$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e33302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: E2mMkq2UD8cUTodPkjWkcq8pLid4QxGZ7flQxMHfDCk= Subject key identifier: E3:A7:7A:00:DC:02:BE:56:A9:A9:67:DE:1A:E2:D8:02:52:38:D8:A1 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 3E65319C57BE0B91E74FAF5317EC9E2AD110860A Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:03:02 +0000 ROA not before: Mon 01 Jul 2024 00:58:02 +0000 ROA not after: Mon 30 Jun 2025 01:03:02 +0000 asID: 38778 IP address blocks: 202.148.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:65:31:9c:57:be:0b:91:e7:4f:af:53:17:ec:9e:2a:d1:10:86:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:02 2024 GMT Not After : Jun 30 01:03:02 2025 GMT Subject: CN=E3A77A00DC02BE56A9A967DE1AE2D8025238D8A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1b:03:a3:74:55:ab:e0:8c:93:0d:fc:03:3c: 4c:e7:5a:60:57:27:bd:84:79:c8:fc:13:aa:a4:2a: 7a:41:43:c2:2a:bd:00:03:dc:48:d1:8e:45:a4:22: b5:33:25:4b:14:cc:17:66:7c:80:b2:c5:75:bf:9a: ec:65:57:74:5f:75:2c:45:d3:4b:46:f1:00:d4:58: eb:3f:de:0f:d4:1b:3f:8e:e3:ee:bf:0b:31:9a:7b: eb:b0:f7:31:f6:af:91:52:66:66:1a:48:d9:95:eb: 73:dd:67:3e:37:75:31:79:5a:5d:d1:78:e2:a9:66: fc:a2:e7:d1:f0:f5:90:3c:de:2f:55:b4:5b:23:90: 29:57:30:16:bf:79:5b:d1:5b:6d:e4:2c:60:fa:8e: 9c:ec:5b:ab:d8:e7:02:1f:73:75:26:fb:05:54:56: be:21:ee:00:f2:42:9e:35:1c:5d:0a:ec:47:b4:f5: cb:aa:35:a5:35:e9:87:31:60:63:ea:a8:8e:42:db: db:68:05:5b:51:2c:42:7b:69:d4:05:4f:f7:86:a4: 09:7b:3a:78:60:4d:55:d7:5b:3e:f9:cd:8b:06:64: d7:05:42:c7:cc:5f:0e:c1:45:92:2b:99:a4:0b:8a: cf:e5:79:d6:9a:f2:1f:39:af:d7:f3:7a:7e:7d:e8: 8c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A7:7A:00:DC:02:BE:56:A9:A9:67:DE:1A:E2:D8:02:52:38:D8:A1 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.30.0/24 Signature Algorithm: sha256WithRSAEncryption 37:02:70:a9:59:93:83:07:d5:36:68:c7:fa:6e:66:06:c1:62: ef:2a:69:b8:df:92:ef:4e:10:e1:fc:22:f9:a9:45:4f:c6:5d: 10:bc:a3:36:75:e6:33:00:91:c9:73:c1:92:25:1c:21:7c:51: 3e:ea:b9:47:32:4e:85:10:1d:f5:0b:7b:12:8d:52:89:4c:55: 1f:07:6d:15:f7:df:e2:15:49:bd:7b:b3:33:e6:8a:e2:71:e4: 38:ed:71:38:a4:00:ec:28:93:3f:d5:3c:a1:b3:15:b3:06:50: 78:9a:1d:73:dd:8c:5e:fa:8f:95:66:90:4d:06:31:77:92:d5: 23:3b:10:f2:a0:e4:80:78:25:b1:0c:ad:b9:8a:31:ee:6c:7c: 37:43:b8:f4:ed:ea:e7:06:28:e7:2b:7f:09:5d:57:ac:78:bc: ab:ad:79:50:c0:0d:c3:3e:ba:80:89:26:00:c1:e4:39:5d:0b: 36:17:4b:3c:5e:8d:8c:54:e2:b2:80:ac:69:65:3c:12:5d:c9: a0:82:d5:34:bd:f0:2b:7f:a3:9b:7e:38:e5:70:2a:38:39:37: 41:73:26:d3:68:c9:f9:af:fb:7c:60:db:2e:c7:36:b2:31:77: 40:45:4c:56:d5:4d:ef:82:65:25:d9:a0:1c:54:31:b5:05:51: 65:55:c4:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPmUxnFe+C5HnT69TF+yeKtEQhgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDJaFw0yNTA2MzAwMTAzMDJaMDMxMTAvBgNV BAMTKEUzQTc3QTAwREMwMkJFNTZBOUE5NjdERTFBRTJEODAyNTIzOEQ4QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSGwOjdFWr4IyTDfwDPEznWmBX J72Eecj8E6qkKnpBQ8IqvQAD3EjRjkWkIrUzJUsUzBdmfICyxXW/muxlV3RfdSxF 00tG8QDUWOs/3g/UGz+O4+6/CzGae+uw9zH2r5FSZmYaSNmV63PdZz43dTF5Wl3R eOKpZvyi59Hw9ZA83i9VtFsjkClXMBa/eVvRW23kLGD6jpzsW6vY5wIfc3Um+wVU Vr4h7gDyQp41HF0K7Ee09cuqNaU16YcxYGPqqI5C29toBVtRLEJ7adQFT/eGpAl7 OnhgTVXXWz75zYsGZNcFQsfMXw7BRZIrmaQLis/ledaa8h85r9fzen596IydAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU46d6ANwCvlapqWfeGuLYAlI42KEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUHjANBgkqhkiG 9w0BAQsFAAOCAQEANwJwqVmTgwfVNmjH+m5mBsFi7yppuN+S704Q4fwi+alFT8Zd ELyjNnXmMwCRyXPBkiUcIXxRPuq5RzJOhRAd9Qt7Eo1SiUxVHwdtFfff4hVJvXuz M+aK4nHkOO1xOKQA7CiTP9U8obMVswZQeJodc92MXvqPlWaQTQYxd5LVIzsQ8qDk gHglsQytuYox7mx8N0O49O3q5wYo5yt/CV1XrHi8q615UMANwz66gIkmAMHkOV0L NhdLPF6NjFTisoCsaWU8El3JoILVNL3wK3+jm3445XAqODk3QXMm02jJ+a/7fGDb Lsc2sjF3QEVMVtVN74JlJdmgHFQxtQVRZVXECA== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org