$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e33302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: yaERSQ5QJCAYpi6V4QiFDcLXos2E4L76f2JBmb1bir4= Subject key identifier: 1B:2A:8C:B8:96:8E:01:76:0E:BC:04:AB:44:CB:31:6D:76:AA:30:60 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 5760274C46B9F2F8D566C8750BF82C5A22CE4FCF Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:50 +0000 ROA not before: Sun 30 Jul 2023 23:58:50 +0000 ROA not after: Mon 29 Jul 2024 00:03:50 +0000 asID: 38778 IP address blocks: 202.148.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:60:27:4c:46:b9:f2:f8:d5:66:c8:75:0b:f8:2c:5a:22:ce:4f:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:50 2023 GMT Not After : Jul 29 00:03:50 2024 GMT Subject: CN=1B2A8CB8968E01760EBC04AB44CB316D76AA3060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:21:04:bc:1e:bd:fb:d1:6b:e7:51:6e:f4:89: 30:dd:a5:73:66:6b:27:3d:59:b2:6b:ea:52:fe:6c: 73:5d:8b:19:a9:24:bc:1f:d5:62:14:6b:86:e0:90: 70:89:96:65:0f:9d:f8:1e:8d:3c:e9:5b:aa:2c:16: 56:f6:86:66:44:43:be:9e:2a:4f:bd:b7:0b:45:46: 11:f8:e5:91:90:e7:2c:6c:24:94:1d:8b:49:67:93: 62:a9:ef:98:ab:b6:41:30:ad:81:9c:c8:49:a7:78: ff:68:26:18:de:c7:5d:d3:3c:6a:cb:7d:2c:5d:58: 43:1b:da:d0:e4:1e:47:d4:3d:ab:9c:fa:33:c1:2b: 60:9f:2d:b1:77:dc:1d:dd:22:9c:7d:03:3d:1d:f4: b5:e8:6f:31:28:d8:d1:0e:78:c2:e1:60:5e:72:20: 63:21:57:4a:7d:28:04:20:37:43:09:09:fa:82:97: b5:cf:2e:5f:25:2c:41:41:eb:6d:72:63:a0:9e:08: 1d:4c:94:b4:0b:c9:e2:ac:3c:c1:1c:ae:ad:38:a3: 89:4f:7b:81:e6:b1:99:3f:62:08:6c:87:03:90:f1: 9a:90:33:d5:e2:cf:46:b1:38:5b:84:13:08:d2:c8: ce:f6:89:95:d1:79:9d:e1:92:a1:c4:2e:60:57:82: f6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2A:8C:B8:96:8E:01:76:0E:BC:04:AB:44:CB:31:6D:76:AA:30:60 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.30.0/24 Signature Algorithm: sha256WithRSAEncryption 71:ea:b0:eb:7d:38:19:eb:e4:58:b4:fd:98:d5:5f:ae:d8:15: 32:82:eb:ba:c0:fe:6d:ae:bb:8a:2c:b3:20:db:3e:a3:65:04: 9a:50:8c:35:09:6d:39:e6:0b:de:1c:8f:9c:a7:c0:73:2d:7a: a3:e9:64:09:a5:26:01:47:29:f2:c3:10:b9:7e:2a:14:a4:20: a5:1e:b7:75:3e:c6:d4:ac:d1:60:b7:b2:a0:1a:76:fb:83:6f: b8:0a:55:b0:ca:5e:c5:71:39:03:57:81:f7:29:35:7d:98:c4: f3:99:95:22:51:e7:ff:77:5c:0a:a5:a5:e3:f3:b8:a8:94:25: c7:ae:c0:08:8b:13:81:a9:43:ac:8e:19:d0:16:e0:ea:e8:13: a4:1a:70:ac:25:49:3b:db:41:d4:ff:ec:79:9a:99:b2:e9:f2: 79:b6:d2:d5:30:d5:1c:eb:d4:5f:14:4b:bd:66:00:a0:21:8a: be:b6:3d:db:f8:c3:c8:b7:c5:05:11:47:fa:6d:73:44:f9:07: 67:9c:0d:05:d2:f3:4a:47:7a:25:59:ce:79:33:29:c3:a4:67: 80:0c:b7:8f:1c:63:80:98:d8:b5:1e:5c:15:4c:a1:2e:b7:30: d0:ca:c6:24:56:85:7b:2f:d2:bc:07:f8:66:6b:99:f6:af:1c: 64:71:af:9d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUV2AnTEa58vjVZsh1C/gsWiLOT88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTBaFw0yNDA3MjkwMDAzNTBaMDMxMTAvBgNV BAMTKDFCMkE4Q0I4OTY4RTAxNzYwRUJDMDRBQjQ0Q0IzMTZENzZBQTMwNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6IQS8Hr370WvnUW70iTDdpXNm ayc9WbJr6lL+bHNdixmpJLwf1WIUa4bgkHCJlmUPnfgejTzpW6osFlb2hmZEQ76e Kk+9twtFRhH45ZGQ5yxsJJQdi0lnk2Kp75irtkEwrYGcyEmneP9oJhjex13TPGrL fSxdWEMb2tDkHkfUPauc+jPBK2CfLbF33B3dIpx9Az0d9LXobzEo2NEOeMLhYF5y IGMhV0p9KAQgN0MJCfqCl7XPLl8lLEFB621yY6CeCB1MlLQLyeKsPMEcrq04o4lP e4HmsZk/YghshwOQ8ZqQM9Xiz0axOFuEEwjSyM72iZXReZ3hkqHELmBXgvafAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGyqMuJaOAXYOvASrRMsxbXaqMGAwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUHjANBgkqhkiG 9w0BAQsFAAOCAQEAceqw6304GevkWLT9mNVfrtgVMoLrusD+ba67iiyzINs+o2UE mlCMNQltOeYL3hyPnKfAcy16o+lkCaUmAUcp8sMQuX4qFKQgpR63dT7G1KzRYLey oBp2+4NvuApVsMpexXE5A1eB9yk1fZjE85mVIlHn/3dcCqWl4/O4qJQlx67ACIsT galDrI4Z0Bbg6ugTpBpwrCVJO9tB1P/seZqZsunyebbS1TDVHOvUXxRLvWYAoCGK vrY92/jDyLfFBRFH+m1zRPkHZ5wNBdLzSkd6JVnOeTMpw6RngAy3jxxjgJjYtR5c FUyhLrcw0MrGJFaFey/SvAf4ZmuZ9q8cZHGvnQ== -----END CERTIFICATE-----Generated at Wed Apr 24 04:46:23 2024 by rpki-client on console-fra.rpki-client.org