$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa File: 3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: DZ0x1I7NkySboSphSERlmIFkwahn/6zX8sEnJwX5e5g= Subject key identifier: F3:4E:C5:E8:38:AA:90:7F:32:28:07:31:EB:93:2A:D5:FD:29:75:52 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 11378E08A7AB86D994915D8BA033BC7D8BD913AA Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa Signing time: Wed 14 Aug 2024 03:00:01 +0000 ROA not before: Wed 14 Aug 2024 02:55:01 +0000 ROA not after: Wed 13 Aug 2025 03:00:01 +0000 asID: 141898 IP address blocks: 202.154.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:37:8e:08:a7:ab:86:d9:94:91:5d:8b:a0:33:bc:7d:8b:d9:13:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 14 02:55:01 2024 GMT Not After : Aug 13 03:00:01 2025 GMT Subject: CN=F34EC5E838AA907F32280731EB932AD5FD297552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:65:5a:51:8d:15:3d:a7:08:3e:ea:d4:f1:49: ec:47:d9:ff:60:23:75:3b:11:2c:9f:84:9b:3e:5f: ac:93:5b:2a:8e:8f:4a:61:5f:1a:ae:43:4e:7f:25: 48:6b:15:99:22:81:41:1f:0c:df:13:ed:b1:51:ef: 97:3c:17:43:45:42:19:47:49:3b:95:45:f8:e9:f2: 1c:d7:a3:57:f2:0e:06:33:59:6f:95:1e:c9:b4:67: 30:67:fb:42:00:ef:2c:69:f4:38:2b:71:d9:11:9d: 57:2f:cd:6d:fa:43:4f:8d:b5:40:9f:cb:3b:01:e6: 4b:ab:42:d2:4b:75:f0:1a:d4:15:e8:73:13:8d:79: ad:f8:11:4f:1f:87:d7:f6:bf:d7:d6:8f:98:cc:16: 04:ee:ed:42:13:13:57:aa:cf:89:f8:b6:14:72:86: cc:7e:ca:dd:db:54:f3:08:b8:6e:38:2a:89:e9:33: e8:1d:de:8d:c1:5f:1e:06:59:72:37:a1:65:2f:7b: bf:70:bd:8d:4b:24:2a:93:2f:bc:c6:fe:28:ff:52: ac:e1:1a:68:80:ed:92:e9:5d:16:40:4c:4b:24:d3: 80:16:b5:eb:60:fc:77:fd:35:ce:57:26:cc:6b:6c: 94:37:0e:c6:67:e7:14:6e:0f:0a:d6:2a:d8:08:20: 8a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:4E:C5:E8:38:AA:90:7F:32:28:07:31:EB:93:2A:D5:FD:29:75:52 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31312e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.11.0/24 Signature Algorithm: sha256WithRSAEncryption b2:d8:67:2a:75:1b:5a:17:17:2a:3d:4c:26:00:28:42:3d:61: 73:57:32:fc:ba:81:f4:fc:5a:d6:8d:ca:5b:5a:24:4e:3f:ed: 8e:f9:cc:17:e4:75:25:c9:59:1e:0f:ec:b4:63:c7:6a:87:17: 40:32:59:c2:13:87:a2:b5:d9:b3:6e:6b:42:b7:c8:e4:2b:6e: 7c:ab:1b:02:1b:f9:02:f8:c5:76:3d:4c:a4:5b:65:10:ab:11: 50:3b:73:ae:98:75:58:ed:ce:ee:5b:0c:39:c3:51:03:bc:a9: 37:63:ed:2d:42:a9:e8:c1:ce:2f:2d:e0:04:dc:13:0d:92:4a: b9:41:ea:38:fe:17:b7:2c:e1:42:bd:da:0e:08:99:c3:47:b8: bd:45:74:63:b5:b7:b4:ef:bc:03:d2:8c:6a:b4:4c:1f:2e:be: 7e:1c:e3:98:4e:91:8c:94:0c:d2:02:dd:18:8c:82:55:09:f2: d6:a5:73:00:3a:47:d8:10:5a:95:25:f9:58:12:27:33:11:12: e5:34:09:e2:5c:bd:26:6d:e6:9a:8d:a7:60:b7:01:1b:fb:15: 40:1c:80:fd:f8:97:3c:c7:37:7e:2c:19:8e:1f:5a:cf:47:8a: 5e:74:70:2a:9c:52:12:b2:3d:dc:cf:a4:71:e4:a0:35:4a:7e: c4:65:da:41 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUETeOCKerhtmUkV2LoDO8fYvZE6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MTQwMjU1MDFaFw0yNTA4MTMwMzAwMDFaMDMxMTAvBgNV BAMTKEYzNEVDNUU4MzhBQTkwN0YzMjI4MDczMUVCOTMyQUQ1RkQyOTc1NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ZVpRjRU9pwg+6tTxSexH2f9g I3U7ESyfhJs+X6yTWyqOj0phXxquQ05/JUhrFZkigUEfDN8T7bFR75c8F0NFQhlH STuVRfjp8hzXo1fyDgYzWW+VHsm0ZzBn+0IA7yxp9DgrcdkRnVcvzW36Q0+NtUCf yzsB5kurQtJLdfAa1BXocxONea34EU8fh9f2v9fWj5jMFgTu7UITE1eqz4n4thRy hsx+yt3bVPMIuG44KonpM+gd3o3BXx4GWXI3oWUve79wvY1LJCqTL7zG/ij/Uqzh GmiA7ZLpXRZATEsk04AWtetg/Hf9Nc5XJsxrbJQ3DsZn5xRuDwrWKtgIIIr/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU807F6DiqkH8yKAcx65Mq1f0pdVIwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoLMA0GCSqG SIb3DQEBCwUAA4IBAQCy2GcqdRtaFxcqPUwmAChCPWFzVzL8uoH0/FrWjcpbWiRO P+2O+cwX5HUlyVkeD+y0Y8dqhxdAMlnCE4eitdmzbmtCt8jkK258qxsCG/kC+MV2 PUykW2UQqxFQO3OumHVY7c7uWww5w1EDvKk3Y+0tQqnowc4vLeAE3BMNkkq5Qeo4 /he3LOFCvdoOCJnDR7i9RXRjtbe077wD0oxqtEwfLr5+HOOYTpGMlAzSAt0YjIJV CfLWpXMAOkfYEFqVJflYEiczERLlNAniXL0mbeaajadgtwEb+xVAHID9+Jc8xzd+ LBmOH1rPR4pedHAqnFISsj3cz6Rx5KA1Sn7EZdpB -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org