$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e32352e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: Gj9wnAjTE9EIy05ANKIktQWXlrihFWllUyLsi+TK7jw= Subject key identifier: EF:E8:67:15:B4:B3:42:F2:29:25:52:0A:AD:4A:78:E8:58:FD:07:9F Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 6E607C87D66E8817A8D6668676CE3F6DB357B098 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:57 +0000 ROA not before: Mon 01 Jul 2024 00:57:57 +0000 ROA not after: Mon 30 Jun 2025 01:02:57 +0000 asID: 38778 IP address blocks: 202.148.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:60:7c:87:d6:6e:88:17:a8:d6:66:86:76:ce:3f:6d:b3:57:b0:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:57 2024 GMT Not After : Jun 30 01:02:57 2025 GMT Subject: CN=EFE86715B4B342F22925520AAD4A78E858FD079F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4d:9d:a2:71:d0:5f:d7:69:9c:f9:39:02:59: d8:11:91:9a:f3:f4:24:68:73:1e:e5:4b:69:b0:e0: 4d:e9:86:34:6e:71:b4:26:45:db:3a:05:64:80:ac: a6:8b:ab:5a:00:b3:81:1f:8e:b0:06:ea:b5:55:62: 15:a5:8f:b4:34:f8:87:55:24:9c:2e:46:aa:fa:c6: b9:d7:aa:87:14:f8:35:83:ee:53:3f:ee:b7:0e:f1: d9:4e:87:c3:17:73:2c:f2:d5:bb:30:e1:ad:7f:c8: 81:f0:14:47:39:ba:3d:07:df:ec:6f:a2:7b:6b:eb: 89:f8:e8:b5:79:c2:af:61:dc:ea:04:a0:12:4c:d0: ab:46:cc:f3:5c:86:8a:e5:f7:23:77:44:9a:10:f8: 47:f3:dc:c9:58:5e:9a:e0:6f:79:95:57:4c:92:b8: e4:80:f8:9d:9a:a7:2e:ca:82:a7:8b:4e:4f:1b:75: 92:bb:c7:2d:49:3e:a7:9d:b8:3b:da:86:58:28:0b: fd:2a:da:4a:d2:2c:90:cb:ac:d2:cd:83:7e:ff:28: fc:92:b5:37:79:da:18:25:19:11:b5:5e:1c:6e:86: c7:82:33:af:e5:83:59:fa:63:99:6e:bd:d2:5c:d5: c0:dc:ab:bf:42:13:85:32:56:9d:38:72:4e:5a:56: a6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E8:67:15:B4:B3:42:F2:29:25:52:0A:AD:4A:78:E8:58:FD:07:9F X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.25.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:a2:1c:dd:56:db:d2:f1:b7:b2:67:45:33:3c:4e:3c:fa:b1: b7:6e:4e:2c:9c:65:e4:ca:eb:21:4d:9a:1c:d5:fc:6e:9e:4b: 0a:b3:ff:12:3e:cd:27:c6:24:78:c3:bd:a5:dc:88:76:27:4a: a0:2f:ad:de:69:1b:31:f2:1c:be:f0:54:15:cc:d6:0f:90:ec: 4c:98:58:d4:cd:8e:1c:4b:de:90:88:5d:1c:16:a4:bc:c8:d1: bb:f4:3c:eb:ee:99:6a:71:25:84:24:31:98:d6:71:84:5e:bf: 4a:c6:f0:71:4a:aa:c7:2f:11:f0:c7:f0:a3:3f:08:41:cf:45: 76:20:f2:98:71:8a:02:75:73:d6:08:35:e5:db:3b:41:11:75: 9b:d6:a8:4d:ba:88:ea:01:ba:cb:d7:b6:de:e3:0f:5e:5d:46: cb:69:14:b6:48:02:d5:fb:17:cf:d6:1e:98:20:22:b3:f4:f1: ff:d7:95:fc:47:83:9e:10:c3:b4:35:2f:ba:15:93:97:8c:9e: 8f:e2:97:56:7c:9e:cc:44:8d:53:62:3d:1d:c9:e7:cc:ee:0d: 85:e2:df:4a:e0:62:9f:f1:dc:ec:68:df:ab:49:09:81:81:d4: dd:30:cd:53:9a:be:3e:0f:fc:4f:75:0f:3f:f9:e2:db:39:d0: 84:dd:6f:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbmB8h9ZuiBeo1maGds4/bbNXsJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTdaFw0yNTA2MzAwMTAyNTdaMDMxMTAvBgNV BAMTKEVGRTg2NzE1QjRCMzQyRjIyOTI1NTIwQUFENEE3OEU4NThGRDA3OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlTZ2icdBf12mc+TkCWdgRkZrz 9CRocx7lS2mw4E3phjRucbQmRds6BWSArKaLq1oAs4EfjrAG6rVVYhWlj7Q0+IdV JJwuRqr6xrnXqocU+DWD7lM/7rcO8dlOh8MXcyzy1bsw4a1/yIHwFEc5uj0H3+xv ontr64n46LV5wq9h3OoEoBJM0KtGzPNchorl9yN3RJoQ+Efz3MlYXprgb3mVV0yS uOSA+J2apy7KgqeLTk8bdZK7xy1JPqeduDvahlgoC/0q2krSLJDLrNLNg37/KPyS tTd52hglGRG1XhxuhseCM6/lg1n6Y5luvdJc1cDcq79CE4UyVp04ck5aVqZFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7+hnFbSzQvIpJVIKrUp46Fj9B58wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUGTANBgkqhkiG 9w0BAQsFAAOCAQEAG6Ic3Vbb0vG3smdFMzxOPPqxt25OLJxl5MrrIU2aHNX8bp5L CrP/Ej7NJ8YkeMO9pdyIdidKoC+t3mkbMfIcvvBUFczWD5DsTJhY1M2OHEvekIhd HBakvMjRu/Q86+6ZanElhCQxmNZxhF6/SsbwcUqqxy8R8Mfwoz8IQc9FdiDymHGK AnVz1gg15ds7QRF1m9aoTbqI6gG6y9e23uMPXl1Gy2kUtkgC1fsXz9YemCAis/Tx /9eV/EeDnhDDtDUvuhWTl4yej+KXVnyezESNU2I9HcnnzO4NheLfSuBin/Hc7Gjf q0kJgYHU3TDNU5q+Pg/8T3UPP/ni2znQhN1v7g== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org