$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e352e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e352e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 4VfHp9bipDZP2x8+Pncs3Kcu3kWts/1zOejrwVueB/k= Subject key identifier: B0:19:1D:98:09:0E:F8:B3:D7:64:29:5C:73:65:5D:1D:E2:57:75:04 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 5469BFAFA1C12F5B51426CE01EF5ACA7E00E8E1C Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e352e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:55 +0000 ROA not before: Mon 01 Jul 2024 00:57:55 +0000 ROA not after: Mon 30 Jun 2025 01:02:55 +0000 asID: 9794 IP address blocks: 202.148.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:69:bf:af:a1:c1:2f:5b:51:42:6c:e0:1e:f5:ac:a7:e0:0e:8e:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:55 2024 GMT Not After : Jun 30 01:02:55 2025 GMT Subject: CN=B0191D98090EF8B3D764295C73655D1DE2577504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:db:9f:b6:01:fd:2f:f9:03:64:cb:3a:27:7c: 5e:97:ef:57:d4:7e:2d:e3:63:6e:ad:ff:8e:de:2f: 08:a7:60:1f:e4:96:72:d9:f7:be:ff:78:55:9b:51: d9:f7:7f:0b:8b:24:cb:68:c3:c7:85:b7:ad:59:7a: 39:42:87:0c:b8:05:cc:cf:67:13:4e:e9:1c:4d:fa: 46:fe:53:82:4e:e0:b0:4b:11:fb:0b:92:92:de:24: a2:dd:cb:18:c7:8f:0a:dc:8b:89:ad:fd:01:39:00: 49:4f:e4:0c:68:e7:40:40:d0:20:6c:cf:35:81:98: 42:80:d0:89:c6:27:05:52:c2:b6:83:99:8c:e7:41: 81:38:43:ee:2b:45:8f:03:3b:bf:ed:5a:35:30:91: b8:ab:8c:9a:0e:b6:0f:95:7c:1e:94:7a:af:95:46: 62:6b:53:dc:45:5a:e3:a1:1d:75:e0:b5:ce:89:6f: 60:0a:55:02:41:b5:08:74:81:fe:58:02:7f:ce:3f: a6:7b:c8:67:09:e9:99:d6:a0:1e:c1:d0:8e:8f:54: 46:73:ac:69:89:2d:28:d8:40:31:e2:80:28:67:d0: 1d:84:f7:2a:54:1e:21:bf:27:dd:61:46:63:2e:20: 08:ca:be:42:11:5c:ba:09:90:16:3e:2f:9d:ad:d6: 74:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:19:1D:98:09:0E:F8:B3:D7:64:29:5C:73:65:5D:1D:E2:57:75:04 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e352e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.5.0/24 Signature Algorithm: sha256WithRSAEncryption 54:41:74:2d:a5:8c:f9:81:55:c8:85:33:6a:ac:0f:6b:0e:c7: 27:a7:84:4a:47:5e:6b:2b:1b:77:0e:41:d0:07:88:e1:43:45: 0d:e8:26:66:5a:68:99:bb:e1:72:84:22:27:be:bf:5b:f9:10: f1:35:57:f4:57:f4:b5:90:a2:40:a3:82:ff:f0:84:24:f8:d5: 43:e5:9d:e9:9a:ea:6e:8b:a9:ea:1b:6f:11:91:39:48:6f:da: 4c:5c:f4:c8:9d:80:85:9f:92:43:9f:08:be:84:60:67:67:a8: e7:d5:1f:a6:6b:2c:a4:0b:e5:8d:bb:7d:66:21:43:11:13:5b: 07:75:74:f1:41:4b:f5:35:2e:07:80:c7:1f:0d:3e:37:6e:40: 9f:81:a9:dc:6f:8f:93:e7:5b:9e:0c:a3:ca:94:d7:01:d2:2b: 00:19:2a:9d:05:fe:37:bf:e2:59:50:49:b3:96:83:47:ce:aa: cf:81:70:52:46:ec:73:1b:57:58:9f:03:a2:3f:75:ae:e8:fc: ca:8e:63:6e:48:97:31:c6:78:0b:88:1d:8a:2a:ea:60:db:b9: b6:29:01:07:4c:e1:ae:dd:66:a0:71:7b:9d:4f:a9:42:99:fb: 18:53:14:09:c7:1b:4f:8c:67:b1:0f:3c:74:32:6b:62:0f:74: 8c:c3:38:96 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUVGm/r6HBL1tRQmzgHvWsp+AOjhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTVaFw0yNTA2MzAwMTAyNTVaMDMxMTAvBgNV BAMTKEIwMTkxRDk4MDkwRUY4QjNENzY0Mjk1QzczNjU1RDFERTI1Nzc1MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj25+2Af0v+QNkyzonfF6X71fU fi3jY26t/47eLwinYB/klnLZ977/eFWbUdn3fwuLJMtow8eFt61ZejlChwy4BczP ZxNO6RxN+kb+U4JO4LBLEfsLkpLeJKLdyxjHjwrci4mt/QE5AElP5Axo50BA0CBs zzWBmEKA0InGJwVSwraDmYznQYE4Q+4rRY8DO7/tWjUwkbirjJoOtg+VfB6Ueq+V RmJrU9xFWuOhHXXgtc6Jb2AKVQJBtQh0gf5YAn/OP6Z7yGcJ6ZnWoB7B0I6PVEZz rGmJLSjYQDHigChn0B2E9ypUHiG/J91hRmMuIAjKvkIRXLoJkBY+L52t1nTfAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUsBkdmAkO+LPXZClcc2VdHeJXdQQwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTM1MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAUwDQYJKoZIhvcNAQEL BQADggEBAFRBdC2ljPmBVciFM2qsD2sOxyenhEpHXmsrG3cOQdAHiOFDRQ3oJmZa aJm74XKEIie+v1v5EPE1V/RX9LWQokCjgv/whCT41UPlnema6m6LqeobbxGROUhv 2kxc9MidgIWfkkOfCL6EYGdnqOfVH6ZrLKQL5Y27fWYhQxETWwd1dPFBS/U1LgeA xx8NPjduQJ+Bqdxvj5PnW54Mo8qU1wHSKwAZKp0F/je/4llQSbOWg0fOqs+BcFJG 7HMbV1ifA6I/da7o/MqOY25IlzHGeAuIHYoq6mDbubYpAQdM4a7dZqBxe51PqUKZ +xhTFAnHG0+MZ7EPPHQya2IPdIzDOJY= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org