$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa File: 3230322e3135342e302e302f31382d3231203d3e2034343334.roa (raw, json) Hash identifier: /qcwaX3U4oLtgsqk5X2wAvVxwkx6rmw+chVZ2Hs1Hvw= Subject key identifier: 78:47:C0:DB:A5:A4:DF:4E:79:3C:07:C7:1F:F2:6A:30:5E:BC:48:B2 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 58C3851E63389895254FF5D2FA492D6758AA1260 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:45 +0000 ROA not before: Wed 20 Sep 2023 10:55:45 +0000 ROA not after: Wed 18 Sep 2024 11:00:45 +0000 asID: 4434 IP address blocks: 202.154.0.0/18 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c3:85:1e:63:38:98:95:25:4f:f5:d2:fa:49:2d:67:58:aa:12:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:45 2023 GMT Not After : Sep 18 11:00:45 2024 GMT Subject: CN=7847C0DBA5A4DF4E793C07C71FF26A305EBC48B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:62:8a:a0:12:57:d1:e7:05:8d:24:4f:a1:15: 53:2e:3b:63:6a:6c:ac:85:87:74:df:c0:b7:52:52: 05:39:c3:6c:25:ae:cf:3b:89:b7:11:30:30:c1:01: a9:c3:75:df:83:18:be:ed:ec:bf:a5:e3:99:bf:b5: e2:fa:df:a9:cf:8c:5a:ce:c3:73:4b:7e:ee:63:67: fd:9c:37:44:e4:b0:a9:c4:dc:aa:c7:92:3e:08:84: 8b:70:a2:ad:48:33:2f:10:04:69:f5:4e:fd:aa:fe: 6d:ca:ea:d9:71:12:c2:8a:ea:cb:e3:b0:1d:d0:41: 79:25:82:56:c1:28:2d:5e:21:4d:70:5f:f2:e5:04: ac:31:fb:31:65:36:49:ff:68:af:dc:ab:10:68:ac: 81:b7:fd:30:51:e8:cc:e4:82:a4:37:a8:a9:e1:eb: ec:9e:17:e8:42:d8:f8:46:f7:51:f9:c6:bc:9c:1c: b2:f4:3e:a7:c6:89:36:f6:e2:e5:83:f3:37:fa:59: e1:bc:45:78:a2:ca:34:87:7b:92:c6:d4:e1:39:29: 41:14:a0:1c:a5:38:d7:a4:e5:60:9a:24:2f:13:7f: fc:44:c6:ce:89:bf:d3:91:88:b9:f6:d4:28:35:d0: bc:f6:76:3b:2a:33:76:0e:a6:eb:11:fb:53:9b:51: 9f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:47:C0:DB:A5:A4:DF:4E:79:3C:07:C7:1F:F2:6A:30:5E:BC:48:B2 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.0.0/18 Signature Algorithm: sha256WithRSAEncryption 85:8c:b8:f9:fc:71:67:fd:5d:95:2a:a6:de:8e:af:08:48:72: c0:f1:e9:7f:c2:7c:31:03:14:cc:bc:09:77:0a:e6:2b:10:6d: e7:8a:88:3e:19:50:d9:58:dc:89:b8:4f:20:52:f4:d5:28:67: 7c:12:0a:46:82:e6:84:c7:08:f5:4a:45:b6:44:0d:ab:df:71: 3a:07:ab:2a:98:7f:d0:39:05:8e:ad:58:26:c6:0e:fc:18:b9: 49:21:f8:32:7f:d2:a2:0f:06:55:93:24:dd:dd:5b:16:6a:d6: b3:78:46:e6:37:ed:65:fd:70:86:be:3c:b1:f1:be:5d:dd:07: eb:96:54:b4:ec:a9:04:7e:73:5e:8d:fe:b6:3a:66:98:f7:7b: 03:c5:91:0e:05:f8:0f:ab:31:cb:dd:27:7d:2f:e6:a1:c7:08: 34:5d:76:c0:16:e8:8a:87:59:fb:f5:15:66:1c:cf:d7:a0:cf: 84:40:1e:c8:62:94:0d:48:16:a2:63:ee:4f:34:db:84:37:98: b5:75:9c:41:7c:c0:68:5c:d3:37:31:0f:30:11:0b:9d:11:5f: 9b:fe:21:78:81:f1:f3:a1:4e:f2:d5:e2:8a:ce:f4:6f:e0:52: 27:bd:d9:b2:43:57:e9:85:63:18:41:b5:60:57:88:e0:dd:42: be:b1:37:a9 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWMOFHmM4mJUlT/XS+kktZ1iqEmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDVaFw0yNDA5MTgxMTAwNDVaMDMxMTAvBgNV BAMTKDc4NDdDMERCQTVBNERGNEU3OTNDMDdDNzFGRjI2QTMwNUVCQzQ4QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpYoqgElfR5wWNJE+hFVMuO2Nq bKyFh3TfwLdSUgU5w2wlrs87ibcRMDDBAanDdd+DGL7t7L+l45m/teL636nPjFrO w3NLfu5jZ/2cN0TksKnE3KrHkj4IhItwoq1IMy8QBGn1Tv2q/m3K6tlxEsKK6svj sB3QQXklglbBKC1eIU1wX/LlBKwx+zFlNkn/aK/cqxBorIG3/TBR6MzkgqQ3qKnh 6+yeF+hC2PhG91H5xrycHLL0PqfGiTb24uWD8zf6WeG8RXiiyjSHe5LG1OE5KUEU oBylONek5WCaJC8Tf/xExs6Jv9ORiLn21Cg10Lz2djsqM3YOpusR+1ObUZ8PAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUeEfA26Wk3055PAfHH/JqMF68SLIwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTMwMmUzMDJmMzEzODJk MzIzMTIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbKmgAwDQYJKoZIhvcNAQEL BQADggEBAIWMuPn8cWf9XZUqpt6OrwhIcsDx6X/CfDEDFMy8CXcK5isQbeeKiD4Z UNlY3Im4TyBS9NUoZ3wSCkaC5oTHCPVKRbZEDavfcToHqyqYf9A5BY6tWCbGDvwY uUkh+DJ/0qIPBlWTJN3dWxZq1rN4RuY37WX9cIa+PLHxvl3dB+uWVLTsqQR+c16N /rY6Zpj3ewPFkQ4F+A+rMcvdJ30v5qHHCDRddsAW6IqHWfv1FWYcz9egz4RAHshi lA1IFqJj7k8024Q3mLV1nEF8wGhc0zcxDzARC50RX5v+IXiB8fOhTvLV4orO9G/g Uie92bJDV+mFYxhBtWBXiODdQr6xN6k= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org