$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32332d3233203d3e203338373738.roa File: 3230322e3134382e33302e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: zp8+XuLjuxrkezIFFhYDw358LbYFYkinQlZqfa5g++Y= Subject key identifier: F1:C3:BF:D7:FA:A3:96:99:95:71:14:46:6F:45:D8:CE:8B:72:66:77 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 6FFB460D0C4FFF07C027A34A18039F711D8C36AA Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32332d3233203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:59 +0000 ROA not before: Mon 01 Jul 2024 00:57:59 +0000 ROA not after: Mon 30 Jun 2025 01:02:59 +0000 asID: 38778 IP address blocks: 202.148.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:fb:46:0d:0c:4f:ff:07:c0:27:a3:4a:18:03:9f:71:1d:8c:36:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:59 2024 GMT Not After : Jun 30 01:02:59 2025 GMT Subject: CN=F1C3BFD7FAA39699957114466F45D8CE8B726677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f9:66:a6:52:18:1e:51:7a:6b:93:8d:c6:26: 82:9d:2e:23:27:14:01:56:57:75:ba:87:01:b1:80: e7:f6:8d:f1:6e:cd:eb:41:ae:5d:9f:b5:93:0b:a3: 43:44:22:1f:c5:13:c6:e9:78:d7:f3:34:f3:83:98: a9:78:0d:bd:22:04:dd:90:d6:28:8a:19:5b:a1:bd: 46:65:a7:d6:f2:d4:92:c7:04:7a:8a:e1:20:5f:f8: 62:21:a9:d2:df:7a:7a:66:e5:c9:cd:64:91:7e:b0: ef:a5:4f:2f:68:7a:f6:40:4d:f2:f9:64:3c:7e:ff: 5c:b0:9b:3e:97:88:c2:7f:14:25:29:c4:08:f9:4a: ab:f9:56:a4:cb:ba:9d:13:7c:5d:28:a2:87:81:74: d4:2c:04:c4:66:81:5a:3e:81:be:82:0c:bd:be:d4: b0:bc:07:c2:cb:39:d9:c1:a3:96:ee:61:a0:9e:ce: e0:e1:27:61:b8:99:1c:e1:76:72:6f:2d:43:f5:ce: 4c:6a:e8:2a:b4:a4:17:4b:1a:96:15:57:37:94:19: 84:ba:ec:1e:4e:cd:ec:df:ab:28:33:1d:98:80:c7: b9:03:cc:b0:6f:10:00:49:b5:3c:4f:d0:f9:da:bf: a7:08:a1:26:8a:d3:43:9c:ac:37:b7:a9:f7:e5:f2: 03:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C3:BF:D7:FA:A3:96:99:95:71:14:46:6F:45:D8:CE:8B:72:66:77 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.30.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:6e:c9:01:f5:05:ae:ee:45:11:de:e2:d6:27:99:7d:a6:15: 6f:f6:96:4d:44:ac:a6:61:32:76:f8:65:ce:83:8d:45:98:6c: b1:4c:ff:e5:1b:99:43:77:57:40:bc:69:06:c1:45:fe:a2:55: 19:dc:9f:2a:ef:f4:30:00:c2:44:cc:05:fa:94:91:ad:2b:88: f3:b8:64:60:25:64:de:1b:15:72:4d:68:58:e2:b3:72:fb:e6: 80:4f:e6:e2:1d:7a:44:3b:f9:af:2b:d7:7d:6e:24:84:5e:65: 15:32:f4:d6:8d:fd:b7:e8:19:d8:b6:d1:09:c0:20:4b:98:c1: e0:46:1a:12:35:30:04:f4:4d:5c:9d:65:54:da:60:ea:a7:db: 8c:b7:69:54:be:52:25:bd:50:91:e2:b2:3f:82:16:ab:56:d5: a4:bf:7c:ee:26:c8:3f:72:a2:4c:d8:f1:0c:a8:7e:cb:92:8d: 45:f7:56:3d:b4:e0:37:78:de:79:a5:73:52:6c:48:40:d7:91: ff:74:a0:a6:2c:93:c9:af:fe:7f:8d:21:3f:d8:4e:ec:47:26: 61:c1:09:61:a7:bc:1c:fa:e7:af:c0:d4:16:25:dc:68:99:f4: 96:59:e9:bd:87:63:45:e0:3c:37:02:41:0d:a6:57:cb:3d:ad: 1b:f1:f3:3e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUb/tGDQxP/wfAJ6NKGAOfcR2MNqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTlaFw0yNTA2MzAwMTAyNTlaMDMxMTAvBgNV BAMTKEYxQzNCRkQ3RkFBMzk2OTk5NTcxMTQ0NjZGNDVEOENFOEI3MjY2NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo+WamUhgeUXprk43GJoKdLiMn FAFWV3W6hwGxgOf2jfFuzetBrl2ftZMLo0NEIh/FE8bpeNfzNPODmKl4Db0iBN2Q 1iiKGVuhvUZlp9by1JLHBHqK4SBf+GIhqdLfenpm5cnNZJF+sO+lTy9oevZATfL5 ZDx+/1ywmz6XiMJ/FCUpxAj5Sqv5VqTLup0TfF0oooeBdNQsBMRmgVo+gb6CDL2+ 1LC8B8LLOdnBo5buYaCezuDhJ2G4mRzhdnJvLUP1zkxq6Cq0pBdLGpYVVzeUGYS6 7B5OzezfqygzHZiAx7kDzLBvEABJtTxP0Pnav6cIoSaK00OcrDe3qffl8gO7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8cO/1/qjlpmVcRRGb0XYzotyZncwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcqUHjANBgkqhkiG 9w0BAQsFAAOCAQEAfm7JAfUFru5FEd7i1ieZfaYVb/aWTUSspmEydvhlzoONRZhs sUz/5RuZQ3dXQLxpBsFF/qJVGdyfKu/0MADCRMwF+pSRrSuI87hkYCVk3hsVck1o WOKzcvvmgE/m4h16RDv5ryvXfW4khF5lFTL01o39t+gZ2LbRCcAgS5jB4EYaEjUw BPRNXJ1lVNpg6qfbjLdpVL5SJb1QkeKyP4IWq1bVpL987ibIP3KiTNjxDKh+y5KN RfdWPbTgN3jeeaVzUmxIQNeR/3SgpiyTya/+f40hP9hO7EcmYcEJYae8HPrnr8DU FiXcaJn0llnpvYdjReA8NwJBDaZXyz2tG/HzPg== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org