$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e342e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e342e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: tEjMkFOo3Sjv5h91q2OYlc4dpvyxAjwVtoOiE9QO/yU= Subject key identifier: 11:E3:88:25:34:24:97:93:0D:31:D9:56:E3:7B:96:BA:90:AF:6B:62 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 584F77928EFC67E051E02A72CC4AFE6254310F82 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e342e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:55 +0000 ROA not before: Mon 01 Jul 2024 00:57:55 +0000 ROA not after: Mon 30 Jun 2025 01:02:55 +0000 asID: 9794 IP address blocks: 202.148.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:4f:77:92:8e:fc:67:e0:51:e0:2a:72:cc:4a:fe:62:54:31:0f:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:55 2024 GMT Not After : Jun 30 01:02:55 2025 GMT Subject: CN=11E38825342497930D31D956E37B96BA90AF6B62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ec:6b:94:66:37:61:7c:41:e9:d5:bd:f9:d3: cb:2b:7a:08:de:6a:83:cd:33:95:b9:b3:67:26:73: e9:14:75:49:9d:c0:70:df:0d:ad:34:b4:6d:11:c7: 87:64:9d:47:5e:4d:10:90:35:2c:f4:81:7e:66:cd: 08:07:a1:cb:d9:b7:01:72:91:5c:7b:dc:2c:8c:fb: 3f:80:8c:07:2d:50:1f:7c:c1:a5:d6:dd:d9:d6:9a: 6d:d6:87:de:89:8e:f7:11:fd:5a:a6:ea:5e:ee:98: ad:bf:ec:9c:74:72:57:a5:9f:03:d3:33:e4:75:8c: d2:e2:79:19:04:0f:5c:07:38:a9:b2:dd:6b:b0:fb: c9:da:d0:4e:25:d1:28:d9:11:28:b4:e9:7c:0b:27: e0:80:1e:21:38:fa:4b:ad:94:89:5e:bd:00:2b:71: 04:35:3e:b2:63:b8:f3:53:ee:07:c8:06:fa:6c:ab: 9a:9a:cc:dc:77:b6:7d:38:25:fb:07:d0:47:f3:22: e8:40:bb:27:96:29:d8:ac:14:85:f5:47:4e:1a:77: 1e:61:f4:a3:05:06:60:8a:48:52:8b:4d:1b:51:af: 93:ba:9d:0f:61:cf:ac:e2:b2:17:63:18:35:59:20: 90:26:5e:f6:2f:59:0f:d8:36:ab:5e:c6:83:b3:b1: bc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E3:88:25:34:24:97:93:0D:31:D9:56:E3:7B:96:BA:90:AF:6B:62 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e342e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.4.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:1c:e3:ae:93:f6:5b:de:54:61:c9:3c:13:d7:31:eb:ca:21: d9:cd:2d:16:21:42:65:46:6d:ca:62:bd:5b:07:4e:57:de:2c: 51:45:34:d9:26:1e:db:46:3d:1b:b6:58:36:0e:52:0a:ed:07: 4c:e0:d6:dc:aa:41:31:65:87:00:0f:ff:3d:c4:d9:36:8e:88: ce:86:6f:39:40:78:9d:51:bb:64:2b:e1:e9:65:1a:d7:66:f4: 3a:3d:0d:88:27:aa:40:fc:c9:ed:cd:52:86:73:c4:12:37:04: ea:5f:c7:b6:09:4e:89:93:7e:63:b8:c5:89:a7:20:87:45:e8: 8e:5c:eb:3a:df:fe:5f:b0:f6:16:69:5c:79:ac:11:b1:13:f6: 2e:d9:0d:c2:04:04:ab:33:44:d0:c9:a4:7f:d5:10:5e:6d:dc: 44:8d:92:13:2f:21:dd:d3:47:19:d7:3f:00:5c:a0:36:40:ec: fe:c1:45:0a:f0:0d:52:8b:14:15:91:1a:55:c3:23:44:83:bf: d2:e4:a4:2f:6b:34:4b:52:1f:9f:9d:fa:18:6e:2c:b7:28:be: 6f:f5:d0:5c:0d:6e:46:7b:4d:0f:2d:77:69:38:e3:8c:e4:62: 63:75:2d:11:b1:5a:53:88:97:d4:49:33:a8:5b:45:76:31:bf: 65:2f:f1:ab -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWE93ko78Z+BR4CpyzEr+YlQxD4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTVaFw0yNTA2MzAwMTAyNTVaMDMxMTAvBgNV BAMTKDExRTM4ODI1MzQyNDk3OTMwRDMxRDk1NkUzN0I5NkJBOTBBRjZCNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/7GuUZjdhfEHp1b3508sregje aoPNM5W5s2cmc+kUdUmdwHDfDa00tG0Rx4dknUdeTRCQNSz0gX5mzQgHocvZtwFy kVx73CyM+z+AjActUB98waXW3dnWmm3Wh96JjvcR/Vqm6l7umK2/7Jx0clelnwPT M+R1jNLieRkED1wHOKmy3Wuw+8na0E4l0SjZESi06XwLJ+CAHiE4+kutlIlevQAr cQQ1PrJjuPNT7gfIBvpsq5qazNx3tn04JfsH0EfzIuhAuyeWKdisFIX1R04adx5h 9KMFBmCKSFKLTRtRr5O6nQ9hz6zishdjGDVZIJAmXvYvWQ/YNqtexoOzsbx/AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUEeOIJTQkl5MNMdlW43uWupCva2IwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTM0MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAQwDQYJKoZIhvcNAQEL BQADggEBADoc466T9lveVGHJPBPXMevKIdnNLRYhQmVGbcpivVsHTlfeLFFFNNkm HttGPRu2WDYOUgrtB0zg1tyqQTFlhwAP/z3E2TaOiM6GbzlAeJ1Ru2Qr4ellGtdm 9Do9DYgnqkD8ye3NUoZzxBI3BOpfx7YJTomTfmO4xYmnIIdF6I5c6zrf/l+w9hZp XHmsEbET9i7ZDcIEBKszRNDJpH/VEF5t3ESNkhMvId3TRxnXPwBcoDZA7P7BRQrw DVKLFBWRGlXDI0SDv9LkpC9rNEtSH5+d+hhuLLcovm/10FwNbkZ7TQ8td2k444zk YmN1LRGxWlOIl9RJM6hbRXYxv2Uv8as= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org