$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa File: 3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa (raw, json) Hash identifier: POVvcZtyGZnLThkLZitYUgwLyPmCItDncNPZb6ZJh9U= Subject key identifier: 84:1C:78:22:FA:B7:86:2D:F8:A3:DB:2B:E8:C0:C7:92:A0:B0:2A:BD Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 69B344D4E34915396E92CB1B11DEBB5F6D2B84E0 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa Signing time: Wed 14 Aug 2024 03:00:01 +0000 ROA not before: Wed 14 Aug 2024 02:55:01 +0000 ROA not after: Wed 13 Aug 2025 03:00:01 +0000 asID: 141898 IP address blocks: 202.154.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:b3:44:d4:e3:49:15:39:6e:92:cb:1b:11:de:bb:5f:6d:2b:84:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 14 02:55:01 2024 GMT Not After : Aug 13 03:00:01 2025 GMT Subject: CN=841C7822FAB7862DF8A3DB2BE8C0C792A0B02ABD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0b:bf:48:55:e9:fa:66:bf:a5:53:20:4e:90: 59:e4:0e:87:72:b2:b4:19:10:2b:97:69:0b:7b:73: 3c:b9:46:37:b5:af:b8:ef:81:24:b7:4b:91:14:28: cf:83:b8:b3:8c:9d:a5:54:52:69:00:1c:6c:de:6d: e5:e7:4c:b3:6d:b4:5b:14:e1:f4:1a:96:14:5c:c7: 5d:ba:50:d3:a1:f0:3e:a5:47:f7:1f:1d:f2:f0:f9: a8:57:50:e3:4f:f8:5e:d2:9d:1d:d3:6f:91:9c:c4: 01:d4:e0:f7:56:22:a4:74:1e:47:7d:fa:c7:d6:e8: af:df:a7:86:33:3d:30:33:91:45:dc:de:f1:67:14: 69:a9:5a:2c:7c:d8:4e:ec:2b:ce:0e:21:f0:91:48: 04:8b:57:74:2d:59:2e:42:a8:bf:7c:ca:95:65:1b: 57:c9:8e:e1:30:35:e5:be:70:41:3e:6a:b5:75:30: 1c:48:a3:7f:c9:c6:66:76:ef:60:23:72:6a:77:d4: 5d:c0:1a:e8:25:76:68:33:ab:c0:91:4f:46:38:c6: 0b:d0:a9:2a:43:7a:d3:37:b0:42:d5:a1:18:8a:79: 99:e2:6b:c2:02:19:3b:1f:72:65:14:99:b0:db:e4: d7:1d:b5:fb:7b:63:09:47:a5:8c:7f:f6:38:9f:31: 19:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:1C:78:22:FA:B7:86:2D:F8:A3:DB:2B:E8:C0:C7:92:A0:B0:2A:BD X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31352e302f32342d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.15.0/24 Signature Algorithm: sha256WithRSAEncryption 22:47:bc:75:2b:9f:76:52:35:d1:e8:03:1a:1f:43:ea:d3:d0: 66:0f:aa:d4:97:d1:27:f4:08:f5:98:39:1a:fd:52:23:8d:c4: 1d:b6:38:3b:fe:a5:3c:c9:b5:2c:82:52:71:c7:2f:1c:58:ec: 6f:fe:e1:cc:c7:33:20:b7:37:3a:35:b1:be:68:d0:10:82:71: 0b:39:77:7a:d5:d5:38:f4:f8:77:06:3a:6c:e0:2e:bd:06:be: eb:2f:41:94:1d:06:48:d6:12:a6:21:63:3e:59:f6:e3:a3:3c: 96:2b:c2:90:c6:a4:64:6a:d3:dc:67:64:b0:ad:3e:be:58:05: 4e:bb:e0:be:1b:12:ea:2e:92:37:d8:a9:c7:1f:5b:df:8e:a9: f1:e6:ae:92:9d:3a:c2:01:97:51:61:7e:df:cc:4c:5d:a4:49: aa:50:40:01:64:f3:08:85:8c:4f:e0:08:70:01:49:06:b1:be: 66:8b:2a:ac:37:44:25:87:a3:88:03:c9:c7:ce:cb:03:1f:4c: 21:d7:62:62:7d:38:bd:0a:6a:6c:40:cb:ac:e7:04:20:17:29: 12:4c:c7:f6:f6:7f:10:0d:c9:21:99:48:00:0c:be:01:94:f0: ee:ee:d0:d3:8c:64:7f:64:50:38:36:7f:26:01:65:c4:a1:b7: 6d:42:06:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUabNE1ONJFTlukssbEd67X20rhOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MTQwMjU1MDFaFw0yNTA4MTMwMzAwMDFaMDMxMTAvBgNV BAMTKDg0MUM3ODIyRkFCNzg2MkRGOEEzREIyQkU4QzBDNzkyQTBCMDJBQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeC79IVen6Zr+lUyBOkFnkDody srQZECuXaQt7czy5Rje1r7jvgSS3S5EUKM+DuLOMnaVUUmkAHGzebeXnTLNttFsU 4fQalhRcx126UNOh8D6lR/cfHfLw+ahXUONP+F7SnR3Tb5GcxAHU4PdWIqR0Hkd9 +sfW6K/fp4YzPTAzkUXc3vFnFGmpWix82E7sK84OIfCRSASLV3QtWS5CqL98ypVl G1fJjuEwNeW+cEE+arV1MBxIo3/JxmZ272Ajcmp31F3AGugldmgzq8CRT0Y4xgvQ qSpDetM3sELVoRiKeZnia8ICGTsfcmUUmbDb5Ncdtft7YwlHpYx/9jifMRk3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhBx4Ivq3hi34o9sr6MDHkqCwKr0wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypoPMA0GCSqG SIb3DQEBCwUAA4IBAQAiR7x1K592UjXR6AMaH0Pq09BmD6rUl9En9Aj1mDka/VIj jcQdtjg7/qU8ybUsglJxxy8cWOxv/uHMxzMgtzc6NbG+aNAQgnELOXd61dU49Ph3 Bjps4C69Br7rL0GUHQZI1hKmIWM+WfbjozyWK8KQxqRkatPcZ2SwrT6+WAVOu+C+ GxLqLpI32KnHH1vfjqnx5q6SnTrCAZdRYX7fzExdpEmqUEABZPMIhYxP4AhwAUkG sb5miyqsN0Qlh6OIA8nHzssDH0wh12JifTi9CmpsQMus5wQgFykSTMf29n8QDckh mUgADL4BlPDu7tDTjGR/ZFA4Nn8mAWXEobdtQgb+ -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org