$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136352e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136352e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: vtQpugbnQgspZw4b/ReCYBzsUHhkxTOSHR6AlWMS8ro= Subject key identifier: B7:34:3F:67:72:A8:BC:48:1F:95:D0:12:A2:69:7D:80:68:E7:B1:25 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 6F603D76035FD9B089CD9F60FB07525902F7C9AA Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136352e302f32342d3234203d3e2039373934.roa Signing time: Thu 08 Aug 2024 09:00:00 +0000 ROA not before: Thu 08 Aug 2024 08:55:00 +0000 ROA not after: Thu 07 Aug 2025 09:00:00 +0000 asID: 9794 IP address blocks: 203.201.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:60:3d:76:03:5f:d9:b0:89:cd:9f:60:fb:07:52:59:02:f7:c9:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Aug 8 08:55:00 2024 GMT Not After : Aug 7 09:00:00 2025 GMT Subject: CN=B7343F6772A8BC481F95D012A2697D8068E7B125 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e1:4f:04:f1:dd:e5:bf:57:42:09:70:59:f4: 42:6d:94:58:c0:3a:ca:af:c5:88:96:7d:ce:7d:32: 23:77:23:69:a3:22:90:4e:42:6c:92:3d:68:03:a6: 17:01:dd:cd:d7:33:c0:a9:35:c4:d1:ff:b3:bc:63: a3:ff:45:31:69:c4:37:3d:ac:e9:94:d4:44:98:02: 63:be:c1:07:33:f5:ad:3c:47:35:1e:9b:b2:11:c3: c7:5d:c8:d7:f1:bd:fc:e8:bf:7d:1c:f1:0b:7b:03: 47:6c:5d:12:30:65:c5:32:0c:66:d5:05:43:eb:99: 1f:2b:ed:57:a0:31:b8:9a:1c:1b:f0:a2:da:86:48: 00:17:b8:33:dd:c6:8f:ed:06:50:71:eb:0a:43:07: 42:21:7a:0e:b5:6c:6e:dd:fb:15:93:35:ed:30:e9: 09:39:c5:39:af:b1:1e:6e:2c:7b:c5:35:dc:05:21: 10:e1:ad:13:77:ec:d0:c4:31:a3:98:86:98:6d:60: a2:8c:02:e1:87:b9:2d:f3:41:be:73:d6:c4:f2:6e: 3c:84:1f:ed:72:9c:1f:89:87:78:b3:74:c3:97:cc: 79:17:b4:a0:1f:ad:37:cf:4c:16:bb:f3:5e:42:12: cb:1e:4c:13:c2:fd:ba:bf:0e:6f:20:c2:a5:5b:f8: 5b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:34:3F:67:72:A8:BC:48:1F:95:D0:12:A2:69:7D:80:68:E7:B1:25 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136352e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.165.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:ec:eb:8f:0c:aa:cd:5f:3a:cf:b2:73:0d:68:96:c0:a6:06: 0a:9d:62:cd:02:08:48:de:6b:63:a7:0e:2f:e0:42:69:94:02: ed:80:46:c5:dd:99:30:2b:5c:e2:20:a7:42:b3:1b:0a:1b:74: 59:c0:1c:ee:49:b8:5e:cb:5f:08:be:cc:39:85:71:16:31:bb: fb:1c:d9:78:48:27:a9:b6:73:c2:67:98:6e:9a:bc:96:66:4b: 39:5b:dc:43:05:f9:03:04:d9:ba:b6:2c:bc:a8:d1:be:2c:32: 88:4d:76:85:08:70:3e:a5:66:2b:c6:8d:18:a7:52:b5:2a:2e: a5:bf:c5:09:4b:71:ed:61:29:9f:a1:40:19:06:c8:d2:96:99: 1a:3f:bd:4c:83:54:ea:b4:47:4d:ab:8d:13:bd:9d:80:6c:42: 73:4d:11:a9:a2:53:e8:ce:2b:9a:a8:a3:dd:e6:f5:3b:fa:1d: f4:55:45:37:f6:10:75:01:ff:fa:47:f7:42:b0:5c:a0:73:b2: 2d:ef:26:f7:11:26:66:55:cc:09:46:0e:71:7d:de:9a:09:1a: 05:37:2a:dd:c0:cc:d4:06:1e:59:4d:b5:7e:e8:be:85:2e:8f: 73:2d:48:48:57:b2:7b:c0:55:9a:d4:dc:45:19:88:04:0d:28: 88:02:b5:1b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUb2A9dgNf2bCJzZ9g+wdSWQL3yaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA4MDgwODU1MDBaFw0yNTA4MDcwOTAwMDBaMDMxMTAvBgNV BAMTKEI3MzQzRjY3NzJBOEJDNDgxRjk1RDAxMkEyNjk3RDgwNjhFN0IxMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE4U8E8d3lv1dCCXBZ9EJtlFjA OsqvxYiWfc59MiN3I2mjIpBOQmySPWgDphcB3c3XM8CpNcTR/7O8Y6P/RTFpxDc9 rOmU1ESYAmO+wQcz9a08RzUem7IRw8ddyNfxvfzov30c8Qt7A0dsXRIwZcUyDGbV BUPrmR8r7VegMbiaHBvwotqGSAAXuDPdxo/tBlBx6wpDB0Iheg61bG7d+xWTNe0w 6Qk5xTmvsR5uLHvFNdwFIRDhrRN37NDEMaOYhphtYKKMAuGHuS3zQb5z1sTybjyE H+1ynB+Jh3izdMOXzHkXtKAfrTfPTBa7815CEsseTBPC/bq/Dm8gwqVb+FvZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtzQ/Z3KovEgfldASoml9gGjnsSUwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJpTANBgkqhkiG 9w0BAQsFAAOCAQEAnezrjwyqzV86z7JzDWiWwKYGCp1izQIISN5rY6cOL+BCaZQC 7YBGxd2ZMCtc4iCnQrMbCht0WcAc7km4XstfCL7MOYVxFjG7+xzZeEgnqbZzwmeY bpq8lmZLOVvcQwX5AwTZurYsvKjRviwyiE12hQhwPqVmK8aNGKdStSoupb/FCUtx 7WEpn6FAGQbI0paZGj+9TINU6rRHTauNE72dgGxCc00RqaJT6M4rmqij3eb1O/od 9FVFN/YQdQH/+kf3QrBcoHOyLe8m9xEmZlXMCUYOcX3emgkaBTcq3cDM1AYeWU21 fui+hS6Pcy1ISFeye8BVmtTcRRmIBA0oiAK1Gw== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org