$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa File: 3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa (raw, json) Hash identifier: 6uwS1rEUwMxt+FEq1XANm30GDIGMhEyMkNNaJFYdFqg= Subject key identifier: 28:BF:ED:2A:18:97:27:B0:20:91:1E:EA:3F:83:28:90:22:45:44:1A Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 6571691C15C152F715926E21F1B7AF5C7B828925 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa Signing time: Tue 20 Feb 2024 02:00:01 +0000 ROA not before: Tue 20 Feb 2024 01:55:01 +0000 ROA not after: Tue 18 Feb 2025 02:00:01 +0000 asID: 138886 IP address blocks: 202.154.44.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:71:69:1c:15:c1:52:f7:15:92:6e:21:f1:b7:af:5c:7b:82:89:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Feb 20 01:55:01 2024 GMT Not After : Feb 18 02:00:01 2025 GMT Subject: CN=28BFED2A189727B020911EEA3F8328902245441A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:af:54:09:9e:3a:ff:74:7a:1d:91:d9:37:83: 86:00:77:21:9e:af:05:0a:26:9d:cd:2a:e0:e3:35: 0d:56:e8:22:06:ea:57:b9:72:02:12:79:09:84:13: 4f:2a:c7:1a:4c:5a:53:f2:99:57:b1:8d:96:28:09: bd:80:e3:80:da:16:02:e1:f1:24:a4:77:74:c7:d4: e8:0a:f1:79:2a:08:a3:6e:d4:3e:84:09:08:43:1a: 46:f5:9a:bd:68:f3:5a:5a:42:bd:95:af:d3:17:fe: 39:c2:75:df:83:8f:e6:c8:ec:dd:2b:9c:be:8e:a8: 6d:94:86:9e:d9:11:3b:45:4f:21:68:6b:d6:61:bd: 41:1e:cc:16:39:d5:5c:26:a0:21:d0:e3:93:fa:80: 8b:54:0c:65:d6:40:bc:e2:e3:29:3c:01:95:06:1c: 79:c6:6d:42:ae:3a:5d:06:84:ef:d6:31:41:17:69: f6:b8:0b:8e:a1:95:8b:71:c7:dd:48:08:3c:57:75: 95:65:81:7a:95:93:4e:fe:f1:fc:99:b9:72:ee:79: 3d:3e:8c:50:0a:cd:62:f2:21:3d:8e:3d:1f:3b:ad: 10:fb:97:9c:7c:83:e2:48:0f:b4:28:cf:d8:de:e7: cf:d3:db:43:31:e2:72:32:a7:4d:3d:23:9d:3c:f5: e2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:BF:ED:2A:18:97:27:B0:20:91:1E:EA:3F:83:28:90:22:45:44:1A X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.44.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:2e:c1:ae:e1:c6:9f:7e:a9:04:c3:19:a2:92:60:e5:75:cb: 4b:16:46:7c:b4:2c:00:19:27:82:77:52:d3:f3:bb:d9:14:14: 29:0b:b6:38:05:84:49:6e:15:a4:4c:ff:7f:24:e0:37:74:54: 16:77:65:a5:9d:86:51:fc:ca:2c:f1:b3:82:75:20:b3:3f:85: 11:3f:b4:7b:32:8e:f0:0a:36:2c:3b:7e:2d:f6:60:e6:f0:f1: 91:4a:85:6a:90:08:27:d4:f8:ff:89:d8:8c:a5:77:ac:fa:20: 2f:03:f8:89:6f:35:30:e4:ab:59:3b:7a:14:f5:36:78:6d:22: ab:1b:df:84:76:42:f3:14:97:0d:c5:16:20:b1:5f:2e:57:ec: e3:67:4b:64:47:28:81:f4:6b:f1:42:22:6d:0a:4c:8b:d0:a5: 11:f9:cf:f4:19:e4:4d:d0:24:75:fc:34:f0:91:23:9d:48:24: 23:21:7b:5c:26:89:d6:69:fe:b4:9e:18:b9:e8:48:ff:fc:8c: e3:cb:f6:21:d1:63:72:18:b8:12:61:c1:30:a4:22:86:ec:6d: ba:16:6a:3d:c4:5e:fd:ae:d0:4d:38:ca:a1:77:98:ed:22:a9: 6d:51:f5:ba:8b:53:01:c6:00:ec:91:3f:93:6e:ca:70:4c:4c: 45:b0:f5:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZXFpHBXBUvcVkm4h8bevXHuCiSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDAyMjAwMTU1MDFaFw0yNTAyMTgwMjAwMDFaMDMxMTAvBgNV BAMTKDI4QkZFRDJBMTg5NzI3QjAyMDkxMUVFQTNGODMyODkwMjI0NTQ0MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGr1QJnjr/dHodkdk3g4YAdyGe rwUKJp3NKuDjNQ1W6CIG6le5cgISeQmEE08qxxpMWlPymVexjZYoCb2A44DaFgLh 8SSkd3TH1OgK8XkqCKNu1D6ECQhDGkb1mr1o81paQr2Vr9MX/jnCdd+Dj+bI7N0r nL6OqG2Uhp7ZETtFTyFoa9ZhvUEezBY51VwmoCHQ45P6gItUDGXWQLzi4yk8AZUG HHnGbUKuOl0GhO/WMUEXafa4C46hlYtxx91ICDxXdZVlgXqVk07+8fyZuXLueT0+ jFAKzWLyIT2OPR87rRD7l5x8g+JID7Qoz9je58/T20Mx4nIyp009I5089eLZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKL/tKhiXJ7AgkR7qP4MokCJFRBowHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByposMA0GCSqG SIb3DQEBCwUAA4IBAQCLLsGu4caffqkEwxmikmDldctLFkZ8tCwAGSeCd1LT87vZ FBQpC7Y4BYRJbhWkTP9/JOA3dFQWd2WlnYZR/Mos8bOCdSCzP4URP7R7Mo7wCjYs O34t9mDm8PGRSoVqkAgn1Pj/idiMpXes+iAvA/iJbzUw5KtZO3oU9TZ4bSKrG9+E dkLzFJcNxRYgsV8uV+zjZ0tkRyiB9GvxQiJtCkyL0KUR+c/0GeRN0CR1/DTwkSOd SCQjIXtcJonWaf60nhi56Ej//Izjy/Yh0WNyGLgSYcEwpCKG7G26Fmo9xF79rtBN OMqhd5jtIqltUfW6i1MBxgDskT+TbspwTExFsPU4 -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org