$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e33312e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 5m2+4IKDxuBE3EAnYRqkI+3U9WKCVJv1IqBhsywXDJc= Subject key identifier: 02:D4:BA:5E:5C:3D:FE:0A:01:0B:5B:CE:D5:F5:73:A5:DA:D5:E7:C3 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 3B472768BB820794EE194AA936383EDA8A7526B1 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:03:00 +0000 ROA not before: Mon 01 Jul 2024 00:58:00 +0000 ROA not after: Mon 30 Jun 2025 01:03:00 +0000 asID: 38778 IP address blocks: 202.148.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:47:27:68:bb:82:07:94:ee:19:4a:a9:36:38:3e:da:8a:75:26:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:00 2024 GMT Not After : Jun 30 01:03:00 2025 GMT Subject: CN=02D4BA5E5C3DFE0A010B5BCED5F573A5DAD5E7C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:c2:22:45:95:aa:b5:e2:7c:67:db:ed:f1: 6f:7b:6a:7d:16:34:d3:b3:15:6c:c3:82:1b:d6:72: 9e:ea:69:37:f5:03:75:03:9f:5b:c9:62:57:2e:b6: da:77:43:38:79:11:c4:4a:45:76:0f:0c:ad:f6:af: 0b:6d:33:a3:ff:a7:f2:d9:3e:ca:19:dd:16:cc:3e: 8a:9e:ad:4d:74:d0:2a:fa:61:b7:7e:ef:44:5e:04: b3:11:61:95:22:c4:a3:bc:13:5f:93:19:66:fa:11: 7f:48:3c:a2:54:23:75:64:ef:b8:20:c7:de:96:49: e7:b4:6f:4b:b5:4d:98:06:f9:21:db:8e:78:72:6d: 5c:be:a9:da:0d:df:03:a3:6d:42:e6:0f:8a:cb:17: b1:8a:8f:d0:e2:e2:7b:2d:7f:1c:51:dc:ee:8f:ef: b3:5a:05:da:a5:2d:4b:d1:f6:b4:5f:08:f0:a1:ee: 1d:4b:8f:e8:fe:ee:dc:74:35:67:0c:ab:7c:c4:e2: 60:64:0a:6e:5a:a6:00:29:30:8b:15:5d:13:d5:6c: 7b:bf:f2:32:b2:a0:ab:6b:9d:5d:b3:4a:16:26:0f: 36:c9:65:4f:d5:4d:a7:64:12:34:5e:49:a6:e6:9e: 34:75:28:f5:cf:e1:45:ad:ab:b8:d6:74:75:84:f0: 09:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D4:BA:5E:5C:3D:FE:0A:01:0B:5B:CE:D5:F5:73:A5:DA:D5:E7:C3 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.31.0/24 Signature Algorithm: sha256WithRSAEncryption 99:67:27:2d:64:03:61:f6:18:7e:e3:b5:4d:93:69:36:27:dd: 77:e3:cb:c1:b6:70:46:da:4d:66:72:97:ae:25:65:7a:80:ee: 38:1d:86:eb:8d:c0:b1:21:0c:0a:8e:21:c6:1f:e5:4e:64:57: ed:2f:66:db:38:b8:dd:d9:18:9f:6f:a2:17:19:f8:d8:3f:7e: 95:cc:4c:76:b8:71:87:09:75:17:e1:41:84:c6:f8:67:c8:13: 51:fb:39:44:5c:5d:18:f0:d1:99:ca:97:d2:80:ef:4b:65:2d: 5c:4f:21:15:e1:28:5f:74:c2:4e:89:e2:e2:a8:05:e2:0b:b9: c8:7d:2e:cb:4a:77:a3:d3:8a:87:f8:10:3d:46:71:37:d0:f4: 9b:3c:f0:30:42:5f:04:76:f5:3b:ec:57:6e:4e:ff:83:d9:91: 71:d1:a1:1e:ad:00:8d:18:03:54:d3:63:63:96:18:94:45:38: 96:32:2b:15:fe:1b:1d:35:8b:ab:bc:e0:b4:3b:5c:b2:1b:4d: 0b:08:67:e6:83:48:fa:20:0b:15:03:c5:04:92:02:87:fe:29: 3e:94:3f:17:99:1b:03:18:43:36:db:c7:b4:8a:ca:e3:39:79: d6:98:3b:06:ad:36:14:97:61:b2:c1:27:14:08:f4:20:ec:56: df:0e:de:d6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO0cnaLuCB5TuGUqpNjg+2op1JrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDBaFw0yNTA2MzAwMTAzMDBaMDMxMTAvBgNV BAMTKDAyRDRCQTVFNUMzREZFMEEwMTBCNUJDRUQ1RjU3M0E1REFENUU3QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7tsIiRZWqteJ8Z9vt8W97an0W NNOzFWzDghvWcp7qaTf1A3UDn1vJYlcuttp3Qzh5EcRKRXYPDK32rwttM6P/p/LZ PsoZ3RbMPoqerU100Cr6Ybd+70ReBLMRYZUixKO8E1+TGWb6EX9IPKJUI3Vk77gg x96WSee0b0u1TZgG+SHbjnhybVy+qdoN3wOjbULmD4rLF7GKj9Di4nstfxxR3O6P 77NaBdqlLUvR9rRfCPCh7h1Lj+j+7tx0NWcMq3zE4mBkCm5apgApMIsVXRPVbHu/ 8jKyoKtrnV2zShYmDzbJZU/VTadkEjReSabmnjR1KPXP4UWtq7jWdHWE8AnFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAtS6Xlw9/goBC1vO1fVzpdrV58MwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUHzANBgkqhkiG 9w0BAQsFAAOCAQEAmWcnLWQDYfYYfuO1TZNpNifdd+PLwbZwRtpNZnKXriVleoDu OB2G643AsSEMCo4hxh/lTmRX7S9m2zi43dkYn2+iFxn42D9+lcxMdrhxhwl1F+FB hMb4Z8gTUfs5RFxdGPDRmcqX0oDvS2UtXE8hFeEoX3TCToni4qgF4gu5yH0uy0p3 o9OKh/gQPUZxN9D0mzzwMEJfBHb1O+xXbk7/g9mRcdGhHq0AjRgDVNNjY5YYlEU4 ljIrFf4bHTWLq7zgtDtcshtNCwhn5oNI+iALFQPFBJICh/4pPpQ/F5kbAxhDNtvH tIrK4zl51pg7Bq02FJdhssEnFAj0IOxW3w7e1g== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org