$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33362e302f32332d3234203d3e20313431363037.roa File: 3230322e3135342e33362e302f32332d3234203d3e20313431363037.roa (raw, json) Hash identifier: NmtcJMWsaNGfxDAkDi/c+AKrN1aCK7vXrMIWV47kdGM= Subject key identifier: 63:BE:5A:06:C4:B9:72:C9:E7:68:BC:BA:46:EC:0C:9E:00:FF:1D:97 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 363B2E1FD986B913013D478F445D62A39F27AE5A Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33362e302f32332d3234203d3e20313431363037.roa Signing time: Fri 05 Jan 2024 10:00:01 +0000 ROA not before: Fri 05 Jan 2024 09:55:01 +0000 ROA not after: Fri 03 Jan 2025 10:00:01 +0000 asID: 141607 IP address blocks: 202.154.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:3b:2e:1f:d9:86:b9:13:01:3d:47:8f:44:5d:62:a3:9f:27:ae:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Jan 5 09:55:01 2024 GMT Not After : Jan 3 10:00:01 2025 GMT Subject: CN=63BE5A06C4B972C9E768BCBA46EC0C9E00FF1D97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4f:a7:6f:42:a6:b2:91:3f:85:90:ee:59:a4: 9f:32:ef:83:45:d6:15:a4:ef:f6:35:5f:00:9b:8a: 75:6d:39:3f:c7:0c:0c:c8:83:c7:b5:35:22:1d:8f: 0f:6e:d5:11:0b:a3:51:ba:6b:2c:9d:b6:04:20:06: 76:b4:e9:48:1c:4f:b2:c4:a0:90:0c:e7:4f:ff:50: db:22:93:eb:02:17:52:b2:56:89:39:72:75:22:13: 14:b8:d2:ec:da:1f:ff:a9:5c:62:a3:c7:28:2a:7c: ed:bb:15:1d:ea:42:77:c0:ee:c3:ee:3f:f7:10:44: cb:e0:25:2c:7b:4f:d8:6d:b0:aa:ce:e3:b1:41:1f: 3e:58:c0:d4:fb:36:12:76:92:59:70:44:92:6d:34: 57:42:da:aa:aa:04:64:74:98:4d:79:54:c5:0c:ba: 38:0c:ea:53:7b:10:d0:a5:87:13:d3:10:32:11:31: b3:2f:dc:8d:a7:77:fe:2b:ce:72:96:c6:0c:16:43: bb:d4:89:06:74:0e:b3:e1:c7:a9:0c:23:d6:df:b9: c0:9e:d0:3f:6e:c3:d4:63:af:c6:59:30:91:c8:60: 77:3f:40:18:87:72:73:29:8f:06:44:d5:53:0c:9e: 89:8a:5b:e5:43:f7:3b:99:c2:60:fa:07:a7:e6:74: ca:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:BE:5A:06:C4:B9:72:C9:E7:68:BC:BA:46:EC:0C:9E:00:FF:1D:97 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33362e302f32332d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.36.0/23 Signature Algorithm: sha256WithRSAEncryption 94:3f:f5:ec:f6:37:a6:6d:15:c4:b5:4d:e4:06:8f:f2:f7:37: c5:6f:60:15:23:43:7b:bf:8e:06:36:18:c5:d7:05:b4:84:fd: 35:48:d3:08:55:2c:31:a8:09:7a:a3:d3:e9:a9:4e:cd:5e:2c: 26:62:a0:77:d6:0a:26:a7:88:29:90:47:fc:ba:b0:13:aa:fe: 63:8d:72:65:11:42:94:69:0c:21:51:40:33:b3:ac:e5:b6:7f: e0:ab:f0:b3:d3:9f:6c:e5:92:52:e5:ee:31:2b:aa:c0:8d:1c: b2:d9:56:b7:83:c5:85:1f:44:dc:e2:10:b8:ba:e3:f4:28:04: 3a:83:15:73:ed:7f:22:b8:7c:e0:9a:a8:99:71:d4:db:c5:8b: ee:4c:df:69:02:1b:01:2d:3a:28:7a:e8:f5:f9:53:a3:82:5d: 3c:62:e2:b3:68:41:ac:ea:56:df:de:97:84:56:65:ed:24:6e: 58:cc:81:10:80:aa:a7:ed:a4:38:07:c0:10:a4:ed:51:92:dc: 99:a9:67:5b:46:b1:ee:46:bc:73:09:47:0a:ab:6b:a1:51:61: f9:6a:23:d4:e8:d7:24:c4:75:1a:6a:32:3f:a6:e6:16:36:a7: a3:76:98:b5:ba:7b:4c:5b:6b:a3:eb:af:00:a6:40:58:14:5e: d2:72:da:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNjsuH9mGuRMBPUePRF1io58nrlowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDAxMDUwOTU1MDFaFw0yNTAxMDMxMDAwMDFaMDMxMTAvBgNV BAMTKDYzQkU1QTA2QzRCOTcyQzlFNzY4QkNCQTQ2RUMwQzlFMDBGRjFEOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+T6dvQqaykT+FkO5ZpJ8y74NF 1hWk7/Y1XwCbinVtOT/HDAzIg8e1NSIdjw9u1RELo1G6ayydtgQgBna06UgcT7LE oJAM50//UNsik+sCF1KyVok5cnUiExS40uzaH/+pXGKjxygqfO27FR3qQnfA7sPu P/cQRMvgJSx7T9htsKrO47FBHz5YwNT7NhJ2kllwRJJtNFdC2qqqBGR0mE15VMUM ujgM6lN7ENClhxPTEDIRMbMv3I2nd/4rznKWxgwWQ7vUiQZ0DrPhx6kMI9bfucCe 0D9uw9Rjr8ZZMJHIYHc/QBiHcnMpjwZE1VMMnomKW+VD9zuZwmD6B6fmdMqbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUY75aBsS5csnnaLy6RuwMngD/HZcwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypokMA0GCSqG SIb3DQEBCwUAA4IBAQCUP/Xs9jembRXEtU3kBo/y9zfFb2AVI0N7v44GNhjF1wW0 hP01SNMIVSwxqAl6o9PpqU7NXiwmYqB31gomp4gpkEf8urATqv5jjXJlEUKUaQwh UUAzs6zltn/gq/Cz059s5ZJS5e4xK6rAjRyy2Va3g8WFH0Tc4hC4uuP0KAQ6gxVz 7X8iuHzgmqiZcdTbxYvuTN9pAhsBLTooeuj1+VOjgl08YuKzaEGs6lbf3peEVmXt JG5YzIEQgKqn7aQ4B8AQpO1RktyZqWdbRrHuRrxzCUcKq2uhUWH5aiPU6NckxHUa ajI/puYWNqejdpi1untMW2uj668ApkBYFF7Sctru -----END CERTIFICATE-----Generated at Sun Apr 28 12:09:41 2024 by rpki-client on console-ams.rpki-client.org