$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e33312e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: k8lj5vQQ6d7CmeyNRRBQC7HAvFf7W7wK7IEWNoUSgEQ= Subject key identifier: 2E:E5:9C:70:C0:C0:79:BD:E1:D3:E2:9B:1E:C6:11:77:B2:A0:B2:9C Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 62D8266EE594271DEC1254A90DCCDA0EE8729114 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:46 +0000 ROA not before: Sun 30 Jul 2023 23:58:46 +0000 ROA not after: Mon 29 Jul 2024 00:03:46 +0000 asID: 38778 IP address blocks: 202.148.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 21:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:d8:26:6e:e5:94:27:1d:ec:12:54:a9:0d:cc:da:0e:e8:72:91:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:46 2023 GMT Not After : Jul 29 00:03:46 2024 GMT Subject: CN=2EE59C70C0C079BDE1D3E29B1EC61177B2A0B29C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:66:28:43:0e:14:ac:5a:d4:89:e1:8e:fc: c5:c5:90:4d:fa:67:31:23:d2:d0:b5:9e:a9:75:27: ed:91:69:0f:38:e3:cd:b0:ae:58:59:2e:4d:e6:bb: 6e:8b:1c:8f:9d:d2:f0:74:12:48:2d:cb:e7:7e:44: 47:f7:34:a8:3f:a4:d7:f0:14:1a:35:2d:40:c4:3e: d2:7e:8f:ee:05:dc:06:78:95:4b:de:63:a8:bf:d5: 38:ed:5f:df:0b:9a:61:a5:95:dc:51:77:53:a0:e9: 04:74:b5:71:0d:0e:49:8d:a1:2d:8e:bc:8b:81:ba: f7:4d:3b:ff:cd:d5:d9:9c:97:21:12:cf:a3:67:fa: cb:3d:f6:0c:0e:b5:10:ce:79:c0:73:e6:6b:13:10: 4b:bf:50:61:54:60:dc:d5:db:63:aa:25:3d:85:af: ba:39:1e:83:20:b4:c9:81:39:af:ae:6e:3b:19:ae: b1:28:0f:2b:8d:a2:01:be:e8:f0:b1:16:21:42:54: 1f:ea:05:0d:87:60:da:a2:65:36:35:a4:68:3f:0f: c6:44:a1:fd:3d:d9:65:fe:46:94:ab:95:81:4e:1f: 8e:ea:c0:58:2e:85:5f:80:d3:e4:0d:e6:e8:0e:57: e8:54:ba:34:85:b3:6b:10:39:88:11:db:80:8d:85: 14:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E5:9C:70:C0:C0:79:BD:E1:D3:E2:9B:1E:C6:11:77:B2:A0:B2:9C X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.31.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:dd:89:8b:e7:3d:c0:d6:24:17:6e:a4:09:0d:94:93:b4:23: 0b:0c:a6:43:ea:9c:cc:1c:3e:0c:8e:72:1d:3f:49:71:06:c5: f5:93:5d:9c:92:c6:66:30:e1:aa:b8:1d:97:05:3a:6b:70:c8: 58:1d:d3:45:f8:51:2e:60:29:1c:eb:0f:c7:78:5c:1e:77:05: 56:40:e9:7e:6c:94:ce:78:b0:fd:ea:22:00:ff:ae:2f:41:2e: 38:aa:b9:45:40:4e:05:6d:4e:2b:80:67:9c:4e:8f:0d:7a:58: 4f:09:f0:a9:06:63:49:8a:9c:3f:ab:38:0d:7f:44:22:d2:47: 3c:cc:be:51:27:20:d3:fd:81:2e:7a:28:30:04:36:1a:25:90: a8:e3:ec:bd:0a:31:e1:c5:0b:58:de:72:66:73:d0:fe:d3:ed: f6:7e:68:f6:b6:ea:85:f8:c6:01:e7:75:21:90:e4:7b:67:f8: 06:37:65:1d:34:82:e1:3f:0d:b3:e8:ff:c7:26:9a:59:fd:a8: 75:7e:4c:82:b4:ed:3b:ca:41:e2:65:fd:e2:c7:69:1e:6e:01: 7f:5e:13:4c:07:b0:f4:48:06:e8:45:c1:c9:ac:4a:21:51:8d: 55:65:1b:b6:c2:d3:de:39:fa:dd:2b:07:57:a1:fd:f1:98:98: be:40:2c:c5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYtgmbuWUJx3sElSpDczaDuhykRQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDZaFw0yNDA3MjkwMDAzNDZaMDMxMTAvBgNV BAMTKDJFRTU5QzcwQzBDMDc5QkRFMUQzRTI5QjFFQzYxMTc3QjJBMEIyOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9b2YoQw4UrFrUieGO/MXFkE36 ZzEj0tC1nql1J+2RaQ84482wrlhZLk3mu26LHI+d0vB0Ekgty+d+REf3NKg/pNfw FBo1LUDEPtJ+j+4F3AZ4lUveY6i/1TjtX98LmmGlldxRd1Og6QR0tXENDkmNoS2O vIuBuvdNO//N1dmclyESz6Nn+ss99gwOtRDOecBz5msTEEu/UGFUYNzV22OqJT2F r7o5HoMgtMmBOa+ubjsZrrEoDyuNogG+6PCxFiFCVB/qBQ2HYNqiZTY1pGg/D8ZE of092WX+RpSrlYFOH47qwFguhV+A0+QN5ugOV+hUujSFs2sQOYgR24CNhRTbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULuWccMDAeb3h0+KbHsYRd7KgspwwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUHzANBgkqhkiG 9w0BAQsFAAOCAQEAbd2Ji+c9wNYkF26kCQ2Uk7QjCwymQ+qczBw+DI5yHT9JcQbF 9ZNdnJLGZjDhqrgdlwU6a3DIWB3TRfhRLmApHOsPx3hcHncFVkDpfmyUzniw/eoi AP+uL0EuOKq5RUBOBW1OK4BnnE6PDXpYTwnwqQZjSYqcP6s4DX9EItJHPMy+UScg 0/2BLnooMAQ2GiWQqOPsvQox4cULWN5yZnPQ/tPt9n5o9rbqhfjGAed1IZDke2f4 BjdlHTSC4T8Ns+j/xyaaWf2odX5MgrTtO8pB4mX94sdpHm4Bf14TTAew9EgG6EXB yaxKIVGNVWUbtsLT3jn63SsHV6H98ZiYvkAsxQ== -----END CERTIFICATE-----Generated at Wed Apr 17 04:52:15 2024 by rpki-client on console-fra.rpki-client.org