$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: lWcf/sdRi/TIZfL21MmwI7pBI6Duuh33nEdmgJ3lTqw= Subject key identifier: DB:43:F0:A4:CF:55:01:E8:6C:AA:AF:EF:A3:8C:37:CB:AE:61:DB:83 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 30A9DCED130CD5C8A4B06B42FCA725DA313970B7 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32342e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:54 +0000 ROA not before: Wed 21 Aug 2024 10:55:54 +0000 ROA not after: Wed 20 Aug 2025 11:00:54 +0000 asID: 4434 IP address blocks: 202.154.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:a9:dc:ed:13:0c:d5:c8:a4:b0:6b:42:fc:a7:25:da:31:39:70:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:54 2024 GMT Not After : Aug 20 11:00:54 2025 GMT Subject: CN=DB43F0A4CF5501E86CAAAFEFA38C37CBAE61DB83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:30:ba:85:c3:bc:3f:59:f4:d9:23:c6:4f:cf: b5:48:a0:ee:7b:6c:0c:51:df:3d:29:a3:26:b2:35: f7:13:47:2f:63:8f:15:8f:a8:20:58:9e:67:7d:8d: 2b:f2:17:29:ac:b1:ee:13:65:50:05:d1:b6:cc:7f: dd:f0:b1:fd:30:85:13:7f:a8:c6:4f:85:30:0b:e6: 02:d0:72:a0:b4:67:87:31:65:b6:35:1d:6f:be:e0: 01:b6:dc:54:b8:50:a8:16:f3:2b:dd:bc:f0:74:1d: 39:6f:45:dd:62:53:6c:44:d9:f2:9c:13:a1:0d:d6: 65:c6:2d:cb:98:e4:26:aa:cb:9b:ea:51:fd:fa:16: db:e9:64:40:51:28:29:fb:d8:9f:09:9f:66:63:fa: 5d:f5:21:39:7d:8f:f1:ea:c1:1e:d9:62:e8:75:a4: 97:27:3b:b9:18:f8:8d:df:2d:47:2d:dc:cb:82:5e: 63:fb:88:50:1d:76:f4:0e:a6:dc:a7:c8:cb:45:4c: 3f:da:87:21:b7:84:87:a8:49:b0:c3:0e:19:19:a8: f7:9c:ef:fa:fe:68:b5:3a:b1:ba:62:8f:5f:a2:ea: 26:6a:ec:55:fe:41:ab:27:c0:d7:24:44:3b:10:3b: 75:27:ae:b9:cc:65:26:b1:b3:65:ac:38:f5:03:e7: 17:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:43:F0:A4:CF:55:01:E8:6C:AA:AF:EF:A3:8C:37:CB:AE:61:DB:83 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.24.0/23 Signature Algorithm: sha256WithRSAEncryption 45:62:28:ee:55:ca:4d:d2:34:6d:b1:79:8e:0a:b1:05:9b:f9: 7f:20:47:99:77:57:2a:08:b4:66:01:ae:e9:98:0f:6e:e3:10: 67:cf:6a:a6:a6:16:05:39:4c:c1:ea:6b:44:56:e5:bb:7c:3d: 86:e9:3e:ee:4e:f7:ff:8c:67:b4:4a:e9:13:dd:8e:d8:6d:4b: 2d:df:13:a1:91:30:14:be:d0:ab:96:8a:89:5b:1e:5b:f5:d1: a0:63:39:40:73:94:f4:a1:46:22:8d:30:89:73:c3:ee:1f:50: f1:30:86:5d:54:52:b1:8a:2f:cc:d1:13:82:ee:c9:c7:69:ed: 45:5b:08:2b:a7:04:f1:4a:95:da:43:2f:ac:74:8a:a3:5e:5e: 88:df:92:5d:a5:60:c1:63:9b:62:e4:61:c7:27:42:48:9b:91: 9f:e8:02:df:6e:93:2b:82:ca:c4:48:da:21:6f:a1:b5:0e:86: 0b:d2:3b:83:3f:9c:44:1d:1d:11:21:cb:7c:97:1e:e1:ec:d7: ea:f0:85:2e:a2:38:05:c1:f9:78:7b:30:5c:b2:01:25:07:1f: de:50:e6:c8:18:62:d3:c2:7b:b0:75:0d:a0:ba:74:af:6f:b5: 7b:59:95:5c:5a:17:e1:6e:3c:7b:33:fe:56:41:45:4a:d3:cb: ce:8f:c6:28 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMKnc7RMM1ciksGtC/Kcl2jE5cLcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTRaFw0yNTA4MjAxMTAwNTRaMDMxMTAvBgNV BAMTKERCNDNGMEE0Q0Y1NTAxRTg2Q0FBQUZFRkEzOEMzN0NCQUU2MURCODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0MLqFw7w/WfTZI8ZPz7VIoO57 bAxR3z0poyayNfcTRy9jjxWPqCBYnmd9jSvyFymsse4TZVAF0bbMf93wsf0whRN/ qMZPhTAL5gLQcqC0Z4cxZbY1HW++4AG23FS4UKgW8yvdvPB0HTlvRd1iU2xE2fKc E6EN1mXGLcuY5Caqy5vqUf36FtvpZEBRKCn72J8Jn2Zj+l31ITl9j/HqwR7ZYuh1 pJcnO7kY+I3fLUct3MuCXmP7iFAddvQOptynyMtFTD/ahyG3hIeoSbDDDhkZqPec 7/r+aLU6sbpij1+i6iZq7FX+QasnwNckRDsQO3UnrrnMZSaxs2WsOPUD5xeBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU20PwpM9VAehsqq/vo4w3y65h24MwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhgwDQYJKoZIhvcN AQELBQADggEBAEViKO5Vyk3SNG2xeY4KsQWb+X8gR5l3VyoItGYBrumYD27jEGfP aqamFgU5TMHqa0RW5bt8PYbpPu5O9/+MZ7RK6RPdjthtSy3fE6GRMBS+0KuWiolb Hlv10aBjOUBzlPShRiKNMIlzw+4fUPEwhl1UUrGKL8zRE4Luycdp7UVbCCunBPFK ldpDL6x0iqNeXojfkl2lYMFjm2LkYccnQkibkZ/oAt9ukyuCysRI2iFvobUOhgvS O4M/nEQdHREhy3yXHuHs1+rwhS6iOAXB+Xh7MFyyASUHH95Q5sgYYtPCe7B1DaC6 dK9vtXtZlVxaF+FuPHsz/lZBRUrTy86Pxig= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org