$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e322e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e322e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: pl8RaNRuQrUUvI13vj1p99KOujj4kZCffsCuq/8eoAs= Subject key identifier: C2:16:67:D7:94:6B:5C:BB:F3:46:81:20:30:73:84:9A:1E:E9:26:45 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 0211B2914A5EE922EEA5A6A24B38B7FDB0E6DC15 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e322e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:43 +0000 ROA not before: Wed 20 Sep 2023 10:55:43 +0000 ROA not after: Wed 18 Sep 2024 11:00:43 +0000 asID: 4434 IP address blocks: 202.154.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:11:b2:91:4a:5e:e9:22:ee:a5:a6:a2:4b:38:b7:fd:b0:e6:dc:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:43 2023 GMT Not After : Sep 18 11:00:43 2024 GMT Subject: CN=C21667D7946B5CBBF34681203073849A1EE92645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1a:09:66:f3:fc:11:53:58:0a:23:cd:2c:84: be:71:5f:d8:9b:c4:51:7c:af:f5:e2:b1:53:d2:3d: c3:3d:c7:1b:d2:7f:63:c0:dc:75:27:be:b5:ec:fa: bc:d6:28:c8:49:1c:eb:11:96:a4:48:f1:05:d5:66: 9c:c1:f6:2a:a6:91:99:fb:b9:70:5a:7d:da:b6:e5: 87:46:04:5d:d5:76:88:51:04:77:96:83:7b:51:fe: 56:4e:cb:e0:af:e3:0d:6a:56:cd:29:6d:27:c5:ce: dc:5b:ff:91:33:b1:e2:d3:d3:89:30:c1:92:68:27: a1:89:c1:5a:1e:23:85:ed:94:67:b2:10:06:bf:c2: 22:91:3b:3b:66:95:3d:18:e0:fb:1f:b7:86:f3:6f: d3:34:d6:9f:70:14:61:a6:11:1f:b9:44:de:51:db: 4a:7e:61:86:a2:11:62:7b:a9:bc:97:f5:77:15:44: 8c:1c:b4:c9:f1:50:07:d3:f9:93:66:3b:bc:4c:68: b2:fe:ed:c3:b8:44:a6:a5:4a:34:5e:05:df:6f:4c: 3f:2f:a6:cc:79:b7:ac:62:cf:63:89:e1:83:20:1b: b6:f9:1d:76:57:5f:54:fb:6a:bd:45:0b:97:a0:c5: 0a:c9:7f:02:12:4a:fa:59:6e:e6:12:57:e0:1f:1d: f0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:16:67:D7:94:6B:5C:BB:F3:46:81:20:30:73:84:9A:1E:E9:26:45 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e322e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.2.0/23 Signature Algorithm: sha256WithRSAEncryption 85:7e:ef:5f:aa:f9:f3:3d:84:7e:83:a7:00:76:ce:04:f9:0a: 92:1f:4c:51:09:9a:b1:d9:bf:e7:07:6b:06:26:64:da:52:34: 2c:09:5f:bb:c0:a1:50:c1:28:0e:f1:00:81:a4:e1:65:d0:17: c4:e6:b5:af:0b:40:5e:38:70:e5:b6:8a:9f:7e:85:9e:4b:a4: d7:6a:95:81:d1:29:9b:32:5a:5d:cd:ab:ae:d7:2a:90:20:d6: 5f:03:c9:3d:8d:84:37:31:72:09:05:92:af:96:d3:80:02:11: ef:9d:c9:71:46:fb:11:58:69:09:a7:e3:86:54:7d:c9:5b:7d: 96:00:44:eb:d9:b3:1f:1e:1c:b9:e1:08:a1:37:d4:44:8c:d8: df:d1:43:a1:a1:07:08:0a:50:94:22:9b:3b:d5:4e:ef:c5:72: c0:b9:d9:2e:66:6c:0f:65:8b:90:c3:f2:ae:a8:0e:79:6f:51: e5:98:15:65:6e:1b:66:d4:80:22:89:71:a7:e7:82:34:d6:8a: cf:3f:33:cb:06:e9:71:03:98:c6:cf:bf:10:a0:cd:7e:cd:52: 7c:e8:18:a2:17:d1:e9:64:2f:10:ca:7f:c8:91:47:fc:fc:68: 8d:e7:90:26:55:1b:e6:c2:22:89:f9:9a:2c:aa:a8:e7:5d:1c: c0:14:09:00 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUAhGykUpe6SLupaaiSzi3/bDm3BUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDNaFw0yNDA5MTgxMTAwNDNaMDMxMTAvBgNV BAMTKEMyMTY2N0Q3OTQ2QjVDQkJGMzQ2ODEyMDMwNzM4NDlBMUVFOTI2NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzGglm8/wRU1gKI80shL5xX9ib xFF8r/XisVPSPcM9xxvSf2PA3HUnvrXs+rzWKMhJHOsRlqRI8QXVZpzB9iqmkZn7 uXBafdq25YdGBF3VdohRBHeWg3tR/lZOy+Cv4w1qVs0pbSfFztxb/5EzseLT04kw wZJoJ6GJwVoeI4XtlGeyEAa/wiKROztmlT0Y4Psft4bzb9M01p9wFGGmER+5RN5R 20p+YYaiEWJ7qbyX9XcVRIwctMnxUAfT+ZNmO7xMaLL+7cO4RKalSjReBd9vTD8v psx5t6xiz2OJ4YMgG7b5HXZXX1T7ar1FC5egxQrJfwISSvpZbuYSV+AfHfCZAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUwhZn15RrXLvzRoEgMHOEmh7pJkUwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTMyMmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmgIwDQYJKoZIhvcNAQEL BQADggEBAIV+71+q+fM9hH6DpwB2zgT5CpIfTFEJmrHZv+cHawYmZNpSNCwJX7vA oVDBKA7xAIGk4WXQF8Tmta8LQF44cOW2ip9+hZ5LpNdqlYHRKZsyWl3Nq67XKpAg 1l8DyT2NhDcxcgkFkq+W04ACEe+dyXFG+xFYaQmn44ZUfclbfZYAROvZsx8eHLnh CKE31ESM2N/RQ6GhBwgKUJQimzvVTu/FcsC52S5mbA9li5DD8q6oDnlvUeWYFWVu G2bUgCKJcafngjTWis8/M8sG6XEDmMbPvxCgzX7NUnzoGKIX0elkLxDKf8iRR/z8 aI3nkCZVG+bCIon5miyqqOddHMAUCQA= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org