$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32372e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32372e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: hqJY2inyF1MUxOy6Bj69gV8ultSIi1cwGHxiVrE/Hp0= Subject key identifier: 3F:DB:A1:BB:C0:9D:E6:12:59:8D:FD:2E:A5:7E:68:C5:25:A8:E1:61 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 0DA843AE430CC4AC5422891298DAE554BB31E632 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32372e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:57 +0000 ROA not before: Mon 01 Jul 2024 00:57:57 +0000 ROA not after: Mon 30 Jun 2025 01:02:57 +0000 asID: 9794 IP address blocks: 202.148.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a8:43:ae:43:0c:c4:ac:54:22:89:12:98:da:e5:54:bb:31:e6:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:57 2024 GMT Not After : Jun 30 01:02:57 2025 GMT Subject: CN=3FDBA1BBC09DE612598DFD2EA57E68C525A8E161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:67:c4:72:e5:9d:06:da:ec:1a:8a:60:24:a1: 7e:b2:da:4f:f6:2c:3b:fc:8c:87:03:02:24:bc:e1: d4:02:77:9b:05:ac:32:2e:87:81:a4:24:59:cb:82: 2f:fb:71:c5:ff:70:27:dc:5b:bd:a7:4d:f9:bf:a1: 0d:38:f1:79:28:b9:90:8d:47:c7:53:8c:4e:87:7b: ea:e0:84:4b:18:50:92:47:1b:9c:e9:27:d7:09:33: bf:62:54:a5:37:5a:25:4e:e5:ab:b3:86:2b:8d:fd: 59:ea:f6:59:4e:15:6f:b0:1e:ba:a6:fd:00:5c:aa: be:47:b1:c0:9d:6b:ca:85:ad:80:25:2d:d6:be:11: 92:35:55:3c:99:9f:b9:9d:d9:4d:6f:3b:b1:f4:53: 32:2b:b1:47:58:f0:62:d0:91:38:9c:d4:a3:6b:30: 4d:2e:84:37:6c:4f:b4:8d:12:14:35:54:37:fb:0a: 3d:1b:89:25:4d:6c:6e:2c:51:82:d3:e1:56:43:f6: bc:31:e4:24:a9:83:44:ba:24:f1:bb:1e:54:48:85: 4a:58:b6:f9:43:05:ba:12:d7:83:46:9f:9c:f0:7a: 7f:2d:6c:66:6b:f8:47:26:4f:26:24:ab:c9:ad:ff: 58:a8:19:3d:a5:b0:2a:4a:c8:4b:22:db:61:d6:35: 82:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:DB:A1:BB:C0:9D:E6:12:59:8D:FD:2E:A5:7E:68:C5:25:A8:E1:61 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32372e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.27.0/24 Signature Algorithm: sha256WithRSAEncryption 39:d8:70:13:05:7a:4c:02:94:f6:7f:59:7e:e1:bf:84:a8:4a: 01:d3:30:79:d1:13:35:97:47:e1:3d:55:03:f7:f3:29:b1:ec: d2:c2:3d:aa:e0:58:ec:aa:7b:1b:12:b5:6e:f7:4d:0a:f6:d8: b6:6a:b6:a4:02:59:4f:ff:01:aa:12:17:6a:e5:d7:db:33:ac: 4a:6a:c5:37:9c:48:42:69:0b:e7:f0:30:30:48:4c:4b:dc:6e: 9f:d6:a7:32:33:59:a0:05:bf:2c:45:8d:43:57:5e:f3:77:35: 34:27:28:a7:8c:da:ba:e1:30:a1:67:e5:49:df:3a:06:d9:31: 58:72:c2:12:6c:4a:0a:b8:1d:02:c3:20:8d:09:70:a5:50:ce: f4:9e:6b:38:33:b8:95:7f:b6:ab:5b:89:0e:49:3e:36:db:9f: e4:9c:b8:ed:d1:54:e2:a9:85:d2:29:70:5a:2a:6a:96:a3:e4: 84:7e:fc:d7:a0:ed:8f:ec:95:e6:79:cd:26:06:d4:0f:c4:c6: d8:4b:f3:67:52:4e:a3:89:b3:fb:91:36:68:21:19:76:d9:5c: 73:c2:d3:32:b5:a5:80:28:62:08:f6:0a:cc:44:8f:cb:eb:b9: 09:5f:cf:f8:a3:1b:51:a5:19:f3:ba:d0:bb:71:d1:b1:8d:a2: 02:d6:5a:71 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDahDrkMMxKxUIokSmNrlVLsx5jIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTdaFw0yNTA2MzAwMTAyNTdaMDMxMTAvBgNV BAMTKDNGREJBMUJCQzA5REU2MTI1OThERkQyRUE1N0U2OEM1MjVBOEUxNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZ8Ry5Z0G2uwaimAkoX6y2k/2 LDv8jIcDAiS84dQCd5sFrDIuh4GkJFnLgi/7ccX/cCfcW72nTfm/oQ048XkouZCN R8dTjE6He+rghEsYUJJHG5zpJ9cJM79iVKU3WiVO5auzhiuN/Vnq9llOFW+wHrqm /QBcqr5HscCda8qFrYAlLda+EZI1VTyZn7md2U1vO7H0UzIrsUdY8GLQkTic1KNr ME0uhDdsT7SNEhQ1VDf7Cj0biSVNbG4sUYLT4VZD9rwx5CSpg0S6JPG7HlRIhUpY tvlDBboS14NGn5zwen8tbGZr+EcmTyYkq8mt/1ioGT2lsCpKyEsi22HWNYINAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUP9uhu8Cd5hJZjf0upX5oxSWo4WEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBswDQYJKoZIhvcN AQELBQADggEBADnYcBMFekwClPZ/WX7hv4SoSgHTMHnREzWXR+E9VQP38ymx7NLC PargWOyqexsStW73TQr22LZqtqQCWU//AaoSF2rl19szrEpqxTecSEJpC+fwMDBI TEvcbp/WpzIzWaAFvyxFjUNXXvN3NTQnKKeM2rrhMKFn5UnfOgbZMVhywhJsSgq4 HQLDII0JcKVQzvSeazgzuJV/tqtbiQ5JPjbbn+ScuO3RVOKphdIpcFoqapaj5IR+ /Neg7Y/sleZ5zSYG1A/ExthL82dSTqOJs/uRNmghGXbZXHPC0zK1pYAoYgj2CsxE j8vruQlfz/ijG1GlGfO60Ltx0bGNogLWWnE= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org