$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137332e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137332e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 3DVgfQYjjz8AOR0LW68vsfDOUkv/ARLXonLfXoGod/w= Subject key identifier: AB:63:00:67:11:F8:A6:7B:96:BE:CB:19:FC:7D:20:EF:FF:35:48:5C Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 1C1C0748FCAE2D5D0151A4B21A1D63E0515313A4 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137332e302f32342d3234203d3e203338373738.roa Signing time: Mon 01 Jul 2024 01:02:56 +0000 ROA not before: Mon 01 Jul 2024 00:57:56 +0000 ROA not after: Mon 30 Jun 2025 01:02:56 +0000 asID: 38778 IP address blocks: 203.201.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:1c:07:48:fc:ae:2d:5d:01:51:a4:b2:1a:1d:63:e0:51:53:13:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:56 2024 GMT Not After : Jun 30 01:02:56 2025 GMT Subject: CN=AB63006711F8A67B96BECB19FC7D20EFFF35485C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6c:2f:58:c4:4d:8a:43:8a:7e:5d:b2:4e:77: 38:7a:4e:a6:1d:39:d9:db:7e:4a:42:c0:47:18:1f: 7f:06:e0:d4:d0:c5:94:ae:6f:69:14:de:43:d8:fe: 40:28:c5:d5:c1:56:40:20:dc:5d:f3:ea:18:83:6b: c5:33:cb:b2:0d:86:2f:5e:d4:42:5e:be:1a:b1:a1: 43:fc:3c:34:d7:6b:e5:2a:09:c5:3d:ed:72:cc:5f: 49:71:ae:5c:0a:0b:30:d4:bf:fb:00:cc:d7:88:68: ca:31:bc:38:7d:50:41:db:69:af:57:05:c2:65:ef: 2e:73:7c:0b:21:ac:db:22:7d:54:c0:00:7f:34:af: a7:63:a2:1b:cb:50:e4:44:47:8d:42:1d:4b:19:9a: 45:ac:10:fa:a9:ee:84:18:6b:a6:89:88:21:77:db: b4:33:37:c0:2a:a5:0b:3a:d4:1e:77:36:b2:7b:a6: 0d:73:76:25:3c:f3:6f:5d:f9:34:ba:c2:0f:05:5f: ba:d5:b8:3e:92:a3:39:04:62:61:c3:bc:8d:a4:06: 3b:8d:ac:53:44:9b:ed:2d:29:bf:ec:9a:8a:4b:40: f7:6f:54:2a:3b:dc:5c:71:43:a4:57:bc:29:60:85: 0f:1e:07:83:cd:87:87:c9:35:37:4d:11:ae:af:6a: ef:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:63:00:67:11:F8:A6:7B:96:BE:CB:19:FC:7D:20:EF:FF:35:48:5C X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137332e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.173.0/24 Signature Algorithm: sha256WithRSAEncryption 71:72:f4:2a:b4:e1:80:53:ec:8d:09:00:8c:6d:58:ee:28:7f: 22:91:27:34:be:27:bb:40:05:c3:4d:93:df:97:85:94:2e:c4: 17:a3:08:63:47:ef:89:bd:b5:0e:b1:bc:95:c4:3c:af:57:3f: d8:4e:d1:95:a9:36:8f:08:e5:ac:65:38:94:c2:be:2c:d7:36: 43:0d:18:8c:13:45:f2:02:f0:fb:40:3c:5b:2a:00:66:e8:9f: f7:5a:31:53:09:36:ce:74:33:f9:e7:f0:54:26:6a:86:93:e3: 61:78:16:53:69:b9:65:5a:d1:ff:96:8b:3f:55:d8:24:e4:df: f8:17:34:1f:a0:8e:71:1b:1f:d9:e7:6f:a7:80:10:72:64:e1: 9d:ea:88:c2:3b:32:d9:c0:43:cc:90:1c:51:b8:79:d3:5a:1d: 79:d2:26:c0:83:59:3b:d9:25:9b:33:9f:3f:12:ad:e3:57:2b: d3:59:93:3f:2d:09:03:63:05:24:90:f1:85:9a:13:90:41:9e: 59:d6:87:2a:29:01:27:8f:75:d2:00:84:3e:ac:a9:24:bb:c6: 0a:c8:55:e1:76:45:69:29:49:47:aa:86:07:ae:b9:81:37:24: 72:b7:3c:74:42:2a:96:e4:79:7b:68:ce:43:d0:b5:3f:e3:c6: 65:40:b0:31 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHBwHSPyuLV0BUaSyGh1j4FFTE6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTZaFw0yNTA2MzAwMTAyNTZaMDMxMTAvBgNV BAMTKEFCNjMwMDY3MTFGOEE2N0I5NkJFQ0IxOUZDN0QyMEVGRkYzNTQ4NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTbC9YxE2KQ4p+XbJOdzh6TqYd OdnbfkpCwEcYH38G4NTQxZSub2kU3kPY/kAoxdXBVkAg3F3z6hiDa8Uzy7INhi9e 1EJevhqxoUP8PDTXa+UqCcU97XLMX0lxrlwKCzDUv/sAzNeIaMoxvDh9UEHbaa9X BcJl7y5zfAshrNsifVTAAH80r6djohvLUORER41CHUsZmkWsEPqp7oQYa6aJiCF3 27QzN8AqpQs61B53NrJ7pg1zdiU8829d+TS6wg8FX7rVuD6SozkEYmHDvI2kBjuN rFNEm+0tKb/smopLQPdvVCo73FxxQ6RXvClghQ8eB4PNh4fJNTdNEa6vau/HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUq2MAZxH4pnuWvssZ/H0g7/81SFwwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mtMA0GCSqG SIb3DQEBCwUAA4IBAQBxcvQqtOGAU+yNCQCMbVjuKH8ikSc0vie7QAXDTZPfl4WU LsQXowhjR++JvbUOsbyVxDyvVz/YTtGVqTaPCOWsZTiUwr4s1zZDDRiME0XyAvD7 QDxbKgBm6J/3WjFTCTbOdDP55/BUJmqGk+NheBZTabllWtH/los/Vdgk5N/4FzQf oI5xGx/Z52+ngBByZOGd6ojCOzLZwEPMkBxRuHnTWh150ibAg1k72SWbM58/Eq3j VyvTWZM/LQkDYwUkkPGFmhOQQZ5Z1ocqKQEnj3XSAIQ+rKkku8YKyFXhdkVpKUlH qoYHrrmBNyRytzx0QiqW5Hl7aM5D0LU/48ZlQLAx -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org