$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: SgWdNhn7eaqO6WH6k9umKHykSLpc9/GFZjSoYphz4oQ= Subject key identifier: ED:BA:F0:7C:BB:1B:D3:C9:BB:71:99:3A:95:FA:46:EB:D7:E6:8F:46 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 53ECD2752156069EC632D360E9DC07E9278E0B0F Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e342e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:43 +0000 ROA not before: Wed 20 Sep 2023 10:55:43 +0000 ROA not after: Wed 18 Sep 2024 11:00:43 +0000 asID: 4434 IP address blocks: 202.154.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ec:d2:75:21:56:06:9e:c6:32:d3:60:e9:dc:07:e9:27:8e:0b:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:43 2023 GMT Not After : Sep 18 11:00:43 2024 GMT Subject: CN=EDBAF07CBB1BD3C9BB71993A95FA46EBD7E68F46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e0:55:3b:28:b9:e5:d7:99:af:fa:6e:e3:71: 7f:ac:5a:9b:9e:74:30:b2:bd:64:94:0e:19:3b:61: b4:42:ff:fb:88:b1:65:b6:36:55:d6:b7:ab:3d:a5: bc:7d:74:8b:18:77:5f:26:3b:9c:02:4a:e7:f4:03: 27:11:7f:01:fa:a6:54:0b:de:48:a8:3f:aa:bc:93: 58:ed:c7:d4:47:f0:1f:e0:dd:ec:99:26:a2:97:61: 26:38:5e:b1:6b:92:8e:d2:6b:43:b8:e2:0a:e6:40: e4:da:38:14:31:5c:38:c6:19:fe:1b:6e:c1:78:d2: 31:34:74:6a:0c:c6:6a:94:5e:8c:f6:34:1f:7d:e2: 1d:71:7c:45:21:05:bb:bd:6d:d5:e9:a4:e3:6f:30: d5:cf:8f:0e:bc:45:b2:5a:1d:75:f9:96:db:ef:7b: 8f:66:c1:47:1d:f7:3c:0e:4e:84:a8:e8:ba:e5:01: 69:f2:8c:96:eb:08:89:64:bb:02:1b:a0:e6:ae:23: ab:42:67:2d:be:c0:28:e3:cd:29:41:e5:34:cb:95: 9f:39:9b:9c:e8:bf:76:08:5d:9e:f4:5f:f8:85:73: 74:66:08:3f:fb:83:0d:d6:a9:4e:0a:f0:8b:ad:af: 07:20:3a:9e:64:35:4d:43:31:ea:d0:45:04:ca:94: ab:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BA:F0:7C:BB:1B:D3:C9:BB:71:99:3A:95:FA:46:EB:D7:E6:8F:46 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.4.0/23 Signature Algorithm: sha256WithRSAEncryption 39:8f:ee:6f:93:d1:d7:6c:ea:82:66:92:f6:62:95:5f:85:7e: fb:3e:df:00:3b:ed:4d:51:aa:36:7f:6d:fd:ac:f8:01:ff:64: b2:7a:39:34:3b:1b:ea:8e:ce:d1:7a:c3:a7:d2:94:cb:2e:13: dd:11:75:02:d4:d5:8c:cb:4e:00:a7:1e:ac:1d:42:a8:65:1a: 56:0e:f6:e1:a3:c6:2f:f8:d9:63:8a:a1:05:1d:66:40:be:dc: b6:9e:c8:0b:84:ac:ef:07:e3:4f:7f:e7:e1:43:c3:4d:8d:e5: 62:87:93:57:c7:d6:07:e0:e4:2a:76:7d:02:f8:e5:0f:d5:aa: 33:48:c1:82:26:e6:77:e6:61:70:5d:68:dc:b9:12:92:cf:f4: ec:63:f9:5f:d3:6c:f0:cb:95:4c:20:59:36:98:0d:5a:f7:51: a3:dc:e4:de:3b:fd:f7:6b:66:ae:66:ed:53:f7:57:d2:17:29: d5:38:46:74:44:cd:21:9d:bc:ec:30:91:ce:52:25:f7:47:a8: 0b:13:31:6b:96:8b:e0:a4:f9:21:6c:8c:ae:96:f3:65:4e:3e: 97:fa:f9:6b:62:47:11:51:cc:90:4c:d2:41:ce:6e:8b:0d:68: e0:64:2e:37:73:09:43:5b:04:65:c6:0a:7d:f4:c7:c7:f2:9c: 0b:d2:6a:89 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUU+zSdSFWBp7GMtNg6dwH6SeOCw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDNaFw0yNDA5MTgxMTAwNDNaMDMxMTAvBgNV BAMTKEVEQkFGMDdDQkIxQkQzQzlCQjcxOTkzQTk1RkE0NkVCRDdFNjhGNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+4FU7KLnl15mv+m7jcX+sWpue dDCyvWSUDhk7YbRC//uIsWW2NlXWt6s9pbx9dIsYd18mO5wCSuf0AycRfwH6plQL 3kioP6q8k1jtx9RH8B/g3eyZJqKXYSY4XrFrko7Sa0O44grmQOTaOBQxXDjGGf4b bsF40jE0dGoMxmqUXoz2NB994h1xfEUhBbu9bdXppONvMNXPjw68RbJaHXX5ltvv e49mwUcd9zwOToSo6LrlAWnyjJbrCIlkuwIboOauI6tCZy2+wCjjzSlB5TTLlZ85 m5zov3YIXZ70X/iFc3RmCD/7gw3WqU4K8IutrwcgOp5kNU1DMerQRQTKlKvNAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU7brwfLsb08m7cZk6lfpG69fmj0YwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTM0MmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmgQwDQYJKoZIhvcNAQEL BQADggEBADmP7m+T0dds6oJmkvZilV+Ffvs+3wA77U1RqjZ/bf2s+AH/ZLJ6OTQ7 G+qOztF6w6fSlMsuE90RdQLU1YzLTgCnHqwdQqhlGlYO9uGjxi/42WOKoQUdZkC+ 3LaeyAuErO8H409/5+FDw02N5WKHk1fH1gfg5Cp2fQL45Q/VqjNIwYIm5nfmYXBd aNy5EpLP9Oxj+V/TbPDLlUwgWTaYDVr3UaPc5N47/fdrZq5m7VP3V9IXKdU4RnRE zSGdvOwwkc5SJfdHqAsTMWuWi+Ck+SFsjK6W82VOPpf6+WtiRxFRzJBM0kHObosN aOBkLjdzCUNbBGXGCn30x8fynAvSaok= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org