$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32362e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32362e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: z4eLgoQl1iq0W85zQEp/6/9rBFI7qRaNP8UhdKbnLVo= Subject key identifier: EA:DB:9F:A9:D5:C9:76:3D:21:B5:9F:17:E4:70:79:F1:DC:25:CB:0E Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 1F8E0931106DD81F2EF436B0E929CF88C46A5EC1 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32362e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:54 +0000 ROA not before: Wed 21 Aug 2024 10:55:54 +0000 ROA not after: Wed 20 Aug 2025 11:00:54 +0000 asID: 4434 IP address blocks: 202.154.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 06:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:8e:09:31:10:6d:d8:1f:2e:f4:36:b0:e9:29:cf:88:c4:6a:5e:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:54 2024 GMT Not After : Aug 20 11:00:54 2025 GMT Subject: CN=EADB9FA9D5C9763D21B59F17E47079F1DC25CB0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ab:00:05:1c:9c:f4:29:d0:9e:75:b3:7e:7e: 8f:40:11:94:c3:58:7a:21:62:ca:30:f1:95:ea:d6: 1a:b7:13:cc:60:8f:04:64:ff:a8:a2:ed:f7:02:62: a2:d2:85:62:b0:28:72:0c:b8:a4:db:79:e1:3c:fa: 41:68:a1:0a:24:9f:40:47:4f:39:76:bc:8b:0c:b0: 34:f5:f3:9a:a8:d2:d9:11:93:d5:19:a3:cc:40:fd: 99:b8:2e:61:fb:a0:ee:fb:a6:7f:98:b1:81:09:c1: fd:d7:e7:52:78:4f:39:72:4d:e5:cf:c5:df:3c:bc: 40:c8:ea:35:2f:ab:03:a6:54:52:0d:e1:7e:9d:bf: f4:7b:3e:2e:d3:2f:e8:69:33:39:15:42:6d:a0:25: 01:95:7a:0f:fa:1a:50:53:ed:cf:47:5d:e4:e0:cf: 9c:ad:c4:a3:a5:64:08:f7:79:08:71:95:09:d6:ef: e7:b9:b5:6d:a4:e2:a3:9e:21:15:5a:c1:b4:97:22: 11:57:d0:9a:ea:52:8b:ee:c4:57:94:d7:1e:83:7c: f9:ef:ec:b3:01:a7:13:7a:e7:d8:92:01:c3:71:95: 34:45:dc:7e:df:ea:94:f3:b4:fc:87:c5:45:e5:0d: 4c:09:01:6b:31:38:a1:2a:40:01:3e:82:04:b9:79: 10:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:DB:9F:A9:D5:C9:76:3D:21:B5:9F:17:E4:70:79:F1:DC:25:CB:0E X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32362e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.26.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:12:e8:d9:ad:cc:d4:c0:4b:11:03:d7:36:3c:2c:d0:b6:1f: 1f:7d:4f:23:f8:2d:3c:f3:d3:98:c5:98:a1:6e:19:57:26:65: 51:80:ff:b9:26:70:cb:ff:7b:b3:d7:0c:b6:2c:89:d0:ed:e4: 4b:4c:9c:38:b9:64:31:a2:57:e8:54:fe:43:36:31:47:30:2f: 54:7b:51:33:38:5f:ca:fa:65:94:21:ff:9d:94:b3:2b:66:62: 3b:f5:8f:c0:5a:ab:54:ab:1e:a9:18:fb:4c:d3:7c:e5:d1:07: 16:45:b7:3a:c5:4c:9f:f2:2b:b9:c9:41:9a:f0:cc:e1:34:55: 03:78:bb:30:6d:a9:22:32:9e:44:f3:49:bd:b5:72:71:9d:9f: 31:39:73:25:6c:4c:27:6a:ab:35:39:ee:3c:0d:43:3f:8e:3d: 67:80:ee:2f:89:cb:fb:ea:61:f3:4f:5e:b0:c7:02:22:56:80: e6:da:e5:f1:06:d7:c4:b3:8d:b1:cd:1e:64:b9:93:2e:72:66: 47:bc:dd:2b:22:88:67:9b:75:85:f9:12:c2:53:f3:af:f6:7a: 53:61:93:b7:3e:f6:38:7d:96:b6:c2:50:59:66:c6:de:7a:6a: cd:77:04:d4:c6:b9:69:e8:f7:26:9a:90:78:48:28:b9:57:8d: c1:ef:d7:ab -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUH44JMRBt2B8u9Daw6SnPiMRqXsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTRaFw0yNTA4MjAxMTAwNTRaMDMxMTAvBgNV BAMTKEVBREI5RkE5RDVDOTc2M0QyMUI1OUYxN0U0NzA3OUYxREMyNUNCMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvqwAFHJz0KdCedbN+fo9AEZTD WHohYsow8ZXq1hq3E8xgjwRk/6ii7fcCYqLShWKwKHIMuKTbeeE8+kFooQokn0BH Tzl2vIsMsDT185qo0tkRk9UZo8xA/Zm4LmH7oO77pn+YsYEJwf3X51J4TzlyTeXP xd88vEDI6jUvqwOmVFIN4X6dv/R7Pi7TL+hpMzkVQm2gJQGVeg/6GlBT7c9HXeTg z5ytxKOlZAj3eQhxlQnW7+e5tW2k4qOeIRVawbSXIhFX0JrqUovuxFeU1x6DfPnv 7LMBpxN659iSAcNxlTRF3H7f6pTztPyHxUXlDUwJAWsxOKEqQAE+ggS5eRCFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU6tufqdXJdj0htZ8X5HB58dwlyw4wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhowDQYJKoZIhvcN AQELBQADggEBABoS6NmtzNTASxED1zY8LNC2Hx99TyP4LTzz05jFmKFuGVcmZVGA /7kmcMv/e7PXDLYsidDt5EtMnDi5ZDGiV+hU/kM2MUcwL1R7UTM4X8r6ZZQh/52U sytmYjv1j8Baq1SrHqkY+0zTfOXRBxZFtzrFTJ/yK7nJQZrwzOE0VQN4uzBtqSIy nkTzSb21cnGdnzE5cyVsTCdqqzU57jwNQz+OPWeA7i+Jy/vqYfNPXrDHAiJWgOba 5fEG18SzjbHNHmS5ky5yZke83SsiiGebdYX5EsJT86/2elNhk7c+9jh9lrbCUFlm xt56as13BNTGuWno9yaakHhIKLlXjcHv16s= -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:59 2025 by rpki-client