$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 5Xpi3kmdC9LicWIuOCCniRbncs8guVZDziWQDEw9uGM= Subject key identifier: 0C:3B:1D:09:74:16:D3:A3:46:EC:0A:0D:34:28:01:DE:FB:50:1C:ED Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 602DF89700AEA0403D26FA7D23A9BF3F499DF063 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:58 +0000 ROA not before: Mon 01 Jul 2024 00:57:58 +0000 ROA not after: Mon 30 Jun 2025 01:02:58 +0000 asID: 38778 IP address blocks: 203.201.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:2d:f8:97:00:ae:a0:40:3d:26:fa:7d:23:a9:bf:3f:49:9d:f0:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:58 2024 GMT Not After : Jun 30 01:02:58 2025 GMT Subject: CN=0C3B1D097416D3A346EC0A0D342801DEFB501CED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:92:fd:43:1e:3b:b3:14:90:26:1b:b1:b9:8e: af:a1:0c:22:a6:ac:58:0c:08:ff:50:81:47:40:54: 31:83:47:38:98:99:0e:31:2f:69:17:f1:8d:4c:93: 73:8f:4c:fb:d7:24:4d:e9:be:ee:f0:fb:4e:80:34: 99:ef:71:02:42:4a:db:b7:9d:18:e2:00:d8:89:a3: ec:0c:87:ab:bd:a3:c9:8b:ae:f6:2c:8d:b2:8b:97: 1a:bc:f3:99:2b:83:a8:03:ad:28:ff:f4:7d:f3:49: fa:fb:35:67:e0:7b:89:12:75:19:f6:4e:38:01:22: 59:0e:bd:4b:f9:0f:47:32:f4:23:d2:f7:e7:39:79: 27:9e:d0:c9:a8:d1:17:50:9f:95:93:3d:e2:32:97: a3:cf:99:20:a5:f7:e3:f8:d8:16:cc:4e:c8:d1:d6: fc:f2:c3:4d:1c:41:89:4b:10:d2:68:d9:c4:ca:6f: 88:97:7a:88:89:e6:e6:03:69:77:8b:93:27:d3:b3: d1:7b:a1:f8:ea:4b:64:a8:45:32:8f:5c:c9:c7:0a: 48:8a:c7:a1:e2:d9:1c:05:df:ad:bb:f1:8c:18:cd: 8d:f3:2c:e0:8e:5b:bc:f5:59:89:67:0b:da:6d:01: 9c:26:55:0f:f3:2b:0b:5f:1f:e2:63:a7:60:d9:95: 85:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:3B:1D:09:74:16:D3:A3:46:EC:0A:0D:34:28:01:DE:FB:50:1C:ED X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.171.0/24 Signature Algorithm: sha256WithRSAEncryption c7:d4:2c:78:b1:f3:9b:1e:45:ed:1c:51:f7:ff:1f:b7:43:3e: 9d:83:c2:80:2d:4b:86:f0:98:b9:48:48:9b:1a:c6:a6:e1:93: 5f:cf:30:b3:36:ed:e9:42:fe:51:93:ec:9d:32:08:22:30:12: 45:90:2f:d9:23:8d:76:8e:20:0a:c3:d0:63:75:e5:07:7d:b2: 88:5f:0a:8d:bf:b6:ac:7a:ec:f8:22:45:f2:1b:95:8a:73:33: 61:43:89:ab:10:18:58:ca:3b:1c:55:c7:55:8f:65:ef:a7:cd: 7b:bb:95:53:51:22:3e:c2:b1:70:e1:54:d2:0d:db:ad:b3:6e: d4:5a:ca:3f:e4:79:5f:b5:5f:f1:40:11:0f:e2:82:8a:b9:5c: fb:12:a8:2f:ff:22:f7:5f:98:db:d6:a7:79:ce:75:be:e0:8a: b2:58:9d:a6:77:97:8c:a5:56:ff:25:63:d1:43:53:2c:19:a8: 6a:50:54:80:96:22:52:38:1c:13:12:27:75:d0:e6:68:73:1e: 3f:be:16:b0:80:e2:01:78:1a:a2:81:20:6c:9f:df:27:a2:08: 32:c3:7e:a9:80:d3:1e:17:4d:2a:ed:66:79:d7:b9:9f:0f:21: a2:c0:f8:14:00:c9:d4:79:1d:87:db:a3:7b:b2:44:94:5f:01: ba:bf:7c:34 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYC34lwCuoEA9Jvp9I6m/P0md8GMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NThaFw0yNTA2MzAwMTAyNThaMDMxMTAvBgNV BAMTKDBDM0IxRDA5NzQxNkQzQTM0NkVDMEEwRDM0MjgwMURFRkI1MDFDRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCakv1DHjuzFJAmG7G5jq+hDCKm rFgMCP9QgUdAVDGDRziYmQ4xL2kX8Y1Mk3OPTPvXJE3pvu7w+06ANJnvcQJCStu3 nRjiANiJo+wMh6u9o8mLrvYsjbKLlxq885krg6gDrSj/9H3zSfr7NWfge4kSdRn2 TjgBIlkOvUv5D0cy9CPS9+c5eSee0Mmo0RdQn5WTPeIyl6PPmSCl9+P42BbMTsjR 1vzyw00cQYlLENJo2cTKb4iXeoiJ5uYDaXeLkyfTs9F7ofjqS2SoRTKPXMnHCkiK x6Hi2RwF36278YwYzY3zLOCOW7z1WYlnC9ptAZwmVQ/zKwtfH+Jjp2DZlYU9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDDsdCXQW06NG7AoNNCgB3vtQHO0wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mrMA0GCSqG SIb3DQEBCwUAA4IBAQDH1Cx4sfObHkXtHFH3/x+3Qz6dg8KALUuG8Ji5SEibGsam 4ZNfzzCzNu3pQv5Rk+ydMggiMBJFkC/ZI412jiAKw9BjdeUHfbKIXwqNv7aseuz4 IkXyG5WKczNhQ4mrEBhYyjscVcdVj2Xvp817u5VTUSI+wrFw4VTSDduts27UWso/ 5HlftV/xQBEP4oKKuVz7Eqgv/yL3X5jb1qd5znW+4IqyWJ2md5eMpVb/JWPRQ1Ms GahqUFSAliJSOBwTEid10OZocx4/vhawgOIBeBqigSBsn98noggyw36pgNMeF00q 7WZ517mfDyGiwPgUAMnUeR2H26N7skSUXwG6v3w0 -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org