$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34382e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e34382e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: gpKvVhoy0IBz2/tkxRYt6jJzGm/E5FdCdMawesFcj/Q= Subject key identifier: 71:A6:C1:DE:D4:1C:BC:ED:DD:A3:AE:AF:82:6D:64:1B:9B:9C:91:5D Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 570AE30E05395CD866D47895C831FF85859995FB Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34382e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:55 +0000 ROA not before: Wed 21 Aug 2024 10:55:55 +0000 ROA not after: Wed 20 Aug 2025 11:00:55 +0000 asID: 4434 IP address blocks: 202.154.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:0a:e3:0e:05:39:5c:d8:66:d4:78:95:c8:31:ff:85:85:99:95:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:55 2024 GMT Not After : Aug 20 11:00:55 2025 GMT Subject: CN=71A6C1DED41CBCEDDDA3AEAF826D641B9B9C915D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b9:21:6e:35:19:c3:47:12:a2:49:ae:29:e8: 9d:86:3a:60:55:68:3d:3f:bc:c5:36:c3:77:a9:79: 53:1e:e2:8f:42:cd:e4:86:48:cd:1a:2f:32:31:cb: 69:47:88:d5:85:d1:92:a3:15:b3:f4:fe:9d:74:e0: 29:8f:81:41:d9:d7:25:95:36:83:cb:4c:0f:5f:4a: af:ef:8e:33:a8:a7:d2:77:ff:1f:75:fd:ff:65:ad: 07:14:ae:bf:b9:c4:21:6a:31:60:4d:7f:a9:5e:60: 35:c8:27:71:1a:78:3a:93:75:4a:30:4c:4e:27:76: 67:4d:14:a7:ad:02:ca:fb:b0:2d:43:8e:69:60:46: 71:33:75:19:9b:44:4d:ba:7b:6a:ac:43:d5:43:a5: 49:03:15:e9:ce:d6:16:77:f1:ed:72:65:a9:b5:86: 9b:7a:c6:92:0f:b1:c1:b4:f1:39:8d:ef:60:5c:c5: 32:c9:79:4a:37:82:5d:48:ec:9f:6a:a0:04:f8:6c: c5:53:50:bc:be:bb:24:4b:96:9b:6d:e0:10:98:1c: 7a:31:98:3c:eb:5d:c2:76:c0:5a:7e:6f:18:3f:75: bf:7c:ab:77:4a:3e:a0:e4:aa:07:8a:b3:79:2e:ed: 97:bd:a9:05:92:63:fc:ca:79:de:d9:62:4f:bd:44: 68:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A6:C1:DE:D4:1C:BC:ED:DD:A3:AE:AF:82:6D:64:1B:9B:9C:91:5D X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34382e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.48.0/23 Signature Algorithm: sha256WithRSAEncryption 07:50:49:98:70:21:97:be:6b:5c:4c:f9:86:02:ff:a2:04:93: 82:43:ee:b8:7b:b8:c2:e7:34:92:d6:17:a3:07:33:70:d2:b5: ed:c5:57:98:1e:8a:03:a2:77:82:8e:14:36:4f:fb:3e:19:9d: fd:0c:98:d0:ee:c4:83:4d:c4:be:1c:f2:34:b7:d0:54:33:3e: b2:82:8d:0f:1a:68:b8:0a:8a:6f:c9:3c:19:a8:d4:42:f2:93: 80:12:cb:a2:19:a0:9a:90:94:af:4a:46:59:29:44:7e:33:32: 6d:17:b1:2d:a7:e2:6f:02:dc:57:77:5e:5c:04:43:8c:18:68: 83:a1:d9:49:e6:dc:ae:7f:20:98:4c:40:09:76:4e:54:91:5b: 61:d8:94:01:91:88:a6:ec:02:13:fa:17:c6:7b:1a:17:21:2a: e1:f9:b1:50:ae:4e:2d:88:4b:01:b5:eb:3b:75:f2:f2:cb:b2: 35:a4:c3:e1:9a:b6:67:e4:af:46:12:83:a5:b5:84:eb:43:22: 2a:9d:8c:f7:3b:7f:aa:96:96:6a:52:24:19:54:8c:26:60:da: 9e:5c:15:af:e4:f5:7e:a6:86:14:1e:49:40:a4:8d:c0:3b:e5: c0:67:d2:db:a9:7d:61:5f:60:8b:e7:79:6c:d5:2d:ec:a5:62: 8c:fc:0a:a5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUVwrjDgU5XNhm1HiVyDH/hYWZlfswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTVaFw0yNTA4MjAxMTAwNTVaMDMxMTAvBgNV BAMTKDcxQTZDMURFRDQxQ0JDRUREREEzQUVBRjgyNkQ2NDFCOUI5QzkxNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxuSFuNRnDRxKiSa4p6J2GOmBV aD0/vMU2w3epeVMe4o9CzeSGSM0aLzIxy2lHiNWF0ZKjFbP0/p104CmPgUHZ1yWV NoPLTA9fSq/vjjOop9J3/x91/f9lrQcUrr+5xCFqMWBNf6leYDXIJ3EaeDqTdUow TE4ndmdNFKetAsr7sC1DjmlgRnEzdRmbRE26e2qsQ9VDpUkDFenO1hZ38e1yZam1 hpt6xpIPscG08TmN72BcxTLJeUo3gl1I7J9qoAT4bMVTULy+uyRLlptt4BCYHHox mDzrXcJ2wFp+bxg/db98q3dKPqDkqgeKs3ku7Ze9qQWSY/zKed7ZYk+9RGjrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUcabB3tQcvO3do66vgm1kG5uckV0wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmjAwDQYJKoZIhvcN AQELBQADggEBAAdQSZhwIZe+a1xM+YYC/6IEk4JD7rh7uMLnNJLWF6MHM3DSte3F V5geigOid4KOFDZP+z4Znf0MmNDuxINNxL4c8jS30FQzPrKCjQ8aaLgKim/JPBmo 1ELyk4ASy6IZoJqQlK9KRlkpRH4zMm0XsS2n4m8C3Fd3XlwEQ4wYaIOh2Unm3K5/ IJhMQAl2TlSRW2HYlAGRiKbsAhP6F8Z7GhchKuH5sVCuTi2ISwG16zt18vLLsjWk w+Gatmfkr0YSg6W1hOtDIiqdjPc7f6qWlmpSJBlUjCZg2p5cFa/k9X6mhhQeSUCk jcA75cBn0tupfWFfYIvneWzVLeylYoz8CqU= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org