$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e33342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: 5JR5sy/C3bYsE1JdZBKk8zJpMCt8fGskUCgKZgtrzCM= Subject key identifier: C4:8B:08:BB:A5:EC:08:C6:A6:08:60:69:15:32:81:5D:E7:D3:ED:FF Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 22E1DF2B7A0CE7F443F5C110D80E55C3750EB2C0 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33342e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:44 +0000 ROA not before: Wed 20 Sep 2023 10:55:44 +0000 ROA not after: Wed 18 Sep 2024 11:00:44 +0000 asID: 4434 IP address blocks: 202.154.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:e1:df:2b:7a:0c:e7:f4:43:f5:c1:10:d8:0e:55:c3:75:0e:b2:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:44 2023 GMT Not After : Sep 18 11:00:44 2024 GMT Subject: CN=C48B08BBA5EC08C6A60860691532815DE7D3EDFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:06:f7:c7:91:e1:c3:1d:9d:c3:0b:f0:9b:7d: 0d:d5:6d:92:6b:21:d0:47:bc:58:78:99:fc:13:06: 34:12:79:a6:ca:57:64:23:59:67:59:c3:6b:eb:a8: bb:75:88:c8:e0:cf:c1:0e:cf:67:8d:15:10:6d:e0: ba:1f:92:23:31:25:0c:1c:74:45:ea:3c:f5:1b:e9: 87:d9:c1:f5:27:8d:e0:eb:c7:0d:67:ba:ad:2e:6e: 37:70:db:43:34:37:4e:f7:a9:84:eb:68:61:76:e1: d3:1e:1d:10:ef:0a:41:4a:ef:40:e6:a3:f7:67:48: 22:6e:c1:d6:06:5e:48:dd:ee:84:80:3e:71:75:92: fd:34:c4:65:a7:27:01:30:4f:ab:40:fe:08:5f:5b: b3:cd:cc:e1:63:12:cd:3f:74:7b:72:13:cd:85:18: 17:5f:97:c5:bd:37:59:fa:9a:6e:27:23:e0:ef:7c: 4e:ba:54:6a:e8:12:e5:50:cf:3c:f8:f8:18:13:54: e0:e4:16:51:34:02:9c:83:49:5e:2a:fe:8a:97:2e: b5:d8:ab:00:7e:10:92:09:b6:b2:0a:27:ed:b8:03: c2:07:ad:7c:7d:96:ce:4c:e2:7a:6b:2a:36:e8:ee: 0e:21:b5:54:00:43:35:df:2c:c4:95:94:c1:3a:a9: 9f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:8B:08:BB:A5:EC:08:C6:A6:08:60:69:15:32:81:5D:E7:D3:ED:FF X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.34.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:90:50:fb:23:0e:3f:ca:e0:32:cc:79:2d:e5:66:5f:99:ca: 8c:8c:b1:06:f2:b8:b9:35:bd:ee:af:de:38:22:f0:d1:8e:64: 33:1e:a6:c1:6a:83:a1:72:f2:4a:28:66:56:39:fe:90:5f:65: b8:9a:82:77:95:30:19:6e:3f:6a:9c:b5:67:20:0f:8c:e0:29: 77:db:48:6a:e5:4f:7d:8c:28:1d:96:0d:d7:c5:9b:17:1f:c2: ed:12:6c:20:75:d5:c3:77:d0:e6:6f:a2:81:b3:8f:2f:1c:f0: 3d:f7:b2:d7:6b:a1:3a:a7:63:06:5c:10:ae:8c:ad:9a:97:70: f3:67:3e:94:a3:41:cf:8b:a4:60:0e:34:a5:e1:48:b7:5c:b3: 10:10:49:9f:50:18:d5:ef:ab:a3:4d:c2:0f:51:23:5e:46:a1: fe:4d:1a:7e:e9:cc:8e:ef:15:b5:e5:21:52:d5:e3:68:1f:47: 82:d3:95:a1:ce:7c:a9:49:da:1a:ed:0e:ba:43:d9:51:ff:68: ad:19:27:70:28:d9:18:b5:a4:4f:8e:36:6a:12:17:6c:ae:12: 47:a3:2c:4d:c9:dc:2f:7d:72:b9:d1:91:c9:20:c0:58:23:85: 7d:fd:dc:4a:d2:3b:2e:ef:24:5f:e7:d3:46:b9:97:88:84:0c: d0:b7:53:98 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIuHfK3oM5/RD9cEQ2A5Vw3UOssAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDRaFw0yNDA5MTgxMTAwNDRaMDMxMTAvBgNV BAMTKEM0OEIwOEJCQTVFQzA4QzZBNjA4NjA2OTE1MzI4MTVERTdEM0VERkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxBvfHkeHDHZ3DC/CbfQ3VbZJr IdBHvFh4mfwTBjQSeabKV2QjWWdZw2vrqLt1iMjgz8EOz2eNFRBt4LofkiMxJQwc dEXqPPUb6YfZwfUnjeDrxw1nuq0ubjdw20M0N073qYTraGF24dMeHRDvCkFK70Dm o/dnSCJuwdYGXkjd7oSAPnF1kv00xGWnJwEwT6tA/ghfW7PNzOFjEs0/dHtyE82F GBdfl8W9N1n6mm4nI+DvfE66VGroEuVQzzz4+BgTVODkFlE0ApyDSV4q/oqXLrXY qwB+EJIJtrIKJ+24A8IHrXx9ls5M4nprKjbo7g4htVQAQzXfLMSVlME6qZ+XAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUxIsIu6XsCMamCGBpFTKBXefT7f8wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmiIwDQYJKoZIhvcN AQELBQADggEBAH6QUPsjDj/K4DLMeS3lZl+ZyoyMsQbyuLk1ve6v3jgi8NGOZDMe psFqg6Fy8kooZlY5/pBfZbiagneVMBluP2qctWcgD4zgKXfbSGrlT32MKB2WDdfF mxcfwu0SbCB11cN30OZvooGzjy8c8D33stdroTqnYwZcEK6MrZqXcPNnPpSjQc+L pGAONKXhSLdcsxAQSZ9QGNXvq6NNwg9RI15Gof5NGn7pzI7vFbXlIVLV42gfR4LT laHOfKlJ2hrtDrpD2VH/aK0ZJ3Ao2Ri1pE+ONmoSF2yuEkejLE3J3C99crnRkckg wFgjhX393ErSOy7vJF/n00a5l4iEDNC3U5g= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org