$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e342e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e342e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 9nRqQGArzxpn2VqTkbYJPfyPperSrSAUtwfCdDQh/8M= Subject key identifier: 9D:A1:68:FE:67:DE:C9:34:D3:2D:AA:C9:C4:85:BF:C0:F2:7E:E9:F7 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 40712F9958B3F1856D7AE1E5169650B3D4B29F35 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e342e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:50 +0000 ROA not before: Sun 30 Jul 2023 23:58:50 +0000 ROA not after: Mon 29 Jul 2024 00:03:50 +0000 asID: 9794 IP address blocks: 202.148.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:71:2f:99:58:b3:f1:85:6d:7a:e1:e5:16:96:50:b3:d4:b2:9f:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:50 2023 GMT Not After : Jul 29 00:03:50 2024 GMT Subject: CN=9DA168FE67DEC934D32DAAC9C485BFC0F27EE9F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8b:1e:77:a7:78:ae:3d:15:49:f1:f7:08:3f: a2:23:8f:8d:ac:34:77:8e:ba:65:b2:9f:8e:73:6f: b2:36:52:49:b7:73:c9:fd:dc:73:fe:6e:52:98:e3: 1e:7a:75:8e:32:02:b2:cd:e9:8a:d3:5d:02:70:bd: 1b:54:56:d3:f6:31:79:b2:83:35:16:9c:ee:52:89: 79:9d:b6:62:d1:a4:eb:8c:a1:57:d4:d5:68:bc:1e: 88:4d:04:4d:7f:56:6a:4d:f9:7f:cf:c8:61:a6:01: 21:fb:67:4c:b0:a9:f8:f3:44:57:4a:18:95:9a:90: e7:16:ca:f5:31:2b:05:5d:99:f7:3c:81:f1:da:c1: 41:2c:1c:2b:0b:90:5c:cb:9f:2e:bb:6b:a0:7b:ca: 4e:2d:c4:41:e4:03:42:ad:69:b1:bb:ad:43:da:04: e1:3b:21:be:05:c4:69:fc:3d:a0:97:fa:39:af:af: 76:93:7f:06:86:56:a8:9f:f8:f9:50:ff:fb:dc:c7: d5:4b:a3:da:eb:ce:ee:13:bf:df:32:f8:89:15:99: 25:83:d0:cf:cb:d9:70:bd:d6:63:64:c9:59:e2:1c: c3:de:c4:52:71:a3:11:20:27:49:af:c5:45:72:0e: d2:44:53:aa:0b:53:c6:81:a2:aa:d2:a4:6e:43:a7: ce:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A1:68:FE:67:DE:C9:34:D3:2D:AA:C9:C4:85:BF:C0:F2:7E:E9:F7 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e342e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.4.0/24 Signature Algorithm: sha256WithRSAEncryption 85:9d:79:dd:fa:92:22:47:de:8f:b1:b1:40:d7:91:cb:1a:24: 71:4c:6a:dd:64:dc:92:e5:0c:8f:d0:d2:6d:66:7c:a5:5c:4b: 2d:ea:aa:5b:7a:04:4e:4f:f9:3a:8a:e4:b3:c9:14:eb:a5:b9: 8c:4f:63:1a:96:72:46:a7:4e:dc:c3:65:50:ec:fc:17:9c:30: df:58:d6:66:f8:98:a6:6f:d2:5e:47:97:7a:bc:29:a0:39:61: 5d:fa:f9:9c:1c:f9:71:e3:57:b6:de:7f:59:db:7a:b3:b5:22: aa:62:ee:2f:fa:2b:95:26:e4:83:c6:fe:10:e4:b4:f6:74:3d: 3b:2b:2a:58:f6:ee:26:80:ee:76:fc:42:49:0b:33:20:84:63: ed:43:41:73:64:05:98:fa:f0:93:2b:cf:ff:55:c1:03:30:07: 61:ef:45:ff:e7:43:27:00:bf:55:66:ec:c2:ed:aa:ad:6a:fe: c9:0f:82:90:24:de:34:e2:21:48:9a:e8:ad:63:7f:c1:38:ac: af:8c:be:f7:6e:2b:c5:59:f5:81:f4:7e:12:a0:33:53:49:fe: 89:25:7f:60:8b:44:9f:a1:2f:7b:57:0a:b1:79:e2:47:69:9d: a1:6a:c9:8f:18:82:94:59:ac:2f:d2:8c:10:f5:ba:bd:00:66: 7c:50:6f:2b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUQHEvmViz8YVteuHlFpZQs9SynzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTBaFw0yNDA3MjkwMDAzNTBaMDMxMTAvBgNV BAMTKDlEQTE2OEZFNjdERUM5MzREMzJEQUFDOUM0ODVCRkMwRjI3RUU5RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfix53p3iuPRVJ8fcIP6Ijj42s NHeOumWyn45zb7I2Ukm3c8n93HP+blKY4x56dY4yArLN6YrTXQJwvRtUVtP2MXmy gzUWnO5SiXmdtmLRpOuMoVfU1Wi8HohNBE1/VmpN+X/PyGGmASH7Z0ywqfjzRFdK GJWakOcWyvUxKwVdmfc8gfHawUEsHCsLkFzLny67a6B7yk4txEHkA0KtabG7rUPa BOE7Ib4FxGn8PaCX+jmvr3aTfwaGVqif+PlQ//vcx9VLo9rrzu4Tv98y+IkVmSWD 0M/L2XC91mNkyVniHMPexFJxoxEgJ0mvxUVyDtJEU6oLU8aBoqrSpG5Dp84JAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUnaFo/mfeyTTTLarJxIW/wPJ+6fcwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTM0MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAQwDQYJKoZIhvcNAQEL BQADggEBAIWded36kiJH3o+xsUDXkcsaJHFMat1k3JLlDI/Q0m1mfKVcSy3qqlt6 BE5P+TqK5LPJFOuluYxPYxqWckanTtzDZVDs/BecMN9Y1mb4mKZv0l5Hl3q8KaA5 YV36+Zwc+XHjV7bef1nberO1Iqpi7i/6K5Um5IPG/hDktPZ0PTsrKlj27iaA7nb8 QkkLMyCEY+1DQXNkBZj68JMrz/9VwQMwB2HvRf/nQycAv1Vm7MLtqq1q/skPgpAk 3jTiIUia6K1jf8E4rK+MvvduK8VZ9YH0fhKgM1NJ/oklf2CLRJ+hL3tXCrF54kdp naFqyY8YgpRZrC/SjBD1ur0AZnxQbys= -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:28 2024 by rpki-client on console-fra.rpki-client.org