$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa File: 3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa (raw, json) Hash identifier: 26DSbq7kHsUlWnHh5bALKoN+KKFhy/IO37ddy7NFIHk= Subject key identifier: D5:EC:30:CE:64:B1:8D:2D:01:CE:FC:6B:92:EB:E6:05:0A:F5:D9:00 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 4093B2B5F9FBED47FCC4D5C8CAF17D1B60DB125E Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:03:01 +0000 ROA not before: Mon 01 Jul 2024 00:58:01 +0000 ROA not after: Mon 30 Jun 2025 01:03:01 +0000 asID: 38778 IP address blocks: 203.201.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:93:b2:b5:f9:fb:ed:47:fc:c4:d5:c8:ca:f1:7d:1b:60:db:12:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:58:01 2024 GMT Not After : Jun 30 01:03:01 2025 GMT Subject: CN=D5EC30CE64B18D2D01CEFC6B92EBE6050AF5D900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:98:9b:7b:0b:d8:c5:86:f6:85:60:80:e7:c4: b7:37:89:1b:18:89:45:48:3c:c5:46:68:91:3d:f6: 38:4d:17:01:1e:7e:b6:12:04:89:3d:37:d7:3e:c9: 60:a1:54:91:7d:4b:81:d2:07:49:72:cf:65:08:da: 8c:63:26:8e:59:b8:aa:ae:7f:79:fc:8a:c9:e8:6e: 74:5f:62:22:85:96:50:92:68:27:6c:57:6f:00:6f: d7:05:e5:4f:61:7b:61:f5:58:42:10:1f:0b:70:eb: 68:52:50:a3:52:b7:cd:b8:eb:8d:99:92:70:be:66: 02:51:0f:58:7b:61:15:d5:9b:79:61:b3:18:9b:54: 15:89:a2:e7:f8:b9:19:00:67:3e:ec:b4:5f:ec:c1: 7b:2c:f5:2c:ba:ca:88:e6:9f:d4:ce:a0:9d:d8:e5: 0d:9f:7d:51:90:94:51:21:73:52:2c:46:a5:d9:59: 4c:9d:f3:2a:c3:c3:86:4f:75:92:4b:c3:d9:87:34: a0:5e:09:64:ba:5c:33:b6:ee:4e:2e:b4:86:65:69: d6:41:1c:c2:86:54:ee:97:c9:f7:15:23:2e:fc:16: 6d:b1:a8:93:9f:f9:c5:de:2f:64:16:df:72:e8:f5: 50:18:bf:46:c4:eb:cf:4b:9c:9e:f1:46:23:64:5b: d8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EC:30:CE:64:B1:8D:2D:01:CE:FC:6B:92:EB:E6:05:0A:F5:D9:00 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.172.0/22 Signature Algorithm: sha256WithRSAEncryption bb:d0:44:cb:9e:3c:56:3e:7d:5b:2f:b0:ac:a1:f3:68:62:8b: 49:45:3e:96:72:6e:16:e9:f2:08:55:46:46:2f:ca:0d:45:88: eb:f7:fb:45:00:ce:5e:f3:80:c2:ad:44:d9:ed:bb:43:b7:82: 4f:3b:ef:db:94:b6:aa:96:db:88:14:bd:25:c0:2c:3a:90:ad: 03:c0:39:ae:eb:58:ca:56:3c:0a:2e:7c:06:40:51:b1:21:91: 5e:b2:45:a2:d3:8a:3d:5f:61:15:ec:73:a0:df:0c:1c:bb:47: 7c:d9:b9:b3:be:6b:b4:74:41:ab:fd:08:dd:bb:48:fa:b4:9a: 0e:61:49:d6:4a:c6:df:1b:41:f0:8f:10:fa:85:7d:7c:b9:72: f2:bd:9a:9e:a9:ab:ac:ef:46:c1:97:60:f2:84:ad:2e:77:97: 71:fc:f5:02:ee:d2:7f:56:09:e6:81:fe:b4:5b:26:e5:86:63: a0:d0:e5:a6:d5:5f:ac:ef:19:4c:03:df:90:64:d9:05:79:46: df:7d:db:4e:a5:5a:cc:7a:09:ee:cd:70:7c:e5:a2:de:f4:e5: 32:e3:98:2d:09:05:3d:5d:de:62:69:6c:6f:a3:e5:ed:96:2a: e7:87:49:0c:e6:b6:63:99:d2:38:d6:ff:b8:a7:eb:4d:55:e7: 0a:65:35:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQJOytfn77Uf8xNXIyvF9G2DbEl4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDFaFw0yNTA2MzAwMTAzMDFaMDMxMTAvBgNV BAMTKEQ1RUMzMENFNjRCMThEMkQwMUNFRkM2QjkyRUJFNjA1MEFGNUQ5MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXmJt7C9jFhvaFYIDnxLc3iRsY iUVIPMVGaJE99jhNFwEefrYSBIk9N9c+yWChVJF9S4HSB0lyz2UI2oxjJo5ZuKqu f3n8isnobnRfYiKFllCSaCdsV28Ab9cF5U9he2H1WEIQHwtw62hSUKNSt824642Z knC+ZgJRD1h7YRXVm3lhsxibVBWJouf4uRkAZz7stF/swXss9Sy6yojmn9TOoJ3Y 5Q2ffVGQlFEhc1IsRqXZWUyd8yrDw4ZPdZJLw9mHNKBeCWS6XDO27k4utIZladZB HMKGVO6XyfcVIy78Fm2xqJOf+cXeL2QW33Lo9VAYv0bE689LnJ7xRiNkW9hHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1ewwzmSxjS0BzvxrkuvmBQr12QAwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCy8msMA0GCSqG SIb3DQEBCwUAA4IBAQC70ETLnjxWPn1bL7CsofNoYotJRT6Wcm4W6fIIVUZGL8oN RYjr9/tFAM5e84DCrUTZ7btDt4JPO+/blLaqltuIFL0lwCw6kK0DwDmu61jKVjwK LnwGQFGxIZFeskWi04o9X2EV7HOg3wwcu0d82bmzvmu0dEGr/Qjdu0j6tJoOYUnW SsbfG0HwjxD6hX18uXLyvZqeqaus70bBl2DyhK0ud5dx/PUC7tJ/Vgnmgf60Wybl hmOg0OWm1V+s7xlMA9+QZNkFeUbffdtOpVrMegnuzXB85aLe9OUy45gtCQU9Xd5i aWxvo+Xtlirnh0kM5rZjmdI41v+4p+tNVecKZTWt -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org