$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32382e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: N/yrvI7tL+jlkUacfcY4paSFQsZ5dn7VNzBq+JX+wZ8= Subject key identifier: 02:FD:EE:19:FC:3B:32:A3:02:F2:9A:13:A3:1F:EA:DF:B3:73:8A:D5 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 0567AF60C4C36320A213E1F70826864CE13C5A37 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32382e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:50 +0000 ROA not before: Sun 30 Jul 2023 23:58:50 +0000 ROA not after: Mon 29 Jul 2024 00:03:50 +0000 asID: 9794 IP address blocks: 202.148.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:67:af:60:c4:c3:63:20:a2:13:e1:f7:08:26:86:4c:e1:3c:5a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:50 2023 GMT Not After : Jul 29 00:03:50 2024 GMT Subject: CN=02FDEE19FC3B32A302F29A13A31FEADFB3738AD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e7:bb:0a:a1:33:b6:ae:d9:4c:ff:7a:b1:10: a4:02:6f:de:17:ce:d4:32:3c:fe:c4:4e:8a:44:e6: e7:ec:95:c8:c8:c3:80:68:0a:60:a1:dd:a2:3e:cb: 8b:8e:91:11:3f:f0:f9:21:62:46:cc:53:92:fd:8f: 85:52:cb:67:70:b5:b3:aa:e3:55:54:9c:a9:98:96: 67:8d:ca:fe:db:21:d6:92:50:7e:e6:1a:49:1c:e9: aa:be:6c:4a:ad:31:f3:3d:0c:1d:ab:83:c2:31:d1: 01:fd:51:8a:43:a9:58:b8:d0:7b:e0:89:27:4c:e7: 53:9a:94:ef:de:ce:66:77:30:96:f2:e0:00:2c:a9: 17:08:fc:99:38:83:c0:75:77:ba:65:80:4e:0f:ce: 71:e9:a2:0f:70:2c:8b:b3:e1:94:a0:7d:eb:68:de: 4b:b0:63:00:1c:12:07:fc:49:ff:c0:4e:2b:02:84: 44:c0:03:31:0a:04:dc:4b:b2:1f:89:2a:55:af:02: 93:67:34:d1:a7:4a:2f:b3:35:5f:61:33:67:01:b9: 50:4e:35:d9:42:ce:0c:41:2e:64:66:03:f8:d8:fa: aa:5b:61:d3:ca:9b:57:a7:8d:1b:ff:17:76:28:82: 80:46:ff:0b:dd:f0:81:fc:ad:8b:a0:3e:0e:b6:81: 72:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FD:EE:19:FC:3B:32:A3:02:F2:9A:13:A3:1F:EA:DF:B3:73:8A:D5 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.28.0/24 Signature Algorithm: sha256WithRSAEncryption b1:91:23:f6:c4:a5:10:c9:5d:12:bc:70:4c:f4:1d:35:da:3e: 07:a9:e0:3e:7f:4d:6c:ae:96:c0:c7:7b:a4:ed:39:3b:e0:7f: f4:af:d9:43:1b:97:64:64:d8:2b:a8:5c:c3:db:d3:fa:71:cb: 03:13:0c:71:06:09:21:85:ad:61:b3:cd:79:d7:e1:e5:eb:8b: fe:0b:fa:70:80:85:db:8f:af:58:b3:02:f7:d6:53:51:c3:c1: 0c:2e:e8:25:04:f4:5d:9f:da:6a:a4:85:7e:5d:0c:c9:1f:72: 6d:10:99:28:83:be:fc:cd:40:a4:ea:97:7d:e7:59:b5:a5:74: 6f:ce:2d:71:4e:ee:6c:c1:8d:c1:1b:4b:06:61:c1:6d:1c:91: 19:81:f9:2f:f9:70:cc:a8:ec:7d:e6:b0:89:66:25:55:f7:f0: 8c:51:15:0e:e2:86:00:ff:7b:0b:2d:bf:eb:53:a5:44:a0:61: 40:2f:6f:38:5a:29:c7:d0:ea:3b:bf:d2:fd:53:17:6f:ab:e3: 25:38:77:37:02:f5:88:4c:ad:25:cb:ce:57:39:8d:69:8f:cb: 47:99:c2:1d:0a:e8:ca:3e:fe:a3:50:4d:80:5d:ff:74:41:1e: ed:62:d6:57:29:bf:fb:f7:4a:6b:8a:31:f5:34:04:71:dc:74: 92:97:08:e8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBWevYMTDYyCiE+H3CCaGTOE8WjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTBaFw0yNDA3MjkwMDAzNTBaMDMxMTAvBgNV BAMTKDAyRkRFRTE5RkMzQjMyQTMwMkYyOUExM0EzMUZFQURGQjM3MzhBRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg57sKoTO2rtlM/3qxEKQCb94X ztQyPP7ETopE5ufslcjIw4BoCmCh3aI+y4uOkRE/8PkhYkbMU5L9j4VSy2dwtbOq 41VUnKmYlmeNyv7bIdaSUH7mGkkc6aq+bEqtMfM9DB2rg8Ix0QH9UYpDqVi40Hvg iSdM51OalO/ezmZ3MJby4AAsqRcI/Jk4g8B1d7plgE4PznHpog9wLIuz4ZSgfeto 3kuwYwAcEgf8Sf/ATisChETAAzEKBNxLsh+JKlWvApNnNNGnSi+zNV9hM2cBuVBO NdlCzgxBLmRmA/jY+qpbYdPKm1enjRv/F3YogoBG/wvd8IH8rYugPg62gXKpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUAv3uGfw7MqMC8poTox/q37NzitUwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBwwDQYJKoZIhvcN AQELBQADggEBALGRI/bEpRDJXRK8cEz0HTXaPgep4D5/TWyulsDHe6TtOTvgf/Sv 2UMbl2Rk2CuoXMPb0/pxywMTDHEGCSGFrWGzzXnX4eXri/4L+nCAhduPr1izAvfW U1HDwQwu6CUE9F2f2mqkhX5dDMkfcm0QmSiDvvzNQKTql33nWbWldG/OLXFO7mzB jcEbSwZhwW0ckRmB+S/5cMyo7H3msIlmJVX38IxRFQ7ihgD/ewstv+tTpUSgYUAv bzhaKcfQ6ju/0v1TF2+r4yU4dzcC9YhMrSXLzlc5jWmPy0eZwh0K6Mo+/qNQTYBd /3RBHu1i1lcpv/v3SmuKMfU0BHHcdJKXCOg= -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:28 2024 by rpki-client on console-fra.rpki-client.org