$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136342e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136342e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 1mVOAhCfHLKvmuKJ9hJ3HgdEYG77GXLj+6EmGo2xfnQ= Subject key identifier: D9:7A:9B:12:EF:E2:1B:4E:0A:95:5C:56:17:F1:85:F0:D5:90:5A:01 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 1366AAB66001FC3B16EDB9BD7C20FECE90FA0190 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136342e302f32342d3234203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:03:00 +0000 ROA not before: Mon 01 Jul 2024 00:58:00 +0000 ROA not after: Mon 30 Jun 2025 01:03:00 +0000 asID: 9794 IP address blocks: 203.201.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:66:aa:b6:60:01:fc:3b:16:ed:b9:bd:7c:20:fe:ce:90:fa:01:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:00 2024 GMT Not After : Jun 30 01:03:00 2025 GMT Subject: CN=D97A9B12EFE21B4E0A955C5617F185F0D5905A01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:51:be:84:37:c7:11:4e:e7:64:da:b5:25:89: 74:42:73:c0:61:fe:83:fc:0d:be:3d:2f:ff:e1:57: a8:11:29:80:76:0c:7e:fd:ca:7b:b2:80:c5:6e:0d: b6:69:87:12:a8:91:30:85:6c:54:45:d1:b9:aa:c3: 04:d4:5f:a7:65:f1:ab:1c:ae:f7:a3:3d:d0:df:7c: ed:82:f2:8e:11:73:47:45:19:72:4d:08:18:08:66: 0d:64:e5:c9:62:2d:e9:59:f0:88:52:d3:8e:ce:bf: 00:c9:87:97:be:e7:ba:27:65:08:36:d1:f1:34:93: c7:d6:2e:78:36:6a:bf:eb:e0:a0:8c:d2:29:77:bf: 12:70:4e:86:f4:78:27:87:fc:df:9c:c0:86:c0:5e: 11:51:64:b9:90:98:22:35:a8:55:cb:c0:5f:6b:e4: b2:d6:1c:28:4e:81:58:fa:9f:e7:f0:18:05:8f:87: 3e:bc:b3:e7:f4:40:d5:f0:dc:7e:fb:33:9b:3e:04: 25:25:de:af:ad:ec:fc:37:43:90:03:72:05:a5:8a: 68:57:8b:2f:9e:76:92:32:6d:88:ab:38:31:2d:da: a9:de:92:65:3e:a2:2d:2e:1e:ae:2e:76:5d:f1:29: a6:87:4e:26:52:4e:89:54:35:0f:10:45:3b:00:52: a8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7A:9B:12:EF:E2:1B:4E:0A:95:5C:56:17:F1:85:F0:D5:90:5A:01 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136342e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.164.0/24 Signature Algorithm: sha256WithRSAEncryption 96:ad:28:47:c7:4a:48:6a:1a:96:2c:09:ff:c1:de:4f:9b:fd: a2:f5:9a:7c:04:46:97:b7:19:73:48:b2:32:22:69:14:ee:b5: f6:41:c2:b9:5d:64:e5:96:3c:e6:52:48:53:4f:b3:87:1d:c3: 71:20:dc:74:0d:1f:6c:26:cc:e2:47:0f:09:f4:b3:cf:37:bb: c1:51:02:4b:a1:40:88:65:3f:c3:09:08:bb:f4:94:0d:cd:18: 87:50:7c:ec:7e:30:22:e7:38:bc:07:01:a6:40:c4:d1:43:2c: b9:02:2f:4b:51:56:17:1b:49:0b:48:9e:4f:a1:98:cc:bb:a3: b2:0e:aa:62:56:62:5e:94:6e:90:ef:9a:95:81:07:6b:7e:4f: ff:81:bf:86:e5:e9:e0:c4:9a:30:c4:29:6e:ea:a8:6d:27:74: 06:84:93:26:9a:d5:ad:f1:ed:77:9e:ed:6d:ca:0f:ed:26:5d: 37:d1:51:cf:19:21:59:22:49:42:43:8c:04:75:87:cf:32:34: 4c:9d:b0:f8:ad:15:54:46:2a:f9:5b:64:c0:cf:cd:f7:34:b6: 98:ee:d6:c3:4d:c1:cd:e7:23:51:b0:ce:c8:7c:fa:15:cb:56: 60:06:a5:5e:97:7d:3a:fc:91:a9:56:e9:58:51:cd:9e:46:62: 2c:4c:b8:92 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE2aqtmAB/DsW7bm9fCD+zpD6AZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDBaFw0yNTA2MzAwMTAzMDBaMDMxMTAvBgNV BAMTKEQ5N0E5QjEyRUZFMjFCNEUwQTk1NUM1NjE3RjE4NUYwRDU5MDVBMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpUb6EN8cRTudk2rUliXRCc8Bh /oP8Db49L//hV6gRKYB2DH79ynuygMVuDbZphxKokTCFbFRF0bmqwwTUX6dl8asc rvejPdDffO2C8o4Rc0dFGXJNCBgIZg1k5cliLelZ8IhS047OvwDJh5e+57onZQg2 0fE0k8fWLng2ar/r4KCM0il3vxJwTob0eCeH/N+cwIbAXhFRZLmQmCI1qFXLwF9r 5LLWHChOgVj6n+fwGAWPhz68s+f0QNXw3H77M5s+BCUl3q+t7Pw3Q5ADcgWlimhX iy+edpIybYirODEt2qnekmU+oi0uHq4udl3xKaaHTiZSTolUNQ8QRTsAUqgrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2XqbEu/iG04KlVxWF/GF8NWQWgEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJpDANBgkqhkiG 9w0BAQsFAAOCAQEAlq0oR8dKSGoaliwJ/8HeT5v9ovWafARGl7cZc0iyMiJpFO61 9kHCuV1k5ZY85lJIU0+zhx3DcSDcdA0fbCbM4kcPCfSzzze7wVECS6FAiGU/wwkI u/SUDc0Yh1B87H4wIuc4vAcBpkDE0UMsuQIvS1FWFxtJC0ieT6GYzLujsg6qYlZi XpRukO+alYEHa35P/4G/huXp4MSaMMQpbuqobSd0BoSTJprVrfHtd57tbcoP7SZd N9FRzxkhWSJJQkOMBHWHzzI0TJ2w+K0VVEYq+VtkwM/N9zS2mO7Ww03BzecjUbDO yHz6FctWYAalXpd9OvyRqVbpWFHNnkZiLEy4kg== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org