$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa File: 3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: Uo9OOHd8gML7lYT+VS1Lr68Ca9TPu/OYbCT+iVRFDz4= Subject key identifier: FE:44:3A:D1:B6:F6:09:07:E2:F7:39:83:4C:62:A3:5A:89:B4:B5:4F Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 0AD23DDC632AB4D109B2FE9E07101DE1DF8053C8 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa Signing time: Wed 13 Sep 2023 03:00:01 +0000 ROA not before: Wed 13 Sep 2023 02:55:01 +0000 ROA not after: Wed 11 Sep 2024 03:00:01 +0000 asID: 141898 IP address blocks: 202.154.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:d2:3d:dc:63:2a:b4:d1:09:b2:fe:9e:07:10:1d:e1:df:80:53:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 13 02:55:01 2023 GMT Not After : Sep 11 03:00:01 2024 GMT Subject: CN=FE443AD1B6F60907E2F739834C62A35A89B4B54F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:53:ea:2c:5c:6a:43:63:7d:62:3f:a4:e6:63: da:a5:6c:fd:5d:c3:71:c8:6b:67:36:03:a3:cc:b6: 63:e6:b2:8b:34:eb:2b:e4:11:24:18:8a:c1:f3:d9: 15:12:7d:53:ab:04:87:63:49:56:c8:56:5d:36:4c: 31:ca:e4:8c:73:61:3a:ec:88:c8:e2:1c:2a:72:80: 01:fa:54:80:27:d9:3a:45:09:f6:df:7f:7d:c2:69: c4:c4:4e:b1:ef:2d:09:4e:6b:8e:3d:77:08:32:9a: fc:fa:98:f6:a3:12:c9:7c:75:c8:12:41:8b:ba:38: 18:38:8a:cb:8c:71:cc:15:d9:8c:0e:19:9b:80:a9: 95:36:c1:d1:0c:fe:ae:c4:91:3d:c2:0e:7b:2e:31: d1:5c:e7:49:6c:0a:ad:92:17:bb:cd:b1:17:86:49: f6:c9:e1:99:e0:c6:1a:b3:e4:df:df:33:43:37:81: 16:45:54:5e:e1:ce:27:49:49:04:a7:d0:29:af:f8: 79:eb:47:59:f1:18:a1:00:c1:04:60:ea:1d:2c:1e: b7:d1:30:77:ec:f1:df:7e:d7:ee:ad:73:57:62:c3: c7:47:05:a0:80:34:b6:b4:7e:ea:c9:fd:bd:76:9f: ee:e6:28:77:4f:2f:6d:a1:1a:71:a5:8f:c3:81:fd: f8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:44:3A:D1:B6:F6:09:07:E2:F7:39:83:4C:62:A3:5A:89:B4:B5:4F X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.11.0/24 Signature Algorithm: sha256WithRSAEncryption af:d6:59:28:8e:8c:a5:5b:bd:5c:be:a1:9f:6d:0e:1f:d8:d7: 60:8f:d4:5d:89:e9:e2:7f:91:77:23:73:cb:fe:4f:8f:67:8a: c5:b9:d4:37:3f:c0:66:ed:e3:49:d5:2d:c4:79:17:ff:ac:e0: 52:08:dc:39:a2:92:52:1b:64:b2:8b:4b:97:da:55:48:9e:c8: 9b:29:d4:a7:ae:78:49:b2:ad:97:a9:8a:db:d5:63:27:e5:5c: 00:4e:ea:ab:da:48:23:a2:ab:03:39:90:d9:cb:57:41:bd:8c: 28:4e:d5:6a:ef:5a:28:72:6d:0c:ec:2c:d2:cf:50:56:a1:3a: 88:9a:5c:7a:2a:83:2a:f5:8b:4e:87:85:9d:eb:63:f8:9c:e9: 0b:b0:31:53:48:c8:b4:63:54:66:83:59:cf:f3:33:55:7e:78: 51:e1:ea:29:ab:f4:f3:cd:cc:33:53:93:c9:fa:6c:0e:81:80: 12:0a:0f:0d:11:e7:5b:ec:74:c1:96:53:42:cc:63:c6:38:11: 44:ef:87:48:f1:88:56:84:e1:90:bf:b1:fc:7c:0f:33:7c:83: cb:7d:f6:8e:51:62:fb:84:c8:4b:29:8b:e8:8c:50:b4:59:6b: 4d:c1:d5:9e:fc:1e:a2:bd:c7:3d:0d:0d:6c:bb:31:d9:29:5d: bd:6f:00:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCtI93GMqtNEJsv6eBxAd4d+AU8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MTMwMjU1MDFaFw0yNDA5MTEwMzAwMDFaMDMxMTAvBgNV BAMTKEZFNDQzQUQxQjZGNjA5MDdFMkY3Mzk4MzRDNjJBMzVBODlCNEI1NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDU+osXGpDY31iP6TmY9qlbP1d w3HIa2c2A6PMtmPmsos06yvkESQYisHz2RUSfVOrBIdjSVbIVl02TDHK5IxzYTrs iMjiHCpygAH6VIAn2TpFCfbff33CacTETrHvLQlOa449dwgymvz6mPajEsl8dcgS QYu6OBg4isuMccwV2YwOGZuAqZU2wdEM/q7EkT3CDnsuMdFc50lsCq2SF7vNsReG SfbJ4Zngxhqz5N/fM0M3gRZFVF7hzidJSQSn0Cmv+HnrR1nxGKEAwQRg6h0sHrfR MHfs8d9+1+6tc1diw8dHBaCANLa0furJ/b12n+7mKHdPL22hGnGlj8OB/fivAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/kQ60bb2CQfi9zmDTGKjWom0tU8wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoLMA0GCSqG SIb3DQEBCwUAA4IBAQCv1lkojoylW71cvqGfbQ4f2Ndgj9Rdienif5F3I3PL/k+P Z4rFudQ3P8Bm7eNJ1S3EeRf/rOBSCNw5opJSG2Syi0uX2lVInsibKdSnrnhJsq2X qYrb1WMn5VwATuqr2kgjoqsDOZDZy1dBvYwoTtVq71oocm0M7CzSz1BWoTqImlx6 KoMq9YtOh4Wd62P4nOkLsDFTSMi0Y1Rmg1nP8zNVfnhR4eopq/TzzcwzU5PJ+mwO gYASCg8NEedb7HTBllNCzGPGOBFE74dI8YhWhOGQv7H8fA8zfIPLffaOUWL7hMhL KYvojFC0WWtNwdWe/B6ivcc9DQ1suzHZKV29bwDU -----END CERTIFICATE-----Generated at Fri May 3 03:08:23 2024 by rpki-client on console-ams.rpki-client.org