$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e322e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e322e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: TNbFyl/jlwsVUrXlA5IzRiHJGBMzTu3toN7/vwLuJJc= Subject key identifier: 41:30:CB:21:EE:08:21:72:AA:D8:C1:BD:9E:9D:B5:8B:C6:66:77:3C Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 144EB0D08E2BF0C17449CD893C7CBA84639FFC66 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e322e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:52 +0000 ROA not before: Wed 21 Aug 2024 10:55:52 +0000 ROA not after: Wed 20 Aug 2025 11:00:52 +0000 asID: 4434 IP address blocks: 202.154.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:4e:b0:d0:8e:2b:f0:c1:74:49:cd:89:3c:7c:ba:84:63:9f:fc:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:52 2024 GMT Not After : Aug 20 11:00:52 2025 GMT Subject: CN=4130CB21EE082172AAD8C1BD9E9DB58BC666773C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:78:f5:23:ba:94:cf:22:16:85:93:df:86:44: 44:bf:cc:1d:49:3c:c6:26:7d:29:8d:c8:8b:da:a9: 1d:98:ad:1e:2f:7c:97:36:48:54:a4:c3:97:f2:15: 98:d4:51:08:b0:55:9e:d7:ce:53:96:62:27:87:cd: 4f:7d:73:77:8e:15:11:68:30:7d:c6:67:2a:46:f3: 9e:44:ca:c8:bb:76:95:7d:5f:d7:9f:1c:ef:7f:92: d7:fe:dd:c1:44:2f:76:5a:63:d0:b8:89:aa:14:24: f8:49:64:19:22:e5:7c:c4:a7:d2:45:e2:5d:89:da: 62:0e:19:af:a8:37:4a:fe:f3:52:0f:5e:f2:b5:ed: e1:87:c1:82:19:d6:9a:b4:fd:6d:1a:cf:e4:7f:5d: 63:5b:46:71:40:7f:de:64:a5:f1:5b:83:d1:55:54: b3:b9:28:c3:6a:e5:24:16:92:1d:54:a0:7f:cd:7d: b3:e5:bb:10:05:79:26:51:44:2d:fe:b6:ed:8c:9f: 70:02:3a:a1:21:f3:0e:6c:ac:68:1b:34:90:f5:36: 05:02:cc:55:e9:ae:8b:82:6f:0b:b0:fd:42:b6:82: e2:fc:e1:0b:63:bf:21:df:83:fb:19:39:c0:01:99: 6d:fc:13:df:df:f1:8b:d0:86:f8:9d:80:57:37:a7: 82:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:30:CB:21:EE:08:21:72:AA:D8:C1:BD:9E:9D:B5:8B:C6:66:77:3C X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e322e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.2.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:53:8e:71:e0:bc:06:a6:f2:27:4d:92:b4:bf:d9:b6:c3:4c: be:6c:ef:d3:97:d8:d8:11:49:e8:41:cc:c6:e5:75:54:aa:50: 63:cc:4a:60:cd:70:27:43:d3:fa:22:be:94:14:47:40:72:82: 55:df:ee:ec:fc:a8:0f:ed:35:35:aa:43:f8:f7:b7:49:d6:9f: 6d:0d:ed:88:2c:18:cb:64:b1:31:18:f0:19:44:0f:55:71:c3: 3f:39:cd:08:b4:16:68:6d:ff:f8:33:87:83:27:37:ce:b0:2b: e5:26:cd:90:ac:09:4f:25:e5:ad:37:0b:94:17:72:33:63:62: 09:9b:79:5e:fe:8e:28:e9:28:e2:03:c4:41:bb:fd:60:c9:08: ff:6c:8b:2a:e3:fd:7b:d8:79:e6:f6:01:54:96:7b:9a:3c:f3: ac:39:d8:16:60:ae:2d:85:f1:69:24:f4:8b:35:8d:e3:db:1c: 84:5a:ea:2a:03:ec:b4:20:5d:74:60:6e:72:2d:48:7e:6c:fb: f4:32:5c:f1:61:bd:10:27:3f:47:e6:e4:02:55:2c:47:77:c6: 5d:b0:3b:05:a5:f8:fe:63:1c:33:4a:19:c0:b2:dc:7b:5b:9f: a3:57:8c:12:b9:2a:0d:e3:7b:9a:f6:a3:d0:1c:b5:b1:ff:d3: 2f:73:f5:41 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUFE6w0I4r8MF0Sc2JPHy6hGOf/GYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTJaFw0yNTA4MjAxMTAwNTJaMDMxMTAvBgNV BAMTKDQxMzBDQjIxRUUwODIxNzJBQUQ4QzFCRDlFOURCNThCQzY2Njc3M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2ePUjupTPIhaFk9+GRES/zB1J PMYmfSmNyIvaqR2YrR4vfJc2SFSkw5fyFZjUUQiwVZ7XzlOWYieHzU99c3eOFRFo MH3GZypG855Eysi7dpV9X9efHO9/ktf+3cFEL3ZaY9C4iaoUJPhJZBki5XzEp9JF 4l2J2mIOGa+oN0r+81IPXvK17eGHwYIZ1pq0/W0az+R/XWNbRnFAf95kpfFbg9FV VLO5KMNq5SQWkh1UoH/NfbPluxAFeSZRRC3+tu2Mn3ACOqEh8w5srGgbNJD1NgUC zFXprouCbwuw/UK2guL84QtjvyHfg/sZOcABmW38E9/f8YvQhvidgFc3p4LrAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUQTDLIe4IIXKq2MG9np21i8ZmdzwwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTMyMmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmgIwDQYJKoZIhvcNAQEL BQADggEBAH1TjnHgvAam8idNkrS/2bbDTL5s79OX2NgRSehBzMbldVSqUGPMSmDN cCdD0/oivpQUR0ByglXf7uz8qA/tNTWqQ/j3t0nWn20N7YgsGMtksTEY8BlED1Vx wz85zQi0Fmht//gzh4MnN86wK+UmzZCsCU8l5a03C5QXcjNjYgmbeV7+jijpKOID xEG7/WDJCP9siyrj/XvYeeb2AVSWe5o886w52BZgri2F8Wkk9Is1jePbHIRa6ioD 7LQgXXRgbnItSH5s+/QyXPFhvRAnP0fm5AJVLEd3xl2wOwWl+P5jHDNKGcCy3Htb n6NXjBK5Kg3je5r2o9ActbH/0y9z9UE= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org