$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa File: 3230322e3134382e382e302f32312d3231203d3e203338373738.roa (raw, json) Hash identifier: ulfcdHYOoQ9It9WnXQpKDEA54kvHj1owUdXDXsKfp6w= Subject key identifier: 36:5A:9C:2F:9D:A2:DD:9A:68:87:0C:D7:7A:4D:3E:04:D6:AD:9A:19 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 7E42E516DD33960836F7FE4AAAA9D649E974B9E4 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:50 +0000 ROA not before: Sun 30 Jul 2023 23:58:50 +0000 ROA not after: Mon 29 Jul 2024 00:03:50 +0000 asID: 38778 IP address blocks: 202.148.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:42:e5:16:dd:33:96:08:36:f7:fe:4a:aa:a9:d6:49:e9:74:b9:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:50 2023 GMT Not After : Jul 29 00:03:50 2024 GMT Subject: CN=365A9C2F9DA2DD9A68870CD77A4D3E04D6AD9A19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9c:eb:59:a9:26:65:4a:f5:ef:86:e4:91:9e: 38:61:0e:36:2f:1c:75:7a:68:c8:97:77:3c:b4:0e: af:44:f2:97:02:03:40:b4:4d:f3:5f:c5:c0:22:0d: 8a:5e:11:76:16:e8:85:e8:3c:50:0e:e0:48:19:36: 3c:bc:2c:a3:cd:6f:c2:3f:2c:19:26:57:e5:c8:0d: ce:54:c8:34:f0:79:63:c6:8d:b7:e4:de:da:70:ac: f3:5e:bf:0b:5e:5a:7b:25:e6:9a:f1:34:86:96:18: bf:0c:ad:97:d5:61:a1:b2:ff:53:ed:49:4b:aa:d0: 00:3b:46:bb:e5:f4:f2:14:57:f9:e2:65:94:d6:cb: b2:fd:92:5c:be:1d:ad:b7:ce:f8:b8:73:a1:83:4c: 62:8f:92:52:0a:63:98:cf:e8:6a:5e:e3:bb:63:88: 88:15:32:40:28:d9:6c:1e:6c:9d:c5:46:56:88:6c: 95:a6:10:42:63:c6:e9:75:81:91:a2:90:a9:fa:2b: 34:5f:7b:51:23:96:df:28:7b:fa:bd:fe:66:83:63: eb:b7:c9:c1:80:da:be:11:87:94:13:ae:74:46:cb: a0:90:48:11:f8:41:9f:f0:08:6f:22:eb:3d:93:e2: 99:d3:00:23:ce:11:0c:fd:02:70:f7:27:eb:fb:2d: 07:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5A:9C:2F:9D:A2:DD:9A:68:87:0C:D7:7A:4D:3E:04:D6:AD:9A:19 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.8.0/21 Signature Algorithm: sha256WithRSAEncryption 9d:5b:5e:0e:08:26:c2:5c:3c:f9:e5:c0:01:c1:97:f0:4a:04: ab:d1:77:c3:66:fe:7a:2c:a5:c5:38:51:a4:22:2a:f7:32:a4: 8b:1b:9c:e0:32:e6:8b:73:5e:af:71:04:06:6f:e6:8a:d3:4d: 50:1b:2a:e3:dd:33:97:0f:97:72:42:ce:09:81:d0:ac:df:21: 61:f0:66:23:6e:c9:93:2d:17:14:6a:26:77:e9:f4:18:0e:eb: 33:e8:c8:1a:b8:99:4d:99:b9:6b:50:89:dc:43:b9:6c:f0:7c: 73:ce:67:cb:65:85:3f:11:da:24:4e:d3:7b:0d:38:af:76:30: 5d:a1:01:f3:51:1b:7b:82:03:c3:1f:ad:7f:ae:1e:d1:d5:6e: 14:1e:3d:77:bf:f2:db:72:1a:bb:d9:6f:97:36:d8:c2:6f:64: fa:31:5c:29:5e:05:5e:e9:0e:07:e7:6b:76:d8:5e:b7:71:4d: 3a:61:45:28:06:b9:95:b0:c8:80:4f:47:54:93:a6:6c:a0:bf: 3d:f3:8b:09:58:aa:cf:36:ad:c8:6e:86:49:58:cf:cc:21:31: c0:82:89:b2:b2:ce:5f:b6:38:bc:d9:33:03:12:7d:fe:02:0e: 43:c1:43:07:b0:94:ab:1f:94:87:ae:c6:0b:7d:9d:25:36:d0: 19:9f:45:ff -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUfkLlFt0zlgg29/5KqqnWSel0ueQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NTBaFw0yNDA3MjkwMDAzNTBaMDMxMTAvBgNV BAMTKDM2NUE5QzJGOURBMkREOUE2ODg3MENENzdBNEQzRTA0RDZBRDlBMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqnOtZqSZlSvXvhuSRnjhhDjYv HHV6aMiXdzy0Dq9E8pcCA0C0TfNfxcAiDYpeEXYW6IXoPFAO4EgZNjy8LKPNb8I/ LBkmV+XIDc5UyDTweWPGjbfk3tpwrPNevwteWnsl5prxNIaWGL8MrZfVYaGy/1Pt SUuq0AA7Rrvl9PIUV/niZZTWy7L9kly+Ha23zvi4c6GDTGKPklIKY5jP6Gpe47tj iIgVMkAo2WwebJ3FRlaIbJWmEEJjxul1gZGikKn6KzRfe1Ejlt8oe/q9/maDY+u3 ycGA2r4Rh5QTrnRGy6CQSBH4QZ/wCG8i6z2T4pnTACPOEQz9AnD3J+v7LQeLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUNlqcL52i3ZpohwzXek0+BNatmhkwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzODJlMzAyZjMyMzEy ZDMyMzEyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKlAgwDQYJKoZIhvcN AQELBQADggEBAJ1bXg4IJsJcPPnlwAHBl/BKBKvRd8Nm/nospcU4UaQiKvcypIsb nOAy5otzXq9xBAZv5orTTVAbKuPdM5cPl3JCzgmB0KzfIWHwZiNuyZMtFxRqJnfp 9BgO6zPoyBq4mU2ZuWtQidxDuWzwfHPOZ8tlhT8R2iRO03sNOK92MF2hAfNRG3uC A8MfrX+uHtHVbhQePXe/8ttyGrvZb5c22MJvZPoxXCleBV7pDgfna3bYXrdxTTph RSgGuZWwyIBPR1STpmygvz3ziwlYqs82rchuhklYz8whMcCCibKyzl+2OLzZMwMS ff4CDkPBQwewlKsflIeuxgt9nSU20BmfRf8= -----END CERTIFICATE-----Generated at Wed Apr 24 05:34:42 2024 by rpki-client on console-ams.rpki-client.org