$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32362e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32362e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: nMn+THiaTHERfeci1mOpDzQRG/CVgxFQD/agPwko+kk= Subject key identifier: 1B:C8:F8:2D:9D:26:70:97:15:BE:CB:89:58:49:98:82:D9:9E:2B:AE Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 31DB0579BBC92BC959CDBB5E22A513ACF8D28078 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32362e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:58 +0000 ROA not before: Mon 01 Jul 2024 00:57:58 +0000 ROA not after: Mon 30 Jun 2025 01:02:58 +0000 asID: 9794 IP address blocks: 202.148.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:db:05:79:bb:c9:2b:c9:59:cd:bb:5e:22:a5:13:ac:f8:d2:80:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:58 2024 GMT Not After : Jun 30 01:02:58 2025 GMT Subject: CN=1BC8F82D9D26709715BECB8958499882D99E2BAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0e:4a:16:89:68:3c:f9:7e:9a:79:e8:d4:ab: 2c:9c:dc:3d:76:d2:18:23:7d:16:5b:0c:eb:7a:19: f2:79:54:52:1c:32:96:8c:c8:0a:a3:0e:a0:cc:f3: a4:b8:c6:2f:0e:a2:5c:0d:d9:68:47:d0:e6:3d:04: b5:00:3c:29:33:46:f3:8e:0e:68:b9:76:b2:27:9b: f4:3f:1f:87:20:d5:9f:73:88:21:e6:54:6e:e6:58: 24:56:cd:e5:9a:98:90:89:17:c5:22:61:2d:07:f8: 5d:00:b5:15:c1:8e:ea:b7:05:a2:46:2b:f4:c3:e4: 6d:c3:27:a0:95:b2:e1:2a:de:27:3d:17:bd:a7:d1: 69:59:6f:c5:e3:a5:55:25:9f:35:21:21:90:a3:74: 54:95:0c:32:0b:a4:52:83:39:34:13:81:97:72:c4: 02:0e:3b:7a:a9:b5:df:b3:70:05:b7:11:76:c7:0c: 02:1f:50:2a:a7:a1:23:b5:51:13:69:51:f1:18:af: db:44:74:18:e1:1d:cf:c5:a3:b3:f0:17:61:b7:a3: c4:e3:d3:b1:df:dd:ed:e7:be:6c:1f:96:1b:66:c5: dc:f7:0f:75:a4:4c:e7:ae:d5:a8:da:a6:45:88:b7: 95:7b:d8:59:d1:3f:30:ae:4d:29:3d:68:62:c2:60: fd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C8:F8:2D:9D:26:70:97:15:BE:CB:89:58:49:98:82:D9:9E:2B:AE X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32362e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.26.0/24 Signature Algorithm: sha256WithRSAEncryption ca:4e:c0:3b:02:6b:37:1e:48:3e:e3:8b:39:ac:54:3e:6a:2c: c1:c7:56:06:d0:6f:5a:da:a1:46:e9:bb:99:3e:1e:f2:d7:e5: 49:84:d6:8c:97:d0:e3:83:09:90:75:3a:81:de:76:3d:01:21: b4:0e:52:eb:71:94:b8:35:a5:b4:a3:52:58:cd:f4:d7:1e:48: 6a:fb:a0:4d:75:e9:f9:7a:cb:a2:40:a3:49:f8:ed:90:e9:63: 48:68:f6:76:2d:f5:50:15:75:cc:29:0c:91:06:a4:36:e4:b4: cc:47:7f:c4:cd:6c:4f:17:58:67:1a:8c:6b:dd:c5:11:2e:62: 11:cd:d6:95:23:7f:5c:e2:e6:c3:36:ac:77:e2:18:6a:51:10: 61:73:6f:99:02:a7:9a:02:d8:75:70:ac:65:e1:83:fc:dc:02: 29:3f:6b:b1:f4:61:82:b0:81:b2:50:a4:ee:1a:a9:cb:87:da: 58:6f:fe:ba:7b:ea:5f:83:a5:e2:e6:8b:04:93:7f:b8:75:0c: 7c:0b:7d:b6:12:b8:db:df:7b:fe:6b:a9:65:a4:1f:1a:77:07: 4d:c0:75:b9:a3:bd:8c:ac:cc:6c:fd:cd:fe:84:a3:5e:ce:24: 59:86:b9:34:c5:0b:1d:da:7d:26:d0:ac:5c:0b:de:04:cd:82: f8:89:2c:f9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMdsFebvJK8lZzbteIqUTrPjSgHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NThaFw0yNTA2MzAwMTAyNThaMDMxMTAvBgNV BAMTKDFCQzhGODJEOUQyNjcwOTcxNUJFQ0I4OTU4NDk5ODgyRDk5RTJCQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGDkoWiWg8+X6aeejUqyyc3D12 0hgjfRZbDOt6GfJ5VFIcMpaMyAqjDqDM86S4xi8OolwN2WhH0OY9BLUAPCkzRvOO Dmi5drInm/Q/H4cg1Z9ziCHmVG7mWCRWzeWamJCJF8UiYS0H+F0AtRXBjuq3BaJG K/TD5G3DJ6CVsuEq3ic9F72n0WlZb8XjpVUlnzUhIZCjdFSVDDILpFKDOTQTgZdy xAIOO3qptd+zcAW3EXbHDAIfUCqnoSO1URNpUfEYr9tEdBjhHc/Fo7PwF2G3o8Tj 07Hf3e3nvmwflhtmxdz3D3WkTOeu1ajapkWIt5V72FnRPzCuTSk9aGLCYP2fAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUG8j4LZ0mcJcVvsuJWEmYgtmeK64wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBowDQYJKoZIhvcN AQELBQADggEBAMpOwDsCazceSD7jizmsVD5qLMHHVgbQb1raoUbpu5k+HvLX5UmE 1oyX0OODCZB1OoHedj0BIbQOUutxlLg1pbSjUljN9NceSGr7oE116fl6y6JAo0n4 7ZDpY0ho9nYt9VAVdcwpDJEGpDbktMxHf8TNbE8XWGcajGvdxREuYhHN1pUjf1zi 5sM2rHfiGGpREGFzb5kCp5oC2HVwrGXhg/zcAik/a7H0YYKwgbJQpO4aqcuH2lhv /rp76l+DpeLmiwSTf7h1DHwLfbYSuNvfe/5rqWWkHxp3B03AdbmjvYyszGz9zf6E o17OJFmGuTTFCx3afSbQrFwL3gTNgviJLPk= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org