$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33302e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e33302e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: zoeowKJvSzvuY+GvQ8McOKqVJl+lWLpjA0Rv/dJXYDY= Subject key identifier: F3:31:4F:84:1E:C5:ED:A4:97:93:BD:C0:0F:E6:3F:95:CD:D3:62:87 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 07A72074D96481C1D03DCF27F34F4E9780AB10BA Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33302e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:50 +0000 ROA not before: Wed 21 Aug 2024 10:55:50 +0000 ROA not after: Wed 20 Aug 2025 11:00:50 +0000 asID: 4434 IP address blocks: 202.154.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a7:20:74:d9:64:81:c1:d0:3d:cf:27:f3:4f:4e:97:80:ab:10:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:50 2024 GMT Not After : Aug 20 11:00:50 2025 GMT Subject: CN=F3314F841EC5EDA49793BDC00FE63F95CDD36287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ac:ef:e3:11:57:c1:96:53:26:df:04:07:99: 8e:6d:12:23:46:4a:c2:14:63:92:9d:d0:70:3e:e8: 68:df:5f:31:56:eb:bb:28:cb:d9:1e:33:93:42:22: 43:ba:4e:b2:d9:c7:64:dc:56:02:a8:72:fd:ac:e2: 13:0c:20:5f:46:e0:b9:73:a7:df:37:5d:27:8f:e1: 2c:cb:9e:c6:6c:69:81:6a:74:e3:0c:7d:3a:0b:d8: 3c:3a:8e:40:e9:d7:bb:4b:23:76:99:79:41:f9:04: d0:6c:ed:1c:bb:0e:3c:b7:61:07:a5:c4:87:d6:7c: 45:e9:75:2b:b5:8f:12:a7:f6:42:48:86:09:0f:ad: 98:f6:1f:5c:7e:53:3f:9d:d0:ae:0e:34:13:2e:f4: cc:ea:25:2e:a5:16:cb:aa:cc:7d:fd:39:25:66:af: 3d:db:79:ff:99:ac:77:1a:60:30:af:80:12:21:1e: 6a:b1:a9:b2:16:f3:71:28:d6:5b:ba:f9:b7:52:3f: 5e:be:aa:79:f1:71:a2:e0:7b:3e:f4:ca:52:ba:0b: 84:4d:c0:cf:89:06:1e:8b:32:51:27:d1:54:c4:1f: f1:67:0f:10:f0:e2:68:9a:04:62:cf:a7:d6:73:09: 08:10:d8:e9:df:8c:10:68:72:d0:96:cb:e9:f4:c3: b2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:31:4F:84:1E:C5:ED:A4:97:93:BD:C0:0F:E6:3F:95:CD:D3:62:87 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33302e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.30.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:b9:c7:3d:ba:f1:97:f7:99:94:68:e9:02:80:bd:28:0d:7b: c3:69:2d:59:e9:bd:55:00:9e:80:0f:a8:13:b5:f1:c2:a4:e0: c5:36:dc:50:1c:a8:07:5b:cc:d4:57:b3:41:53:d5:56:05:34: c0:e1:fb:eb:7e:58:a4:76:f4:55:1c:74:28:84:98:95:d6:86: 09:dd:17:39:65:09:ea:d1:bc:31:2e:fa:c0:58:54:88:63:44: 6a:24:e6:01:34:78:8b:58:8f:9b:6b:70:e8:a2:b5:50:3f:92: 25:95:77:a1:69:86:50:fe:f8:fd:34:fe:c4:02:7b:89:20:10: 14:b5:69:d5:33:d7:a5:dd:de:68:bb:83:92:bd:8e:c5:10:6c: 71:49:9a:d5:d1:2b:10:88:15:a2:b3:f8:e3:fc:d4:05:9d:a7: 40:52:ff:c6:bb:b0:e4:49:4e:32:46:c4:ca:5e:a0:42:25:1d: a6:97:e4:98:40:64:55:55:dc:e6:a4:25:03:cc:c4:d4:0f:f9: 93:f9:18:2a:b8:76:fc:2e:93:b6:1f:42:4c:7b:96:77:e2:c5: 11:f0:67:73:24:13:f3:d3:9a:35:23:53:6d:b8:f9:20:a2:a4: c1:92:01:1d:18:f0:73:44:d3:7d:f1:03:d3:22:9c:77:3d:e9: ad:cd:3a:77 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUB6cgdNlkgcHQPc8n809Ol4CrELowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTBaFw0yNTA4MjAxMTAwNTBaMDMxMTAvBgNV BAMTKEYzMzE0Rjg0MUVDNUVEQTQ5NzkzQkRDMDBGRTYzRjk1Q0REMzYyODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYrO/jEVfBllMm3wQHmY5tEiNG SsIUY5Kd0HA+6GjfXzFW67soy9keM5NCIkO6TrLZx2TcVgKocv2s4hMMIF9G4Llz p983XSeP4SzLnsZsaYFqdOMMfToL2Dw6jkDp17tLI3aZeUH5BNBs7Ry7Djy3YQel xIfWfEXpdSu1jxKn9kJIhgkPrZj2H1x+Uz+d0K4ONBMu9MzqJS6lFsuqzH39OSVm rz3bef+ZrHcaYDCvgBIhHmqxqbIW83Eo1lu6+bdSP16+qnnxcaLgez70ylK6C4RN wM+JBh6LMlEn0VTEH/FnDxDw4miaBGLPp9ZzCQgQ2OnfjBBoctCWy+n0w7JHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8zFPhB7F7aSXk73AD+Y/lc3TYocwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmh4wDQYJKoZIhvcN AQELBQADggEBAGu5xz268Zf3mZRo6QKAvSgNe8NpLVnpvVUAnoAPqBO18cKk4MU2 3FAcqAdbzNRXs0FT1VYFNMDh++t+WKR29FUcdCiEmJXWhgndFzllCerRvDEu+sBY VIhjRGok5gE0eItYj5trcOiitVA/kiWVd6FphlD++P00/sQCe4kgEBS1adUz16Xd 3mi7g5K9jsUQbHFJmtXRKxCIFaKz+OP81AWdp0BS/8a7sORJTjJGxMpeoEIlHaaX 5JhAZFVV3OakJQPMxNQP+ZP5GCq4dvwuk7YfQkx7lnfixRHwZ3MkE/PTmjUjU224 +SCipMGSAR0Y8HNE033xA9MinHc96a3NOnc= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org