$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e392e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: +szCLd2iU+9RotuqqckV1Z25dq58LIceXyTwRy9O5SA= Subject key identifier: FD:47:FF:A3:C3:A9:D5:79:AA:72:D4:E3:40:36:17:2E:F4:8C:84:B8 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 59C42B92EBB71462EB56B7CF5BD5E4A95FD4A212 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:03:02 +0000 ROA not before: Mon 01 Jul 2024 00:58:02 +0000 ROA not after: Mon 30 Jun 2025 01:03:02 +0000 asID: 38778 IP address blocks: 202.148.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c4:2b:92:eb:b7:14:62:eb:56:b7:cf:5b:d5:e4:a9:5f:d4:a2:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:02 2024 GMT Not After : Jun 30 01:03:02 2025 GMT Subject: CN=FD47FFA3C3A9D579AA72D4E34036172EF48C84B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e4:78:b1:f5:e2:94:19:e7:27:1b:28:a4:ce: 22:97:0c:98:42:ec:00:6c:b8:b6:d0:d7:67:86:12: 0f:63:65:d5:80:9d:53:cc:62:e5:b2:00:32:92:e1: 49:53:03:bd:c4:7e:3f:fa:e7:d9:fa:9e:34:93:f8: cb:e5:8d:b1:7c:e9:a2:50:d4:2e:b7:86:88:6e:d7: c4:ff:44:7b:c5:64:99:0f:df:a9:a7:10:77:dd:7a: 60:7f:4a:e3:f4:df:84:2c:59:60:ed:43:51:a9:b2: f2:03:67:ee:22:10:2f:e8:92:90:1e:c6:a8:43:5b: a9:73:25:8d:54:e7:bf:ae:82:d4:a1:cc:0f:70:6c: 46:b6:4b:8a:2a:c5:14:21:19:ff:74:5f:59:4a:40: 3c:36:bc:dd:e9:77:67:ff:00:23:29:78:cd:a5:69: 35:10:7d:e3:9a:51:a5:e0:07:ca:98:db:4f:6a:10: 11:27:8b:62:d1:d1:00:7b:ee:4c:b4:3d:98:b7:ef: 04:06:d4:6c:a8:2b:65:8f:cd:0e:66:18:48:da:24: 54:46:1f:a8:99:8c:8a:f2:41:86:2a:d7:46:a5:b7: b0:67:9c:a7:87:d9:2d:f2:70:67:2f:c3:0f:d8:40: 3b:59:16:a7:90:02:c7:65:80:81:80:aa:67:bd:65: 97:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:47:FF:A3:C3:A9:D5:79:AA:72:D4:E3:40:36:17:2E:F4:8C:84:B8 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.9.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:f6:aa:c2:e1:25:95:75:46:90:8d:22:61:51:b8:c8:51:e1: 2b:92:85:78:81:07:95:c2:2c:1e:eb:f8:74:d0:40:de:62:b9: 9d:63:1c:e5:72:93:82:70:75:a4:5d:11:5b:75:d9:f6:06:62: d3:17:b6:37:e2:97:d7:60:a4:b1:24:97:a0:49:5e:c3:85:84: 91:df:b4:85:a6:6c:22:31:e4:e7:f8:f8:f8:e7:88:f9:68:ef: 6b:8c:77:58:0c:1b:3a:13:84:46:96:ba:99:a4:95:8a:78:c9: 4f:ae:6e:fb:6c:8a:2a:84:38:7b:27:f0:06:4d:90:5f:58:d1: 7f:b1:24:cd:fd:bf:ef:32:e3:a3:f4:73:b7:fa:7c:de:02:67: e0:f6:fd:0b:47:c7:57:b5:d1:8e:0f:e7:73:c2:e5:2f:fd:a3: 71:c5:4e:4f:88:da:2b:1c:ff:dc:ee:b6:d9:73:be:a3:7d:8b: 55:cd:e4:66:73:ec:ad:5c:3f:06:3a:b2:3e:36:a9:a5:38:18: 8c:0f:7f:18:fa:58:21:05:95:c6:85:17:12:f6:09:08:fa:51: 6a:89:8c:2d:59:fb:99:c5:a6:38:e6:7f:ed:90:4a:f3:89:0b: b4:13:4d:0a:df:fa:3b:e0:68:a9:2d:b5:39:a3:96:95:42:13: 1a:32:56:e0 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWcQrkuu3FGLrVrfPW9XkqV/UohIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDJaFw0yNTA2MzAwMTAzMDJaMDMxMTAvBgNV BAMTKEZENDdGRkEzQzNBOUQ1NzlBQTcyRDRFMzQwMzYxNzJFRjQ4Qzg0QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW5Hix9eKUGecnGyikziKXDJhC 7ABsuLbQ12eGEg9jZdWAnVPMYuWyADKS4UlTA73Efj/659n6njST+MvljbF86aJQ 1C63hohu18T/RHvFZJkP36mnEHfdemB/SuP034QsWWDtQ1GpsvIDZ+4iEC/okpAe xqhDW6lzJY1U57+ugtShzA9wbEa2S4oqxRQhGf90X1lKQDw2vN3pd2f/ACMpeM2l aTUQfeOaUaXgB8qY209qEBEni2LR0QB77ky0PZi37wQG1GyoK2WPzQ5mGEjaJFRG H6iZjIryQYYq10alt7BnnKeH2S3ycGcvww/YQDtZFqeQAsdlgIGAqme9ZZfFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU/Uf/o8Op1XmqctTjQDYXLvSMhLgwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAkwDQYJKoZIhvcN AQELBQADggEBAD/2qsLhJZV1RpCNImFRuMhR4SuShXiBB5XCLB7r+HTQQN5iuZ1j HOVyk4JwdaRdEVt12fYGYtMXtjfil9dgpLEkl6BJXsOFhJHftIWmbCIx5Of4+Pjn iPlo72uMd1gMGzoThEaWupmklYp4yU+ubvtsiiqEOHsn8AZNkF9Y0X+xJM39v+8y 46P0c7f6fN4CZ+D2/QtHx1e10Y4P53PC5S/9o3HFTk+I2isc/9zuttlzvqN9i1XN 5GZz7K1cPwY6sj42qaU4GIwPfxj6WCEFlcaFFxL2CQj6UWqJjC1Z+5nFpjjmf+2Q SvOJC7QTTQrf+jvgaKkttTmjlpVCExoyVuA= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org