$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa File: 3230322e3134382e382e302f32312d3231203d3e203338373738.roa (raw, json) Hash identifier: jkIG83Fu7sT6OSyYX/zPiwYJBTugi7PaNi1HYuBsLjs= Subject key identifier: 8C:58:8C:7C:9B:E7:D5:B7:49:1F:F1:70:8C:F0:60:91:78:DE:DF:91 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 213D744EFEAEB78082BBCCCEE1C25D89A327BE4C Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:03:02 +0000 ROA not before: Mon 01 Jul 2024 00:58:02 +0000 ROA not after: Mon 30 Jun 2025 01:03:02 +0000 asID: 38778 IP address blocks: 202.148.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:3d:74:4e:fe:ae:b7:80:82:bb:cc:ce:e1:c2:5d:89:a3:27:be:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:02 2024 GMT Not After : Jun 30 01:03:02 2025 GMT Subject: CN=8C588C7C9BE7D5B7491FF1708CF0609178DEDF91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bb:30:68:79:b0:0e:12:37:3e:15:c8:fc:f5: 14:87:3a:be:81:41:2c:45:53:b7:9c:db:57:25:70: 25:62:d2:09:d3:1e:1b:49:34:dc:16:ac:c9:e5:dc: b9:1b:31:05:72:ce:82:cd:07:c6:25:29:6b:9c:6a: 14:5c:50:62:fa:1b:93:17:fb:96:5b:bb:52:dc:82: 25:ef:d1:6c:dc:43:c0:ce:5a:a4:a2:43:fc:d1:79: 7b:8e:17:76:37:a8:05:3e:db:ed:39:96:20:4c:47: 28:34:94:b7:27:91:77:ba:3c:79:47:63:02:03:5e: b2:d9:36:61:1d:61:b7:57:91:73:85:7d:d8:be:e7: ee:b6:32:21:97:31:70:a3:0e:93:c5:24:0a:4d:4e: 0a:b5:78:c3:52:c6:99:7a:0a:a4:d0:ec:e4:5e:ec: 50:56:0f:d0:34:02:82:53:4e:0c:25:47:e3:ab:cb: ff:ab:5c:80:95:78:04:a6:a1:f4:d4:de:c5:ed:2a: cc:9d:d4:7d:2e:c8:42:e5:1b:13:3e:27:3c:4f:75: aa:2f:3b:1a:af:38:e5:a2:ce:d6:7b:f1:f3:9c:a4: 52:60:96:79:e3:33:a3:fb:e6:77:99:e9:09:f3:3d: 67:e7:e9:3f:fe:40:4e:7e:5b:3c:36:64:78:35:94: 4f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:58:8C:7C:9B:E7:D5:B7:49:1F:F1:70:8C:F0:60:91:78:DE:DF:91 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.8.0/21 Signature Algorithm: sha256WithRSAEncryption ac:aa:81:b7:76:f2:73:b2:75:58:f9:b1:57:8a:3d:9a:ec:67: 9f:f3:32:58:cc:93:13:29:21:17:95:41:b3:af:b3:44:f1:9c: c6:21:58:8f:91:f6:97:81:df:73:c7:80:75:01:2f:26:0c:2e: 33:e9:6d:96:ad:0d:d4:38:41:0c:ea:b7:b3:7d:74:84:4f:a8: eb:6a:2e:1b:e2:28:da:89:30:9b:45:5b:1f:59:86:68:b6:80: 17:1f:bb:9c:e9:c7:e6:06:7e:67:63:11:44:26:8c:6c:b1:e5: 13:8b:1e:15:ae:06:8f:90:a3:24:1b:de:cf:4d:76:7f:98:25: 55:49:f0:4f:59:63:d3:da:44:c1:d2:4a:2a:d1:82:ff:b2:54: 23:99:eb:97:1e:9a:a8:d1:d1:3e:2a:c5:47:d3:cf:1e:86:9c: db:ee:61:a4:ba:da:6f:b1:94:40:23:62:19:c0:6e:8c:14:b3: ee:95:f8:f8:f4:b5:e2:7e:84:15:8f:ad:b8:64:cf:46:e4:9b: 7c:7f:6d:cb:d3:d6:f8:78:3a:ef:dd:08:5a:1a:bb:52:10:e3: 49:1f:94:3c:02:38:16:88:05:4e:18:e1:84:83:d7:07:d4:cc: d6:fc:81:8c:1a:6f:73:18:ea:08:01:72:6e:c8:6f:dc:83:8b: b9:fb:c6:fe -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIT10Tv6ut4CCu8zO4cJdiaMnvkwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDJaFw0yNTA2MzAwMTAzMDJaMDMxMTAvBgNV BAMTKDhDNTg4QzdDOUJFN0Q1Qjc0OTFGRjE3MDhDRjA2MDkxNzhERURGOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZuzBoebAOEjc+Fcj89RSHOr6B QSxFU7ec21clcCVi0gnTHhtJNNwWrMnl3LkbMQVyzoLNB8YlKWucahRcUGL6G5MX +5Zbu1LcgiXv0WzcQ8DOWqSiQ/zReXuOF3Y3qAU+2+05liBMRyg0lLcnkXe6PHlH YwIDXrLZNmEdYbdXkXOFfdi+5+62MiGXMXCjDpPFJApNTgq1eMNSxpl6CqTQ7ORe 7FBWD9A0AoJTTgwlR+Ory/+rXICVeASmofTU3sXtKsyd1H0uyELlGxM+JzxPdaov OxqvOOWiztZ78fOcpFJglnnjM6P75neZ6QnzPWfn6T/+QE5+Wzw2ZHg1lE+XAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjFiMfJvn1bdJH/FwjPBgkXje35EwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzODJlMzAyZjMyMzEy ZDMyMzEyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKlAgwDQYJKoZIhvcN AQELBQADggEBAKyqgbd28nOydVj5sVeKPZrsZ5/zMljMkxMpIReVQbOvs0TxnMYh WI+R9peB33PHgHUBLyYMLjPpbZatDdQ4QQzqt7N9dIRPqOtqLhviKNqJMJtFWx9Z hmi2gBcfu5zpx+YGfmdjEUQmjGyx5ROLHhWuBo+QoyQb3s9Ndn+YJVVJ8E9ZY9Pa RMHSSirRgv+yVCOZ65cemqjR0T4qxUfTzx6GnNvuYaS62m+xlEAjYhnAbowUs+6V +Pj0teJ+hBWPrbhkz0bkm3x/bcvT1vh4Ou/dCFoau1IQ40kflDwCOBaIBU4Y4YSD 1wfUzNb8gYwab3MY6ggBcm7Ib9yDi7n7xv4= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org