAE2P4eI5tDD 6PWG3JC0dVXdt7n2KmfGsEB7Vq99zdX/TKO2B90W0IPAsTNSQDxaNIwa+1pwuXnA LnO9X9ZDBiDzC8XYizCO4xRzzbK3Dd4OeKcP7A== -----END CERTIFICATE-----Generated at Fri Apr 19 16:11:25 2024 by rpki-client on console-ams.rpki-client.org