$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e332e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: nhjOhrdnajhIByoJhoufpy9AGq1jBwONO/rmlQbdsJc= Subject key identifier: DF:AC:2E:16:34:C2:2B:A6:67:8B:B8:F2:9E:A5:B1:30:16:0F:40:8C Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 1D7D7496DD2C259464CAF4925983B5A93FDD7B7B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e332e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:55 +0000 ROA not before: Mon 01 Jul 2024 00:57:55 +0000 ROA not after: Mon 30 Jun 2025 01:02:55 +0000 asID: 9794 IP address blocks: 202.148.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 10:09:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:7d:74:96:dd:2c:25:94:64:ca:f4:92:59:83:b5:a9:3f:dd:7b:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:55 2024 GMT Not After : Jun 30 01:02:55 2025 GMT Subject: CN=DFAC2E1634C22BA6678BB8F29EA5B130160F408C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7b:ca:51:6a:d1:71:52:65:28:77:c5:a4:0d: a5:69:f8:3e:97:39:8b:7f:d0:ae:08:fd:7a:92:af: d6:97:bf:a3:bb:85:76:90:9b:24:a9:e9:da:7d:48: 38:88:57:2f:4f:ef:fc:87:55:5e:82:c5:4a:98:34: 9a:03:2d:5a:b0:9d:45:3a:4c:15:3d:de:c8:2c:e2: f5:af:6d:eb:c5:5b:68:13:d0:31:bb:63:72:fe:a8: ee:8f:de:d2:2d:71:e6:59:47:eb:dc:2f:a2:01:b9: fd:89:78:08:e8:bd:66:8d:e8:e8:eb:8b:97:3e:35: 86:cc:f1:46:af:9d:d0:87:c8:9f:d0:d9:0d:fc:b1: 30:0c:16:eb:44:79:fc:69:45:ad:3a:a3:67:e1:c1: d5:7b:c0:7b:55:ba:4e:3b:11:c8:60:14:70:f6:cd: 13:9b:c7:94:79:52:f1:66:9e:5b:1d:e3:bc:99:c5: 54:01:98:2b:11:77:f0:eb:61:c9:34:cf:90:25:fd: 2b:35:93:b3:fd:c0:ed:f7:5b:38:4e:a7:27:a9:73: 74:56:a2:95:87:bd:f4:e2:8e:b9:b4:3d:45:54:6f: bd:e0:35:b4:7f:5b:c4:1d:c9:e7:b4:b1:d9:b0:13: 25:69:7d:d4:be:a2:9e:1c:74:37:48:82:4e:be:c7: 64:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:AC:2E:16:34:C2:2B:A6:67:8B:B8:F2:9E:A5:B1:30:16:0F:40:8C X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.3.0/24 Signature Algorithm: sha256WithRSAEncryption a8:b6:24:8a:7a:af:0c:f3:74:dc:e2:10:a5:d1:3a:f4:6d:e6: 80:41:75:08:ed:11:75:f3:a7:ab:0c:9e:ed:27:49:d3:88:48: b3:aa:e0:95:9a:ff:3e:c7:91:f8:5f:21:7f:31:8c:8d:f2:c5: 39:79:77:f0:75:8c:c5:3a:30:49:86:48:43:4a:b3:6d:a0:0c: 68:5b:23:cb:56:84:2f:40:43:ff:7f:2e:9f:98:3d:4b:5f:30: 75:86:b8:8b:4f:ca:12:af:37:df:21:55:c4:2a:25:91:e7:72: b0:02:27:54:fc:bc:7a:af:ac:32:79:09:01:e4:f8:33:86:22: 15:50:7a:04:6d:65:9e:53:08:5a:00:eb:84:83:11:95:6f:d4: 08:2b:ac:d3:4d:57:36:31:3c:e2:99:7e:f3:41:16:9b:05:c5: 18:f1:ec:75:18:d3:69:65:a1:d4:8c:a8:a2:c0:62:81:c6:90: f1:b5:7e:27:e7:a6:77:eb:50:f4:2e:a0:eb:72:88:b0:03:3e: cc:fd:9c:29:93:bd:26:1b:b2:b4:27:c6:49:f7:f2:b9:90:39: 6a:7d:82:5b:4a:90:74:e2:9b:ee:1f:ee:cd:11:0a:4e:1c:a7: 2c:8f:0d:30:90:0e:30:67:d3:e0:68:07:6a:5f:70:73:81:fb: 6b:a2:1d:2d -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUHX10lt0sJZRkyvSSWYO1qT/de3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTVaFw0yNTA2MzAwMTAyNTVaMDMxMTAvBgNV BAMTKERGQUMyRTE2MzRDMjJCQTY2NzhCQjhGMjlFQTVCMTMwMTYwRjQwOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbe8pRatFxUmUod8WkDaVp+D6X OYt/0K4I/XqSr9aXv6O7hXaQmySp6dp9SDiIVy9P7/yHVV6CxUqYNJoDLVqwnUU6 TBU93sgs4vWvbevFW2gT0DG7Y3L+qO6P3tItceZZR+vcL6IBuf2JeAjovWaN6Ojr i5c+NYbM8UavndCHyJ/Q2Q38sTAMFutEefxpRa06o2fhwdV7wHtVuk47EchgFHD2 zRObx5R5UvFmnlsd47yZxVQBmCsRd/DrYck0z5Al/Ss1k7P9wO33WzhOpyepc3RW opWHvfTijrm0PUVUb73gNbR/W8Qdyee0sdmwEyVpfdS+op4cdDdIgk6+x2TnAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU36wuFjTCK6Zni7jynqWxMBYPQIwwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAMwDQYJKoZIhvcNAQEL BQADggEBAKi2JIp6rwzzdNziEKXROvRt5oBBdQjtEXXzp6sMnu0nSdOISLOq4JWa /z7HkfhfIX8xjI3yxTl5d/B1jMU6MEmGSENKs22gDGhbI8tWhC9AQ/9/Lp+YPUtf MHWGuItPyhKvN98hVcQqJZHncrACJ1T8vHqvrDJ5CQHk+DOGIhVQegRtZZ5TCFoA 64SDEZVv1AgrrNNNVzYxPOKZfvNBFpsFxRjx7HUY02llodSMqKLAYoHGkPG1fifn pnfrUPQuoOtyiLADPsz9nCmTvSYbsrQnxkn38rmQOWp9gltKkHTim+4f7s0RCk4c pyyPDTCQDjBn0+BoB2pfcHOB+2uiHS0= -----END CERTIFICATE-----Generated at Tue Mar 11 04:58:24 2025 by rpki-client