$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32332d3233203d3e203338373738.roa File: 3230322e3134382e33302e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: MjTX07WnqlAz76x6FpNUOuneB9rKD2OksI2rWaL5kW0= Subject key identifier: B5:B1:07:BC:EA:B5:1F:E9:B9:C5:95:E9:63:C5:AC:7E:C4:B8:BC:55 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 519083B06060A145CB567B817B35152B86C87594 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32332d3233203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:47 +0000 ROA not before: Sun 30 Jul 2023 23:58:47 +0000 ROA not after: Mon 29 Jul 2024 00:03:47 +0000 asID: 38778 IP address blocks: 202.148.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:90:83:b0:60:60:a1:45:cb:56:7b:81:7b:35:15:2b:86:c8:75:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:47 2023 GMT Not After : Jul 29 00:03:47 2024 GMT Subject: CN=B5B107BCEAB51FE9B9C595E963C5AC7EC4B8BC55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2c:cb:c1:59:23:e3:d4:fd:9f:0f:00:7e:db: 16:e0:6f:16:55:ac:0f:20:e5:b5:aa:86:52:69:bb: e5:29:c4:be:bc:33:c8:97:57:23:35:bb:36:4e:f6: b4:9c:1b:05:69:58:68:54:14:ad:27:19:23:2c:4f: 7f:a0:56:a9:98:5a:22:f4:55:df:06:1e:e4:b3:19: 1b:8d:b1:15:15:cc:36:13:15:0c:98:79:b3:e5:ea: 29:90:50:10:ad:45:b9:4d:59:e9:02:11:2f:4a:66: fb:65:2d:55:98:c1:00:db:77:c0:3a:d2:75:fe:75: fb:2f:f0:48:fb:74:79:36:8e:67:da:48:db:96:5e: 0e:a4:f5:a0:87:b2:6d:82:4b:3d:4b:32:74:e8:f5: 33:06:50:d7:2b:6d:95:54:5c:b9:14:ed:19:e0:f0: 8b:e7:2e:91:26:7e:31:b3:64:b3:54:9b:a6:eb:e0: 02:0f:05:6f:19:b2:00:4f:03:1b:10:d5:ac:f6:9a: 28:f6:c1:d0:7d:5d:3a:03:02:a4:77:a4:d5:4b:bf: 22:39:b1:58:35:52:6d:11:d7:a1:d4:d6:c2:ef:99: ea:97:dc:d8:97:e7:fb:a2:e9:40:6c:c0:29:24:2d: 76:e5:28:0b:90:8e:dd:41:51:ab:08:b6:fd:27:cb: 42:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B1:07:BC:EA:B5:1F:E9:B9:C5:95:E9:63:C5:AC:7E:C4:B8:BC:55 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.30.0/23 Signature Algorithm: sha256WithRSAEncryption c9:3b:cb:e9:96:e1:27:ab:8e:8a:96:de:8e:8f:7f:86:32:70: 86:68:db:d7:11:82:51:0c:0e:a5:88:ee:47:16:2f:cd:4c:7e: 47:db:8e:6d:95:b4:27:e4:e4:7d:59:2c:82:dc:b5:37:e7:df: c7:1c:3e:76:14:b3:73:9b:be:9e:5d:8b:be:7b:1d:da:7b:00: ee:c7:39:ee:0c:5e:a2:50:ac:6c:10:67:7c:b6:a9:e2:35:9f: ba:45:de:f7:89:e3:98:ef:dc:c4:2f:32:27:ae:66:f6:f4:3a: cf:26:ad:8a:24:7b:4c:3e:96:a2:8e:36:31:12:49:ad:8c:6b: 14:9e:b2:da:47:44:82:09:57:d2:7f:34:ae:5d:81:df:3d:3f: c4:b4:c5:7f:16:f0:76:d1:49:d3:fa:d6:41:22:45:7c:f7:be: 63:6a:78:45:48:cc:60:ba:28:46:d6:97:95:ff:52:65:72:2e: 9d:e1:56:5f:76:1e:87:0e:fa:d9:b4:15:89:92:0c:a5:71:60: 3a:a9:9a:a6:80:cb:31:94:4c:82:84:22:91:5a:7a:f9:85:98: 16:43:ee:5b:1d:5e:76:85:23:1c:69:34:4b:a4:98:ac:e0:85: 41:f8:bc:7f:dc:cd:33:44:c7:fb:f5:2e:1d:13:f1:23:88:0e: 69:6f:94:ad -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUZCDsGBgoUXLVnuBezUVK4bIdZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDdaFw0yNDA3MjkwMDAzNDdaMDMxMTAvBgNV BAMTKEI1QjEwN0JDRUFCNTFGRTlCOUM1OTVFOTYzQzVBQzdFQzRCOEJDNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3LMvBWSPj1P2fDwB+2xbgbxZV rA8g5bWqhlJpu+UpxL68M8iXVyM1uzZO9rScGwVpWGhUFK0nGSMsT3+gVqmYWiL0 Vd8GHuSzGRuNsRUVzDYTFQyYebPl6imQUBCtRblNWekCES9KZvtlLVWYwQDbd8A6 0nX+dfsv8Ej7dHk2jmfaSNuWXg6k9aCHsm2CSz1LMnTo9TMGUNcrbZVUXLkU7Rng 8IvnLpEmfjGzZLNUm6br4AIPBW8ZsgBPAxsQ1az2mij2wdB9XToDAqR3pNVLvyI5 sVg1Um0R16HU1sLvmeqX3NiX5/ui6UBswCkkLXblKAuQjt1BUasItv0ny0KdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtbEHvOq1H+m5xZXpY8WsfsS4vFUwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcqUHjANBgkqhkiG 9w0BAQsFAAOCAQEAyTvL6ZbhJ6uOipbejo9/hjJwhmjb1xGCUQwOpYjuRxYvzUx+ R9uObZW0J+TkfVksgty1N+ffxxw+dhSzc5u+nl2Lvnsd2nsA7sc57gxeolCsbBBn fLap4jWfukXe94njmO/cxC8yJ65m9vQ6zyatiiR7TD6Woo42MRJJrYxrFJ6y2kdE gglX0n80rl2B3z0/xLTFfxbwdtFJ0/rWQSJFfPe+Y2p4RUjMYLooRtaXlf9SZXIu neFWX3Yehw762bQViZIMpXFgOqmapoDLMZRMgoQikVp6+YWYFkPuWx1edoUjHGk0 S6SYrOCFQfi8f9zNM0TH+/UuHRPxI4gOaW+UrQ== -----END CERTIFICATE-----Generated at Fri May 3 06:27:18 2024 by rpki-client on console-fra.rpki-client.org