$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32382e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 8huDX0VpkcL0QtDlHf05W/Y6XUGTBq5sswZVRAovvyg= Subject key identifier: DA:57:81:BB:16:65:9E:F7:67:90:6D:1F:2E:FD:C5:4A:DF:44:9E:34 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 08143D80805CA38E2C01E6F98971B37AE42661F1 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32382e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:03:01 +0000 ROA not before: Mon 01 Jul 2024 00:58:01 +0000 ROA not after: Mon 30 Jun 2025 01:03:01 +0000 asID: 9794 IP address blocks: 202.148.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:14:3d:80:80:5c:a3:8e:2c:01:e6:f9:89:71:b3:7a:e4:26:61:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:01 2024 GMT Not After : Jun 30 01:03:01 2025 GMT Subject: CN=DA5781BB16659EF767906D1F2EFDC54ADF449E34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f0:f6:bc:13:61:7f:4c:20:24:b8:97:d2:8f: aa:85:ce:b0:86:fd:43:9a:4a:23:36:de:5d:bd:62: f0:4a:01:d9:b7:17:8b:92:31:18:63:67:12:ba:d7: be:d9:d3:c8:24:03:7d:3e:7d:6b:e3:ec:b0:94:39: 1e:c4:68:c0:7a:60:b8:c8:cb:b9:a5:c7:d1:e9:f6: 7c:53:f7:6d:01:04:65:52:0e:cf:ca:32:79:ec:f5: 31:0f:0f:cc:c0:9e:71:32:36:f7:fd:13:f6:c2:ca: 6c:b3:36:de:81:89:09:1d:23:76:8d:e3:40:b9:64: 22:41:77:6d:6f:6f:85:37:88:42:e2:1d:f8:21:28: b3:29:85:88:7c:05:9f:f2:98:fb:1c:38:4f:92:22: fe:1c:cb:50:94:c7:24:c4:1b:71:34:ef:19:5c:4b: 0b:5d:95:02:5d:99:b3:65:a5:42:1b:3b:67:7e:e0: 3a:58:4d:a1:a5:a7:4a:0d:68:61:9f:48:36:06:bf: eb:90:da:c4:60:da:e3:41:12:93:fe:ee:17:ce:da: e4:ed:ee:d3:ab:10:8a:5a:48:f2:e5:bf:7d:6e:da: d5:f2:80:d2:d7:9f:76:df:5b:27:0d:dd:f1:6b:21: c2:92:cc:33:a8:ca:a1:c1:d5:7e:85:f8:dd:f4:c2: 60:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:57:81:BB:16:65:9E:F7:67:90:6D:1F:2E:FD:C5:4A:DF:44:9E:34 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.28.0/24 Signature Algorithm: sha256WithRSAEncryption 93:e9:f5:21:9b:d2:4e:b9:f7:23:98:0c:57:26:ea:78:aa:ef: 7d:ec:2a:66:a7:46:19:e8:13:3f:86:e5:69:59:a9:7a:d4:0f: 51:9c:4a:d8:84:40:6d:69:a1:6f:81:46:6b:fd:3c:67:71:17: dd:5c:16:2b:25:75:74:47:36:51:05:3c:94:55:29:3c:88:29: 01:c3:d4:53:28:0e:70:70:17:f6:e1:e8:6a:e4:42:9e:80:e7: f7:99:e6:b5:42:6b:a6:3c:b8:48:6c:a7:a0:00:04:12:13:d7: 89:75:5c:54:45:3b:cb:e7:6b:b2:d7:7a:a0:0c:bc:4c:f7:a4: 3d:8d:1b:97:64:75:68:c4:0d:d1:e0:96:c3:50:9a:9b:5c:b9: 3b:de:6d:6c:21:51:6f:01:11:76:f4:08:35:2b:6f:14:dd:72: e7:f0:4b:7e:37:a8:d5:7f:fb:db:86:54:92:66:46:4e:9d:ab: 33:f4:73:60:a0:f9:1f:03:5e:42:88:dc:d2:d1:f7:7d:ac:f5: e1:c8:3e:ce:5b:cc:75:8b:d5:d3:02:3c:fb:1a:58:93:60:1d: 7c:2d:1f:b6:3d:bf:fc:b7:72:96:74:17:71:9e:5a:cc:f9:87: 58:1c:a3:6f:5c:e2:2b:ab:9c:0d:3a:ff:c9:76:1f:ac:1b:f1: 34:ab:70:c7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCBQ9gIBco44sAeb5iXGzeuQmYfEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDFaFw0yNTA2MzAwMTAzMDFaMDMxMTAvBgNV BAMTKERBNTc4MUJCMTY2NTlFRjc2NzkwNkQxRjJFRkRDNTRBREY0NDlFMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd8Pa8E2F/TCAkuJfSj6qFzrCG /UOaSiM23l29YvBKAdm3F4uSMRhjZxK6177Z08gkA30+fWvj7LCUOR7EaMB6YLjI y7mlx9Hp9nxT920BBGVSDs/KMnns9TEPD8zAnnEyNvf9E/bCymyzNt6BiQkdI3aN 40C5ZCJBd21vb4U3iELiHfghKLMphYh8BZ/ymPscOE+SIv4cy1CUxyTEG3E07xlc SwtdlQJdmbNlpUIbO2d+4DpYTaGlp0oNaGGfSDYGv+uQ2sRg2uNBEpP+7hfO2uTt 7tOrEIpaSPLlv31u2tXygNLXn3bfWycN3fFrIcKSzDOoyqHB1X6F+N30wmBdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU2leBuxZlnvdnkG0fLv3FSt9EnjQwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBwwDQYJKoZIhvcN AQELBQADggEBAJPp9SGb0k659yOYDFcm6niq733sKmanRhnoEz+G5WlZqXrUD1Gc StiEQG1poW+BRmv9PGdxF91cFisldXRHNlEFPJRVKTyIKQHD1FMoDnBwF/bh6Grk Qp6A5/eZ5rVCa6Y8uEhsp6AABBIT14l1XFRFO8vna7LXeqAMvEz3pD2NG5dkdWjE DdHglsNQmptcuTvebWwhUW8BEXb0CDUrbxTdcufwS343qNV/+9uGVJJmRk6dqzP0 c2Cg+R8DXkKI3NLR932s9eHIPs5bzHWL1dMCPPsaWJNgHXwtH7Y9v/y3cpZ0F3Ge Wsz5h1gco29c4iurnA06/8l2H6wb8TSrcMc= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org