$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e382e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: zyKFR1LRuImkzkuKfclkMLzdk0r2tDLbDrE4kMJhjP0= Subject key identifier: 3F:65:3A:14:D2:A3:D5:39:E7:89:70:97:AF:DE:61:73:A3:61:57:87 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 3CE5CA50051A4310E8E68BDCC0838C2082E41EE6 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:58 +0000 ROA not before: Mon 01 Jul 2024 00:57:58 +0000 ROA not after: Mon 30 Jun 2025 01:02:58 +0000 asID: 38778 IP address blocks: 202.148.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e5:ca:50:05:1a:43:10:e8:e6:8b:dc:c0:83:8c:20:82:e4:1e:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:58 2024 GMT Not After : Jun 30 01:02:58 2025 GMT Subject: CN=3F653A14D2A3D539E7897097AFDE6173A3615787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e6:23:f0:14:58:4a:72:e2:09:e7:88:aa:18: bc:93:e8:02:95:82:84:b1:f8:61:ec:ce:c8:21:a7: b1:82:02:fa:c7:b6:0f:e2:6a:95:20:f2:54:bc:84: b4:cc:b2:c8:12:91:d1:46:99:75:18:46:eb:ad:d7: 05:52:fe:36:8a:87:59:7a:4a:65:40:e4:0f:39:a5: 6b:fd:1d:3c:2e:2d:d2:32:b4:73:3c:a7:a9:d9:d2: 3e:54:e2:f6:b4:42:c1:4b:3a:75:0d:1b:f0:ad:bc: 27:6e:69:40:62:07:c2:c3:dc:57:6d:c3:04:57:3f: fc:d6:3a:df:61:e6:2c:61:1b:ea:23:17:05:2b:be: 3a:8b:2e:5e:9e:dd:77:19:4e:d0:e5:57:f9:7c:93: dd:0f:10:e0:cd:bc:51:c0:44:e3:8f:60:9a:ea:7c: b2:03:d2:a7:62:55:56:c8:8f:6b:59:8f:a7:5e:ad: d0:3d:37:d4:c4:09:e1:b8:34:e2:fa:4e:4c:b3:16: ad:bf:09:cf:06:29:64:e4:d3:f7:61:43:4b:a0:1f: 4a:94:fb:17:37:9b:8a:59:e6:bf:23:0b:9a:07:df: d0:0e:1f:1a:f5:f1:71:5e:7e:19:0b:9c:9e:b6:c6: c2:e7:80:0d:b8:3a:48:1c:df:0c:96:08:41:4c:e5: 93:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:65:3A:14:D2:A3:D5:39:E7:89:70:97:AF:DE:61:73:A3:61:57:87 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.8.0/24 Signature Algorithm: sha256WithRSAEncryption a2:f5:f2:f3:3c:50:a3:51:4d:4a:a3:9e:e2:cf:d9:2a:45:69: 8f:ef:d0:60:dd:bd:aa:01:1c:5d:c2:27:b4:33:fb:ff:0b:4c: 4b:b2:d4:f5:87:85:62:57:1a:e4:d1:e2:98:2e:a9:58:5e:b0: cf:00:be:b7:c3:b5:9e:0d:4a:8e:e5:95:37:03:fd:4d:d0:ec: 50:d5:40:eb:40:29:ce:f6:97:9e:d6:b5:bc:0d:75:d2:aa:ab: 27:7b:a7:cb:6a:3f:d7:5d:6d:a7:28:e4:e2:7d:2d:21:81:c8: c0:81:a9:cf:c5:fc:92:51:aa:f6:a7:7e:06:b9:52:fe:25:85: 3f:7b:c4:a4:08:60:4c:6c:f2:56:9d:93:75:03:cf:bd:60:29: 86:3b:b5:53:26:05:16:b0:9b:b7:b2:8a:62:0c:a6:27:e5:f8: b2:15:b2:81:49:cd:fd:14:21:9c:29:85:b7:fb:27:6d:83:a0: e0:b4:c1:36:d6:14:21:eb:bf:5b:b6:6d:91:f9:19:fb:c7:e2: 25:ca:b3:06:70:bc:ac:60:5a:39:3f:88:24:1d:60:99:50:ea: 62:6e:b0:c1:85:48:a3:0e:0f:5c:78:c2:4f:f5:7a:a2:b6:88: a2:ea:a1:f3:87:4b:72:92:40:65:df:9d:02:17:cb:e9:4a:57: b5:49:2c:5c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPOXKUAUaQxDo5ovcwIOMIILkHuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NThaFw0yNTA2MzAwMTAyNThaMDMxMTAvBgNV BAMTKDNGNjUzQTE0RDJBM0Q1MzlFNzg5NzA5N0FGREU2MTczQTM2MTU3ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz5iPwFFhKcuIJ54iqGLyT6AKV goSx+GHszsghp7GCAvrHtg/iapUg8lS8hLTMssgSkdFGmXUYRuut1wVS/jaKh1l6 SmVA5A85pWv9HTwuLdIytHM8p6nZ0j5U4va0QsFLOnUNG/CtvCduaUBiB8LD3Fdt wwRXP/zWOt9h5ixhG+ojFwUrvjqLLl6e3XcZTtDlV/l8k90PEODNvFHAROOPYJrq fLID0qdiVVbIj2tZj6derdA9N9TECeG4NOL6TkyzFq2/Cc8GKWTk0/dhQ0ugH0qU +xc3m4pZ5r8jC5oH39AOHxr18XFefhkLnJ62xsLngA24Okgc3wyWCEFM5ZPvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUP2U6FNKj1TnniXCXr95hc6NhV4cwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAgwDQYJKoZIhvcN AQELBQADggEBAKL18vM8UKNRTUqjnuLP2SpFaY/v0GDdvaoBHF3CJ7Qz+/8LTEuy 1PWHhWJXGuTR4pguqVhesM8AvrfDtZ4NSo7llTcD/U3Q7FDVQOtAKc72l57WtbwN ddKqqyd7p8tqP9ddbaco5OJ9LSGByMCBqc/F/JJRqvanfga5Uv4lhT97xKQIYExs 8ladk3UDz71gKYY7tVMmBRawm7eyimIMpifl+LIVsoFJzf0UIZwphbf7J22DoOC0 wTbWFCHrv1u2bZH5GfvH4iXKswZwvKxgWjk/iCQdYJlQ6mJusMGFSKMOD1x4wk/1 eqK2iKLqofOHS3KSQGXfnQIXy+lKV7VJLFw= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org