$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e362e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e362e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: qyo2yI56NkI2whjHNJt//rYpxNZdkI7WrKM6e+LUE5c= Subject key identifier: C1:B5:72:A8:FE:33:32:B6:9A:FA:06:8E:84:A2:75:6B:B6:29:0C:CF Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 3E08563EC56A5D5A4E5A51C10CB56A2597C44DFC Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e362e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:54 +0000 ROA not before: Mon 01 Jul 2024 00:57:54 +0000 ROA not after: Mon 30 Jun 2025 01:02:54 +0000 asID: 38778 IP address blocks: 202.148.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:08:56:3e:c5:6a:5d:5a:4e:5a:51:c1:0c:b5:6a:25:97:c4:4d:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:54 2024 GMT Not After : Jun 30 01:02:54 2025 GMT Subject: CN=C1B572A8FE3332B69AFA068E84A2756BB6290CCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:8c:3e:a1:d4:a2:0e:6a:15:3f:11:ae:c1: c0:57:ea:54:dd:68:fa:ba:a6:20:8f:52:ab:ce:57: 90:3b:f1:c9:ed:6d:e3:7d:c8:b6:c4:55:80:f3:e7: b4:46:e8:b5:f2:5c:14:52:ca:4a:ae:99:7f:2d:1b: 7a:de:5a:83:aa:2f:75:76:79:69:6a:90:61:c3:e2: 46:d9:6c:e3:be:5a:2b:2e:2e:75:7d:e3:eb:bd:0f: 2e:fc:05:6a:bd:bc:b6:aa:f9:1e:39:96:0b:96:22: 51:4e:42:15:61:7f:82:a0:4b:eb:ae:a2:7f:4e:64: 1e:5a:dd:0c:04:5f:59:78:c4:6f:e2:8e:20:bd:bd: a9:59:c3:70:f9:fa:9e:47:ee:a1:de:a2:c1:1b:f9: 53:6a:4f:f6:6f:d2:bb:94:05:93:41:9b:27:52:64: 8e:fb:a3:90:3d:22:42:e8:f7:53:94:d9:12:f7:0a: ad:0a:0f:ed:2f:d9:8c:b7:fb:64:0c:b7:d7:28:2c: d8:8d:f4:99:5d:6e:4b:44:a8:de:cd:f4:f6:23:c0: 39:fa:07:f5:04:c6:c6:ab:21:2f:68:e0:66:f9:07: e0:05:ad:36:0a:2f:d3:55:f0:d5:05:de:17:06:6e: a0:c0:1a:ed:91:dc:c2:41:bb:63:a2:a6:57:9b:db: d9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B5:72:A8:FE:33:32:B6:9A:FA:06:8E:84:A2:75:6B:B6:29:0C:CF X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e362e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.6.0/24 Signature Algorithm: sha256WithRSAEncryption 25:ac:ad:27:f6:2e:c2:1b:e5:36:d2:8a:a7:9c:b6:26:78:82: ba:2a:34:c9:1d:cb:d4:82:f5:1b:3d:2f:7e:1a:96:86:cd:0f: 5a:89:47:3e:ed:df:04:dc:d1:b4:a3:7c:bd:7e:32:fd:00:e8: c3:eb:14:40:5c:34:fd:66:ad:ab:d5:f2:7b:b6:24:7e:1a:7e: 91:ac:58:81:f3:f8:b1:59:f4:77:6e:34:bc:36:e3:e2:bf:44: ce:30:87:e1:f3:66:39:a8:53:e4:29:9d:5e:e4:4a:f3:74:8e: e7:ea:1f:30:5a:f8:07:9b:91:2a:28:d5:22:41:6e:18:f7:a7: 5e:d8:fb:96:ec:a0:ef:b1:be:e7:4f:e9:39:78:72:64:d1:a2: a8:89:54:d0:a9:1e:0a:91:83:56:e9:07:61:c4:0c:3a:5d:b1: d2:82:6c:06:20:6d:91:27:2b:f4:70:20:04:11:e6:40:cf:a7: 97:8a:21:20:2f:b2:ab:15:1b:c5:bb:92:06:8c:ae:e8:f5:da: 23:48:0e:38:84:f7:d1:89:2f:76:a4:9f:f4:23:a8:ae:38:0b: 41:17:67:2f:84:67:73:ba:15:55:8a:63:7b:30:5b:2a:a2:a1: f7:4e:34:8a:a2:34:1a:7f:19:fc:d7:aa:39:35:23:1a:a1:46: db:bd:0f:17 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPghWPsVqXVpOWlHBDLVqJZfETfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTRaFw0yNTA2MzAwMTAyNTRaMDMxMTAvBgNV BAMTKEMxQjU3MkE4RkUzMzMyQjY5QUZBMDY4RTg0QTI3NTZCQjYyOTBDQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBsow+odSiDmoVPxGuwcBX6lTd aPq6piCPUqvOV5A78cntbeN9yLbEVYDz57RG6LXyXBRSykqumX8tG3reWoOqL3V2 eWlqkGHD4kbZbOO+WisuLnV94+u9Dy78BWq9vLaq+R45lguWIlFOQhVhf4KgS+uu on9OZB5a3QwEX1l4xG/ijiC9valZw3D5+p5H7qHeosEb+VNqT/Zv0ruUBZNBmydS ZI77o5A9IkLo91OU2RL3Cq0KD+0v2Yy3+2QMt9coLNiN9JldbktEqN7N9PYjwDn6 B/UExsarIS9o4Gb5B+AFrTYKL9NV8NUF3hcGbqDAGu2R3MJBu2Oipleb29n5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUwbVyqP4zMraa+gaOhKJ1a7YpDM8wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAYwDQYJKoZIhvcN AQELBQADggEBACWsrSf2LsIb5TbSiqectiZ4groqNMkdy9SC9Rs9L34alobND1qJ Rz7t3wTc0bSjfL1+Mv0A6MPrFEBcNP1mravV8nu2JH4afpGsWIHz+LFZ9HduNLw2 4+K/RM4wh+HzZjmoU+QpnV7kSvN0jufqHzBa+AebkSoo1SJBbhj3p17Y+5bsoO+x vudP6Tl4cmTRoqiJVNCpHgqRg1bpB2HEDDpdsdKCbAYgbZEnK/RwIAQR5kDPp5eK ISAvsqsVG8W7kgaMruj12iNIDjiE99GJL3akn/QjqK44C0EXZy+EZ3O6FVWKY3sw WyqiofdONIqiNBp/GfzXqjk1IxqhRtu9Dxc= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org