$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: vByTUKntynN98GP91obhhcw8vya+wV+EenA06253Ng0= Subject key identifier: 3B:16:7A:24:CC:22:C1:39:E2:50:E0:49:E9:D3:B7:57:20:56:69:E7 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 1D8724E22885F78ABD50B0D2D1E112B519765435 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:03:01 +0000 ROA not before: Mon 01 Jul 2024 00:58:01 +0000 ROA not after: Mon 30 Jun 2025 01:03:01 +0000 asID: 38778 IP address blocks: 203.201.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:87:24:e2:28:85:f7:8a:bd:50:b0:d2:d1:e1:12:b5:19:76:54:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:01 2024 GMT Not After : Jun 30 01:03:01 2025 GMT Subject: CN=3B167A24CC22C139E250E049E9D3B757205669E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:50:fc:ce:a4:54:48:0c:a8:a0:b4:05:36:40: dd:e9:e5:4e:6b:a9:31:be:c9:23:c8:0f:bc:99:6c: d6:50:09:0d:9c:42:85:d4:d4:7d:76:49:f5:cc:53: 57:83:ea:b7:b3:74:83:98:b5:49:37:67:10:26:83: 36:34:21:83:35:5c:d1:05:dc:85:60:75:34:64:45: 19:d3:c9:f1:a5:cd:9b:12:2d:8c:e4:ce:d6:79:f4: 48:cd:a4:e7:09:c6:dc:39:9a:52:a6:e0:0f:e2:0e: 3b:d8:07:23:be:cb:8d:80:6b:a9:11:6e:8f:40:2c: 81:ee:34:e2:73:da:f9:b5:d8:73:5f:11:33:c9:9e: d7:da:75:1b:fa:55:b7:65:99:7c:28:39:02:31:4d: 03:50:34:d0:aa:01:81:89:62:a0:1b:23:d1:ba:7a: df:d6:df:bb:a3:65:81:58:ef:20:67:e4:c7:a9:8e: e2:70:7c:be:5e:bf:c3:9c:00:b3:7a:2b:ac:44:5a: d9:85:20:94:25:f5:71:94:67:77:c2:f0:1f:29:a2: 76:4e:70:34:95:95:3d:61:45:bc:73:06:d0:56:16: 83:1a:f1:4e:47:68:f5:31:6f:05:13:8f:a4:bd:fe: b0:b8:4a:fb:cf:5a:ed:cf:3d:d3:ba:6b:00:d9:40: ad:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:16:7A:24:CC:22:C1:39:E2:50:E0:49:E9:D3:B7:57:20:56:69:E7 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.169.0/24 Signature Algorithm: sha256WithRSAEncryption 34:d1:ba:36:07:4f:57:d4:c1:72:0b:b9:a0:e1:cb:88:86:48: 8f:7c:bc:29:23:bb:fa:7c:22:92:00:3c:df:99:e4:d1:30:47: e7:34:b9:74:5a:1a:37:e3:c3:d4:1c:27:b6:e2:15:bc:9e:a2: 22:b2:e1:5b:d7:ea:a3:df:d2:4e:8a:e6:b9:ad:ac:5b:79:09: 21:6c:82:13:7d:8c:e7:4f:84:76:22:00:4d:fd:b0:5d:2d:71: f9:6a:c5:67:a4:e5:f4:14:f9:c1:3c:59:fa:06:92:65:27:41: 42:b4:a0:ea:ad:ba:ca:9c:ac:70:65:20:c5:93:c0:f4:a2:d0: 15:57:97:f3:2a:2d:3f:4c:c4:71:46:dc:a1:32:00:7e:59:8f: c2:8e:de:a8:81:0a:4e:32:56:b5:63:53:0f:ef:1c:81:af:db: 0a:18:3e:d3:a5:e1:72:f4:3d:6b:58:50:06:9a:8a:1f:d4:e5: e8:c2:09:19:98:34:df:ad:2c:f5:0e:e7:4e:71:50:a4:12:8e: 99:1b:18:ba:cf:ac:1b:7a:a7:f3:78:1c:9b:34:c1:53:72:f9: 8a:75:c5:d9:a4:82:a1:9f:57:b3:04:fb:39:b6:6e:c8:38:0e: 4d:70:ec:56:17:24:13:fb:9c:28:07:c6:bb:b1:2b:b3:ca:8b: c4:e2:12:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHYck4iiF94q9ULDS0eEStRl2VDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDFaFw0yNTA2MzAwMTAzMDFaMDMxMTAvBgNV BAMTKDNCMTY3QTI0Q0MyMkMxMzlFMjUwRTA0OUU5RDNCNzU3MjA1NjY5RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkUPzOpFRIDKigtAU2QN3p5U5r qTG+ySPID7yZbNZQCQ2cQoXU1H12SfXMU1eD6rezdIOYtUk3ZxAmgzY0IYM1XNEF 3IVgdTRkRRnTyfGlzZsSLYzkztZ59EjNpOcJxtw5mlKm4A/iDjvYByO+y42Aa6kR bo9ALIHuNOJz2vm12HNfETPJntfadRv6VbdlmXwoOQIxTQNQNNCqAYGJYqAbI9G6 et/W37ujZYFY7yBn5MepjuJwfL5ev8OcALN6K6xEWtmFIJQl9XGUZ3fC8B8ponZO cDSVlT1hRbxzBtBWFoMa8U5HaPUxbwUTj6S9/rC4SvvPWu3PPdO6awDZQK2nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOxZ6JMwiwTniUOBJ6dO3VyBWaecwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mpMA0GCSqG SIb3DQEBCwUAA4IBAQA00bo2B09X1MFyC7mg4cuIhkiPfLwpI7v6fCKSADzfmeTR MEfnNLl0Who348PUHCe24hW8nqIisuFb1+qj39JOiua5raxbeQkhbIITfYznT4R2 IgBN/bBdLXH5asVnpOX0FPnBPFn6BpJlJ0FCtKDqrbrKnKxwZSDFk8D0otAVV5fz Ki0/TMRxRtyhMgB+WY/Cjt6ogQpOMla1Y1MP7xyBr9sKGD7TpeFy9D1rWFAGmoof 1OXowgkZmDTfrSz1DudOcVCkEo6ZGxi6z6wbeqfzeBybNMFTcvmKdcXZpIKhn1ez BPs5tm7IOA5NcOxWFyQT+5woB8a7sSuzyovE4hJ9 -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org