$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35322e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e35322e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: e/x1JHw5SFGnEAo222ZqesIgF4PpyjxyFXbEZRjiJKY= Subject key identifier: 76:BC:7C:50:0E:AB:0B:0B:65:EC:28:8E:7D:D4:AB:CF:6A:A1:FE:F5 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 224B21C3F542B6AC85F8D7B2A320888BDC299818 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35322e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:43 +0000 ROA not before: Wed 20 Sep 2023 10:55:43 +0000 ROA not after: Wed 18 Sep 2024 11:00:43 +0000 asID: 4434 IP address blocks: 202.154.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:4b:21:c3:f5:42:b6:ac:85:f8:d7:b2:a3:20:88:8b:dc:29:98:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:43 2023 GMT Not After : Sep 18 11:00:43 2024 GMT Subject: CN=76BC7C500EAB0B0B65EC288E7DD4ABCF6AA1FEF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:69:7e:88:66:24:22:1d:95:1f:61:f2:00:3e: 21:6b:93:f0:1b:21:0b:27:99:ba:8a:8b:90:2b:b7: e2:7f:25:30:97:37:66:44:90:21:b7:b6:53:31:ad: fd:40:3e:8a:42:4e:c4:63:2c:0e:88:b7:93:82:82: 8c:8d:40:3c:2f:aa:e1:ca:c1:00:0b:87:47:e1:bc: 23:5f:18:6a:f2:9b:1a:da:6a:27:a4:c5:91:bf:ee: 3c:57:5c:49:f9:21:42:29:cb:6f:b0:5b:8a:10:ac: 76:06:5c:c5:4b:2f:7e:c3:0b:a6:6a:ec:56:79:af: b5:d3:fe:de:40:f0:e1:81:e9:d4:42:f6:91:75:9c: 37:65:0b:b9:63:95:a8:34:c4:7c:06:17:cb:b1:14: 2a:fe:51:75:8c:42:bd:78:00:4d:59:34:4d:53:16: e8:98:ae:16:e2:08:b6:2d:b5:ba:91:ea:3c:45:2a: 40:62:b6:35:1e:0c:e6:17:9b:9e:45:66:f2:7e:91: 02:7c:8d:22:12:9c:f6:ed:dc:cc:fa:b1:dd:92:60: 51:e1:7e:6f:67:fd:e1:37:8a:f7:86:15:32:ae:d0: 69:2a:31:5a:f2:e2:97:65:0a:f5:52:6a:7e:0e:fb: e2:98:8c:75:58:1a:e6:9b:6b:20:e0:d9:5c:9d:fd: 43:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:BC:7C:50:0E:AB:0B:0B:65:EC:28:8E:7D:D4:AB:CF:6A:A1:FE:F5 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35322e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.52.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:18:2c:84:f8:ee:e7:38:a3:0f:9f:a8:cc:4d:4d:af:22:5a: e5:d8:63:50:85:4a:b8:3f:53:30:10:a5:33:22:fe:50:d9:c6: e9:f0:39:54:06:94:ba:8f:20:7b:03:d7:d7:81:8a:11:dc:4d: 3b:5b:91:67:4d:ff:99:12:af:95:9c:34:89:4d:25:5f:b3:66: 95:66:d3:80:41:c4:e0:7e:2c:5f:89:4e:f5:ab:56:1e:4b:c2: b0:3b:9f:b9:5e:01:75:b2:58:a7:29:8c:cd:73:0c:48:57:0f: 6a:8b:55:8a:df:77:04:4b:41:7d:fd:0b:f5:3e:fd:ce:23:f7: 11:66:06:2d:10:1e:fd:36:eb:0e:67:ce:2c:6c:26:b7:00:90: 09:13:1a:96:7a:42:82:34:13:af:f4:e1:0e:d5:54:cc:29:c0: ff:52:af:c8:ff:74:a9:1a:0e:c3:6d:98:38:c7:2c:22:32:28: 0b:a1:6e:fd:4a:dc:dd:05:35:7a:45:99:d3:74:df:a1:57:08: 16:f8:2a:04:3d:e3:15:f3:d0:51:10:f8:b7:d3:5e:f6:3b:4a: f4:36:e4:a1:94:d3:4c:80:0e:6b:bd:d6:ae:18:ce:a0:59:86: 74:34:3b:38:6d:cb:71:5c:dd:9e:4a:8f:63:cc:3f:5e:1e:a8: 20:71:90:b6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIkshw/VCtqyF+NeyoyCIi9wpmBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDNaFw0yNDA5MTgxMTAwNDNaMDMxMTAvBgNV BAMTKDc2QkM3QzUwMEVBQjBCMEI2NUVDMjg4RTdERDRBQkNGNkFBMUZFRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqaX6IZiQiHZUfYfIAPiFrk/Ab IQsnmbqKi5Art+J/JTCXN2ZEkCG3tlMxrf1APopCTsRjLA6It5OCgoyNQDwvquHK wQALh0fhvCNfGGrymxraaiekxZG/7jxXXEn5IUIpy2+wW4oQrHYGXMVLL37DC6Zq 7FZ5r7XT/t5A8OGB6dRC9pF1nDdlC7ljlag0xHwGF8uxFCr+UXWMQr14AE1ZNE1T FuiYrhbiCLYttbqR6jxFKkBitjUeDOYXm55FZvJ+kQJ8jSISnPbt3Mz6sd2SYFHh fm9n/eE3iveGFTKu0GkqMVry4pdlCvVSan4O++KYjHVYGuabayDg2Vyd/UNzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdrx8UA6rCwtl7CiOfdSrz2qh/vUwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmjQwDQYJKoZIhvcN AQELBQADggEBAD0YLIT47uc4ow+fqMxNTa8iWuXYY1CFSrg/UzAQpTMi/lDZxunw OVQGlLqPIHsD19eBihHcTTtbkWdN/5kSr5WcNIlNJV+zZpVm04BBxOB+LF+JTvWr Vh5LwrA7n7leAXWyWKcpjM1zDEhXD2qLVYrfdwRLQX39C/U+/c4j9xFmBi0QHv02 6w5nzixsJrcAkAkTGpZ6QoI0E6/04Q7VVMwpwP9Sr8j/dKkaDsNtmDjHLCIyKAuh bv1K3N0FNXpFmdN036FXCBb4KgQ94xXz0FEQ+LfTXvY7SvQ25KGU00yADmu91q4Y zqBZhnQ0Ozhty3Fc3Z5Kj2PMP14eqCBxkLY= -----END CERTIFICATE-----Generated at Sat Jun 22 14:21:50 2024 by rpki-client on console-ams.rpki-client.org