$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: kWPoGyoLQG/eYExXEYLtJ0g8wGMwnAyPn7gMAA5xe9o= Subject key identifier: 2D:E2:AE:D9:C4:48:8A:67:6A:19:B5:83:A9:83:C2:8F:A7:5E:3A:6E Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 3F89C71B500342DC1E26FE886D7283D05063E120 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:57 +0000 ROA not before: Mon 01 Jul 2024 00:57:57 +0000 ROA not after: Mon 30 Jun 2025 01:02:57 +0000 asID: 9794 IP address blocks: 203.201.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:89:c7:1b:50:03:42:dc:1e:26:fe:88:6d:72:83:d0:50:63:e1:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:57 2024 GMT Not After : Jun 30 01:02:57 2025 GMT Subject: CN=2DE2AED9C4488A676A19B583A983C28FA75E3A6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:14:11:fb:53:22:53:4f:13:88:c4:3c:1e:6e: c1:6a:9e:0a:42:6a:4f:20:34:92:b6:ca:7e:8d:bc: 21:42:51:0e:ce:f1:52:a1:21:20:7c:a1:53:1a:2d: aa:88:59:13:c6:6b:ca:01:a0:27:f5:f9:a2:09:e6: 89:ed:22:82:82:14:b1:d4:46:95:5c:4e:d6:74:2a: 9b:6d:00:06:ac:ce:e2:e9:94:79:72:7e:22:cd:5e: 94:49:1b:7f:87:6f:bd:2e:92:f2:f2:9a:9b:2a:8c: aa:f2:13:c6:0c:96:3d:fd:20:bc:cc:24:4f:fb:0f: 14:88:31:49:67:d9:74:eb:e9:52:91:d2:20:5b:b9: 4e:13:7d:dc:d5:4b:4c:12:0c:db:ee:6e:7d:ba:64: 39:3c:90:cb:55:00:be:ed:21:5b:74:8c:54:f8:ef: 84:bb:17:0a:7f:d6:54:bb:e2:fc:9a:c3:f5:dc:bd: 8b:76:46:3e:7a:5f:68:20:bb:6e:4d:f9:e8:32:94: 02:c8:1a:40:c7:b2:a9:f2:e5:90:44:fa:cb:ac:77: 30:35:62:63:7d:09:17:99:80:56:16:ee:22:5f:3a: 78:af:b2:cd:31:99:9b:b0:15:49:03:f5:2a:37:2e: 9e:bb:f9:e9:97:fa:e8:07:ff:e7:0f:8e:90:93:1a: 94:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E2:AE:D9:C4:48:8A:67:6A:19:B5:83:A9:83:C2:8F:A7:5E:3A:6E X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.161.0/24 Signature Algorithm: sha256WithRSAEncryption c0:ad:af:dc:2d:a6:91:ac:36:3f:1c:37:2a:84:0b:30:82:1e: 42:64:5b:06:88:63:f0:a5:a8:a6:b6:c1:9d:6b:f4:7d:5e:3b: 3e:1a:98:24:9c:f5:d4:ec:1e:a3:16:7b:7e:87:8a:f5:71:74: e4:cf:a8:f7:67:be:ab:87:1d:b0:87:93:2d:26:eb:79:c5:1a: ce:81:32:be:77:7f:76:fb:20:a2:fe:c6:dd:d6:d7:b0:2d:81: c1:2d:4f:66:e3:66:ba:1c:0c:4f:ed:43:09:0c:69:b4:62:19: 13:b8:a6:d1:7b:6e:a3:20:b7:1a:f5:cf:02:ba:9e:aa:e3:7c: 13:29:62:1e:f4:17:16:c6:26:50:25:19:47:8d:5b:31:f8:23: e0:15:73:bb:16:35:23:0d:24:cc:44:ba:e8:2d:e5:54:31:cd: 56:e6:81:c9:c3:6f:59:eb:4f:94:02:21:3d:e0:ed:6f:c7:3c: ed:e6:fa:b2:98:0b:a4:5c:3c:65:1b:9e:b0:89:ca:0c:57:40: d2:ec:56:a6:a5:7e:be:b4:51:22:c1:98:14:d4:98:c4:5a:7c: 90:41:38:da:22:3d:a1:ff:c6:f4:de:3e:c4:9f:4c:91:b1:07: a1:87:24:06:43:43:d6:b8:28:a9:1b:8c:ac:a4:1f:e6:22:db: 9a:d5:1f:09 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP4nHG1ADQtweJv6IbXKD0FBj4SAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTdaFw0yNTA2MzAwMTAyNTdaMDMxMTAvBgNV BAMTKDJERTJBRUQ5QzQ0ODhBNjc2QTE5QjU4M0E5ODNDMjhGQTc1RTNBNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMFBH7UyJTTxOIxDwebsFqngpC ak8gNJK2yn6NvCFCUQ7O8VKhISB8oVMaLaqIWRPGa8oBoCf1+aIJ5ontIoKCFLHU RpVcTtZ0KpttAAaszuLplHlyfiLNXpRJG3+Hb70ukvLympsqjKryE8YMlj39ILzM JE/7DxSIMUln2XTr6VKR0iBbuU4TfdzVS0wSDNvubn26ZDk8kMtVAL7tIVt0jFT4 74S7Fwp/1lS74vyaw/XcvYt2Rj56X2ggu25N+egylALIGkDHsqny5ZBE+susdzA1 YmN9CReZgFYW7iJfOnivss0xmZuwFUkD9So3Lp67+emX+ugH/+cPjpCTGpSBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULeKu2cRIimdqGbWDqYPCj6deOm4wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJoTANBgkqhkiG 9w0BAQsFAAOCAQEAwK2v3C2mkaw2Pxw3KoQLMIIeQmRbBohj8KWoprbBnWv0fV47 PhqYJJz11OweoxZ7foeK9XF05M+o92e+q4cdsIeTLSbrecUazoEyvnd/dvsgov7G 3dbXsC2BwS1PZuNmuhwMT+1DCQxptGIZE7im0XtuoyC3GvXPArqequN8EyliHvQX FsYmUCUZR41bMfgj4BVzuxY1Iw0kzES66C3lVDHNVuaBycNvWetPlAIhPeDtb8c8 7eb6spgLpFw8ZRuesInKDFdA0uxWpqV+vrRRIsGYFNSYxFp8kEE42iI9of/G9N4+ xJ9MkbEHoYckBkND1rgoqRuMrKQf5iLbmtUfCQ== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org