$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e32342e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: YfJKuUY/AbRgnmE3Pp7duZ0VjH9HrSmJOQpOmWWXiko= Subject key identifier: A4:4A:F1:AA:A8:E9:DE:4D:7B:36:4E:BE:75:C1:6D:7E:64:0B:DD:9D Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2D8E9E96A53BF5344FDD80814E313F7A6E2C555D Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:57 +0000 ROA not before: Mon 01 Jul 2024 00:57:57 +0000 ROA not after: Mon 30 Jun 2025 01:02:57 +0000 asID: 38778 IP address blocks: 202.148.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:8e:9e:96:a5:3b:f5:34:4f:dd:80:81:4e:31:3f:7a:6e:2c:55:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:57 2024 GMT Not After : Jun 30 01:02:57 2025 GMT Subject: CN=A44AF1AAA8E9DE4D7B364EBE75C16D7E640BDD9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4f:6b:a7:8b:c7:db:e2:b0:fe:d0:0e:49:f5: 7a:ac:28:6a:74:7a:4c:7d:8f:16:2d:2f:da:d5:46: f6:ac:95:f7:e7:4d:17:8c:e0:d8:6b:f5:4b:a7:6c: 37:00:7c:33:14:71:5c:fd:29:6c:3b:52:b1:f6:63: a1:df:fd:72:6a:12:90:5f:38:4e:f2:db:ac:cc:eb: 32:e7:25:3b:67:26:f1:bb:c6:77:6c:3b:86:1b:d6: 56:a2:53:bc:83:74:1d:0f:df:ce:7c:20:06:b7:65: 37:56:07:bb:cb:42:45:e6:11:0c:65:d2:56:5f:cf: 7b:89:b5:73:04:c5:1e:b7:23:4c:dd:e3:b9:c3:2f: 70:c3:f1:60:97:78:24:8d:94:02:75:3e:99:8e:31: 77:d1:57:47:41:bb:de:ab:a5:54:56:82:7f:31:0b: 3e:56:a9:03:03:c2:99:62:4a:e7:9d:3d:74:f3:12: 98:a7:26:6a:70:e2:4d:a1:6a:63:80:4a:c1:1d:25: b6:0e:ca:fc:96:a4:ab:4f:6b:79:71:40:c8:0d:95: f7:23:a1:9a:84:c0:04:a7:16:88:21:2d:86:c3:aa: 9e:ca:08:63:8c:9f:ce:da:00:73:a9:5f:f1:2d:2f: e6:21:52:c4:33:e5:74:24:96:62:0d:72:5d:a6:7a: 6e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:4A:F1:AA:A8:E9:DE:4D:7B:36:4E:BE:75:C1:6D:7E:64:0B:DD:9D X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.24.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:e2:a0:9b:76:2f:1e:5d:ab:4b:0b:63:d8:c2:d8:1f:f1:d7: f7:3b:e6:e5:09:02:71:9f:37:46:fa:01:7a:0c:9b:53:ea:f0: 26:6b:64:60:02:b4:05:fe:e2:f4:69:d0:7f:98:6f:7d:96:3b: 30:c2:ab:c2:76:b3:f7:4a:d6:f0:57:e6:b3:a5:72:ed:26:02: 2f:97:b8:4f:c9:db:71:0b:4e:a4:24:20:7b:4e:31:03:e4:a8: f2:f2:be:6b:0a:19:79:3f:b7:c9:16:cc:52:55:51:fa:a1:8c: 4d:87:30:98:ec:ff:28:d8:45:8d:50:b8:1a:a4:cd:35:fb:1e: 73:a7:f5:5a:54:2b:20:e3:1b:c5:64:03:bf:92:d0:ba:36:82: fb:46:ce:2f:06:e9:90:2f:46:22:b5:64:b2:39:4a:50:f1:91: 1e:85:b8:37:da:24:c0:ca:75:a5:7c:7e:21:ca:4f:98:bb:09: cb:01:72:ce:24:8e:b5:44:8e:ef:83:23:7e:82:9b:ea:09:84: ec:88:ed:72:8c:71:0e:83:46:9a:b6:0c:f4:ae:99:d1:0f:d7: 15:52:ff:d2:e5:2f:85:20:5e:37:de:d2:be:b8:de:c7:87:88: d6:64:40:a1:87:87:dd:38:c5:5b:b4:da:ca:f5:83:08:48:f9: 31:60:57:6d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULY6elqU79TRP3YCBTjE/em4sVV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTdaFw0yNTA2MzAwMTAyNTdaMDMxMTAvBgNV BAMTKEE0NEFGMUFBQThFOURFNEQ3QjM2NEVCRTc1QzE2RDdFNjQwQkREOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsT2uni8fb4rD+0A5J9XqsKGp0 ekx9jxYtL9rVRvaslffnTReM4Nhr9UunbDcAfDMUcVz9KWw7UrH2Y6Hf/XJqEpBf OE7y26zM6zLnJTtnJvG7xndsO4Yb1laiU7yDdB0P3858IAa3ZTdWB7vLQkXmEQxl 0lZfz3uJtXMExR63I0zd47nDL3DD8WCXeCSNlAJ1PpmOMXfRV0dBu96rpVRWgn8x Cz5WqQMDwpliSuedPXTzEpinJmpw4k2hamOASsEdJbYOyvyWpKtPa3lxQMgNlfcj oZqEwASnFoghLYbDqp7KCGOMn87aAHOpX/EtL+YhUsQz5XQklmINcl2mem4LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpErxqqjp3k17Nk6+dcFtfmQL3Z0wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUGDANBgkqhkiG 9w0BAQsFAAOCAQEATeKgm3YvHl2rSwtj2MLYH/HX9zvm5QkCcZ83RvoBegybU+rw JmtkYAK0Bf7i9GnQf5hvfZY7MMKrwnaz90rW8Ffms6Vy7SYCL5e4T8nbcQtOpCQg e04xA+So8vK+awoZeT+3yRbMUlVR+qGMTYcwmOz/KNhFjVC4GqTNNfsec6f1WlQr IOMbxWQDv5LQujaC+0bOLwbpkC9GIrVksjlKUPGRHoW4N9okwMp1pXx+IcpPmLsJ ywFyziSOtUSO74MjfoKb6gmE7IjtcoxxDoNGmrYM9K6Z0Q/XFVL/0uUvhSBeN97S vrjex4eI1mRAoYeH3TjFW7TayvWDCEj5MWBXbQ== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org