$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32392e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32392e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: x8cG4Z6R1sRuZfI76epWtNs6JJSsoZxvS4hHXNH50RQ= Subject key identifier: 17:CC:D4:AA:B4:BC:7B:14:92:7E:1F:A0:91:1F:D3:44:0E:08:EE:45 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2A0564398EED5F59750A51F5701E645B44B35112 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32392e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:58 +0000 ROA not before: Mon 01 Jul 2024 00:57:58 +0000 ROA not after: Mon 30 Jun 2025 01:02:58 +0000 asID: 9794 IP address blocks: 202.148.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:05:64:39:8e:ed:5f:59:75:0a:51:f5:70:1e:64:5b:44:b3:51:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:58 2024 GMT Not After : Jun 30 01:02:58 2025 GMT Subject: CN=17CCD4AAB4BC7B14927E1FA0911FD3440E08EE45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6a:f0:ee:bc:cc:cf:12:15:38:7d:90:c7:54: 4d:1f:d9:21:4b:0b:d0:71:8e:27:7d:93:98:1b:4f: 1d:c8:68:bc:76:fd:c1:2e:46:2a:21:1b:96:bc:14: c8:0f:e0:5d:df:f5:50:34:e6:d4:61:fa:fe:da:38: d0:ca:ff:87:7c:02:b5:11:28:0a:f6:42:9f:49:1d: 27:69:ee:0c:1e:53:37:f6:85:0a:ed:26:f6:1f:f2: a2:8c:57:31:b1:99:0a:61:07:b6:72:bb:35:62:3f: 85:ac:2d:e0:f0:0c:d6:c2:11:d3:7f:b6:bf:bb:c4: 8a:ba:26:27:36:91:01:f4:e0:73:9c:37:e5:d4:48: 70:67:96:ce:71:99:0b:c7:71:11:67:d0:6d:cd:85: 3f:2b:53:b4:d8:d1:b7:89:ab:e2:d9:b1:3a:0a:eb: 26:fe:71:31:8c:54:88:88:80:98:bf:13:4e:f0:db: 3e:7e:d1:54:60:0c:a4:05:aa:1b:1f:84:92:f8:cd: 9c:37:f3:db:db:e6:ee:40:f4:8d:de:d4:fa:97:bd: 0a:b1:53:c5:be:cd:a1:bb:05:57:a8:ea:f8:84:a4: 4f:4a:7b:53:16:26:c2:05:90:de:67:e8:70:a4:d0: 8e:bf:f6:72:43:64:e6:65:a1:bc:eb:02:d3:77:22: ea:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CC:D4:AA:B4:BC:7B:14:92:7E:1F:A0:91:1F:D3:44:0E:08:EE:45 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32392e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.29.0/24 Signature Algorithm: sha256WithRSAEncryption 04:6b:f7:49:7a:66:8a:aa:fb:f8:2b:9d:25:74:a9:4c:1b:3f: 3f:f1:e0:3a:30:f9:98:3c:79:fc:15:2f:ad:a8:ad:73:5d:5c: 94:f8:f7:3c:1f:72:d9:96:e2:01:6d:51:3b:47:52:04:1b:77: 85:22:07:80:f1:de:9b:bc:ae:a9:7e:fd:50:c4:84:c1:b3:96: 1b:71:89:70:72:8e:e5:4c:11:dc:45:a9:18:04:fe:3c:6c:d9: a2:b1:59:9f:f4:81:87:7f:92:fd:70:ff:0f:6e:97:7f:61:fb: 83:cf:30:3e:69:36:c2:f3:a4:5e:f2:82:d9:be:37:da:03:25: 7f:2c:0b:4e:09:29:98:05:ef:aa:cf:43:71:f7:6f:c8:5a:7b: 7f:7a:a5:c9:f4:bc:7c:77:9f:66:52:4f:58:a8:11:2d:82:6c: 77:15:58:36:7a:ce:16:b3:05:5d:77:a4:54:98:86:b7:52:55: 8d:9a:15:aa:8f:1a:b9:3e:b8:9f:4a:bb:0a:90:bf:39:29:09: 4f:4d:36:2e:c2:30:7e:f9:30:5c:9f:cb:af:0c:ea:6c:e3:ee: e1:f4:1c:a9:b6:79:c0:d5:7d:e9:f2:4b:93:73:b6:6b:8d:e3: 7f:18:21:93:9d:cb:de:64:5d:22:70:4d:78:1b:e9:61:cf:b4: d1:2b:36:52 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKgVkOY7tX1l1ClH1cB5kW0SzURIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NThaFw0yNTA2MzAwMTAyNThaMDMxMTAvBgNV BAMTKDE3Q0NENEFBQjRCQzdCMTQ5MjdFMUZBMDkxMUZEMzQ0MEUwOEVFNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbavDuvMzPEhU4fZDHVE0f2SFL C9Bxjid9k5gbTx3IaLx2/cEuRiohG5a8FMgP4F3f9VA05tRh+v7aONDK/4d8ArUR KAr2Qp9JHSdp7gweUzf2hQrtJvYf8qKMVzGxmQphB7ZyuzViP4WsLeDwDNbCEdN/ tr+7xIq6Jic2kQH04HOcN+XUSHBnls5xmQvHcRFn0G3NhT8rU7TY0beJq+LZsToK 6yb+cTGMVIiIgJi/E07w2z5+0VRgDKQFqhsfhJL4zZw389vb5u5A9I3e1PqXvQqx U8W+zaG7BVeo6viEpE9Ke1MWJsIFkN5n6HCk0I6/9nJDZOZlobzrAtN3IuqhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUF8zUqrS8exSSfh+gkR/TRA4I7kUwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlB0wDQYJKoZIhvcN AQELBQADggEBAARr90l6Zoqq+/grnSV0qUwbPz/x4Dow+Zg8efwVL62orXNdXJT4 9zwfctmW4gFtUTtHUgQbd4UiB4Dx3pu8rql+/VDEhMGzlhtxiXByjuVMEdxFqRgE /jxs2aKxWZ/0gYd/kv1w/w9ul39h+4PPMD5pNsLzpF7ygtm+N9oDJX8sC04JKZgF 76rPQ3H3b8hae396pcn0vHx3n2ZST1ioES2CbHcVWDZ6zhazBV13pFSYhrdSVY2a FaqPGrk+uJ9KuwqQvzkpCU9NNi7CMH75MFyfy68M6mzj7uH0HKm2ecDVfenyS5Nz tmuN438YIZOdy95kXSJwTXgb6WHPtNErNlI= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org