$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32322e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32322e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: atQkuzWjUpqYWHaWZbP+/n/sslqGTtCz6j9yy2b2BFo= Subject key identifier: 7F:0D:5B:F6:78:9E:C5:6A:8F:F5:63:F3:4C:91:E9:11:8E:78:00:87 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 62D4C15332971D429B00670C606889A41797C032 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32322e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:51 +0000 ROA not before: Wed 21 Aug 2024 10:55:51 +0000 ROA not after: Wed 20 Aug 2025 11:00:51 +0000 asID: 4434 IP address blocks: 202.154.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:d4:c1:53:32:97:1d:42:9b:00:67:0c:60:68:89:a4:17:97:c0:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:51 2024 GMT Not After : Aug 20 11:00:51 2025 GMT Subject: CN=7F0D5BF6789EC56A8FF563F34C91E9118E780087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:54:62:8d:ed:e6:6e:d3:55:85:f4:40:10:ca: 8b:94:10:9b:27:b5:11:16:ff:6a:5a:4f:3c:8a:63: 44:33:04:10:3f:a8:69:bb:c5:c3:51:0d:55:eb:94: b9:64:69:34:02:46:3b:4d:a6:53:58:93:a3:7c:13: b0:e1:29:2e:4e:25:78:79:d0:80:02:c1:6e:6f:fb: 9d:95:56:b8:6d:54:2d:91:d4:5e:ff:bb:39:65:ce: 99:28:af:4e:73:27:b9:8e:67:6f:11:bb:3b:16:a6: 30:9b:6a:36:ba:ce:ff:53:eb:3b:f4:d0:11:26:a5: f6:ee:cd:9e:74:4f:70:65:b0:3c:4c:63:8d:23:f5: 9d:f3:87:99:47:9b:f7:87:e6:0e:aa:4c:13:b2:5c: 98:3f:31:b2:de:3d:81:19:aa:2c:54:18:5d:01:75: 03:98:37:64:8c:25:71:20:e3:c0:07:ed:47:11:aa: 15:d4:a4:41:99:bc:50:ed:fa:73:35:db:bc:53:5f: b0:99:58:93:b7:45:e0:4e:ab:d1:d9:ea:5f:71:bc: 79:92:a9:54:4b:a9:7c:64:87:de:67:32:b4:d2:14: 44:86:31:e3:ff:a2:cf:b5:bb:b2:2a:ba:8d:8e:10: d9:86:83:bb:22:f6:33:89:34:bf:76:f3:54:89:b4: c4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0D:5B:F6:78:9E:C5:6A:8F:F5:63:F3:4C:91:E9:11:8E:78:00:87 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32322e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.22.0/23 Signature Algorithm: sha256WithRSAEncryption 79:5b:26:d9:db:47:24:1e:e9:29:4e:59:20:c7:b9:c1:2c:55: 0b:b9:f0:4d:fd:82:d5:e5:15:a9:21:9a:f3:d2:13:28:7a:ba: 6e:c9:e2:00:19:3a:27:9e:56:23:d4:78:5c:f9:fb:d2:7d:99: c5:23:d5:1e:d4:c5:82:ad:e1:74:43:ef:76:44:ba:c3:57:23: 61:00:ed:a3:eb:f1:99:49:4b:00:b5:2c:d3:6d:66:f5:fe:c4: eb:0e:6f:d5:d4:96:f4:df:5b:6f:d7:d5:bc:4a:30:0f:4c:1f: 3e:74:a7:8e:6c:08:ce:c5:df:23:36:cf:14:f2:0c:3e:63:de: 31:a2:9f:81:f9:6d:6f:8a:75:04:88:d5:3b:8d:c4:d1:75:9b: 35:9e:c6:18:7f:8a:fe:89:4c:5d:c8:66:d8:64:44:d2:41:ed: 91:06:23:7f:5e:b3:11:8d:b5:0c:c7:34:a5:0a:ec:63:12:87: 27:48:6f:df:12:96:1b:af:b6:2b:1e:a1:ce:f1:ff:c9:80:2a: 50:fc:11:a0:68:4b:89:2c:b8:f8:26:12:ee:25:b7:98:95:72: c4:3d:d8:ad:af:61:a7:55:a3:49:24:3b:a6:bd:76:88:91:52: a9:cc:c7:d3:a7:63:3c:3c:f3:45:5d:1c:5b:90:c3:37:a4:3f: 10:84:29:0c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYtTBUzKXHUKbAGcMYGiJpBeXwDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTFaFw0yNTA4MjAxMTAwNTFaMDMxMTAvBgNV BAMTKDdGMEQ1QkY2Nzg5RUM1NkE4RkY1NjNGMzRDOTFFOTExOEU3ODAwODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBVGKN7eZu01WF9EAQyouUEJsn tREW/2paTzyKY0QzBBA/qGm7xcNRDVXrlLlkaTQCRjtNplNYk6N8E7DhKS5OJXh5 0IACwW5v+52VVrhtVC2R1F7/uzllzpkor05zJ7mOZ28RuzsWpjCbaja6zv9T6zv0 0BEmpfbuzZ50T3BlsDxMY40j9Z3zh5lHm/eH5g6qTBOyXJg/MbLePYEZqixUGF0B dQOYN2SMJXEg48AH7UcRqhXUpEGZvFDt+nM127xTX7CZWJO3ReBOq9HZ6l9xvHmS qVRLqXxkh95nMrTSFESGMeP/os+1u7Iquo2OENmGg7si9jOJNL9281SJtMTVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUfw1b9niexWqP9WPzTJHpEY54AIcwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhYwDQYJKoZIhvcN AQELBQADggEBAHlbJtnbRyQe6SlOWSDHucEsVQu58E39gtXlFakhmvPSEyh6um7J 4gAZOieeViPUeFz5+9J9mcUj1R7UxYKt4XRD73ZEusNXI2EA7aPr8ZlJSwC1LNNt ZvX+xOsOb9XUlvTfW2/X1bxKMA9MHz50p45sCM7F3yM2zxTyDD5j3jGin4H5bW+K dQSI1TuNxNF1mzWexhh/iv6JTF3IZthkRNJB7ZEGI39esxGNtQzHNKUK7GMShydI b98Slhuvtiseoc7x/8mAKlD8EaBoS4ksuPgmEu4lt5iVcsQ92K2vYadVo0kkO6a9 doiRUqnMx9OnYzw880VdHFuQwzekPxCEKQw= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org