$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31362e302f32342d3234203d3e2034343334.roa File: 3230322e3135342e31362e302f32342d3234203d3e2034343334.roa (raw, json) Hash identifier: 8AxJwf0RYw6G3Da8sgCR01OvWr9FAHqrbrtgro4wc4Q= Subject key identifier: 27:4B:70:A1:90:90:76:95:1A:D0:B4:DB:1D:54:3E:69:18:B0:CF:96 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 6F91C3148178264A1B71A845575125840D8A961B Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31362e302f32342d3234203d3e2034343334.roa Signing time: Wed 11 Sep 2024 11:00:01 +0000 ROA not before: Wed 11 Sep 2024 10:55:01 +0000 ROA not after: Wed 10 Sep 2025 11:00:01 +0000 asID: 4434 IP address blocks: 202.154.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:91:c3:14:81:78:26:4a:1b:71:a8:45:57:51:25:84:0d:8a:96:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 11 10:55:01 2024 GMT Not After : Sep 10 11:00:01 2025 GMT Subject: CN=274B70A1909076951AD0B4DB1D543E6918B0CF96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:59:3d:d2:94:3f:9e:cf:18:f1:bb:e7:ec:1f: 29:c1:bf:51:67:91:7c:8c:ba:ed:b8:70:a4:0f:30: 18:1a:98:82:59:a0:68:1e:50:6e:46:2f:9d:d0:82: d7:4a:39:2a:c0:f5:66:68:96:65:54:8e:b8:7a:95: 20:00:4e:9c:8d:24:ce:1c:5b:fb:6d:25:b2:46:77: 0f:fe:2e:55:50:27:48:dd:ac:3e:c4:26:22:ed:db: dd:0c:db:82:ee:ec:7f:dc:91:1c:af:34:68:25:ff: 98:38:d5:e3:d8:fc:0c:d6:25:46:b7:7a:99:07:9f: 22:17:3e:90:29:00:64:3c:14:7f:df:29:b6:dc:1e: c0:ad:da:52:ff:f6:37:33:33:4a:f3:fa:86:50:5f: e1:4f:3c:83:3a:0c:61:10:6f:e9:ba:25:00:a3:3e: 5f:50:a8:a1:2a:66:91:9d:bd:6d:5e:0f:fd:8d:84: d5:d2:2c:5c:02:ae:34:fd:c2:34:11:e6:f1:b6:53: 6d:2c:b0:f3:50:af:81:88:7c:9d:95:07:91:50:9c: 19:d8:ac:74:c2:87:3a:a7:1d:54:74:9f:d0:1e:a0: de:f9:ea:dd:a5:d6:ee:6d:f0:fe:ee:25:49:60:b7: 33:3a:d0:cd:47:d8:56:b6:0a:73:b6:24:f6:31:bd: d3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4B:70:A1:90:90:76:95:1A:D0:B4:DB:1D:54:3E:69:18:B0:CF:96 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31362e302f32342d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.16.0/24 Signature Algorithm: sha256WithRSAEncryption 74:74:19:6c:38:4a:cd:8f:2f:44:9c:d3:dd:40:2a:b1:d1:19: f3:7f:b7:d9:50:e2:6c:48:e3:86:2c:82:4c:32:bc:1c:fc:be: ee:6a:f8:9f:20:15:5d:43:68:76:0e:88:c2:59:fa:8c:92:d5: ef:10:7b:1f:fd:5a:e9:89:3c:ee:cb:a3:07:4b:af:ab:22:f6: 56:dd:e8:18:ed:ed:dc:43:f9:8e:b9:54:f1:2e:ca:36:f7:f8: 51:46:3b:18:0d:36:31:91:81:5c:ed:20:0c:50:7a:5f:8a:aa: ac:89:97:ee:74:0f:2b:0c:98:53:c0:b5:0e:b0:fe:2d:a0:30: 5c:b4:1c:97:39:17:2a:aa:54:58:10:a4:08:e5:53:04:fb:98: 04:4b:9f:2d:19:0a:e9:fc:63:33:aa:f0:d9:06:04:09:d1:23: a8:93:11:e2:0f:80:3c:17:e7:d7:26:42:a5:e2:7d:f9:77:b2: e6:cf:7c:49:20:89:89:45:48:b8:df:e2:7e:5a:f4:9d:b0:c6: 10:10:12:a7:60:3b:8c:a2:fa:13:d1:6b:e5:9a:be:d1:11:37: 9b:90:e1:82:63:83:d3:a2:df:49:35:06:07:7e:cf:c0:b6:77: af:0c:cd:d5:77:46:1c:85:0c:a1:83:2a:f5:a5:82:ea:78:19: 8e:01:a7:fd -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUb5HDFIF4JkobcahFV1ElhA2KlhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA5MTExMDU1MDFaFw0yNTA5MTAxMTAwMDFaMDMxMTAvBgNV BAMTKDI3NEI3MEExOTA5MDc2OTUxQUQwQjREQjFENTQzRTY5MThCMENGOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhWT3SlD+ezxjxu+fsHynBv1Fn kXyMuu24cKQPMBgamIJZoGgeUG5GL53QgtdKOSrA9WZolmVUjrh6lSAATpyNJM4c W/ttJbJGdw/+LlVQJ0jdrD7EJiLt290M24Lu7H/ckRyvNGgl/5g41ePY/AzWJUa3 epkHnyIXPpApAGQ8FH/fKbbcHsCt2lL/9jczM0rz+oZQX+FPPIM6DGEQb+m6JQCj Pl9QqKEqZpGdvW1eD/2NhNXSLFwCrjT9wjQR5vG2U20ssPNQr4GIfJ2VB5FQnBnY rHTChzqnHVR0n9AeoN756t2l1u5t8P7uJUlgtzM60M1H2Fa2CnO2JPYxvdORAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUJ0twoZCQdpUa0LTbHVQ+aRiwz5YwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKmhAwDQYJKoZIhvcN AQELBQADggEBAHR0GWw4Ss2PL0Sc091AKrHRGfN/t9lQ4mxI44YsgkwyvBz8vu5q +J8gFV1DaHYOiMJZ+oyS1e8Qex/9WumJPO7LowdLr6si9lbd6Bjt7dxD+Y65VPEu yjb3+FFGOxgNNjGRgVztIAxQel+KqqyJl+50DysMmFPAtQ6w/i2gMFy0HJc5Fyqq VFgQpAjlUwT7mARLny0ZCun8YzOq8NkGBAnRI6iTEeIPgDwX59cmQqXiffl3subP fEkgiYlFSLjf4n5a9J2wxhAQEqdgO4yi+hPRa+WavtERN5uQ4YJjg9Oi30k1Bgd+ z8C2d68MzdV3RhyFDKGDKvWlgup4GY4Bp/0= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org