$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e332e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 7NxK7Ab8xnDuxNwM13v8HIErCX7R01vQwY6bZmsQm3c= Subject key identifier: 11:F2:64:82:8D:0D:54:C9:D8:58:A3:7D:30:CF:01:18:EE:30:67:86 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 433D7ABA58830439631943293F3F35DE64516CD9 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e332e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:48 +0000 ROA not before: Sun 30 Jul 2023 23:58:48 +0000 ROA not after: Mon 29 Jul 2024 00:03:48 +0000 asID: 9794 IP address blocks: 202.148.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:3d:7a:ba:58:83:04:39:63:19:43:29:3f:3f:35:de:64:51:6c:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:48 2023 GMT Not After : Jul 29 00:03:48 2024 GMT Subject: CN=11F264828D0D54C9D858A37D30CF0118EE306786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:38:26:dd:24:7b:f3:cd:31:5f:84:b6:6a:64: a1:35:64:7b:19:20:11:6d:49:0d:84:8c:2f:2a:d7: 7c:ec:ef:55:ed:a4:f4:68:76:c8:c8:7b:64:37:77: 68:7a:ab:0f:bf:5b:71:67:a4:8f:7b:2a:81:d1:a3: fa:ab:7c:fd:e9:9a:a9:8e:b5:a0:30:35:22:d9:df: b2:9d:6e:43:c1:9c:73:6c:ee:fe:52:7d:a7:1b:21: fa:9c:34:98:20:52:c6:85:e6:9b:1a:00:46:55:25: ce:fc:71:ec:4a:63:1b:75:7b:89:4d:23:29:89:72: 4f:47:03:8b:b8:8f:a0:dc:2f:c7:92:b9:74:8e:67: b3:fd:3f:ea:a7:0a:1f:9d:d7:bd:8f:a7:50:c8:25: cd:19:3c:f5:27:20:1e:26:47:11:a8:b1:fb:88:10: 64:eb:34:86:a8:61:23:67:c9:56:52:57:0e:c8:56: cc:63:eb:5b:5a:62:96:69:68:58:7b:b5:72:b0:42: 51:e4:fd:21:89:66:04:fd:af:1e:5c:3a:24:77:bf: 59:8f:c2:b7:ce:a4:04:cd:74:bf:eb:97:6c:88:ba: 16:25:19:ab:ed:8f:f0:06:84:bf:0f:ff:b3:c8:9c: 79:1b:f8:53:f6:2e:0c:5c:06:47:1b:3c:65:f0:51: ea:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:F2:64:82:8D:0D:54:C9:D8:58:A3:7D:30:CF:01:18:EE:30:67:86 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.3.0/24 Signature Algorithm: sha256WithRSAEncryption 35:91:82:fb:9f:ac:f0:21:89:4c:f7:f5:a1:f3:45:91:89:af: e6:76:d1:c0:2a:29:be:de:e2:cb:7e:a3:90:44:e2:e2:93:aa: 0c:5e:c3:39:1d:f4:ee:93:28:45:f2:83:2f:1b:f5:50:2f:95: 5d:e7:62:96:93:6e:da:77:54:1f:22:38:09:ca:07:a5:5a:a4: 3e:ac:8c:68:4c:0b:44:42:42:fc:1e:82:d2:20:83:68:e5:11: 0b:db:ab:63:f3:29:9c:4c:9a:dd:c5:28:28:0d:3d:2a:70:5e: 5c:b3:3a:e1:22:31:ae:65:7a:f4:de:0c:8a:ad:d0:f2:8a:d7: 18:1c:0b:73:0f:88:a7:86:1f:f3:e6:b6:ce:df:5a:d2:52:31: 06:7a:a1:24:36:e9:23:85:ce:61:5b:1e:e4:58:ec:de:a4:3d: 97:ac:8e:70:18:12:1b:be:ab:98:cb:a9:59:1d:c9:78:aa:99: 26:50:d7:39:51:94:44:fd:3d:43:66:c8:23:4a:0e:8f:91:b3: 9d:71:55:67:e1:34:f5:60:17:95:af:93:e3:24:48:e5:28:0c: a6:8b:e0:04:d2:63:cc:82:56:3c:60:35:af:17:1a:4d:d0:65: 5a:48:84:a2:c5:2e:8e:1d:2c:32:14:23:ea:e3:bd:14:52:b8: 73:a9:f8:7c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUQz16uliDBDljGUMpPz813mRRbNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDhaFw0yNDA3MjkwMDAzNDhaMDMxMTAvBgNV BAMTKDExRjI2NDgyOEQwRDU0QzlEODU4QTM3RDMwQ0YwMTE4RUUzMDY3ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyOCbdJHvzzTFfhLZqZKE1ZHsZ IBFtSQ2EjC8q13zs71XtpPRodsjIe2Q3d2h6qw+/W3FnpI97KoHRo/qrfP3pmqmO taAwNSLZ37KdbkPBnHNs7v5SfacbIfqcNJggUsaF5psaAEZVJc78cexKYxt1e4lN IymJck9HA4u4j6DcL8eSuXSOZ7P9P+qnCh+d172Pp1DIJc0ZPPUnIB4mRxGosfuI EGTrNIaoYSNnyVZSVw7IVsxj61taYpZpaFh7tXKwQlHk/SGJZgT9rx5cOiR3v1mP wrfOpATNdL/rl2yIuhYlGavtj/AGhL8P/7PInHkb+FP2LgxcBkcbPGXwUeonAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUEfJkgo0NVMnYWKN9MM8BGO4wZ4YwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAMwDQYJKoZIhvcNAQEL BQADggEBADWRgvufrPAhiUz39aHzRZGJr+Z20cAqKb7e4st+o5BE4uKTqgxewzkd 9O6TKEXygy8b9VAvlV3nYpaTbtp3VB8iOAnKB6VapD6sjGhMC0RCQvwegtIgg2jl EQvbq2PzKZxMmt3FKCgNPSpwXlyzOuEiMa5levTeDIqt0PKK1xgcC3MPiKeGH/Pm ts7fWtJSMQZ6oSQ26SOFzmFbHuRY7N6kPZesjnAYEhu+q5jLqVkdyXiqmSZQ1zlR lET9PUNmyCNKDo+Rs51xVWfhNPVgF5Wvk+MkSOUoDKaL4ATSY8yCVjxgNa8XGk3Q ZVpIhKLFLo4dLDIUI+rjvRRSuHOp+Hw= -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:26 2024 by rpki-client on console-ams.rpki-client.org