$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa File: 3230322e3135342e302e302f31382d3231203d3e2034343334.roa (raw, json) Hash identifier: KxXKZOPmpPOkzaJxqfzgwGtbeUZQKNuCCVsT6BCykP4= Subject key identifier: C1:63:C4:7A:CD:1F:8A:4A:97:83:DC:6D:23:A9:77:DD:F4:6D:9A:0B Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 1598552EB0854B616061AF4FF724644F6377CFAD Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:54 +0000 ROA not before: Wed 21 Aug 2024 10:55:54 +0000 ROA not after: Wed 20 Aug 2025 11:00:54 +0000 asID: 4434 IP address blocks: 202.154.0.0/18 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:98:55:2e:b0:85:4b:61:60:61:af:4f:f7:24:64:4f:63:77:cf:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:54 2024 GMT Not After : Aug 20 11:00:54 2025 GMT Subject: CN=C163C47ACD1F8A4A9783DC6D23A977DDF46D9A0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bb:01:bf:01:d5:1d:a9:42:a6:62:63:96:92: 23:f1:f1:d5:f1:19:61:5c:92:19:1f:77:97:3b:0f: 3e:fe:48:a0:b3:0c:c2:aa:23:21:d8:7d:12:e9:74: 58:67:c8:24:30:c6:2c:98:3c:ab:24:8f:d4:8a:3f: f2:4e:84:bd:75:81:ef:83:f7:67:a6:52:98:6e:af: 66:31:43:c2:b0:c7:85:c2:c4:51:74:c8:d4:f2:53: c0:0f:e8:ce:14:6c:38:97:46:81:1f:13:01:e7:61: dc:87:2d:44:e8:b3:89:44:09:fe:fe:1c:b8:eb:99: 42:cf:b2:e5:99:1f:b2:66:b5:71:63:6c:38:5d:05: d1:d1:72:d0:7b:85:0e:d6:46:f9:2a:48:df:ec:fd: 72:f1:f8:6a:f5:1b:e3:b9:89:14:5c:aa:04:68:6a: d5:3f:12:da:1c:b7:59:ac:9a:f3:b0:c5:ad:76:63: f3:e4:9d:fb:7a:4d:c1:35:8c:9e:f7:93:c1:01:c6: b4:87:2c:b6:f6:40:1b:78:28:af:b2:d9:52:cf:33: 3e:10:7f:3a:68:74:02:a0:fb:95:1e:3f:65:1a:f7: aa:30:0b:3d:47:ef:73:c0:34:6c:76:b8:31:29:7f: a7:5f:56:6d:08:64:95:cc:cd:c6:ea:8c:5a:82:d6: b0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:63:C4:7A:CD:1F:8A:4A:97:83:DC:6D:23:A9:77:DD:F4:6D:9A:0B X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f31382d3231203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.0.0/18 Signature Algorithm: sha256WithRSAEncryption 4d:e8:54:69:0e:7f:8f:7b:5b:39:2e:2c:5b:12:f8:61:28:3c: be:e2:07:4b:b9:cf:be:8a:75:3a:16:71:13:d2:08:24:99:29: 74:3f:83:f2:ff:57:16:8b:62:1c:8a:9c:c3:fb:fc:2a:dc:27: a1:5f:a0:fd:47:9c:92:45:1c:c3:0e:27:96:4b:92:01:e6:72: 67:60:1c:c7:84:ca:54:47:1a:d5:95:3b:97:dd:3a:a8:24:cf: 2a:58:83:4e:04:5b:93:ae:5c:78:96:e2:d4:d4:ea:05:f1:bb: e7:9a:2e:8c:b1:b3:84:c6:80:0a:49:91:31:a6:a0:82:6f:1b: 31:a4:0a:4d:9c:2d:85:17:87:7b:23:0d:9a:9b:44:82:e2:44: ff:75:b9:56:a4:3e:82:7d:19:02:5a:93:e1:a9:0b:93:ad:66: 58:db:82:dd:9b:f8:99:6a:f5:63:48:f4:11:11:d0:b0:ee:e1: ed:65:16:36:c1:84:db:09:cf:2e:ad:89:2f:8d:3b:d0:d2:cc: 5a:f7:8b:3c:bc:92:69:18:33:e3:0c:84:6b:55:a2:68:5c:f2: 2d:8e:09:05:fd:a8:de:30:c3:b0:10:96:69:db:3e:26:20:02: d1:08:7f:f4:94:49:dc:f7:5e:d7:6d:45:84:e7:1d:08:a8:9f: 07:70:c6:79 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUFZhVLrCFS2FgYa9P9yRkT2N3z60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTRaFw0yNTA4MjAxMTAwNTRaMDMxMTAvBgNV BAMTKEMxNjNDNDdBQ0QxRjhBNEE5NzgzREM2RDIzQTk3N0RERjQ2RDlBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzuwG/AdUdqUKmYmOWkiPx8dXx GWFckhkfd5c7Dz7+SKCzDMKqIyHYfRLpdFhnyCQwxiyYPKskj9SKP/JOhL11ge+D 92emUphur2YxQ8Kwx4XCxFF0yNTyU8AP6M4UbDiXRoEfEwHnYdyHLUTos4lECf7+ HLjrmULPsuWZH7JmtXFjbDhdBdHRctB7hQ7WRvkqSN/s/XLx+Gr1G+O5iRRcqgRo atU/Etoct1msmvOwxa12Y/Pknft6TcE1jJ73k8EBxrSHLLb2QBt4KK+y2VLPMz4Q fzpodAKg+5UeP2Ua96owCz1H73PANGx2uDEpf6dfVm0IZJXMzcbqjFqC1rB5AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUwWPEes0fikqXg9xtI6l33fRtmgswHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTMwMmUzMDJmMzEzODJk MzIzMTIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbKmgAwDQYJKoZIhvcNAQEL BQADggEBAE3oVGkOf497WzkuLFsS+GEoPL7iB0u5z76KdToWcRPSCCSZKXQ/g/L/ VxaLYhyKnMP7/CrcJ6FfoP1HnJJFHMMOJ5ZLkgHmcmdgHMeEylRHGtWVO5fdOqgk zypYg04EW5OuXHiW4tTU6gXxu+eaLoyxs4TGgApJkTGmoIJvGzGkCk2cLYUXh3sj DZqbRILiRP91uVakPoJ9GQJak+GpC5OtZljbgt2b+Jlq9WNI9BER0LDu4e1lFjbB hNsJzy6tiS+NO9DSzFr3izy8kmkYM+MMhGtVomhc8i2OCQX9qN4ww7AQlmnbPiYg AtEIf/SUSdz3XtdtRYTnHQionwdwxnk= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org