$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e392e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: A5n6prdNzUnXlSZFUDZQc5a7U/cLCqALEDJenupaPqM= Subject key identifier: D1:00:4E:D4:F6:62:5E:4C:E4:30:13:1B:3E:F9:FB:09:E3:59:86:42 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 5ECDDAC1208AEB1425A81EEF451D519040286644 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa Signing time: Mon 31 Jul 2023 00:03:46 +0000 ROA not before: Sun 30 Jul 2023 23:58:46 +0000 ROA not after: Mon 29 Jul 2024 00:03:46 +0000 asID: 38778 IP address blocks: 202.148.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:cd:da:c1:20:8a:eb:14:25:a8:1e:ef:45:1d:51:90:40:28:66:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:46 2023 GMT Not After : Jul 29 00:03:46 2024 GMT Subject: CN=D1004ED4F6625E4CE430131B3EF9FB09E3598642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:35:4a:01:88:d0:80:9c:7c:f6:98:11:4c:34: 2d:6d:9e:77:57:b9:72:ab:95:04:09:2b:da:dd:88: 31:cb:1c:75:3b:7f:ff:d2:e2:26:e8:b3:1e:40:d9: 1c:9e:e6:fc:eb:0f:2a:17:fb:4b:44:fe:05:35:c3: 73:39:8b:dc:d2:ee:83:1d:9a:00:a5:c2:6a:f8:82: 15:13:c0:27:d2:6f:09:3c:c0:1e:7c:39:f0:5f:a6: a9:33:88:21:98:4e:4e:7a:2c:10:75:d1:24:ed:17: 05:6d:1d:bc:f3:ac:5b:c8:f3:0c:33:0e:12:67:e3: ce:a3:a7:57:4f:f4:88:9f:de:58:b0:89:34:aa:96: 89:e7:a2:55:78:e3:77:61:c7:39:54:84:40:d7:fe: 5a:91:89:be:2f:d7:7d:96:c3:39:f4:01:cf:90:10: 2d:97:77:8d:72:f1:2e:d5:9f:b1:bb:a4:ab:74:13: 9c:40:c7:5b:28:9d:16:78:ce:9d:f9:9e:5e:7b:d8: b6:d5:13:b1:1d:39:42:78:45:d4:c7:b6:d9:15:fa: b9:79:0a:13:70:e9:5c:5a:37:ba:fa:b7:c4:bb:93: 5c:a1:2a:94:a9:59:ba:1b:4f:06:cd:3e:7f:11:da: 8f:3f:73:1a:3f:d8:1d:87:11:90:1e:12:eb:47:4a: 94:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:00:4E:D4:F6:62:5E:4C:E4:30:13:1B:3E:F9:FB:09:E3:59:86:42 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.9.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:ea:45:30:4d:83:94:90:3b:de:79:62:a9:b4:3f:fe:26:8e: 1d:6b:07:79:c8:f3:a2:b2:b7:94:f3:42:c0:a2:cc:f1:d3:11: 5f:9c:1f:cf:05:dc:a9:12:7d:2d:b1:85:6f:f1:c3:bc:8a:dc: d1:6b:ef:87:06:f2:5c:d1:d5:34:2e:87:c3:29:5a:f1:f4:cc: 33:d4:34:ea:22:e7:f1:af:74:0f:c3:37:a4:bf:ce:ba:ec:fe: 97:17:94:2a:69:6d:53:c0:9c:47:02:42:15:e1:cf:c9:10:3d: 5c:6a:7b:35:30:59:d4:14:a4:ee:ef:ca:08:82:d6:55:62:04: 82:9f:ee:17:69:f9:d7:2d:7e:9a:e6:d2:ff:60:0c:df:b2:9c: 20:d7:14:71:ed:90:ca:cb:17:e7:8c:6f:10:59:a9:d1:82:d9: 98:ff:d4:67:a6:18:df:50:2f:f2:44:d1:d9:09:c3:29:52:ce: 70:ee:ff:60:44:79:96:3b:39:1b:36:fd:47:a1:d6:78:b3:a2: 35:f6:aa:8e:69:e4:a0:64:14:2d:39:bd:87:8b:0a:4e:2b:e2: 30:54:c9:32:5c:00:b0:f0:fc:6c:c8:ee:bd:a4:65:29:fe:f4: 88:e8:47:54:e0:e8:7d:19:49:e9:2e:de:2d:89:39:c1:7a:c5: dd:65:1c:c5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXs3awSCK6xQlqB7vRR1RkEAoZkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDZaFw0yNDA3MjkwMDAzNDZaMDMxMTAvBgNV BAMTKEQxMDA0RUQ0RjY2MjVFNENFNDMwMTMxQjNFRjlGQjA5RTM1OTg2NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkNUoBiNCAnHz2mBFMNC1tnndX uXKrlQQJK9rdiDHLHHU7f//S4ibosx5A2Rye5vzrDyoX+0tE/gU1w3M5i9zS7oMd mgClwmr4ghUTwCfSbwk8wB58OfBfpqkziCGYTk56LBB10STtFwVtHbzzrFvI8wwz DhJn486jp1dP9Iif3liwiTSqlonnolV443dhxzlUhEDX/lqRib4v132Wwzn0Ac+Q EC2Xd41y8S7Vn7G7pKt0E5xAx1sonRZ4zp35nl572LbVE7EdOUJ4RdTHttkV+rl5 ChNw6VxaN7r6t8S7k1yhKpSpWbobTwbNPn8R2o8/cxo/2B2HEZAeEutHSpR5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0QBO1PZiXkzkMBMbPvn7CeNZhkIwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAkwDQYJKoZIhvcN AQELBQADggEBAJrqRTBNg5SQO955Yqm0P/4mjh1rB3nI86Kyt5TzQsCizPHTEV+c H88F3KkSfS2xhW/xw7yK3NFr74cG8lzR1TQuh8MpWvH0zDPUNOoi5/GvdA/DN6S/ zrrs/pcXlCppbVPAnEcCQhXhz8kQPVxqezUwWdQUpO7vygiC1lViBIKf7hdp+dct fprm0v9gDN+ynCDXFHHtkMrLF+eMbxBZqdGC2Zj/1GemGN9QL/JE0dkJwylSznDu /2BEeZY7ORs2/Ueh1nizojX2qo5p5KBkFC05vYeLCk4r4jBUyTJcALDw/GzI7r2k ZSn+9IjoR1Tg6H0ZSeku3i2JOcF6xd1lHMU= -----END CERTIFICATE-----Generated at Wed Apr 24 05:34:42 2024 by rpki-client on console-ams.rpki-client.org