$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31382e302f32332d3234203d3e20313336313231.roa File: 3230322e3135342e31382e302f32332d3234203d3e20313336313231.roa (raw, json) Hash identifier: hRMbXY/SPrvtrumTeit5wHEhR58sSHopU0MHh+GLlgo= Subject key identifier: B4:75:4C:37:66:E2:09:8D:D9:2A:9F:F7:DD:A9:7A:FD:61:69:50:8F Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 58AF78C695864FABD4CA01D00D44764167FE9E7C Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31382e302f32332d3234203d3e20313336313231.roa Signing time: Wed 11 Sep 2024 10:00:01 +0000 ROA not before: Wed 11 Sep 2024 09:55:01 +0000 ROA not after: Wed 10 Sep 2025 10:00:01 +0000 asID: 136121 IP address blocks: 202.154.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:af:78:c6:95:86:4f:ab:d4:ca:01:d0:0d:44:76:41:67:fe:9e:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 11 09:55:01 2024 GMT Not After : Sep 10 10:00:01 2025 GMT Subject: CN=B4754C3766E2098DD92A9FF7DDA97AFD6169508F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:49:89:61:fc:97:38:10:a1:2a:4d:66:78:25: 1f:98:43:69:c3:79:f0:36:9b:a9:37:4d:f7:b2:23: 6c:bd:21:8f:26:65:57:10:d3:e9:47:7e:97:de:74: 5b:4c:42:aa:08:d0:81:11:2f:b6:62:04:6d:f9:8d: 28:fc:a0:4d:1a:30:70:6d:5f:a5:1c:0a:98:f0:d6: 09:88:2a:36:cf:44:93:2d:96:4c:88:20:38:a1:a5: 3b:91:a7:70:a7:24:cb:15:a7:19:5d:21:2b:aa:a6: 4d:e2:1d:da:a7:78:7d:bb:f7:5f:97:d4:b9:62:ca: d8:d4:9f:ec:15:73:51:90:2c:df:12:50:3b:62:f7: ff:00:c9:71:80:a0:cc:27:83:16:bd:6f:ff:a0:48: d3:0c:74:3f:5d:db:93:ad:80:5d:cf:b5:8f:2b:58: 98:c0:19:54:89:88:74:ae:ad:c9:1a:ac:0b:31:d6: d9:71:a6:e1:93:39:53:15:da:e5:bd:42:42:8f:5e: 0a:9d:80:f1:fb:8b:3d:85:82:89:16:31:e6:8f:28: 26:37:dd:93:2a:a8:31:cf:9e:4d:14:db:cc:74:7b: 3c:3c:1e:12:8e:eb:2b:ae:0a:5c:a7:4d:35:13:a6: 89:35:38:17:6c:a1:3a:ce:b8:20:ad:d1:d6:36:21: ff:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:75:4C:37:66:E2:09:8D:D9:2A:9F:F7:DD:A9:7A:FD:61:69:50:8F X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31382e302f32332d3234203d3e20313336313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.18.0/23 Signature Algorithm: sha256WithRSAEncryption 97:26:8e:9f:2f:14:fa:18:1f:00:da:ca:4b:e4:84:0f:43:15: 31:49:4e:2c:68:44:ed:0d:e9:e3:f6:ff:8f:11:57:04:64:fd: 4e:2b:be:29:39:a0:3c:46:9f:f4:2f:5b:72:ae:b5:01:83:87: 78:66:0f:ce:c4:96:0e:40:ad:4a:7f:74:64:a3:60:3c:10:92: 62:f3:37:17:c7:d9:a2:2a:2c:71:ff:50:40:e4:7e:94:14:62: da:0b:e7:99:02:98:a1:9c:0f:5a:e5:45:44:c8:93:ea:4b:c2: 18:dc:ed:f3:03:cb:a2:52:58:86:44:fb:6a:a4:80:fa:1e:49: d9:56:1c:fc:32:75:be:12:5a:8a:01:be:49:80:c2:cc:78:3f: 68:55:03:20:53:be:02:c3:f2:b7:61:86:27:d0:9f:95:1b:d3: 99:c3:a4:4c:75:f6:4c:9b:ff:24:1f:a6:b1:30:ee:91:46:2c: e8:6d:11:ac:d3:1b:c9:55:c0:e1:a8:2d:06:c8:d6:9b:4f:50: 0c:eb:bf:51:a0:cf:29:c7:3f:26:78:77:c6:34:36:97:c5:3a: eb:ca:73:5d:a5:a7:a9:73:d1:e0:f6:89:a7:37:a1:af:1f:7b: 55:a1:4b:3c:bd:58:43:ca:e1:6f:53:85:76:3c:48:3f:75:1f: f3:53:83:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWK94xpWGT6vUygHQDUR2QWf+nnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA5MTEwOTU1MDFaFw0yNTA5MTAxMDAwMDFaMDMxMTAvBgNV BAMTKEI0NzU0QzM3NjZFMjA5OEREOTJBOUZGN0REQTk3QUZENjE2OTUwOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2SYlh/Jc4EKEqTWZ4JR+YQ2nD efA2m6k3TfeyI2y9IY8mZVcQ0+lHfpfedFtMQqoI0IERL7ZiBG35jSj8oE0aMHBt X6UcCpjw1gmIKjbPRJMtlkyIIDihpTuRp3CnJMsVpxldISuqpk3iHdqneH2791+X 1LliytjUn+wVc1GQLN8SUDti9/8AyXGAoMwngxa9b/+gSNMMdD9d25OtgF3PtY8r WJjAGVSJiHSurckarAsx1tlxpuGTOVMV2uW9QkKPXgqdgPH7iz2FgokWMeaPKCY3 3ZMqqDHPnk0U28x0ezw8HhKO6yuuClynTTUTpok1OBdsoTrOuCCt0dY2If/JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtHVMN2biCY3ZKp/33al6/WFpUI8wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypoSMA0GCSqG SIb3DQEBCwUAA4IBAQCXJo6fLxT6GB8A2spL5IQPQxUxSU4saETtDenj9v+PEVcE ZP1OK74pOaA8Rp/0L1tyrrUBg4d4Zg/OxJYOQK1Kf3Rko2A8EJJi8zcXx9miKixx /1BA5H6UFGLaC+eZApihnA9a5UVEyJPqS8IY3O3zA8uiUliGRPtqpID6HknZVhz8 MnW+ElqKAb5JgMLMeD9oVQMgU74Cw/K3YYYn0J+VG9OZw6RMdfZMm/8kH6axMO6R RizobRGs0xvJVcDhqC0GyNabT1AM679RoM8pxz8meHfGNDaXxTrrynNdpaepc9Hg 9omnN6GvH3tVoUs8vVhDyuFvU4V2PEg/dR/zU4Ps -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org