$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: HwMJ/nXrD6+Z+dfB0aHult17DaivUgnUc7kTdYK64hg= Subject key identifier: 09:E8:C6:54:18:EC:06:8F:DD:A1:5B:C1:62:F2:35:6E:AB:06:AC:6D Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 014D8B92D846FB115954D7DE8E24F0D0FD868A16 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:03:02 +0000 ROA not before: Mon 01 Jul 2024 00:58:02 +0000 ROA not after: Mon 30 Jun 2025 01:03:02 +0000 asID: 9794 IP address blocks: 203.201.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:4d:8b:92:d8:46:fb:11:59:54:d7:de:8e:24:f0:d0:fd:86:8a:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:02 2024 GMT Not After : Jun 30 01:03:02 2025 GMT Subject: CN=09E8C65418EC068FDDA15BC162F2356EAB06AC6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:cd:2e:6d:e6:66:62:b2:51:4e:6c:87:b1:a2: 28:85:9e:ba:19:6b:a4:b7:5e:04:6e:07:98:57:c7: 8c:31:7e:0c:76:b9:be:a3:62:20:69:19:e7:1f:d8: 7e:a9:f4:3f:9f:7f:a1:b0:8b:44:4f:44:ca:d5:b3: 6a:12:a0:c4:a7:82:44:c9:34:08:b8:74:c5:07:2f: 4c:a1:57:63:ff:93:3a:68:74:46:99:3f:27:cd:b4: 49:7d:a2:4e:37:d2:7c:40:a2:56:18:0f:1f:fc:c2: 9e:7e:85:bc:e3:8b:2f:bb:ed:8d:24:60:38:d3:f2: 2c:99:bf:65:90:a7:87:fb:e0:76:ec:9d:29:a5:1e: 7c:74:c0:95:56:62:5c:ad:e6:f9:01:fa:d0:f6:9a: 35:30:87:27:75:c5:2d:db:d2:29:8c:52:46:19:bb: 3f:9a:5f:e7:7c:5e:34:c6:c0:73:24:41:81:a3:c4: 86:d0:66:41:4d:91:07:cc:24:b4:db:da:5a:82:a6: b4:92:1b:26:d6:72:88:13:7f:1d:1d:af:69:ab:79: 3e:e9:d6:02:38:fb:4e:5a:01:dc:a5:e3:7f:35:62: 8f:08:ca:2e:8e:d1:79:d6:7d:d9:b1:31:7e:6f:27: 44:a1:5a:11:f4:cf:01:03:d8:81:13:ab:d3:47:9b: 7b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E8:C6:54:18:EC:06:8F:DD:A1:5B:C1:62:F2:35:6E:AB:06:AC:6D X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.163.0/24 Signature Algorithm: sha256WithRSAEncryption 05:25:e1:62:e7:82:e2:92:95:b1:93:3b:a6:07:3f:7e:ec:51: 47:aa:9e:89:e8:14:6d:36:20:2f:a8:f4:98:b3:ea:80:b1:30: 58:57:86:4f:c7:d7:73:af:e2:f5:1d:38:cf:25:55:98:21:4b: 2b:84:1d:b6:45:d3:f0:93:47:bc:b8:88:0f:08:02:61:b2:39: 8b:e4:da:86:f2:01:f4:e4:b3:c5:7e:1f:49:dd:0c:26:87:29: 31:17:01:fb:86:01:48:62:45:99:71:91:22:24:73:9b:34:e7: c5:5a:68:32:43:4b:0b:a4:4a:c4:12:e0:5d:65:61:c0:cb:0d: f9:71:68:d2:bc:50:75:35:f9:b0:06:ef:cb:36:a6:4d:99:c8: 89:12:c4:c9:0e:1e:47:38:72:07:f3:10:bb:57:d5:ea:12:10: d4:1c:67:e8:88:bd:01:7c:00:08:9c:41:ab:5b:66:35:f3:05: dc:30:3f:06:2b:60:e1:b8:08:72:ed:b3:82:13:aa:3e:15:97: fa:a8:31:2c:e3:b4:d1:b9:45:49:c4:1c:54:3d:9c:27:11:fe: 27:fc:ac:cb:73:47:2f:f0:f2:ae:47:45:de:7a:a8:32:35:b2: 6e:65:1a:90:a6:cd:37:b9:e6:9c:08:b7:7a:80:f3:6c:f8:63: 90:d3:d9:e5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAU2LkthG+xFZVNfejiTw0P2GihYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDJaFw0yNTA2MzAwMTAzMDJaMDMxMTAvBgNV BAMTKDA5RThDNjU0MThFQzA2OEZEREExNUJDMTYyRjIzNTZFQUIwNkFDNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDizS5t5mZislFObIexoiiFnroZ a6S3XgRuB5hXx4wxfgx2ub6jYiBpGecf2H6p9D+ff6Gwi0RPRMrVs2oSoMSngkTJ NAi4dMUHL0yhV2P/kzpodEaZPyfNtEl9ok430nxAolYYDx/8wp5+hbzjiy+77Y0k YDjT8iyZv2WQp4f74HbsnSmlHnx0wJVWYlyt5vkB+tD2mjUwhyd1xS3b0imMUkYZ uz+aX+d8XjTGwHMkQYGjxIbQZkFNkQfMJLTb2lqCprSSGybWcogTfx0dr2mreT7p 1gI4+05aAdyl4381Yo8Iyi6O0XnWfdmxMX5vJ0ShWhH0zwED2IETq9NHm3t9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCejGVBjsBo/doVvBYvI1bqsGrG0wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJozANBgkqhkiG 9w0BAQsFAAOCAQEABSXhYueC4pKVsZM7pgc/fuxRR6qeiegUbTYgL6j0mLPqgLEw WFeGT8fXc6/i9R04zyVVmCFLK4QdtkXT8JNHvLiIDwgCYbI5i+TahvIB9OSzxX4f Sd0MJocpMRcB+4YBSGJFmXGRIiRzmzTnxVpoMkNLC6RKxBLgXWVhwMsN+XFo0rxQ dTX5sAbvyzamTZnIiRLEyQ4eRzhyB/MQu1fV6hIQ1Bxn6Ii9AXwACJxBq1tmNfMF 3DA/Bitg4bgIcu2zghOqPhWX+qgxLOO00blFScQcVD2cJxH+J/ysy3NHL/DyrkdF 3nqoMjWybmUakKbNN7nmnAi3eoDzbPhjkNPZ5Q== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org