$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34322e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e34322e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: mwL/0c6F6l/+89NoodMS//oKeHJN7KacUZxkZDzC88Y= Subject key identifier: F2:0C:B8:0A:7D:44:16:0C:2B:A0:3A:5E:DF:46:C0:82:96:45:DE:FE Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4FC71B324BEE313F2D26DCEBF1D1833825B17734 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34322e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:54 +0000 ROA not before: Wed 21 Aug 2024 10:55:54 +0000 ROA not after: Wed 20 Aug 2025 11:00:54 +0000 asID: 4434 IP address blocks: 202.154.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:c7:1b:32:4b:ee:31:3f:2d:26:dc:eb:f1:d1:83:38:25:b1:77:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:54 2024 GMT Not After : Aug 20 11:00:54 2025 GMT Subject: CN=F20CB80A7D44160C2BA03A5EDF46C0829645DEFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:86:9b:4c:e0:b0:6a:6f:1f:eb:5e:dc:77:c1: 89:ba:1c:dd:b5:c5:c2:a5:55:30:81:5e:7d:6a:7d: 2c:e9:be:72:17:24:74:15:c8:e0:ba:de:2c:c6:6e: b2:cb:62:fb:96:5a:23:63:99:5e:00:68:9c:b8:26: a9:bc:15:53:fb:b9:b6:c5:a9:5e:2c:f8:39:ed:2f: c8:3c:9d:58:ca:c4:ff:75:1d:ff:bb:6f:9d:8b:a3: b3:8a:2f:6d:e7:84:87:18:47:52:84:05:7b:b2:1d: b1:35:a4:ee:c8:3b:a8:5d:59:4b:9e:bc:1f:ff:08: 78:00:a8:61:88:9f:94:76:94:77:89:93:ae:40:53: 6f:f6:f0:20:8c:03:c9:c3:1f:87:ca:7e:0b:c6:67: 67:18:18:d1:50:e3:3c:90:3a:cd:61:a7:f3:cb:f5: 4a:00:1a:70:14:7e:f8:1b:cb:1c:a5:90:a8:16:d3: 4d:2f:eb:1f:f6:31:92:56:48:08:fb:3a:bb:bf:5c: 78:fa:ef:73:5e:6e:e1:44:67:bf:0c:2f:c7:46:50: 8a:24:de:3a:9a:a4:a3:2e:d2:a5:e1:a0:84:07:45: 16:8d:e5:f7:b1:e8:05:c6:06:38:b4:d9:34:89:8a: 02:eb:2d:ca:e9:2a:c9:11:6e:9a:5c:65:bc:de:3f: 89:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0C:B8:0A:7D:44:16:0C:2B:A0:3A:5E:DF:46:C0:82:96:45:DE:FE X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34322e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.42.0/23 Signature Algorithm: sha256WithRSAEncryption a6:2a:52:54:b4:85:60:e0:4c:54:50:6f:25:04:44:f0:68:29: 31:42:78:35:e7:21:f5:45:59:8b:67:db:7e:1e:87:4c:92:84: fc:3d:ef:54:e9:09:32:20:85:cc:a8:db:86:10:f0:29:75:e3: 8c:4b:0b:82:9d:ff:0d:ed:22:52:51:ab:b9:23:7a:62:80:40: 22:2a:ae:06:02:8c:34:9f:9f:93:d7:5f:26:61:e1:ea:b8:58: a9:1b:03:3d:c2:fb:ac:17:15:b1:ed:61:43:59:c2:68:df:18: 41:63:a3:3a:83:0b:9b:44:d4:65:1d:0b:85:13:1d:84:90:47: f6:34:9d:e5:df:ee:39:53:09:bf:0c:29:06:80:4d:4e:5c:d9: c3:7f:b3:41:a3:34:bf:aa:53:7a:c9:4b:68:8b:fa:ee:f7:ed: 29:8f:7c:b4:4a:51:ce:45:64:14:c1:64:90:39:3b:f2:8e:81: f4:97:ef:0b:ff:39:87:07:31:73:5b:be:b9:1c:76:7d:25:18: 41:33:b5:e8:61:10:3e:b6:0c:07:e7:01:d2:a3:41:8f:0f:aa: 3e:fb:7f:55:99:33:a1:dc:4e:d9:8a:95:7d:dc:f4:5e:ca:6f: 1d:30:42:22:72:50:16:0b:f2:85:52:16:56:1f:a1:61:06:87: 2a:4e:a8:e4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUT8cbMkvuMT8tJtzr8dGDOCWxdzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTRaFw0yNTA4MjAxMTAwNTRaMDMxMTAvBgNV BAMTKEYyMENCODBBN0Q0NDE2MEMyQkEwM0E1RURGNDZDMDgyOTY0NURFRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7hptM4LBqbx/rXtx3wYm6HN21 xcKlVTCBXn1qfSzpvnIXJHQVyOC63izGbrLLYvuWWiNjmV4AaJy4Jqm8FVP7ubbF qV4s+DntL8g8nVjKxP91Hf+7b52Lo7OKL23nhIcYR1KEBXuyHbE1pO7IO6hdWUue vB//CHgAqGGIn5R2lHeJk65AU2/28CCMA8nDH4fKfgvGZ2cYGNFQ4zyQOs1hp/PL 9UoAGnAUfvgbyxylkKgW000v6x/2MZJWSAj7Oru/XHj673NebuFEZ78ML8dGUIok 3jqapKMu0qXhoIQHRRaN5fex6AXGBji02TSJigLrLcrpKskRbppcZbzeP4nFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8gy4Cn1EFgwroDpe30bAgpZF3v4wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmiowDQYJKoZIhvcN AQELBQADggEBAKYqUlS0hWDgTFRQbyUERPBoKTFCeDXnIfVFWYtn234eh0yShPw9 71TpCTIghcyo24YQ8Cl144xLC4Kd/w3tIlJRq7kjemKAQCIqrgYCjDSfn5PXXyZh 4eq4WKkbAz3C+6wXFbHtYUNZwmjfGEFjozqDC5tE1GUdC4UTHYSQR/Y0neXf7jlT Cb8MKQaATU5c2cN/s0GjNL+qU3rJS2iL+u737SmPfLRKUc5FZBTBZJA5O/KOgfSX 7wv/OYcHMXNbvrkcdn0lGEEztehhED62DAfnAdKjQY8Pqj77f1WZM6HcTtmKlX3c 9F7Kbx0wQiJyUBYL8oVSFlYfoWEGhypOqOQ= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org