$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: W25jNVibsggsJtLy0wqBKvt+hwT4qJbP0sGcDf1wzEs= Subject key identifier: 6D:74:67:85:A6:C8:5D:8B:49:C1:A2:76:36:FC:3E:99:52:B9:1E:D3 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 6D43A7D9637F5CB5E29D86C4E62CEE477D6032BA Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:55 +0000 ROA not before: Mon 01 Jul 2024 00:57:55 +0000 ROA not after: Mon 30 Jun 2025 01:02:55 +0000 asID: 38778 IP address blocks: 203.201.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:43:a7:d9:63:7f:5c:b5:e2:9d:86:c4:e6:2c:ee:47:7d:60:32:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:55 2024 GMT Not After : Jun 30 01:02:55 2025 GMT Subject: CN=6D746785A6C85D8B49C1A27636FC3E9952B91ED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:02:44:89:45:32:26:5f:a6:f4:be:fd:fb:2c: db:83:e3:a5:9c:54:bd:41:e9:39:0e:37:a7:c5:9a: 0b:e7:cb:01:d7:96:80:16:af:45:b3:91:93:98:ff: e5:6f:28:f2:2c:cd:0f:39:f4:d2:21:94:0a:53:d9: ef:03:8d:ae:c4:88:34:89:6c:89:d6:02:7c:91:3f: 2c:dc:18:23:7d:7f:ea:01:bc:d5:aa:d3:69:cd:e0: 48:cc:76:79:24:70:d8:8c:87:5f:52:55:ef:69:d6: 37:fa:41:5a:ad:cc:7b:76:ee:f4:df:5e:5a:ea:00: 27:b5:1a:f3:19:59:69:c8:ce:4d:1e:41:9d:da:6f: 7c:0b:5c:f5:a3:cc:5f:a2:2f:d8:70:42:d3:c9:ab: bb:f4:70:0b:a2:20:61:68:5d:7a:0e:7f:3a:50:7e: 73:62:d8:e5:39:c9:01:10:96:61:ec:48:c0:04:55: d4:65:42:c7:59:1d:4d:92:18:51:51:d5:c2:09:03: 4f:f4:f4:e7:d3:79:b3:76:f7:57:ac:8a:0a:be:68: cc:3d:77:1a:03:1e:2b:a0:fe:ff:0e:2f:d5:39:11: 79:fc:d3:ca:3b:0b:81:d0:27:23:c7:b2:57:98:d5: 22:d2:23:9c:51:bf:6b:5c:85:53:6f:e1:82:ae:41: 96:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:74:67:85:A6:C8:5D:8B:49:C1:A2:76:36:FC:3E:99:52:B9:1E:D3 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.170.0/24 Signature Algorithm: sha256WithRSAEncryption 49:3f:9c:15:5e:48:db:c5:18:aa:58:99:fd:07:71:7f:18:e8: 16:8d:a2:cb:bb:a7:0a:42:16:68:b2:80:83:ba:27:4a:83:9c: 34:63:5b:57:13:80:e5:6a:26:2e:17:29:0f:0a:08:6c:6b:d8: 3e:d3:0e:28:33:9e:aa:c4:f8:a1:17:31:9a:06:96:89:ae:e2: 7f:00:88:56:4f:2d:b3:2c:75:00:42:18:ad:bd:72:4c:05:19: c9:86:42:ad:dc:39:ac:cf:73:1b:67:e9:6d:0c:b2:48:ff:b3: 28:bc:23:ee:ad:ce:a7:95:c1:c7:45:39:49:99:24:63:c0:81: 44:85:e2:ad:2a:b9:27:ff:af:a9:2b:26:c1:8a:7d:3c:c1:0b: 02:8a:dc:7f:db:dd:2f:b8:52:20:6e:1a:cc:10:a6:59:e6:cb: ae:1b:44:32:14:43:44:09:62:ff:19:b9:2a:f0:87:8a:68:0c: d1:6a:f6:53:24:66:0d:fc:2f:f0:05:ce:24:e7:fb:f7:62:f5: 0d:55:e3:e7:61:a3:6d:55:3f:e2:96:30:48:0b:5c:1c:3a:80: ac:2d:c7:96:76:01:34:13:6b:64:55:2d:b4:44:23:bf:80:c8: 91:38:d0:a8:fd:23:ec:f4:ae:f7:bc:e6:c6:ed:f1:b1:ee:e5: 51:2e:59:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbUOn2WN/XLXinYbE5izuR31gMrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTVaFw0yNTA2MzAwMTAyNTVaMDMxMTAvBgNV BAMTKDZENzQ2Nzg1QTZDODVEOEI0OUMxQTI3NjM2RkMzRTk5NTJCOTFFRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6AkSJRTImX6b0vv37LNuD46Wc VL1B6TkON6fFmgvnywHXloAWr0WzkZOY/+VvKPIszQ859NIhlApT2e8Dja7EiDSJ bInWAnyRPyzcGCN9f+oBvNWq02nN4EjMdnkkcNiMh19SVe9p1jf6QVqtzHt27vTf XlrqACe1GvMZWWnIzk0eQZ3ab3wLXPWjzF+iL9hwQtPJq7v0cAuiIGFoXXoOfzpQ fnNi2OU5yQEQlmHsSMAEVdRlQsdZHU2SGFFR1cIJA0/09OfTebN291esigq+aMw9 dxoDHiug/v8OL9U5EXn808o7C4HQJyPHsleY1SLSI5xRv2tchVNv4YKuQZYTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbXRnhabIXYtJwaJ2Nvw+mVK5HtMwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mqMA0GCSqG SIb3DQEBCwUAA4IBAQBJP5wVXkjbxRiqWJn9B3F/GOgWjaLLu6cKQhZosoCDuidK g5w0Y1tXE4DlaiYuFykPCghsa9g+0w4oM56qxPihFzGaBpaJruJ/AIhWTy2zLHUA QhitvXJMBRnJhkKt3Dmsz3MbZ+ltDLJI/7MovCPurc6nlcHHRTlJmSRjwIFEheKt Krkn/6+pKybBin08wQsCitx/290vuFIgbhrMEKZZ5suuG0QyFENECWL/Gbkq8IeK aAzRavZTJGYN/C/wBc4k5/v3YvUNVePnYaNtVT/iljBIC1wcOoCsLceWdgE0E2tk VS20RCO/gMiRONCo/SPs9K73vObG7fGx7uVRLlkc -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org