$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32382e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e32382e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: jHkw0hS82Qm8jTxfvCGj94rp07aZCDneaKfTxYAlP+c= Subject key identifier: 04:1E:90:92:B8:3F:EE:15:06:6E:F5:D6:27:66:35:7A:3E:84:FF:CA Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 6AEF55D0B1E5A4DF0097F9B370FB423CE448A9A7 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32382e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:54 +0000 ROA not before: Wed 21 Aug 2024 10:55:54 +0000 ROA not after: Wed 20 Aug 2025 11:00:54 +0000 asID: 4434 IP address blocks: 202.154.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:ef:55:d0:b1:e5:a4:df:00:97:f9:b3:70:fb:42:3c:e4:48:a9:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:54 2024 GMT Not After : Aug 20 11:00:54 2025 GMT Subject: CN=041E9092B83FEE15066EF5D62766357A3E84FFCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:88:ba:e7:8c:64:2c:70:17:bb:58:ac:e3:37: 57:5b:72:f5:fc:0f:77:1d:67:96:7e:82:84:14:61: e1:67:17:89:36:7d:1d:23:2f:42:7b:a8:2d:54:33: 8f:d3:a1:91:df:fa:ee:0e:bb:96:d4:62:f6:ee:1f: 0a:43:09:8e:63:eb:90:9d:c3:55:7d:8c:82:00:c4: b7:e6:67:6a:e2:bd:e0:ad:68:b2:78:0f:ce:4a:7e: 63:d4:ea:8b:70:88:c5:b0:0e:cf:0c:fc:99:18:92: 81:b2:a9:de:32:0e:19:d6:ee:64:a0:ff:ce:50:6c: 2b:98:03:da:e4:69:90:ec:22:12:f1:26:6e:be:df: 1c:5a:51:e2:d0:2d:12:01:11:e2:eb:81:d3:7b:27: 06:80:cb:69:d1:85:47:b1:66:97:e7:39:96:d7:2a: 13:48:9e:84:32:b7:88:43:f2:e3:d5:11:01:cc:2a: dd:50:34:f1:76:59:e7:9b:b5:ab:03:99:11:0d:46: cc:51:68:f4:a7:e1:e2:e4:2e:fb:10:ce:75:90:67: 7b:85:90:32:d5:65:6a:6f:4f:af:4f:62:20:b8:aa: a2:b0:75:0a:bb:37:b5:0b:db:05:56:c4:c9:c6:71: e3:45:28:ad:7d:57:b5:0c:43:4e:5c:9b:98:e2:c2: b6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1E:90:92:B8:3F:EE:15:06:6E:F5:D6:27:66:35:7A:3E:84:FF:CA X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e32382e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.28.0/23 Signature Algorithm: sha256WithRSAEncryption 15:f0:70:2f:a5:92:2b:d3:d5:f7:e1:d6:50:36:8d:23:a7:ed: a3:bc:08:52:6f:80:c8:6d:bf:1e:40:ca:57:6b:75:5c:c7:8a: 69:4b:c0:f7:19:db:4a:1a:d5:04:f2:47:b6:4c:13:6b:06:b0: cf:f9:4b:f3:fd:97:6f:0b:ce:ea:ef:40:a6:79:39:48:ac:95: f2:65:c5:86:a3:3b:63:21:bf:9c:57:a1:0d:04:3c:81:9a:1a: e7:e9:c6:9e:fc:1a:06:47:73:a5:b7:05:8d:8e:9b:02:f8:d9: 96:d7:63:3c:53:7b:1c:00:06:88:76:57:c2:45:43:72:96:b1: d2:d2:cf:6c:1e:9f:18:e2:9e:26:b4:7d:c7:59:51:c2:a5:17: 36:a3:3b:5f:c1:cc:9b:e8:b3:ae:55:42:9c:6b:e2:73:5d:cf: 2b:1a:8c:01:6d:75:73:ff:b3:6f:a2:2c:03:1a:ac:16:a0:84: 59:60:8d:c1:6f:69:5e:05:75:26:4d:e8:90:28:16:73:76:12: ec:89:2e:10:cd:a6:fc:e8:39:df:81:78:86:a9:70:3e:07:01: e3:df:b9:94:64:ab:91:b3:fc:2f:65:18:36:d1:bc:6a:b8:cc: 93:3d:d3:b6:6c:c1:76:19:d5:87:df:55:b6:1a:a5:de:d7:49: 6e:d5:f1:46 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUau9V0LHlpN8Al/mzcPtCPORIqacwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTRaFw0yNTA4MjAxMTAwNTRaMDMxMTAvBgNV BAMTKDA0MUU5MDkyQjgzRkVFMTUwNjZFRjVENjI3NjYzNTdBM0U4NEZGQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCiLrnjGQscBe7WKzjN1dbcvX8 D3cdZ5Z+goQUYeFnF4k2fR0jL0J7qC1UM4/ToZHf+u4Ou5bUYvbuHwpDCY5j65Cd w1V9jIIAxLfmZ2riveCtaLJ4D85KfmPU6otwiMWwDs8M/JkYkoGyqd4yDhnW7mSg /85QbCuYA9rkaZDsIhLxJm6+3xxaUeLQLRIBEeLrgdN7JwaAy2nRhUexZpfnOZbX KhNInoQyt4hD8uPVEQHMKt1QNPF2WeebtasDmRENRsxRaPSn4eLkLvsQznWQZ3uF kDLVZWpvT69PYiC4qqKwdQq7N7UL2wVWxMnGceNFKK19V7UMQ05cm5jiwradAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBB6Qkrg/7hUGbvXWJ2Y1ej6E/8owHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmhwwDQYJKoZIhvcN AQELBQADggEBABXwcC+lkivT1ffh1lA2jSOn7aO8CFJvgMhtvx5AyldrdVzHimlL wPcZ20oa1QTyR7ZME2sGsM/5S/P9l28LzurvQKZ5OUislfJlxYajO2Mhv5xXoQ0E PIGaGufpxp78GgZHc6W3BY2OmwL42ZbXYzxTexwABoh2V8JFQ3KWsdLSz2wenxji nia0fcdZUcKlFzajO1/BzJvos65VQpxr4nNdzysajAFtdXP/s2+iLAMarBaghFlg jcFvaV4FdSZN6JAoFnN2EuyJLhDNpvzoOd+BeIapcD4HAePfuZRkq5Gz/C9lGDbR vGq4zJM907ZswXYZ1YffVbYapd7XSW7V8UY= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org