$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35302e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e35302e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: f12qT6s82jZZTJg4KYFPhwtV1VW5cVuMgEqzyWophTc= Subject key identifier: CF:13:B5:12:B5:D1:22:0F:C0:B7:19:2C:7D:D7:76:BE:F2:AB:56:D3 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 49F6DC8D27657FEA78DDAA4089DDDDDAC55220F8 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35302e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:50 +0000 ROA not before: Wed 21 Aug 2024 10:55:50 +0000 ROA not after: Wed 20 Aug 2025 11:00:50 +0000 asID: 4434 IP address blocks: 202.154.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:f6:dc:8d:27:65:7f:ea:78:dd:aa:40:89:dd:dd:da:c5:52:20:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:50 2024 GMT Not After : Aug 20 11:00:50 2025 GMT Subject: CN=CF13B512B5D1220FC0B7192C7DD776BEF2AB56D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:38:91:fb:9c:65:00:c3:31:fb:b6:89:9b:be: fc:d3:fe:ee:4b:9a:e9:80:b7:64:e0:80:8a:55:19: 1c:17:a6:4e:78:a2:0f:39:ba:18:18:dd:6b:53:26: 96:29:24:c0:b0:c8:52:57:68:9d:02:27:1e:56:bc: 53:06:1c:9e:41:c6:8b:60:8d:88:8a:0b:8b:d2:ac: cd:25:ec:1c:f2:81:fd:27:8c:ae:b1:b4:e9:0e:ba: 87:ca:1a:57:65:4e:35:fe:6f:6c:0a:35:de:8d:7a: df:ea:76:1d:bf:ec:55:a8:cd:28:6d:72:63:49:87: 72:03:b2:01:20:01:e8:62:d9:3e:59:0d:d7:ef:de: 4d:4a:14:3a:48:86:a0:ab:bd:df:12:1f:cf:d4:8f: f7:e3:5e:59:f4:7a:c3:d5:6a:7a:30:83:e7:3e:ee: 91:8d:1c:db:0e:b2:4c:83:5c:ff:54:6f:0f:ff:3f: 53:88:95:78:61:96:be:47:2a:7f:d2:ad:01:73:a0: 21:e5:af:f1:ac:a4:21:3b:d4:cd:4b:65:45:34:fe: a8:80:bc:e2:9e:c8:4a:70:b7:64:cd:ec:be:48:4b: 82:be:00:5f:2e:ae:1f:17:10:d4:97:3c:a1:08:71: 40:4d:b0:e9:e9:06:67:aa:51:7d:c3:26:71:30:2f: f6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:13:B5:12:B5:D1:22:0F:C0:B7:19:2C:7D:D7:76:BE:F2:AB:56:D3 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35302e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.50.0/23 Signature Algorithm: sha256WithRSAEncryption a4:d9:82:8e:19:16:79:15:11:1e:13:f9:0f:59:e5:71:42:f6: b1:54:e4:05:55:c2:84:d7:8d:f2:08:fe:83:5e:e9:3c:5f:31: f2:82:f1:7c:f0:0e:d7:ba:dd:f4:9a:5c:21:7c:80:49:6b:82: 16:59:85:0e:b7:ab:ca:83:b1:7e:89:42:61:8e:7f:b7:1c:48: ee:38:fe:23:65:01:0e:b9:5e:29:24:69:ae:82:92:d2:04:87: 34:7d:a8:a4:a8:42:8b:c4:c4:fb:bd:20:df:fc:13:e9:43:e4: bb:29:14:88:69:1b:46:74:09:ee:9e:ac:9d:71:d8:c0:88:b4: ba:98:ce:09:2b:90:39:a8:3c:3e:81:af:66:3b:2e:9d:50:6c: b9:e8:53:c5:d9:d5:e1:00:ce:fb:2b:eb:6a:08:32:af:af:6c: 03:12:1f:58:ea:c2:3a:c0:f2:25:1c:e3:02:f8:9e:fd:3d:e5: 57:35:37:0a:6b:a3:64:b0:1b:ae:27:c6:67:88:ad:3e:7f:85: f6:dc:fe:c3:01:cb:f2:12:35:92:09:e0:be:0c:94:32:74:eb: 1a:b3:e6:eb:29:a1:47:a8:27:7f:25:81:74:96:99:22:eb:6d: 62:5f:fd:31:d0:21:d1:35:d6:28:b4:c1:7a:06:dc:bd:72:39: 8c:48:c2:be -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSfbcjSdlf+p43apAid3d2sVSIPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTBaFw0yNTA4MjAxMTAwNTBaMDMxMTAvBgNV BAMTKENGMTNCNTEyQjVEMTIyMEZDMEI3MTkyQzdERDc3NkJFRjJBQjU2RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDROJH7nGUAwzH7tombvvzT/u5L mumAt2TggIpVGRwXpk54og85uhgY3WtTJpYpJMCwyFJXaJ0CJx5WvFMGHJ5Bxotg jYiKC4vSrM0l7Bzygf0njK6xtOkOuofKGldlTjX+b2wKNd6Net/qdh2/7FWozSht cmNJh3IDsgEgAehi2T5ZDdfv3k1KFDpIhqCrvd8SH8/Uj/fjXln0esPVanowg+c+ 7pGNHNsOskyDXP9Ubw//P1OIlXhhlr5HKn/SrQFzoCHlr/GspCE71M1LZUU0/qiA vOKeyEpwt2TN7L5IS4K+AF8urh8XENSXPKEIcUBNsOnpBmeqUX3DJnEwL/Y3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzxO1ErXRIg/Atxksfdd2vvKrVtMwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmjIwDQYJKoZIhvcN AQELBQADggEBAKTZgo4ZFnkVER4T+Q9Z5XFC9rFU5AVVwoTXjfII/oNe6TxfMfKC 8XzwDte63fSaXCF8gElrghZZhQ63q8qDsX6JQmGOf7ccSO44/iNlAQ65Xikkaa6C ktIEhzR9qKSoQovExPu9IN/8E+lD5LspFIhpG0Z0Ce6erJ1x2MCItLqYzgkrkDmo PD6Br2Y7Lp1QbLnoU8XZ1eEAzvsr62oIMq+vbAMSH1jqwjrA8iUc4wL4nv095Vc1 Nwpro2SwG64nxmeIrT5/hfbc/sMBy/ISNZIJ4L4MlDJ06xqz5uspoUeoJ38lgXSW mSLrbWJf/THQIdE11ii0wXoG3L1yOYxIwr4= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org