$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34302e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e34302e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: HWrCmLzv9FOghcRGOCjzPvQBrBEvQbW5Lx00MLELOEw= Subject key identifier: 03:63:4F:1A:F3:1D:30:CD:04:E4:FA:CB:43:D5:7D:00:4A:77:0F:2E Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 1C43DEE6D9E94A0B1899C5EFF1DF27B10C5C179A Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34302e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:51 +0000 ROA not before: Wed 21 Aug 2024 10:55:51 +0000 ROA not after: Wed 20 Aug 2025 11:00:51 +0000 asID: 4434 IP address blocks: 202.154.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:43:de:e6:d9:e9:4a:0b:18:99:c5:ef:f1:df:27:b1:0c:5c:17:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:51 2024 GMT Not After : Aug 20 11:00:51 2025 GMT Subject: CN=03634F1AF31D30CD04E4FACB43D57D004A770F2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:55:9b:51:7f:8e:91:9f:88:68:fc:ea:95:30: 80:cf:10:8d:f9:ea:d0:0e:61:c0:82:a2:d5:d7:9f: 8a:ce:40:a8:4b:e3:13:95:af:cd:fd:1c:1c:76:58: b2:af:a2:00:6f:fb:e5:71:0e:d0:42:a0:3c:0a:a4: ed:e5:5d:f6:9f:6c:90:93:44:1e:31:b4:92:9b:9f: 39:10:fc:39:c7:e5:4d:69:34:a7:28:ab:6b:aa:34: 68:29:7e:91:cb:b2:f8:96:7d:10:f6:6f:60:bf:bf: f5:48:80:db:29:c5:bb:96:e9:da:78:ac:62:cc:23: 89:ae:9b:91:19:9e:4e:a7:df:a5:ff:70:0f:f2:9e: 68:36:5d:59:ec:bb:73:08:ab:1b:f7:09:b2:22:0e: 14:dc:98:cb:31:1d:74:ec:ec:b2:e5:64:79:bf:4c: e3:11:b0:19:d5:92:a0:c9:3a:65:92:fc:bb:58:79: a1:36:40:32:f8:e3:93:da:c7:02:76:59:18:72:0f: 2d:a8:1c:99:8c:cf:a6:a1:b8:31:90:26:2d:62:c9: f1:f8:34:37:f7:45:0d:18:9b:28:7a:8c:b2:28:a7: d5:95:54:dc:1c:41:f3:da:39:2f:2b:d2:50:15:db: 78:8e:52:77:eb:cc:bc:d3:c4:72:06:15:5f:f4:8b: 1c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:63:4F:1A:F3:1D:30:CD:04:E4:FA:CB:43:D5:7D:00:4A:77:0F:2E X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34302e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.40.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:2b:c6:46:d0:30:1e:fe:87:44:c1:80:ac:69:97:b5:b4:ee: 3f:ef:4a:fb:0b:c2:f1:8a:28:c5:4e:2b:63:7d:78:19:c7:3c: c2:e5:f9:53:bf:99:b1:44:a2:43:2e:d6:e2:01:6a:a4:42:35: 86:2f:d8:73:a8:0e:51:70:da:ab:5c:65:96:8f:2b:89:ae:6f: c4:66:cb:70:1f:64:38:cf:d8:3d:d8:9f:a0:f2:c5:25:4b:6f: ee:0d:d8:99:be:ef:f3:1e:3b:22:80:da:70:43:65:20:7c:5b: 79:47:cf:cf:e2:82:a3:7a:99:71:a2:f0:5e:25:1e:d8:0b:2f: 41:43:7c:a0:e3:4f:73:29:14:d4:96:60:22:d9:26:6c:25:9f: 74:23:0d:ba:6f:54:d3:78:13:58:e3:cd:d2:5f:11:85:44:16: d6:7f:67:f6:93:7f:4d:2c:90:1f:56:b9:f8:7f:e6:bc:03:06: 20:f6:a7:ab:2f:20:7b:21:a5:a3:99:f3:21:97:f8:d7:08:8d: 5f:ee:54:80:e6:c8:17:ea:e3:b1:9e:8e:26:c1:2c:58:94:75: 7a:61:d4:a7:cc:a6:6a:db:d3:bc:7a:3b:01:50:e2:64:d5:2a: ec:81:f5:f7:e1:f4:7a:f7:72:37:02:5b:de:64:71:44:ac:0b: a0:93:da:a5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHEPe5tnpSgsYmcXv8d8nsQxcF5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTFaFw0yNTA4MjAxMTAwNTFaMDMxMTAvBgNV BAMTKDAzNjM0RjFBRjMxRDMwQ0QwNEU0RkFDQjQzRDU3RDAwNEE3NzBGMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAVZtRf46Rn4ho/OqVMIDPEI35 6tAOYcCCotXXn4rOQKhL4xOVr839HBx2WLKvogBv++VxDtBCoDwKpO3lXfafbJCT RB4xtJKbnzkQ/DnH5U1pNKcoq2uqNGgpfpHLsviWfRD2b2C/v/VIgNspxbuW6dp4 rGLMI4mum5EZnk6n36X/cA/ynmg2XVnsu3MIqxv3CbIiDhTcmMsxHXTs7LLlZHm/ TOMRsBnVkqDJOmWS/LtYeaE2QDL445PaxwJ2WRhyDy2oHJmMz6ahuDGQJi1iyfH4 NDf3RQ0Ymyh6jLIop9WVVNwcQfPaOS8r0lAV23iOUnfrzLzTxHIGFV/0ixwDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUA2NPGvMdMM0E5PrLQ9V9AEp3Dy4wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmigwDQYJKoZIhvcN AQELBQADggEBAA0rxkbQMB7+h0TBgKxpl7W07j/vSvsLwvGKKMVOK2N9eBnHPMLl +VO/mbFEokMu1uIBaqRCNYYv2HOoDlFw2qtcZZaPK4mub8Rmy3AfZDjP2D3Yn6Dy xSVLb+4N2Jm+7/MeOyKA2nBDZSB8W3lHz8/igqN6mXGi8F4lHtgLL0FDfKDjT3Mp FNSWYCLZJmwln3QjDbpvVNN4E1jjzdJfEYVEFtZ/Z/aTf00skB9Wufh/5rwDBiD2 p6svIHshpaOZ8yGX+NcIjV/uVIDmyBfq47GejibBLFiUdXph1KfMpmrb07x6OwFQ 4mTVKuyB9ffh9Hr3cjcCW95kcUSsC6CT2qU= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org