$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e302e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: u+i7/TtEdsH5+uxesVKthNAiYZvoz9vOBTyOWWXH0+Y= Subject key identifier: 96:0B:83:B3:26:66:F6:75:DB:3A:86:65:1E:F2:20:E4:1D:EC:4B:30 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 7924F1AB99D27FD2B096121BC42FE48308931702 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:53 +0000 ROA not before: Wed 21 Aug 2024 10:55:53 +0000 ROA not after: Wed 20 Aug 2025 11:00:53 +0000 asID: 4434 IP address blocks: 202.154.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:24:f1:ab:99:d2:7f:d2:b0:96:12:1b:c4:2f:e4:83:08:93:17:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:53 2024 GMT Not After : Aug 20 11:00:53 2025 GMT Subject: CN=960B83B32666F675DB3A86651EF220E41DEC4B30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a5:98:02:9d:2b:db:80:a5:16:10:45:3f:6e: 2d:2f:f4:32:81:fb:17:38:e1:a6:f0:c8:ef:0e:cb: b6:3d:76:5b:ac:f2:cd:4e:e5:d3:dc:49:69:5f:e6: 0a:d3:36:3b:99:47:16:65:93:b6:a9:00:d4:3c:ea: 87:7c:f4:81:20:c3:f2:88:4b:48:ec:6a:67:bc:46: dc:79:06:7f:3f:90:14:18:4f:45:ca:7f:b6:22:69: 2e:28:de:3d:c2:be:61:de:58:6f:38:c6:f4:93:35: f4:ea:7e:21:8e:d4:1e:df:d9:36:f1:73:b9:4b:51: a4:f9:b0:a4:7b:ab:99:4c:ba:0a:ba:5c:6f:0a:aa: ff:35:98:8d:de:1f:c5:3e:08:b5:1e:41:50:cc:d7: 20:df:db:d1:4b:52:4f:45:d0:2d:f4:1e:e5:a9:dc: 53:1b:fe:88:b3:ff:89:c7:a7:d5:82:89:86:db:94: 82:cc:ce:ac:d3:67:e5:95:e8:fc:97:3f:82:68:98: 82:45:2d:2c:99:5b:b9:ea:08:cd:40:ee:08:eb:6b: fc:63:3f:77:cb:7d:f3:1b:07:14:e6:c8:ec:cd:63: 01:eb:1e:3a:2f:89:db:60:be:cf:f4:8b:58:f5:36: d8:80:af:bd:04:c8:ce:1b:c5:0d:0b:a8:de:26:3f: 21:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:0B:83:B3:26:66:F6:75:DB:3A:86:65:1E:F2:20:E4:1D:EC:4B:30 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e302e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.0.0/23 Signature Algorithm: sha256WithRSAEncryption ac:2b:e0:3a:e4:cb:55:92:36:b9:ed:2e:77:78:ce:e7:2f:22: d0:0d:58:6f:3f:e6:5c:c7:39:39:1f:b8:d0:17:be:66:21:ce: 17:ae:c9:c4:16:bf:dc:be:5d:5a:a9:07:ce:26:be:9c:6f:f8: 5c:09:b1:60:c0:ee:9f:9e:5c:2e:03:9f:02:9c:df:7a:c8:3b: ed:09:e8:87:97:71:a0:13:b0:49:5f:b2:f9:ad:39:e9:75:7c: 56:c7:35:d6:d3:35:20:48:5e:81:75:35:ac:04:2f:8a:86:f5: 2a:2d:2b:8f:9b:f9:78:fd:b3:c8:bd:b0:f3:98:b0:73:7a:ea: ea:40:07:20:3f:4d:b9:3e:1c:ea:93:23:c7:6d:d2:80:d5:2a: 23:0d:db:c5:64:07:d8:ab:ea:b9:60:8f:da:cd:cd:04:ff:0a: 36:7e:99:a5:8c:2c:06:1c:50:28:fb:5f:17:38:b1:bb:15:de: d3:17:de:e2:6b:a9:61:26:70:a1:86:e6:da:31:2c:10:44:3d: 8a:76:5e:1e:fd:99:b6:7f:61:3b:c9:a0:2a:a1:75:fe:55:22: 89:90:cb:69:59:e4:ba:65:ab:63:1f:fe:ff:15:88:cc:ab:89: 14:d7:27:e8:b6:31:34:32:1d:11:71:22:e5:50:98:77:60:49: b9:45:87:f1 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUeSTxq5nSf9KwlhIbxC/kgwiTFwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTNaFw0yNTA4MjAxMTAwNTNaMDMxMTAvBgNV BAMTKDk2MEI4M0IzMjY2NkY2NzVEQjNBODY2NTFFRjIyMEU0MURFQzRCMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClpZgCnSvbgKUWEEU/bi0v9DKB +xc44abwyO8Oy7Y9dlus8s1O5dPcSWlf5grTNjuZRxZlk7apANQ86od89IEgw/KI S0jsame8Rtx5Bn8/kBQYT0XKf7YiaS4o3j3CvmHeWG84xvSTNfTqfiGO1B7f2Tbx c7lLUaT5sKR7q5lMugq6XG8Kqv81mI3eH8U+CLUeQVDM1yDf29FLUk9F0C30HuWp 3FMb/oiz/4nHp9WCiYbblILMzqzTZ+WV6PyXP4JomIJFLSyZW7nqCM1A7gjra/xj P3fLffMbBxTmyOzNYwHrHjovidtgvs/0i1j1NtiAr70EyM4bxQ0LqN4mPyELAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUlguDsyZm9nXbOoZlHvIg5B3sSzAwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTMwMmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmgAwDQYJKoZIhvcNAQEL BQADggEBAKwr4Drky1WSNrntLnd4zucvItANWG8/5lzHOTkfuNAXvmYhzheuycQW v9y+XVqpB84mvpxv+FwJsWDA7p+eXC4DnwKc33rIO+0J6IeXcaATsElfsvmtOel1 fFbHNdbTNSBIXoF1NawEL4qG9SotK4+b+Xj9s8i9sPOYsHN66upAByA/Tbk+HOqT I8dt0oDVKiMN28VkB9ir6rlgj9rNzQT/CjZ+maWMLAYcUCj7Xxc4sbsV3tMX3uJr qWEmcKGG5toxLBBEPYp2Xh79mbZ/YTvJoCqhdf5VIomQy2lZ5Lplq2Mf/v8ViMyr iRTXJ+i2MTQyHRFxIuVQmHdgSblFh/E= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org