$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e372e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e372e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: cqMGii7rNoTdcaXaf5I5ONcTNGVMBAZHJUyV+XXYrtk= Subject key identifier: 31:41:D8:D6:12:CB:3A:B2:D7:56:4C:8C:7C:D2:E1:D5:48:E9:D7:A3 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 294E170C7408B651AC7753EBF617F26F6B3262E9 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e372e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:46 +0000 ROA not before: Sun 30 Jul 2023 23:58:46 +0000 ROA not after: Mon 29 Jul 2024 00:03:46 +0000 asID: 38778 IP address blocks: 202.148.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 21:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:4e:17:0c:74:08:b6:51:ac:77:53:eb:f6:17:f2:6f:6b:32:62:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:46 2023 GMT Not After : Jul 29 00:03:46 2024 GMT Subject: CN=3141D8D612CB3AB2D7564C8C7CD2E1D548E9D7A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c3:c4:93:a8:98:be:e6:aa:ad:b1:05:e7:30: 60:30:37:ff:18:0c:3e:f2:3e:46:aa:39:3b:10:e4: 72:79:59:c6:85:d6:88:2d:a8:9a:2f:24:8c:fc:50: 37:ec:aa:88:c7:f4:cd:84:84:13:a0:f1:be:39:b2: de:12:7a:eb:d6:4d:87:49:2c:03:25:77:dd:52:4c: 52:67:43:e3:f2:05:9b:8f:bf:94:a5:78:49:5f:ce: 58:10:f0:a9:dc:30:f9:7e:24:93:d6:10:8e:39:df: 40:36:bd:24:93:fb:52:60:67:51:61:9d:fe:1f:ca: 16:4b:93:da:f6:0b:6d:9b:ef:be:2b:bf:b1:f4:1a: dc:6a:2c:7f:4b:07:4e:28:97:d2:0d:7a:a1:ac:63: b4:69:00:da:65:ed:5d:8e:e7:2e:11:c8:31:a0:41: c6:c1:74:22:8f:71:48:fb:04:f3:a6:f0:69:aa:b3: 52:97:f8:63:48:30:6d:b4:25:d0:92:3e:c0:9d:1a: 91:2a:3a:42:0b:11:e8:98:8c:53:80:89:9d:9d:64: 8a:bb:05:ee:fe:ca:ff:f1:b9:a4:ea:28:ef:b9:7a: ba:ad:b1:90:81:1b:bc:e7:81:68:a1:ce:2d:7f:9d: 39:af:6d:ed:4a:91:ba:74:02:f8:07:6d:34:83:5c: f6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:41:D8:D6:12:CB:3A:B2:D7:56:4C:8C:7C:D2:E1:D5:48:E9:D7:A3 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e372e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.7.0/24 Signature Algorithm: sha256WithRSAEncryption a3:b9:83:8e:28:2e:5a:5b:1b:50:ea:8e:a8:7a:1c:66:c4:c7: 54:39:02:b8:58:ef:c9:af:42:c3:9f:52:84:80:4f:c9:91:bd: ad:c4:13:e6:33:5f:d8:71:9a:eb:d4:4e:07:99:23:2a:51:ee: 4f:e1:3f:1f:ea:b1:7f:da:f7:39:8f:ae:e1:d8:63:6a:08:0d: a2:92:43:21:74:02:89:e1:be:33:28:bf:6f:76:74:83:57:51: ca:db:28:26:fc:05:9f:df:31:99:b9:c0:97:b8:cd:ce:f2:5e: eb:ac:7d:7f:e7:b4:ab:32:09:a1:a5:86:1e:93:fa:51:af:f2: 0d:ba:8c:15:fd:32:60:33:6b:f5:d7:8a:4d:fb:78:d5:ba:16: 9f:e0:22:54:5d:08:82:77:26:f3:9f:03:16:2d:01:75:c8:7c: dc:aa:a3:b5:37:af:0d:e0:f0:01:38:69:e9:fb:ed:aa:7b:ca: 99:50:16:4d:6e:d2:3e:2c:da:3d:94:46:cb:29:b5:b7:46:f4: ed:d2:cb:fb:1b:1e:31:e7:1e:dc:bc:be:3d:07:97:f5:64:0f: 14:3b:e1:a1:6a:1c:94:2e:ce:14:d3:9d:1c:07:84:09:c7:5b: 6f:68:e4:fd:e7:27:c6:30:2c:8c:5d:ee:64:28:03:1e:7f:53: eb:59:1f:c5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKU4XDHQItlGsd1Pr9hfyb2syYukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDZaFw0yNDA3MjkwMDAzNDZaMDMxMTAvBgNV BAMTKDMxNDFEOEQ2MTJDQjNBQjJENzU2NEM4QzdDRDJFMUQ1NDhFOUQ3QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuw8STqJi+5qqtsQXnMGAwN/8Y DD7yPkaqOTsQ5HJ5WcaF1ogtqJovJIz8UDfsqojH9M2EhBOg8b45st4SeuvWTYdJ LAMld91STFJnQ+PyBZuPv5SleElfzlgQ8KncMPl+JJPWEI4530A2vSST+1JgZ1Fh nf4fyhZLk9r2C22b774rv7H0GtxqLH9LB04ol9INeqGsY7RpANpl7V2O5y4RyDGg QcbBdCKPcUj7BPOm8Gmqs1KX+GNIMG20JdCSPsCdGpEqOkILEeiYjFOAiZ2dZIq7 Be7+yv/xuaTqKO+5erqtsZCBG7zngWihzi1/nTmvbe1Kkbp0AvgHbTSDXPY3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUMUHY1hLLOrLXVkyMfNLh1Ujp16MwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAcwDQYJKoZIhvcN AQELBQADggEBAKO5g44oLlpbG1Dqjqh6HGbEx1Q5ArhY78mvQsOfUoSAT8mRva3E E+YzX9hxmuvUTgeZIypR7k/hPx/qsX/a9zmPruHYY2oIDaKSQyF0AonhvjMov292 dINXUcrbKCb8BZ/fMZm5wJe4zc7yXuusfX/ntKsyCaGlhh6T+lGv8g26jBX9MmAz a/XXik37eNW6Fp/gIlRdCIJ3JvOfAxYtAXXIfNyqo7U3rw3g8AE4aen77ap7yplQ Fk1u0j4s2j2URssptbdG9O3Sy/sbHjHnHty8vj0Hl/VkDxQ74aFqHJQuzhTTnRwH hAnHW29o5P3nJ8YwLIxd7mQoAx5/U+tZH8U= -----END CERTIFICATE-----Generated at Fri Apr 19 15:09:07 2024 by rpki-client on console-fra.rpki-client.org