$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: AZYWnWHqBCGHJRLKFO9Njehu+oUKJhlVA5oo3KzHvlc= Subject key identifier: FC:78:2A:B0:D5:FF:B3:0A:F4:C3:28:40:93:C3:0E:24:DE:11:75:48 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 38B9D26CA4B3D7F2F33002A67B57E5CDCFE7D0C9 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32342e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:45 +0000 ROA not before: Wed 20 Sep 2023 10:55:45 +0000 ROA not after: Wed 18 Sep 2024 11:00:45 +0000 asID: 4434 IP address blocks: 202.154.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b9:d2:6c:a4:b3:d7:f2:f3:30:02:a6:7b:57:e5:cd:cf:e7:d0:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:45 2023 GMT Not After : Sep 18 11:00:45 2024 GMT Subject: CN=FC782AB0D5FFB30AF4C3284093C30E24DE117548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e9:a8:f2:0a:2c:74:88:57:e2:be:2e:8e:63: 8a:5e:c7:cb:bb:be:7c:8d:4e:ae:fe:b5:a5:82:91: 8c:d3:c6:70:da:d1:8e:20:3a:88:f4:37:d0:33:87: f4:70:53:c7:cf:74:28:40:2e:58:dc:7f:33:2c:39: ee:1b:44:7f:77:fd:c8:0f:6f:bb:5b:bd:81:c4:80: f4:33:51:64:03:57:48:fb:8a:03:10:74:5a:89:94: e5:a4:a9:37:1d:87:30:c0:9c:0d:f1:21:d7:d3:49: 63:ad:43:2d:3c:2c:ca:3a:d3:04:e8:cb:7f:0f:59: 86:ec:cf:88:00:64:b3:12:49:a2:af:54:89:cc:55: ef:b5:6b:f2:f2:a9:cb:a9:89:0b:0e:b1:4d:fd:d2: 95:a1:93:b2:b2:2c:c9:c1:b2:d9:e6:30:cd:74:6c: df:05:d4:ac:3f:37:d6:24:91:7d:07:d1:a5:ef:eb: 51:e7:20:da:46:4f:e6:04:29:32:61:cc:05:a5:b8: 69:4e:d7:5b:a5:7f:02:15:24:78:59:c4:15:23:ea: 84:42:b8:57:92:19:18:98:9f:46:2b:dd:73:ec:d9: 96:fd:b1:58:86:81:84:7a:0c:16:09:91:70:7e:20: 12:6a:e7:ad:6d:57:a9:a3:ea:8d:13:e9:98:8b:c2: e5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:78:2A:B0:D5:FF:B3:0A:F4:C3:28:40:93:C3:0E:24:DE:11:75:48 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.24.0/23 Signature Algorithm: sha256WithRSAEncryption 61:b3:6d:8a:9e:5b:88:9f:bc:e6:0f:f4:39:df:38:f7:34:7a: 63:56:04:2b:89:a6:17:f4:48:b2:9d:4f:81:c5:a8:69:7f:a6: be:42:cb:f6:73:cd:f0:bd:97:30:21:32:0f:25:79:e4:70:62: 9b:e3:41:43:12:61:fc:bf:41:87:18:84:d1:6a:69:97:43:9d: d2:b0:03:28:99:be:a0:e2:f2:00:0e:bc:0f:cc:99:c5:4d:8b: bb:ec:ba:be:5a:bb:4f:88:78:31:37:5a:ac:15:38:22:6e:dd: 0a:a6:eb:bf:4e:a7:76:8e:35:e4:7a:bf:f7:b1:00:e2:06:68: c3:34:22:21:75:e9:32:e9:12:d6:68:5e:d7:78:0d:c0:e0:f5: 83:e5:63:09:03:d7:9b:aa:d5:ee:af:80:99:b5:3a:8d:25:9e: f7:0c:32:b1:8c:7e:12:df:94:71:c4:b5:d1:bc:36:2c:34:63: 91:7e:db:fc:17:15:b2:ef:c3:e6:0f:29:1e:c3:ed:44:12:e6: eb:4d:cd:b3:1c:1a:88:af:4a:f6:61:75:1c:6a:53:b8:42:7d: 31:4b:c7:c1:61:38:02:63:fb:db:af:ea:a1:9a:00:1b:cf:71: 83:5f:f0:a5:f5:00:60:73:7f:ec:74:9e:fc:bc:dc:31:51:48: be:91:b6:27 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOLnSbKSz1/LzMAKme1flzc/n0MkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDVaFw0yNDA5MTgxMTAwNDVaMDMxMTAvBgNV BAMTKEZDNzgyQUIwRDVGRkIzMEFGNEMzMjg0MDkzQzMwRTI0REUxMTc1NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo6ajyCix0iFfivi6OY4pex8u7 vnyNTq7+taWCkYzTxnDa0Y4gOoj0N9Azh/RwU8fPdChALljcfzMsOe4bRH93/cgP b7tbvYHEgPQzUWQDV0j7igMQdFqJlOWkqTcdhzDAnA3xIdfTSWOtQy08LMo60wTo y38PWYbsz4gAZLMSSaKvVInMVe+1a/LyqcupiQsOsU390pWhk7KyLMnBstnmMM10 bN8F1Kw/N9YkkX0H0aXv61HnINpGT+YEKTJhzAWluGlO11ulfwIVJHhZxBUj6oRC uFeSGRiYn0Yr3XPs2Zb9sViGgYR6DBYJkXB+IBJq561tV6mj6o0T6ZiLwuUFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU/HgqsNX/swr0wyhAk8MOJN4RdUgwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhgwDQYJKoZIhvcN AQELBQADggEBAGGzbYqeW4ifvOYP9DnfOPc0emNWBCuJphf0SLKdT4HFqGl/pr5C y/ZzzfC9lzAhMg8leeRwYpvjQUMSYfy/QYcYhNFqaZdDndKwAyiZvqDi8gAOvA/M mcVNi7vsur5au0+IeDE3WqwVOCJu3Qqm679Op3aONeR6v/exAOIGaMM0IiF16TLp EtZoXtd4DcDg9YPlYwkD15uq1e6vgJm1Oo0lnvcMMrGMfhLflHHEtdG8Niw0Y5F+ 2/wXFbLvw+YPKR7D7UQS5utNzbMcGoivSvZhdRxqU7hCfTFLx8FhOAJj+9uv6qGa ABvPcYNf8KX1AGBzf+x0nvy83DFRSL6Rtic= -----END CERTIFICATE-----Generated at Sat Jun 22 14:21:50 2024 by rpki-client on console-ams.rpki-client.org