$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33382e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e33382e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: 3R+xMVeEY/uhsFZu5+frjjskSYdvqvLldy0FUga9hrA= Subject key identifier: 2E:39:02:D9:5D:36:5B:B5:10:91:71:20:10:F1:00:DA:81:BE:D1:7B Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 240DC5E619287378ED8816A2C1253598AA22BD61 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33382e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:51 +0000 ROA not before: Wed 21 Aug 2024 10:55:51 +0000 ROA not after: Wed 20 Aug 2025 11:00:51 +0000 asID: 4434 IP address blocks: 202.154.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:0d:c5:e6:19:28:73:78:ed:88:16:a2:c1:25:35:98:aa:22:bd:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:51 2024 GMT Not After : Aug 20 11:00:51 2025 GMT Subject: CN=2E3902D95D365BB51091712010F100DA81BED17B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9a:40:ba:58:3e:a0:04:53:04:e9:b0:ce:ad: 6b:c0:cd:16:43:91:da:a7:61:1c:f9:06:7c:f1:5f: 80:24:ef:2f:7c:94:df:6d:a0:62:83:c5:df:14:61: cb:71:22:2e:83:a6:02:8e:6f:9a:28:ad:a3:6c:61: 07:08:43:d8:55:ff:3e:b3:30:28:b9:39:a6:82:58: fc:6d:9a:f9:18:6c:2c:89:93:56:98:d4:1b:86:32: 6a:1d:99:e4:ca:a9:f4:42:db:8e:d3:eb:6c:dd:7d: 1c:67:91:5d:80:7e:41:b2:3c:8e:c7:40:94:82:31: 01:34:a7:60:05:2f:41:b7:e6:61:8b:cb:14:6f:12: f8:27:6e:11:eb:ff:b0:a4:9b:c7:e0:08:a6:44:a8: 88:c9:20:a1:1d:89:e7:51:dc:8c:45:5d:76:ae:04: 1e:82:d6:60:42:79:15:79:4d:19:75:31:53:3c:6d: 93:cd:96:9a:fe:4e:3d:38:69:a1:a8:aa:06:d2:10: fa:bf:16:41:f5:90:9e:af:02:59:3a:62:b8:31:01: af:32:d5:40:ad:b7:fb:a3:6b:5c:11:4a:0e:3d:aa: a6:18:da:d3:2f:25:fc:32:b7:f6:5f:46:89:7e:ff: 12:78:1a:ab:73:0b:31:26:94:00:b0:84:6a:87:71: ed:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:39:02:D9:5D:36:5B:B5:10:91:71:20:10:F1:00:DA:81:BE:D1:7B X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33382e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.38.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:4d:aa:9b:d2:11:ae:16:c3:ee:29:da:7b:1c:01:a2:fc:af: 4e:19:a3:1f:67:3b:15:fc:a4:a6:0d:2e:db:95:42:f0:d5:3f: 28:3a:5f:3f:00:54:56:f4:f1:a6:9b:3f:8e:37:be:a2:5d:df: 80:31:80:81:79:44:0c:6a:2a:a1:f6:25:2e:64:1b:c9:4a:fa: 22:69:72:69:b6:86:df:45:5b:2e:1e:8a:31:17:9b:d7:ee:fc: a1:0a:d0:2e:0c:84:a4:a4:25:2b:a8:6f:3f:79:7a:1c:21:38: 5e:2b:62:0e:c6:ff:93:ae:34:97:8a:54:8a:e3:25:11:52:33: 6f:75:d2:b3:43:dc:9e:66:0b:3e:8c:ca:81:5a:58:b0:4c:a2: 26:65:e5:2e:9d:2c:12:b2:bc:89:82:0f:e3:58:3e:1d:37:0b: 58:1d:a4:58:18:1c:c1:1e:3b:98:5a:dc:95:95:00:fd:c3:bd: 65:86:c1:05:d5:79:d8:a5:56:f0:a1:63:21:a0:9b:f4:ca:bd: 25:8c:76:91:b9:10:b0:d5:e7:44:f6:85:66:0e:20:dd:1f:51: c2:8d:de:37:72:62:ec:f0:6c:a1:fb:16:b0:81:eb:d2:38:aa: 84:fa:4d:f8:c8:d1:5e:82:71:86:d0:72:21:bc:83:f3:0a:c9: eb:b3:ed:12 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJA3F5hkoc3jtiBaiwSU1mKoivWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTFaFw0yNTA4MjAxMTAwNTFaMDMxMTAvBgNV BAMTKDJFMzkwMkQ5NUQzNjVCQjUxMDkxNzEyMDEwRjEwMERBODFCRUQxN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtmkC6WD6gBFME6bDOrWvAzRZD kdqnYRz5BnzxX4Ak7y98lN9toGKDxd8UYctxIi6DpgKOb5ooraNsYQcIQ9hV/z6z MCi5OaaCWPxtmvkYbCyJk1aY1BuGMmodmeTKqfRC247T62zdfRxnkV2AfkGyPI7H QJSCMQE0p2AFL0G35mGLyxRvEvgnbhHr/7Ckm8fgCKZEqIjJIKEdiedR3IxFXXau BB6C1mBCeRV5TRl1MVM8bZPNlpr+Tj04aaGoqgbSEPq/FkH1kJ6vAlk6YrgxAa8y 1UCtt/uja1wRSg49qqYY2tMvJfwyt/ZfRol+/xJ4GqtzCzEmlACwhGqHce0zAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQULjkC2V02W7UQkXEgEPEA2oG+0XswHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmiYwDQYJKoZIhvcN AQELBQADggEBAFpNqpvSEa4Ww+4p2nscAaL8r04Zox9nOxX8pKYNLtuVQvDVPyg6 Xz8AVFb08aabP443vqJd34AxgIF5RAxqKqH2JS5kG8lK+iJpcmm2ht9FWy4eijEX m9fu/KEK0C4MhKSkJSuobz95ehwhOF4rYg7G/5OuNJeKVIrjJRFSM2910rND3J5m Cz6MyoFaWLBMoiZl5S6dLBKyvImCD+NYPh03C1gdpFgYHMEeO5ha3JWVAP3DvWWG wQXVedilVvChYyGgm/TKvSWMdpG5ELDV50T2hWYOIN0fUcKN3jdyYuzwbKH7FrCB 69I4qoT6TfjI0V6CcYbQciG8g/MKyeuz7RI= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org