$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: wGvnfNbaor4Bwt4NeS+sPG+zM2adOzyLVa1DC7z8xNs= Subject key identifier: E8:1B:AE:15:F9:6F:8F:F6:87:AE:64:54:BE:19:58:BF:5F:81:DB:B9 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4151C2AC392560B575B3C53A56593F9B5D332C73 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e342e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:51 +0000 ROA not before: Wed 21 Aug 2024 10:55:51 +0000 ROA not after: Wed 20 Aug 2025 11:00:51 +0000 asID: 4434 IP address blocks: 202.154.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:51:c2:ac:39:25:60:b5:75:b3:c5:3a:56:59:3f:9b:5d:33:2c:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:51 2024 GMT Not After : Aug 20 11:00:51 2025 GMT Subject: CN=E81BAE15F96F8FF687AE6454BE1958BF5F81DBB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ca:81:fe:91:f1:08:1f:ba:ba:f9:70:40:ad: ed:22:65:7e:5d:b3:9a:70:97:91:d4:a7:33:ff:d1: b7:73:df:fe:00:e2:4d:93:b1:58:55:64:5f:3e:03: e0:33:3a:57:79:0d:e8:93:f6:76:ec:2c:6b:ea:98: 6b:13:43:7d:d8:14:86:c3:26:be:af:71:08:17:3e: b6:bf:0d:59:b4:8b:14:cb:34:12:e6:fb:30:31:5c: 35:83:14:ca:c1:8b:c1:c1:68:59:c5:80:2b:cb:16: 43:68:e3:45:9d:32:a3:ae:04:e6:c9:1e:50:d2:bd: ba:d0:08:de:46:f2:cd:cd:22:6f:2d:20:c8:1c:cd: 46:08:d0:7d:8e:12:ac:ca:85:fd:dc:6e:68:9e:87: 47:34:d6:e0:97:bb:fb:32:80:8d:b0:57:9a:54:2c: f6:14:cc:14:55:1f:45:8c:33:4e:63:6d:12:6d:8f: 51:d8:f5:48:44:a3:f1:88:1c:31:21:41:f0:23:76: 12:3c:0d:88:6e:d3:17:f1:21:01:fa:a5:14:30:99: 7c:47:07:e4:67:c8:40:ec:ca:30:ab:2b:db:13:e9: 90:ba:80:09:f1:d2:e4:20:95:bb:f8:eb:dc:49:98: a5:8d:fb:71:c6:96:af:cd:d6:79:64:95:99:1e:ab: 32:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1B:AE:15:F9:6F:8F:F6:87:AE:64:54:BE:19:58:BF:5F:81:DB:B9 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.4.0/23 Signature Algorithm: sha256WithRSAEncryption a2:ff:83:8e:80:23:53:7c:8a:09:59:18:dd:41:f3:36:75:e3: 58:21:99:dc:87:fc:2e:0b:0d:01:be:21:ad:75:ea:a3:aa:a8: 06:0d:4c:9b:6d:f2:a8:50:e3:be:11:20:08:6b:f5:c2:09:03: 98:5c:e7:64:d4:65:ce:94:1e:d1:fe:7f:c3:74:87:a6:60:b2: be:87:69:f6:2c:25:89:cf:6d:a0:5e:2a:96:d7:65:0a:cc:ee: a2:b9:a7:01:86:89:7a:ec:4d:4b:7d:90:b8:f3:32:73:9c:87: 61:59:f3:f1:de:7f:e8:b1:9c:93:92:b6:cb:d6:61:98:ca:4f: 3f:03:65:6d:30:6d:94:f5:59:33:2b:c0:f9:b9:92:15:00:50: c8:74:fb:6a:4a:2a:4a:f2:49:b1:ed:9f:63:c6:67:a7:c5:02: 60:bf:8f:1d:75:8f:34:fc:12:42:5d:9e:0d:39:83:8f:85:1e: 0c:e3:b2:62:d0:c7:c9:d9:02:73:d0:a3:12:50:59:65:f3:4e: 39:92:c5:6f:d8:24:f8:28:7c:20:3c:e5:ae:21:12:be:b4:07: 8e:c5:f1:e9:50:7f:af:22:a5:6a:45:c4:23:ff:96:cf:c3:c1: 52:bd:d4:97:dd:e4:c5:4f:85:26:54:29:1b:d4:2d:23:bc:75: e9:ad:52:f5 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUQVHCrDklYLV1s8U6Vlk/m10zLHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTFaFw0yNTA4MjAxMTAwNTFaMDMxMTAvBgNV BAMTKEU4MUJBRTE1Rjk2RjhGRjY4N0FFNjQ1NEJFMTk1OEJGNUY4MURCQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQyoH+kfEIH7q6+XBAre0iZX5d s5pwl5HUpzP/0bdz3/4A4k2TsVhVZF8+A+AzOld5DeiT9nbsLGvqmGsTQ33YFIbD Jr6vcQgXPra/DVm0ixTLNBLm+zAxXDWDFMrBi8HBaFnFgCvLFkNo40WdMqOuBObJ HlDSvbrQCN5G8s3NIm8tIMgczUYI0H2OEqzKhf3cbmieh0c01uCXu/sygI2wV5pU LPYUzBRVH0WMM05jbRJtj1HY9UhEo/GIHDEhQfAjdhI8DYhu0xfxIQH6pRQwmXxH B+RnyEDsyjCrK9sT6ZC6gAnx0uQglbv469xJmKWN+3HGlq/N1nlklZkeqzJLAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU6BuuFflvj/aHrmRUvhlYv1+B27kwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTM0MmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmgQwDQYJKoZIhvcNAQEL BQADggEBAKL/g46AI1N8iglZGN1B8zZ141ghmdyH/C4LDQG+Ia116qOqqAYNTJtt 8qhQ474RIAhr9cIJA5hc52TUZc6UHtH+f8N0h6Zgsr6HafYsJYnPbaBeKpbXZQrM 7qK5pwGGiXrsTUt9kLjzMnOch2FZ8/Hef+ixnJOStsvWYZjKTz8DZW0wbZT1WTMr wPm5khUAUMh0+2pKKkrySbHtn2PGZ6fFAmC/jx11jzT8EkJdng05g4+FHgzjsmLQ x8nZAnPQoxJQWWXzTjmSxW/YJPgofCA85a4hEr60B47F8elQf68ipWpFxCP/ls/D wVK91Jfd5MVPhSZUKRvULSO8demtUvU= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org