$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e33342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: +drRhBlzkw2NRnJ+K8zWun6YCQ15R+hclRgrcPNNyHI= Subject key identifier: 07:E6:D3:34:2B:A7:B6:D6:67:97:97:99:84:B6:3A:CC:8A:F5:6B:6E Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4D715A37B3740F069D80B4FBAE7F2A24E33A9ADD Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33342e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:52 +0000 ROA not before: Wed 21 Aug 2024 10:55:52 +0000 ROA not after: Wed 20 Aug 2025 11:00:52 +0000 asID: 4434 IP address blocks: 202.154.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:71:5a:37:b3:74:0f:06:9d:80:b4:fb:ae:7f:2a:24:e3:3a:9a:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:52 2024 GMT Not After : Aug 20 11:00:52 2025 GMT Subject: CN=07E6D3342BA7B6D66797979984B63ACC8AF56B6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:20:6b:2b:7b:14:98:dd:2c:f3:aa:c3:a6:8d: 76:ff:00:da:36:67:f4:29:0f:56:50:30:0f:73:6f: ca:2b:9d:98:2a:c7:b4:84:5f:06:86:c6:96:c9:34: cf:a2:ec:51:67:4c:9f:96:49:d6:de:21:14:f8:25: 53:9c:07:b1:ea:1d:da:7a:6b:39:66:13:b9:31:15: 1f:57:3e:f6:92:7a:f7:5e:60:c3:eb:3f:6c:5e:45: 7a:75:8b:6a:20:23:ee:f8:cc:1d:50:ea:15:eb:19: d0:b8:52:b1:00:14:1d:d7:da:02:2c:3a:54:45:19: bc:5e:73:31:e7:7a:71:18:97:fc:7d:8d:83:cc:21: 93:dd:97:b8:49:6d:57:fb:34:3c:2f:13:96:b7:6d: 46:a2:eb:91:ad:71:29:92:31:2a:fb:ad:e5:aa:78: 57:65:f8:fb:f7:85:55:c2:67:a2:16:4d:e2:44:01: 0e:0c:54:20:a6:66:6d:5c:ce:f7:15:82:05:6d:31: b5:7a:c7:e1:66:da:11:d8:5a:c6:0c:85:18:f8:c0: ff:ab:98:67:14:73:31:8d:9e:3b:83:67:fd:13:f6: 83:84:99:65:8e:4b:6e:66:94:b3:fd:c8:de:65:53: cb:92:4d:86:3c:e0:40:b4:0e:5b:5e:88:a1:9f:2d: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E6:D3:34:2B:A7:B6:D6:67:97:97:99:84:B6:3A:CC:8A:F5:6B:6E X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.34.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:e3:cf:3e:a4:b5:e3:4a:d0:9d:39:fb:cc:1f:a2:2f:80:8a: 9f:8c:38:98:66:90:2b:73:58:66:31:83:28:7f:7a:2d:94:20: 65:d4:47:18:78:0d:07:38:02:3e:26:fd:88:0c:a1:e5:63:42: e4:87:61:92:10:34:bc:8d:dc:be:96:af:50:77:2d:2d:e8:c9: a1:a2:52:d7:6b:a9:3c:86:d6:0c:a4:a6:dd:c5:d4:56:78:b3: 3c:57:6f:72:d1:07:09:2c:7e:bb:59:ac:a5:88:86:7d:24:4f: 01:70:a0:43:d5:bf:6e:a8:1a:bc:27:13:0e:ed:3d:34:16:09: 76:cb:19:1b:bb:b5:7a:38:93:af:ec:18:aa:7e:b0:25:d9:54: fd:b0:97:6a:0b:a3:86:82:c9:b2:0b:3c:ee:f4:49:0c:f9:fc: eb:4a:3f:8c:38:ce:7c:f2:d5:d6:f4:fa:21:0a:bc:88:52:20: 16:5b:86:ce:3a:c5:54:c1:ba:f5:cf:86:41:89:9f:70:bd:b9: ee:e8:1d:e2:dc:80:5a:a3:aa:56:29:db:87:e7:ca:4b:3b:f2: ad:ef:88:a7:1e:8c:dc:84:37:e0:c0:3e:2e:b6:16:63:f2:d7: 86:e5:82:8e:ab:72:52:6c:be:4a:c3:74:f3:e0:f6:de:61:cf: f9:11:1f:c8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTXFaN7N0DwadgLT7rn8qJOM6mt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTJaFw0yNTA4MjAxMTAwNTJaMDMxMTAvBgNV BAMTKDA3RTZEMzM0MkJBN0I2RDY2Nzk3OTc5OTg0QjYzQUNDOEFGNTZCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNIGsrexSY3SzzqsOmjXb/ANo2 Z/QpD1ZQMA9zb8ornZgqx7SEXwaGxpbJNM+i7FFnTJ+WSdbeIRT4JVOcB7HqHdp6 azlmE7kxFR9XPvaSevdeYMPrP2xeRXp1i2ogI+74zB1Q6hXrGdC4UrEAFB3X2gIs OlRFGbxeczHnenEYl/x9jYPMIZPdl7hJbVf7NDwvE5a3bUai65GtcSmSMSr7reWq eFdl+Pv3hVXCZ6IWTeJEAQ4MVCCmZm1czvcVggVtMbV6x+Fm2hHYWsYMhRj4wP+r mGcUczGNnjuDZ/0T9oOEmWWOS25mlLP9yN5lU8uSTYY84EC0DlteiKGfLafDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUB+bTNCunttZnl5eZhLY6zIr1a24wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmiIwDQYJKoZIhvcN AQELBQADggEBAIzjzz6kteNK0J05+8wfoi+Aip+MOJhmkCtzWGYxgyh/ei2UIGXU Rxh4DQc4Aj4m/YgMoeVjQuSHYZIQNLyN3L6Wr1B3LS3oyaGiUtdrqTyG1gykpt3F 1FZ4szxXb3LRBwksfrtZrKWIhn0kTwFwoEPVv26oGrwnEw7tPTQWCXbLGRu7tXo4 k6/sGKp+sCXZVP2wl2oLo4aCybILPO70SQz5/OtKP4w4znzy1db0+iEKvIhSIBZb hs46xVTBuvXPhkGJn3C9ue7oHeLcgFqjqlYp24fnyks78q3viKcejNyEN+DAPi62 FmPy14blgo6rclJsvkrDdPPg9t5hz/kRH8g= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org