$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32302e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32302e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: KYuQfo2TBNZCzSJM5H+eAp7WMKysBepp+H9k7RnneX8= Subject key identifier: 29:99:22:34:AF:49:DB:AD:26:8D:24:63:6C:EE:63:DC:C0:55:A6:15 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 7D5D369DBD30ED033813999D4D4531ED82EF9DA1 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32302e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:53 +0000 ROA not before: Wed 21 Aug 2024 10:55:53 +0000 ROA not after: Wed 20 Aug 2025 11:00:53 +0000 asID: 4434 IP address blocks: 202.154.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:5d:36:9d:bd:30:ed:03:38:13:99:9d:4d:45:31:ed:82:ef:9d:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:53 2024 GMT Not After : Aug 20 11:00:53 2025 GMT Subject: CN=29992234AF49DBAD268D24636CEE63DCC055A615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0e:ed:16:d7:a1:e8:7b:89:de:02:60:3f:ed: 5d:51:a5:3d:a8:4b:50:08:79:08:e4:9c:03:1c:c5: 54:1f:12:0f:e8:55:f2:8c:70:ca:85:61:ed:7a:a7: 41:6f:b3:5e:bc:35:36:a9:c3:0e:86:30:64:cc:26: 27:bf:ab:1c:a9:ae:04:59:5d:01:4f:ca:70:ce:ba: 36:e2:76:b2:bc:90:1d:23:07:7a:b4:31:ea:8e:46: 79:66:39:cb:1b:59:b0:9e:4b:ff:93:37:0e:b0:6e: 39:52:fc:39:6c:f6:78:76:8c:25:46:d3:85:d9:52: 68:52:06:86:ac:92:7f:36:9a:eb:b4:0c:e3:af:f2: 48:fd:e0:19:e5:07:c8:ce:9f:11:b3:c7:2e:78:b8: b7:aa:9c:af:40:42:c2:d3:f0:6d:9a:cd:97:fb:a6: 60:18:f5:9f:08:d2:7a:8a:46:4b:57:46:00:47:1b: 5f:47:35:96:35:77:9b:e9:29:95:f1:dd:1c:12:0c: 56:43:75:2b:57:d7:ec:15:84:75:4a:1d:ac:97:36: b4:c9:d0:4a:e6:d3:b8:fb:47:26:94:04:b5:3f:d3: aa:c4:71:a5:db:a2:ea:5d:38:46:4e:85:b1:d5:89: 8c:a9:96:74:a9:e7:5c:0a:c3:4f:b1:f6:4d:6f:b0: 56:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:99:22:34:AF:49:DB:AD:26:8D:24:63:6C:EE:63:DC:C0:55:A6:15 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32302e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.20.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:bd:52:12:d1:98:f3:80:30:42:80:d2:39:1e:ca:bb:d8:02: f4:d6:fc:25:43:94:68:af:11:80:a3:62:19:58:45:ff:5d:16: 33:c5:f5:51:cb:19:a5:c3:15:cf:4a:72:ea:3b:87:2a:4e:c4: 82:41:f9:c3:41:ef:81:d1:79:bb:73:cc:93:eb:d4:ff:77:cc: 9c:d3:12:81:b1:9a:21:eb:c9:a7:13:f1:8e:4c:d7:e2:b6:18: 18:1e:b5:ea:f9:aa:45:a2:39:90:ed:77:90:4c:71:4c:cd:e1: 40:46:d6:73:0d:84:17:5a:dc:1e:2b:f4:1c:6c:6e:35:ce:34: ed:f5:88:58:e8:03:bf:a4:d1:29:8f:90:a4:ba:40:d9:70:3e: fc:96:e5:0b:8f:b1:a1:65:bc:50:a8:4d:76:eb:3a:92:b9:af: 73:fc:1d:8c:e0:8e:e4:ca:2a:17:35:29:99:80:90:03:8f:e7: d0:86:03:f0:99:d7:12:20:2d:76:d1:03:06:41:a8:82:f6:a2: 55:c5:53:8c:ac:3c:c3:00:b6:23:66:a9:31:5a:0e:05:0e:df: 67:9c:85:5a:98:eb:9d:31:da:28:36:bc:5c:65:f3:10:c7:c8: 97:47:fd:a8:d0:45:ec:a3:d8:81:04:91:65:f9:67:8b:81:1f: 13:99:61:3d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUfV02nb0w7QM4E5mdTUUx7YLvnaEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTNaFw0yNTA4MjAxMTAwNTNaMDMxMTAvBgNV BAMTKDI5OTkyMjM0QUY0OURCQUQyNjhEMjQ2MzZDRUU2M0RDQzA1NUE2MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYDu0W16Hoe4neAmA/7V1RpT2o S1AIeQjknAMcxVQfEg/oVfKMcMqFYe16p0Fvs168NTapww6GMGTMJie/qxyprgRZ XQFPynDOujbidrK8kB0jB3q0MeqORnlmOcsbWbCeS/+TNw6wbjlS/Dls9nh2jCVG 04XZUmhSBoaskn82muu0DOOv8kj94BnlB8jOnxGzxy54uLeqnK9AQsLT8G2azZf7 pmAY9Z8I0nqKRktXRgBHG19HNZY1d5vpKZXx3RwSDFZDdStX1+wVhHVKHayXNrTJ 0Erm07j7RyaUBLU/06rEcaXboupdOEZOhbHViYyplnSp51wKw0+x9k1vsFYHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKZkiNK9J260mjSRjbO5j3MBVphUwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhQwDQYJKoZIhvcN AQELBQADggEBAHu9UhLRmPOAMEKA0jkeyrvYAvTW/CVDlGivEYCjYhlYRf9dFjPF 9VHLGaXDFc9Kcuo7hypOxIJB+cNB74HRebtzzJPr1P93zJzTEoGxmiHryacT8Y5M 1+K2GBgeter5qkWiOZDtd5BMcUzN4UBG1nMNhBda3B4r9BxsbjXONO31iFjoA7+k 0SmPkKS6QNlwPvyW5QuPsaFlvFCoTXbrOpK5r3P8HYzgjuTKKhc1KZmAkAOP59CG A/CZ1xIgLXbRAwZBqIL2olXFU4ysPMMAtiNmqTFaDgUO32echVqY650x2ig2vFxl 8xDHyJdH/ajQReyj2IEEkWX5Z4uBHxOZYT0= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org