$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35302e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e35302e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: z7QHdrTMMpVVOuUie/AxrDz0AQCwCTAEziLreDAFGBQ= Subject key identifier: 9D:DC:62:A1:37:58:1C:58:8A:D6:11:45:24:ED:40:5E:C9:25:D4:F2 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 09A36A3D4D5B73D3D31B0151CCFE06C7F1214B4B Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35302e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:42 +0000 ROA not before: Wed 20 Sep 2023 10:55:42 +0000 ROA not after: Wed 18 Sep 2024 11:00:42 +0000 asID: 4434 IP address blocks: 202.154.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a3:6a:3d:4d:5b:73:d3:d3:1b:01:51:cc:fe:06:c7:f1:21:4b:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:42 2023 GMT Not After : Sep 18 11:00:42 2024 GMT Subject: CN=9DDC62A137581C588AD6114524ED405EC925D4F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:82:c9:64:70:11:b3:86:c6:a5:66:0d:fd: b0:d1:6b:e2:76:c8:81:58:4d:6a:e2:01:7d:94:7b: 97:6f:1e:71:e9:b8:4a:9f:35:7e:b7:1c:39:1b:d1: 14:f1:e9:d3:ce:dd:bf:05:6c:c5:a9:2a:c4:17:5f: 0e:5a:ec:cb:55:84:d4:84:92:16:92:35:a8:1a:a4: 6c:21:41:e4:25:0a:a3:c9:ef:2c:9d:79:03:f7:ae: 1f:4d:b0:ce:b5:e1:bb:72:b6:0b:c6:be:3e:1f:78: f2:9e:96:2f:c9:de:f2:e6:f9:7c:a2:97:fa:39:44: 90:d8:90:34:a3:50:16:e3:1b:c0:b9:ef:68:e1:92: cd:b4:76:e5:f3:f6:06:b1:a8:ad:ea:3d:b1:69:2f: 45:5b:51:ca:ae:f9:08:73:7f:a0:d7:d6:62:22:a6: 74:f4:df:48:46:40:96:47:39:9f:8b:c6:d5:73:39: 12:4a:af:b5:48:8f:e2:a6:0f:66:39:ff:fa:b1:c3: ea:51:79:1b:e6:d6:82:69:58:f1:28:7d:5d:2d:6c: a6:3b:77:fa:f5:34:91:d1:a1:9e:67:9b:77:3d:01: d0:86:1b:b8:92:c7:8d:87:0a:97:c3:11:05:49:ae: 4c:0c:c2:74:a8:61:69:7c:86:ac:c8:b5:b6:c4:4e: 0e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DC:62:A1:37:58:1C:58:8A:D6:11:45:24:ED:40:5E:C9:25:D4:F2 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35302e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.50.0/23 Signature Algorithm: sha256WithRSAEncryption 88:75:10:fa:a1:89:6b:ee:b4:79:5f:93:24:bc:97:84:10:b8: 0e:0d:98:bd:82:8b:88:d9:1a:b2:61:ec:f8:ba:b4:35:dd:e1: 1c:1c:01:fe:bf:40:e5:dd:40:87:47:ee:46:74:62:33:13:6b: 28:b0:53:2b:0c:6d:23:38:be:94:6a:36:3f:0b:d2:11:dd:02: 4e:d4:d6:3d:89:3e:d9:39:93:f0:66:c6:50:9f:f7:67:30:c2: 18:9b:be:9b:18:ac:ac:ad:44:77:41:00:23:20:66:fc:3b:53: 93:13:a0:d1:ba:78:8c:dd:96:ec:35:66:6b:c8:63:5e:66:62: 92:c5:b4:b9:77:38:96:19:15:8a:27:4d:d9:55:d9:8d:9c:e9: 18:01:75:fa:ea:d3:3b:a8:ad:d7:23:52:1c:53:f9:b2:fc:6a: b3:d8:6d:8d:62:d2:81:da:2f:ea:c2:97:d2:b3:0c:34:40:36: ef:68:17:eb:03:43:00:e9:43:2d:4b:9c:bb:e3:be:59:6f:7a: b5:8d:8f:44:1a:a5:7c:ac:50:bb:cc:76:7a:43:6b:07:17:9f: b5:ef:e5:37:4d:5d:ee:2f:a5:04:48:d0:57:99:16:b5:26:51: 97:5c:a5:6c:e7:c6:49:50:86:c9:bd:bd:98:fd:c2:86:39:e0: 14:0a:82:e4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCaNqPU1bc9PTGwFRzP4Gx/EhS0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDJaFw0yNDA5MTgxMTAwNDJaMDMxMTAvBgNV BAMTKDlEREM2MkExMzc1ODFDNTg4QUQ2MTE0NTI0RUQ0MDVFQzkyNUQ0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCypILJZHARs4bGpWYN/bDRa+J2 yIFYTWriAX2Ue5dvHnHpuEqfNX63HDkb0RTx6dPO3b8FbMWpKsQXXw5a7MtVhNSE khaSNagapGwhQeQlCqPJ7yydeQP3rh9NsM614btytgvGvj4fePKeli/J3vLm+Xyi l/o5RJDYkDSjUBbjG8C572jhks20duXz9gaxqK3qPbFpL0VbUcqu+Qhzf6DX1mIi pnT030hGQJZHOZ+LxtVzORJKr7VIj+KmD2Y5//qxw+pReRvm1oJpWPEofV0tbKY7 d/r1NJHRoZ5nm3c9AdCGG7iSx42HCpfDEQVJrkwMwnSoYWl8hqzItbbETg6lAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUndxioTdYHFiK1hFFJO1AXskl1PIwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmjIwDQYJKoZIhvcN AQELBQADggEBAIh1EPqhiWvutHlfkyS8l4QQuA4NmL2Ci4jZGrJh7Pi6tDXd4Rwc Af6/QOXdQIdH7kZ0YjMTayiwUysMbSM4vpRqNj8L0hHdAk7U1j2JPtk5k/BmxlCf 92cwwhibvpsYrKytRHdBACMgZvw7U5MToNG6eIzdluw1ZmvIY15mYpLFtLl3OJYZ FYonTdlV2Y2c6RgBdfrq0zuordcjUhxT+bL8arPYbY1i0oHaL+rCl9KzDDRANu9o F+sDQwDpQy1LnLvjvllverWNj0QapXysULvMdnpDawcXn7Xv5TdNXe4vpQRI0FeZ FrUmUZdcpWznxklQhsm9vZj9woY54BQKguQ= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org