$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34322e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e34322e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: UNCg3ha7AE4Mz2BNDOR97J8y1xGrARVrwxj7yMrktls= Subject key identifier: 12:13:7D:09:5E:55:51:E0:CD:66:A0:7D:A4:39:85:79:03:52:40:AA Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4ACBB919805C282415F31009571D0951BA03DE22 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34322e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:45 +0000 ROA not before: Wed 20 Sep 2023 10:55:45 +0000 ROA not after: Wed 18 Sep 2024 11:00:45 +0000 asID: 4434 IP address blocks: 202.154.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:cb:b9:19:80:5c:28:24:15:f3:10:09:57:1d:09:51:ba:03:de:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:45 2023 GMT Not After : Sep 18 11:00:45 2024 GMT Subject: CN=12137D095E5551E0CD66A07DA4398579035240AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a1:0a:6e:46:57:44:f6:e0:48:6b:ea:2d:8d: fd:60:37:3e:67:e2:c2:5d:c2:fb:57:f6:9f:5a:ba: b5:42:dd:6a:ae:61:1a:ce:ff:aa:fb:54:50:53:db: 91:89:c5:28:c6:88:e1:1a:d2:02:5f:86:98:1f:fc: 82:2c:02:bc:41:92:5c:06:28:c0:5a:93:31:7a:69: 89:d1:b0:ba:4c:a0:71:68:8f:8a:7c:ba:d9:56:da: 0a:8b:64:2e:97:89:08:9e:40:b0:68:32:8b:47:6f: 14:91:e1:f2:63:66:3f:88:90:63:fe:c1:18:0a:b4: 74:db:11:8e:0f:b1:ed:ab:d4:e4:1a:2a:79:13:63: ec:47:16:73:cc:1d:7b:5c:17:12:12:ea:a8:1b:8f: b5:37:b2:73:af:c8:70:10:b1:dd:86:cb:1e:83:e9: 72:52:ad:16:2b:f5:cb:6d:2d:36:a9:e6:68:ca:ec: b1:ef:6b:c7:54:92:d3:62:2c:eb:24:1d:3d:cc:6d: 2d:74:fa:48:dc:8f:16:5d:eb:a8:72:c8:f0:28:0b: d8:e4:80:66:7b:16:1b:27:54:b5:ed:63:89:f3:f9: eb:5d:25:81:e2:41:00:74:6b:32:b2:dd:6c:7e:30: 9d:ba:7d:3d:d0:f5:b5:2a:34:92:51:cd:1c:24:23: 40:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:13:7D:09:5E:55:51:E0:CD:66:A0:7D:A4:39:85:79:03:52:40:AA X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34322e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.42.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:0c:f7:84:82:e7:a2:1a:f3:b4:46:ca:85:e4:90:08:7f:85: 3e:e4:d8:37:5b:fe:b2:09:36:91:5f:0d:87:fe:14:d5:f6:40: cc:ee:c4:5d:6b:93:cb:3b:28:92:ea:c0:ee:4d:b5:8f:8e:0f: 9d:7f:e6:30:67:66:4e:e1:9c:77:af:0d:88:63:5d:b5:b3:8b: 20:2f:af:f7:85:e6:9f:34:3a:04:c4:b9:5d:0b:24:7b:52:63: 0b:87:96:d0:6c:e1:ec:6b:91:5f:e4:9b:01:53:c9:83:1d:b4: 60:09:86:30:df:dd:1e:a0:0e:fb:89:03:08:06:2e:78:df:c3: 32:00:d2:8e:44:6b:58:4e:26:bd:8c:3b:9b:c9:be:08:e7:0a: 0a:bc:79:82:96:b5:a8:b9:f0:86:1a:33:c4:b7:ee:71:31:2f: a9:34:29:26:db:3f:34:8d:d3:be:c5:14:e4:d0:bd:69:16:37: 4f:bc:84:72:b1:78:d2:15:e0:8f:ee:f0:93:18:8a:90:e1:46: d4:75:38:10:bf:df:f9:e5:20:64:5a:2f:bf:26:f4:43:b9:46: 10:ea:58:c6:49:50:00:34:9b:37:71:fc:a3:9a:58:df:93:03: 3b:9e:73:41:91:36:d8:f5:ce:8e:54:5a:fc:d6:d9:e2:d8:01: 45:35:ee:3a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSsu5GYBcKCQV8xAJVx0JUboD3iIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDVaFw0yNDA5MTgxMTAwNDVaMDMxMTAvBgNV BAMTKDEyMTM3RDA5NUU1NTUxRTBDRDY2QTA3REE0Mzk4NTc5MDM1MjQwQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUoQpuRldE9uBIa+otjf1gNz5n 4sJdwvtX9p9aurVC3WquYRrO/6r7VFBT25GJxSjGiOEa0gJfhpgf/IIsArxBklwG KMBakzF6aYnRsLpMoHFoj4p8utlW2gqLZC6XiQieQLBoMotHbxSR4fJjZj+IkGP+ wRgKtHTbEY4Pse2r1OQaKnkTY+xHFnPMHXtcFxIS6qgbj7U3snOvyHAQsd2Gyx6D 6XJSrRYr9cttLTap5mjK7LHva8dUktNiLOskHT3MbS10+kjcjxZd66hyyPAoC9jk gGZ7FhsnVLXtY4nz+etdJYHiQQB0azKy3Wx+MJ26fT3Q9bUqNJJRzRwkI0CVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUEhN9CV5VUeDNZqB9pDmFeQNSQKowHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmiowDQYJKoZIhvcN AQELBQADggEBACoM94SC56Ia87RGyoXkkAh/hT7k2Ddb/rIJNpFfDYf+FNX2QMzu xF1rk8s7KJLqwO5NtY+OD51/5jBnZk7hnHevDYhjXbWziyAvr/eF5p80OgTEuV0L JHtSYwuHltBs4exrkV/kmwFTyYMdtGAJhjDf3R6gDvuJAwgGLnjfwzIA0o5Ea1hO Jr2MO5vJvgjnCgq8eYKWtai58IYaM8S37nExL6k0KSbbPzSN077FFOTQvWkWN0+8 hHKxeNIV4I/u8JMYipDhRtR1OBC/3/nlIGRaL78m9EO5RhDqWMZJUAA0mzdx/KOa WN+TAzuec0GRNtj1zo5UWvzW2eLYAUU17jo= -----END CERTIFICATE-----Generated at Sat Jun 22 14:21:50 2024 by rpki-client on console-ams.rpki-client.org