$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34382e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e34382e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: DJlTV+lAXrThnP8y7Eeg+7dcsRfxEbObLUDGBwsxp9A= Subject key identifier: BD:05:EB:CB:43:BF:0F:F5:EB:F6:46:B7:46:04:9E:6B:59:65:E5:48 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4F5F0B376908124E3F85CF96733C43EA5A04C91A Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34382e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:45 +0000 ROA not before: Wed 20 Sep 2023 10:55:45 +0000 ROA not after: Wed 18 Sep 2024 11:00:45 +0000 asID: 4434 IP address blocks: 202.154.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:5f:0b:37:69:08:12:4e:3f:85:cf:96:73:3c:43:ea:5a:04:c9:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:45 2023 GMT Not After : Sep 18 11:00:45 2024 GMT Subject: CN=BD05EBCB43BF0FF5EBF646B746049E6B5965E548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f9:f3:33:ff:32:2a:cd:12:f9:fc:1d:7b:ac: cd:7c:1f:ad:c4:15:c3:67:7f:d3:31:88:bf:a3:32: 20:3e:27:6d:be:8d:82:39:be:0e:93:6c:c6:d4:ee: 1f:e1:2c:4b:31:06:bc:ab:dd:6e:cd:d6:90:30:92: 91:f1:31:e0:a6:97:40:fd:3d:90:ad:c7:31:9d:ca: 32:48:d8:bf:72:1d:63:41:2a:64:6a:2d:d6:c4:5a: 05:44:fb:d4:7a:8a:99:65:1e:89:f3:99:cb:cb:83: 1d:a3:ee:6f:99:4b:32:84:b0:c7:d6:40:c6:a3:49: 4d:67:22:31:70:e9:d9:eb:74:60:0d:ec:45:c6:ce: ce:9f:60:13:f4:f8:e1:cc:5a:2a:6c:6d:8c:bb:24: 05:ee:9a:64:6a:35:15:c6:45:39:00:50:c8:8e:ea: f1:f6:b1:95:9b:a5:fc:98:a0:53:1a:1b:86:2b:be: e0:f6:67:93:7b:07:a8:82:3c:37:9e:8a:fa:88:0e: ab:17:44:2b:5a:93:dc:ec:8a:ad:bf:b8:4c:4d:a6: 68:04:56:e2:80:00:b1:e9:72:02:7b:c6:87:41:44: dd:90:32:61:b0:c1:6c:96:ca:c1:1a:4a:88:2e:5a: 6a:e8:bd:10:4c:5f:92:99:8d:b6:a2:58:a7:54:85: 07:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:05:EB:CB:43:BF:0F:F5:EB:F6:46:B7:46:04:9E:6B:59:65:E5:48 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34382e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.48.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:00:e4:d6:fe:67:9f:fe:51:36:73:37:59:9b:7b:a4:1c:88: 63:33:8d:ec:5f:aa:7b:13:d8:a6:73:41:e3:a8:dd:28:ce:7f: 72:70:52:e2:80:d5:5f:7c:45:9b:a5:a8:a9:ea:ae:d2:bb:11: be:e2:95:07:2c:0e:c7:dd:77:3e:63:21:0f:ef:2c:fc:be:ff: 90:b5:6a:9d:f9:5d:32:b3:29:45:3d:4b:df:86:d1:72:d8:d9: 99:25:71:31:26:23:4e:a9:33:49:57:2c:44:bb:b0:b0:0a:f8: 35:65:1d:37:32:e5:b7:83:d8:1e:73:1b:dc:b1:de:b6:66:23: 13:79:57:47:3e:16:84:d8:9e:19:a2:70:5f:e8:5a:ec:95:68: 9a:a1:b2:ea:33:df:82:5e:3c:1a:12:c1:72:40:a4:8d:02:27: 7a:9a:c6:ee:61:dc:8c:88:c5:8f:65:3e:89:ec:d4:1a:41:ce: 37:55:c2:46:e2:b8:ac:d9:9f:cc:73:ad:10:c6:12:90:7d:d4: 40:87:3d:82:d8:0f:c4:db:49:16:52:17:60:fb:a5:a5:03:ac: 1b:f6:ac:f2:1c:b6:f2:39:88:f5:bc:c0:9c:d4:7b:2f:59:ae: 19:09:fe:f1:71:8a:9d:be:1b:1c:3a:8c:d4:fa:48:11:79:34: e0:24:e8:f9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUT18LN2kIEk4/hc+WczxD6loEyRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDVaFw0yNDA5MTgxMTAwNDVaMDMxMTAvBgNV BAMTKEJEMDVFQkNCNDNCRjBGRjVFQkY2NDZCNzQ2MDQ5RTZCNTk2NUU1NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv+fMz/zIqzRL5/B17rM18H63E FcNnf9MxiL+jMiA+J22+jYI5vg6TbMbU7h/hLEsxBryr3W7N1pAwkpHxMeCml0D9 PZCtxzGdyjJI2L9yHWNBKmRqLdbEWgVE+9R6ipllHonzmcvLgx2j7m+ZSzKEsMfW QMajSU1nIjFw6dnrdGAN7EXGzs6fYBP0+OHMWipsbYy7JAXummRqNRXGRTkAUMiO 6vH2sZWbpfyYoFMaG4YrvuD2Z5N7B6iCPDeeivqIDqsXRCtak9zsiq2/uExNpmgE VuKAALHpcgJ7xodBRN2QMmGwwWyWysEaSoguWmrovRBMX5KZjbaiWKdUhQflAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvQXry0O/D/Xr9ka3RgSea1ll5UgwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmjAwDQYJKoZIhvcN AQELBQADggEBAAsA5Nb+Z5/+UTZzN1mbe6QciGMzjexfqnsT2KZzQeOo3SjOf3Jw UuKA1V98RZulqKnqrtK7Eb7ilQcsDsfddz5jIQ/vLPy+/5C1ap35XTKzKUU9S9+G 0XLY2ZklcTEmI06pM0lXLES7sLAK+DVlHTcy5beD2B5zG9yx3rZmIxN5V0c+FoTY nhmicF/oWuyVaJqhsuoz34JePBoSwXJApI0CJ3qaxu5h3IyIxY9lPons1BpBzjdV wkbiuKzZn8xzrRDGEpB91ECHPYLYD8TbSRZSF2D7paUDrBv2rPIctvI5iPW8wJzU ey9ZrhkJ/vFxip2+Gxw6jNT6SBF5NOAk6Pk= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org