$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa File: 3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: tSMD1IFSH+tVyiqgL+iV16myWNxkO8xmvry2y5ppXDo= Subject key identifier: E1:97:4E:DE:94:1A:F7:2D:9A:D0:CD:55:33:B1:70:07:24:98:32:C2 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 101BE1CD5752AF9D249967540FAA0C8BB10113CB Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa Signing time: Wed 13 Sep 2023 03:00:01 +0000 ROA not before: Wed 13 Sep 2023 02:55:01 +0000 ROA not after: Wed 11 Sep 2024 03:00:01 +0000 asID: 141898 IP address blocks: 202.154.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:1b:e1:cd:57:52:af:9d:24:99:67:54:0f:aa:0c:8b:b1:01:13:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 13 02:55:01 2023 GMT Not After : Sep 11 03:00:01 2024 GMT Subject: CN=E1974EDE941AF72D9AD0CD5533B17007249832C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1c:60:c5:2c:19:3a:30:62:2c:de:4e:9c:16: 46:ae:8a:9e:4d:08:d0:cc:1a:6a:a9:8f:e2:b7:0d: bd:9a:a4:a7:17:44:7b:0e:ca:ae:3a:ac:37:4f:bf: 03:a2:2d:78:1d:c0:4b:8f:61:96:c8:5c:d1:7e:89: 90:5f:71:bc:74:c1:21:e2:b9:b3:48:32:c6:38:8b: 66:d7:f5:55:28:3e:ae:08:cb:87:fb:27:66:a6:7b: df:39:f5:c6:ce:ef:db:28:55:5f:ec:0a:eb:fc:79: 24:c4:fa:9b:bc:a8:c2:d4:34:59:09:49:21:3a:1b: 2c:b0:29:4b:17:97:d5:32:12:47:bb:21:43:b7:b2: 08:82:55:2c:85:2d:a4:7f:8d:12:e5:af:c2:84:72: 82:01:59:93:0f:7a:f3:62:75:d3:62:62:8b:07:8c: c2:9e:76:15:94:b1:5f:74:e7:b6:fc:fe:87:96:2a: fd:fe:dc:10:28:52:22:6d:c2:ee:d4:66:c7:03:11: 0f:c9:64:9a:11:6b:dd:36:16:e5:e6:12:35:5d:6a: c3:22:37:d0:20:70:a4:04:84:e1:b5:83:6c:4e:41: d5:ea:19:20:ba:1a:c5:eb:c4:5b:f6:f4:8b:e7:0f: 47:46:57:44:c4:da:7d:5d:f9:4c:35:15:48:15:fb: ff:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:97:4E:DE:94:1A:F7:2D:9A:D0:CD:55:33:B1:70:07:24:98:32:C2 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.15.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:33:c3:f3:10:26:97:2b:d1:77:0b:f7:1f:fd:96:e1:89:7f: 7f:3f:d9:7b:c4:9c:98:61:c0:fa:0d:73:3c:2a:40:f8:ab:62: 48:58:7e:7f:49:b2:2c:27:eb:a7:f2:30:0c:27:dc:65:4a:84: 37:f9:4d:89:07:30:f9:c4:33:89:73:6b:f6:5b:46:ee:5e:47: 2a:65:3a:fa:5b:06:0b:9d:08:b1:a4:48:51:41:53:6d:d8:4e: ed:99:10:09:46:60:33:52:23:f4:38:8d:cf:86:29:57:68:10: 04:15:c4:01:61:0f:92:58:35:29:52:29:ce:62:71:ff:ce:b9: 87:aa:b4:0b:d8:18:4d:f9:64:7f:00:d8:8c:7b:b3:3e:f5:2a: 29:d1:4d:08:07:78:2b:4f:49:7f:33:8a:6c:5e:48:f2:07:cb: 62:7e:58:3f:af:09:b1:5e:7b:91:b8:f7:bf:dd:86:f2:26:da: 16:e9:85:28:ae:aa:b4:ef:ef:fc:d1:35:4f:7b:ea:ab:bf:6a: 09:4d:66:09:31:08:89:97:b7:f7:71:76:54:7e:02:06:de:e0: 33:30:64:84:9d:35:02:f6:29:40:ef:f1:7f:1a:da:a9:e0:c4: 4d:7c:84:ed:a1:90:73:97:7c:bb:94:5c:a3:75:89:3e:ef:8b: cf:87:35:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEBvhzVdSr50kmWdUD6oMi7EBE8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MTMwMjU1MDFaFw0yNDA5MTEwMzAwMDFaMDMxMTAvBgNV BAMTKEUxOTc0RURFOTQxQUY3MkQ5QUQwQ0Q1NTMzQjE3MDA3MjQ5ODMyQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8HGDFLBk6MGIs3k6cFkauip5N CNDMGmqpj+K3Db2apKcXRHsOyq46rDdPvwOiLXgdwEuPYZbIXNF+iZBfcbx0wSHi ubNIMsY4i2bX9VUoPq4Iy4f7J2ame9859cbO79soVV/sCuv8eSTE+pu8qMLUNFkJ SSE6GyywKUsXl9UyEke7IUO3sgiCVSyFLaR/jRLlr8KEcoIBWZMPevNiddNiYosH jMKedhWUsV9057b8/oeWKv3+3BAoUiJtwu7UZscDEQ/JZJoRa902FuXmEjVdasMi N9AgcKQEhOG1g2xOQdXqGSC6GsXrxFv29IvnD0dGV0TE2n1d+Uw1FUgV+/+VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4ZdO3pQa9y2a0M1VM7FwBySYMsIwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoPMA0GCSqG SIb3DQEBCwUAA4IBAQBdM8PzECaXK9F3C/cf/ZbhiX9/P9l7xJyYYcD6DXM8KkD4 q2JIWH5/SbIsJ+un8jAMJ9xlSoQ3+U2JBzD5xDOJc2v2W0buXkcqZTr6WwYLnQix pEhRQVNt2E7tmRAJRmAzUiP0OI3PhilXaBAEFcQBYQ+SWDUpUinOYnH/zrmHqrQL 2BhN+WR/ANiMe7M+9Sop0U0IB3grT0l/M4psXkjyB8tiflg/rwmxXnuRuPe/3Yby JtoW6YUorqq07+/80TVPe+qrv2oJTWYJMQiJl7f3cXZUfgIG3uAzMGSEnTUC9ilA 7/F/Gtqp4MRNfITtoZBzl3y7lFyjdYk+74vPhzUy -----END CERTIFICATE-----Generated at Fri May 3 04:42:13 2024 by rpki-client on console-fra.rpki-client.org