$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32302e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32302e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: COnn7xESKO0oCd8xPHuQc3XR06+vGkwEHgAxDUMmQWc= Subject key identifier: B0:EE:B5:A9:EA:12:F1:E0:62:8E:58:8D:02:FB:8A:65:3A:33:6D:04 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4A80EB430866583F79392F33E8BC37BE4F34970A Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32302e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:44 +0000 ROA not before: Wed 20 Sep 2023 10:55:44 +0000 ROA not after: Wed 18 Sep 2024 11:00:44 +0000 asID: 4434 IP address blocks: 202.154.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:80:eb:43:08:66:58:3f:79:39:2f:33:e8:bc:37:be:4f:34:97:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:44 2023 GMT Not After : Sep 18 11:00:44 2024 GMT Subject: CN=B0EEB5A9EA12F1E0628E588D02FB8A653A336D04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:89:27:20:d2:3d:b3:66:c4:f4:35:ad:f8:29: 68:f5:84:1e:42:ed:33:17:9e:eb:c1:49:a0:b9:64: a9:d8:d8:4f:e2:9d:32:55:fe:a1:98:72:e5:ad:2f: 5c:96:b4:8d:d9:26:37:73:5e:b9:f9:16:ff:30:c4: 3e:e7:38:55:d1:0e:98:92:3a:8d:62:14:4c:f9:05: dc:e6:da:e1:68:7f:fa:4d:1f:45:52:81:86:26:73: 33:9b:d0:63:04:36:59:2e:82:b2:e7:1e:d0:6d:f8: d6:7e:5e:81:de:7d:c6:3d:cd:ff:da:9f:d7:27:19: 38:25:a6:22:0e:95:a4:58:ff:f6:98:e6:09:ba:e7: ed:63:51:7e:a4:48:07:53:d1:0d:3e:8f:38:25:64: ac:29:17:3b:5e:62:63:41:5c:fe:aa:1a:11:6d:dd: 51:26:92:15:dd:fc:a2:cc:9a:ad:e2:00:66:3d:84: 2c:73:66:74:3d:fb:aa:50:4c:e1:6e:cc:da:4f:f7: d5:50:4e:67:e6:21:a8:4f:b7:6f:80:3f:f7:d3:35: 4a:82:ae:3f:b1:3a:34:ef:08:e5:6d:09:3f:d1:03: ee:68:39:2e:85:0d:f9:b0:4c:0c:08:ad:6e:07:bd: 99:a3:42:3d:90:a6:1b:2f:14:16:1a:ae:c0:7f:da: 01:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:EE:B5:A9:EA:12:F1:E0:62:8E:58:8D:02:FB:8A:65:3A:33:6D:04 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32302e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.20.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:4e:9b:cf:c5:58:f3:22:91:3a:70:02:9c:4f:ef:94:80:70: 79:29:b7:8a:8d:41:82:a4:99:aa:05:9b:d4:9a:a1:48:38:44: 02:7c:59:90:c7:b1:7c:3d:2d:01:b1:64:f8:a3:56:91:c0:78: 18:84:98:b4:13:5a:b5:6c:f1:94:18:36:15:ff:4e:a9:a8:df: 4e:49:f0:ae:c2:e7:db:51:74:7b:7f:29:ea:e7:05:83:97:0b: 7c:84:b5:e5:0b:67:9d:52:b7:42:30:61:d6:ea:9e:c0:61:9d: 29:e0:c6:8e:11:ea:02:18:82:be:5b:aa:b6:19:61:8d:93:84: 36:5f:4d:80:c3:08:46:52:3f:9e:93:dc:56:d1:13:41:78:4f: 91:25:08:94:8e:c6:97:cf:81:08:fb:ca:7b:d8:de:8d:af:0a: a3:ef:c3:96:48:a4:d6:a7:a6:4b:ca:aa:cc:1c:2b:df:ed:ca: 62:60:c0:8e:7e:9e:cf:5a:32:5d:d4:25:ef:f4:3f:79:f2:d4: 2e:1f:15:4e:29:a1:d2:00:3c:7b:b9:f8:39:e0:a8:de:7a:5c: af:6a:0b:aa:72:84:51:47:b1:57:c8:fb:28:62:0c:cb:1c:d7: 09:01:97:90:89:0b:a1:04:1c:c3:64:05:57:6b:db:b8:9e:5d: b1:ef:d9:0b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSoDrQwhmWD95OS8z6Lw3vk80lwowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDRaFw0yNDA5MTgxMTAwNDRaMDMxMTAvBgNV BAMTKEIwRUVCNUE5RUExMkYxRTA2MjhFNTg4RDAyRkI4QTY1M0EzMzZEMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMiScg0j2zZsT0Na34KWj1hB5C 7TMXnuvBSaC5ZKnY2E/inTJV/qGYcuWtL1yWtI3ZJjdzXrn5Fv8wxD7nOFXRDpiS Oo1iFEz5Bdzm2uFof/pNH0VSgYYmczOb0GMENlkugrLnHtBt+NZ+XoHefcY9zf/a n9cnGTglpiIOlaRY//aY5gm65+1jUX6kSAdT0Q0+jzglZKwpFzteYmNBXP6qGhFt 3VEmkhXd/KLMmq3iAGY9hCxzZnQ9+6pQTOFuzNpP99VQTmfmIahPt2+AP/fTNUqC rj+xOjTvCOVtCT/RA+5oOS6FDfmwTAwIrW4HvZmjQj2QphsvFBYarsB/2gFzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUsO61qeoS8eBijliNAvuKZTozbQQwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhQwDQYJKoZIhvcN AQELBQADggEBABpOm8/FWPMikTpwApxP75SAcHkpt4qNQYKkmaoFm9SaoUg4RAJ8 WZDHsXw9LQGxZPijVpHAeBiEmLQTWrVs8ZQYNhX/Tqmo305J8K7C59tRdHt/Kern BYOXC3yEteULZ51St0IwYdbqnsBhnSngxo4R6gIYgr5bqrYZYY2ThDZfTYDDCEZS P56T3FbRE0F4T5ElCJSOxpfPgQj7ynvY3o2vCqPvw5ZIpNanpkvKqswcK9/tymJg wI5+ns9aMl3UJe/0P3ny1C4fFU4podIAPHu5+DngqN56XK9qC6pyhFFHsVfI+yhi DMsc1wkBl5CJC6EEHMNkBVdr27ieXbHv2Qs= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org