$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e372e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e372e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: LT+j4YkOc5SDL3u41XJs7zPqg2a7vsWQVbegE0UC42Y= Subject key identifier: 6C:66:4A:88:5B:E1:AB:66:F4:15:45:43:BC:24:3B:B5:66:13:B6:FF Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 11B6E2D7718C2485BBF0F779B16D86AC1FD71264 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e372e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:03:00 +0000 ROA not before: Mon 01 Jul 2024 00:58:00 +0000 ROA not after: Mon 30 Jun 2025 01:03:00 +0000 asID: 38778 IP address blocks: 202.148.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:b6:e2:d7:71:8c:24:85:bb:f0:f7:79:b1:6d:86:ac:1f:d7:12:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:00 2024 GMT Not After : Jun 30 01:03:00 2025 GMT Subject: CN=6C664A885BE1AB66F4154543BC243BB56613B6FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:24:0c:f7:56:c5:db:4c:9a:4f:a6:1e:43:1d: b7:a0:94:e5:5c:e6:d7:4b:29:73:07:51:a5:40:20: 57:03:85:84:e3:50:a5:af:02:84:44:6a:db:80:c9: b9:b5:97:c5:76:f2:39:f5:0b:ca:c2:b9:9f:40:f3: bc:22:43:4c:2d:42:de:99:71:ed:48:cb:94:d2:39: 28:e7:b7:c9:5f:87:51:18:78:a1:a9:b5:02:58:0d: 88:2a:f9:22:85:06:a8:9d:2f:54:7e:94:b7:54:a7: 34:3f:a6:fc:0a:14:43:9a:a2:19:f1:93:81:2d:4f: c6:95:88:e7:e0:3f:b4:79:3d:03:0c:9b:ff:60:aa: d4:09:13:15:2c:b5:29:d8:a1:3d:6e:56:d0:b2:af: 3a:df:4a:2c:a5:cb:e4:e0:ba:e5:f0:48:cd:99:a4: 5b:3f:af:3e:e4:1f:d6:7a:4c:60:32:9c:e6:30:77: 15:90:79:2c:4d:57:2e:a3:19:af:b8:00:30:b4:28: 93:2d:79:26:41:a4:7a:51:ad:bc:4e:d0:50:df:90: 21:6b:ae:67:aa:80:d4:4d:72:08:88:5d:4b:a9:89: d5:6a:89:a0:61:7b:4c:8b:aa:ae:36:20:e6:fe:ef: 52:ee:3c:f3:64:98:8a:10:36:3e:e0:7f:7f:26:83: fc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:66:4A:88:5B:E1:AB:66:F4:15:45:43:BC:24:3B:B5:66:13:B6:FF X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e372e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.7.0/24 Signature Algorithm: sha256WithRSAEncryption 28:32:dc:df:9f:91:12:7c:a3:6f:d6:f9:b7:01:fc:1b:00:c5: 97:9a:e4:e2:b7:08:e1:4a:47:c4:56:84:ec:57:c3:7c:c8:23: 1c:a0:9f:db:ca:de:ec:41:d1:75:9e:8d:18:7f:15:d4:e5:f7: 67:79:a7:44:28:64:71:de:a1:00:49:36:b0:99:40:d5:bb:4b: 72:37:0b:94:64:bc:cf:1b:ce:67:ac:66:bb:2b:55:a2:ed:c0: 07:7f:f2:13:c0:16:44:5a:0d:58:86:c3:94:d9:5c:ef:9b:1d: ad:22:da:c7:e8:3a:0e:19:5f:2c:cc:35:03:03:cd:42:3e:7b: 38:42:9b:c6:79:3d:d3:67:35:a5:bd:30:28:e3:2e:30:95:62: fe:54:ee:4e:84:31:aa:bf:a1:6f:f6:09:01:8f:3d:53:d7:7e: e4:64:f3:5e:7e:e9:a3:b2:ca:61:b6:f2:dc:b5:f9:c2:b3:c8: 07:93:f7:a6:7f:ae:52:81:5c:00:b5:9f:8b:d4:75:d7:a0:b5: d0:6c:d4:95:2a:9d:c6:71:3b:b5:d8:81:4e:dc:ca:ba:26:20: 0d:72:8c:f4:30:42:f3:0b:59:43:a0:c6:7b:2d:95:b1:39:7e: 11:dd:21:9e:e1:66:9e:21:9d:7d:9c:b1:c0:bd:ce:a5:68:ac: ce:c4:27:25 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEbbi13GMJIW78Pd5sW2GrB/XEmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDBaFw0yNTA2MzAwMTAzMDBaMDMxMTAvBgNV BAMTKDZDNjY0QTg4NUJFMUFCNjZGNDE1NDU0M0JDMjQzQkI1NjYxM0I2RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEJAz3VsXbTJpPph5DHbeglOVc 5tdLKXMHUaVAIFcDhYTjUKWvAoREatuAybm1l8V28jn1C8rCuZ9A87wiQ0wtQt6Z ce1Iy5TSOSjnt8lfh1EYeKGptQJYDYgq+SKFBqidL1R+lLdUpzQ/pvwKFEOaohnx k4EtT8aViOfgP7R5PQMMm/9gqtQJExUstSnYoT1uVtCyrzrfSiyly+TguuXwSM2Z pFs/rz7kH9Z6TGAynOYwdxWQeSxNVy6jGa+4ADC0KJMteSZBpHpRrbxO0FDfkCFr rmeqgNRNcgiIXUupidVqiaBhe0yLqq42IOb+71LuPPNkmIoQNj7gf38mg/w9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbGZKiFvhq2b0FUVDvCQ7tWYTtv8wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAcwDQYJKoZIhvcN AQELBQADggEBACgy3N+fkRJ8o2/W+bcB/BsAxZea5OK3COFKR8RWhOxXw3zIIxyg n9vK3uxB0XWejRh/FdTl92d5p0QoZHHeoQBJNrCZQNW7S3I3C5RkvM8bzmesZrsr VaLtwAd/8hPAFkRaDViGw5TZXO+bHa0i2sfoOg4ZXyzMNQMDzUI+ezhCm8Z5PdNn NaW9MCjjLjCVYv5U7k6EMaq/oW/2CQGPPVPXfuRk815+6aOyymG28ty1+cKzyAeT 96Z/rlKBXAC1n4vUddegtdBs1JUqncZxO7XYgU7cyromIA1yjPQwQvMLWUOgxnst lbE5fhHdIZ7hZp4hnX2cscC9zqVorM7EJyU= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org