$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34362e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e34362e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: UbOrEKcgwwK1u5zQDkVkLdLfzdJS02WFY1vxo3dCx68= Subject key identifier: A2:41:C1:AE:49:B4:24:93:E4:F7:67:8A:7F:22:A2:39:10:C3:C9:44 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 5875E589444D084F3D010CAB93A1282269042D72 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34362e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:44 +0000 ROA not before: Wed 20 Sep 2023 10:55:44 +0000 ROA not after: Wed 18 Sep 2024 11:00:44 +0000 asID: 4434 IP address blocks: 202.154.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 13:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:75:e5:89:44:4d:08:4f:3d:01:0c:ab:93:a1:28:22:69:04:2d:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:44 2023 GMT Not After : Sep 18 11:00:44 2024 GMT Subject: CN=A241C1AE49B42493E4F7678A7F22A23910C3C944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f7:1a:02:fb:9f:7b:5c:46:ce:e3:63:32:5c: 50:5e:ae:1b:eb:fc:a6:2e:6a:a7:bf:ec:a5:ce:e4: 90:9a:85:7e:10:fb:51:9a:90:f3:ab:08:ca:80:26: e1:1c:0b:b6:46:01:47:a8:2c:e9:fe:fc:42:80:85: 1c:f9:ca:dd:d7:d1:98:72:ed:14:72:9f:dd:ca:6f: cf:10:d1:cc:ec:fe:b6:1d:ff:45:29:dc:de:fa:66: 83:b0:58:c4:16:01:f5:8e:84:86:e0:6e:62:d6:77: 3c:27:99:62:ae:5c:b8:d9:bf:11:31:81:cc:de:4b: 3a:e4:b1:57:89:72:7f:e3:e2:c7:b9:d4:2c:a6:9e: 7f:83:0f:ba:f5:4c:1b:f1:6f:70:35:69:0f:3e:68: 83:7f:88:9c:5e:b3:3f:15:fb:46:f7:92:a8:b4:03: d8:5d:0a:12:9b:75:54:55:e3:43:f0:14:80:12:13: 0a:7c:eb:81:92:99:61:db:89:2b:3d:9c:ef:d9:ba: ac:f3:94:73:4c:96:ed:f2:e8:9d:7a:f2:17:36:64: 5d:e7:4e:21:cd:79:60:53:76:f9:d9:ba:13:d9:22: 6b:4d:ca:f1:99:2d:97:01:17:9d:58:50:fb:5b:c5: e6:f2:50:e5:88:2c:a8:94:35:c2:7d:b7:57:e8:38: e5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:41:C1:AE:49:B4:24:93:E4:F7:67:8A:7F:22:A2:39:10:C3:C9:44 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34362e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.46.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:cc:75:e7:70:a3:f4:b7:a7:cf:a8:fb:93:f7:8f:09:3a:2c: 94:3a:83:43:c8:3c:e4:63:63:d6:0b:8e:5e:9d:00:d9:0c:f0: 03:99:97:3d:51:7b:26:be:bc:db:29:02:4d:b7:48:24:84:05: 68:78:d7:f4:1d:a5:76:e8:87:0b:b9:23:1d:d3:53:4c:18:a7: be:e0:f3:d7:0c:0d:39:b8:bd:2e:18:45:16:05:a8:59:a7:7d: 5d:7c:d6:c6:4a:b1:a8:f9:06:6f:50:df:2c:b1:ec:7c:5b:eb: b6:41:08:54:46:ef:a8:4a:f5:63:fc:2d:11:ee:fe:7b:86:73: 65:0a:2f:4f:39:cf:a3:57:97:2e:11:f2:3c:1b:15:7b:f8:cd: 30:62:56:cd:e1:32:62:ff:a8:5d:e5:07:a3:4d:7d:59:8a:1e: 21:cf:75:50:14:b8:9c:5d:08:a8:12:87:07:ad:63:a7:86:eb: 97:01:74:cd:bf:cd:af:81:98:62:a5:36:bf:c4:57:b4:71:c1: 95:73:7a:14:56:35:34:c7:fd:ae:e1:59:39:03:03:df:7a:69: 15:0d:bf:45:70:34:86:35:2f:8b:43:ec:14:56:8c:f1:48:fa: e4:7a:5d:2b:35:54:5a:c6:7f:56:4a:ca:a3:75:23:48:da:0b: cb:96:3e:96 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWHXliURNCE89AQyrk6EoImkELXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDRaFw0yNDA5MTgxMTAwNDRaMDMxMTAvBgNV BAMTKEEyNDFDMUFFNDlCNDI0OTNFNEY3Njc4QTdGMjJBMjM5MTBDM0M5NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA9xoC+597XEbO42MyXFBerhvr /KYuaqe/7KXO5JCahX4Q+1GakPOrCMqAJuEcC7ZGAUeoLOn+/EKAhRz5yt3X0Zhy 7RRyn93Kb88Q0czs/rYd/0Up3N76ZoOwWMQWAfWOhIbgbmLWdzwnmWKuXLjZvxEx gczeSzrksVeJcn/j4se51Cymnn+DD7r1TBvxb3A1aQ8+aIN/iJxesz8V+0b3kqi0 A9hdChKbdVRV40PwFIASEwp864GSmWHbiSs9nO/ZuqzzlHNMlu3y6J168hc2ZF3n TiHNeWBTdvnZuhPZImtNyvGZLZcBF51YUPtbxebyUOWILKiUNcJ9t1foOOV9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUokHBrkm0JJPk92eKfyKiORDDyUQwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmi4wDQYJKoZIhvcN AQELBQADggEBAGvMdedwo/S3p8+o+5P3jwk6LJQ6g0PIPORjY9YLjl6dANkM8AOZ lz1Reya+vNspAk23SCSEBWh41/QdpXbohwu5Ix3TU0wYp77g89cMDTm4vS4YRRYF qFmnfV181sZKsaj5Bm9Q3yyx7Hxb67ZBCFRG76hK9WP8LRHu/nuGc2UKL085z6NX ly4R8jwbFXv4zTBiVs3hMmL/qF3lB6NNfVmKHiHPdVAUuJxdCKgShwetY6eG65cB dM2/za+BmGKlNr/EV7RxwZVzehRWNTTH/a7hWTkDA996aRUNv0VwNIY1L4tD7BRW jPFI+uR6XSs1VFrGf1ZKyqN1I0jaC8uWPpY= -----END CERTIFICATE-----Generated at Tue Jun 4 13:12:09 2024 by rpki-client on console-fra.rpki-client.org