$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e35342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: nKl7JuMt35UhMXq3JNyBcLUEpb1l1wSJ6UJgz0eShwI= Subject key identifier: 65:BE:C4:4F:BD:47:A5:6A:25:D1:9E:E0:42:62:2F:91:1B:7D:E0:5D Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 7F3AF617080E85E15D55942CB705E57F0F8EED59 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35342e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:53 +0000 ROA not before: Wed 21 Aug 2024 10:55:53 +0000 ROA not after: Wed 20 Aug 2025 11:00:53 +0000 asID: 4434 IP address blocks: 202.154.54.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:3a:f6:17:08:0e:85:e1:5d:55:94:2c:b7:05:e5:7f:0f:8e:ed:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:53 2024 GMT Not After : Aug 20 11:00:53 2025 GMT Subject: CN=65BEC44FBD47A56A25D19EE042622F911B7DE05D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:82:42:80:6f:6c:8c:5f:c3:46:0a:0a:fc:f7: 81:ae:4c:50:41:f0:94:0a:c7:48:85:93:16:a8:e0: be:d0:42:4a:40:c6:d0:12:06:fd:63:fc:2a:9f:37: cf:5e:cf:91:6e:f2:00:81:20:f9:37:7b:bf:a7:43: 29:69:f6:df:89:dc:42:c3:f4:0e:c2:12:fa:1d:2c: 3b:b7:87:84:a3:0e:d2:be:87:a3:55:17:7b:a0:8c: b5:51:2e:11:e9:ea:e7:86:ee:19:1e:24:d2:62:63: fd:28:80:80:36:db:74:66:74:a2:08:92:8a:37:df: 1b:e0:51:a3:86:8e:07:69:8d:b1:90:2c:99:44:55: 00:d8:fe:d1:f1:68:1c:c3:d4:99:3d:14:c1:41:05: 21:da:33:77:e0:c4:fd:52:2a:9c:b0:45:30:e7:a6: cc:6a:dd:8e:cd:a8:49:e1:66:ee:23:89:80:2e:a6: 3e:4a:80:a9:50:67:41:bd:76:a5:ce:d8:18:c1:19: 4d:db:0a:f0:ff:4b:5f:e3:af:52:53:98:42:43:3c: f2:c8:69:4a:19:ae:96:6f:83:79:2f:41:c8:46:c9: a8:22:b8:b2:72:65:bd:6b:5c:96:d5:bb:2a:71:52: 95:a6:8e:53:d5:63:51:92:d1:e3:0e:ec:14:9e:a2: 0b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BE:C4:4F:BD:47:A5:6A:25:D1:9E:E0:42:62:2F:91:1B:7D:E0:5D X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.54.0/23 Signature Algorithm: sha256WithRSAEncryption 33:31:3d:7d:b4:bb:eb:26:ec:b3:5e:db:dd:30:c9:b0:36:56: b6:3c:a4:e7:24:46:dc:f4:1f:a7:ee:c8:b2:30:35:f7:76:63: 7a:6b:ce:b4:df:aa:99:99:22:cc:fa:88:f7:54:af:85:02:1d: 9a:72:0f:78:e7:08:39:58:71:11:f5:f7:9f:d7:b0:ca:6d:bb: 3b:70:91:2c:8b:78:42:17:5d:8c:a4:d5:09:9e:f8:ad:b1:92: 28:12:40:d3:76:65:3c:5b:73:b3:fd:b2:6e:65:8c:b2:ec:b6: 91:f1:fb:18:2f:71:8f:64:96:39:a7:71:5f:fd:8d:5b:48:6d: 1a:4e:71:96:a6:62:73:4d:c4:d1:74:ad:61:67:75:75:30:54: 82:0f:36:ef:ed:3d:0f:72:ba:58:2c:d2:86:fd:7a:c3:15:35: 8d:e5:d6:55:05:43:d1:a8:82:5d:f5:20:76:5c:e2:0c:87:26: 4a:00:20:35:9a:fa:1c:bf:c0:ef:1a:a9:68:ee:5b:f7:af:65: 6c:23:68:40:ca:47:1b:11:7f:86:30:2e:50:67:41:e0:71:bb: 7b:9e:0c:7a:6a:3a:5f:01:ee:ce:8c:83:e0:79:b2:95:0a:53: 61:8c:75:51:d7:18:63:27:01:46:4a:e4:85:a6:7e:ec:95:32: 61:ca:31:bc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUfzr2FwgOheFdVZQstwXlfw+O7VkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTNaFw0yNTA4MjAxMTAwNTNaMDMxMTAvBgNV BAMTKDY1QkVDNDRGQkQ0N0E1NkEyNUQxOUVFMDQyNjIyRjkxMUI3REUwNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5gkKAb2yMX8NGCgr894GuTFBB 8JQKx0iFkxao4L7QQkpAxtASBv1j/CqfN89ez5Fu8gCBIPk3e7+nQylp9t+J3ELD 9A7CEvodLDu3h4SjDtK+h6NVF3ugjLVRLhHp6ueG7hkeJNJiY/0ogIA223RmdKII koo33xvgUaOGjgdpjbGQLJlEVQDY/tHxaBzD1Jk9FMFBBSHaM3fgxP1SKpywRTDn psxq3Y7NqEnhZu4jiYAupj5KgKlQZ0G9dqXO2BjBGU3bCvD/S1/jr1JTmEJDPPLI aUoZrpZvg3kvQchGyagiuLJyZb1rXJbVuypxUpWmjlPVY1GS0eMO7BSeogtjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZb7ET71HpWol0Z7gQmIvkRt94F0wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmjYwDQYJKoZIhvcN AQELBQADggEBADMxPX20u+sm7LNe290wybA2VrY8pOckRtz0H6fuyLIwNfd2Y3pr zrTfqpmZIsz6iPdUr4UCHZpyD3jnCDlYcRH195/XsMptuztwkSyLeEIXXYyk1Qme +K2xkigSQNN2ZTxbc7P9sm5ljLLstpHx+xgvcY9kljmncV/9jVtIbRpOcZamYnNN xNF0rWFndXUwVIIPNu/tPQ9yulgs0ob9esMVNY3l1lUFQ9Gogl31IHZc4gyHJkoA IDWa+hy/wO8aqWjuW/evZWwjaEDKRxsRf4YwLlBnQeBxu3ueDHpqOl8B7s6Mg+B5 spUKU2GMdVHXGGMnAUZK5IWmfuyVMmHKMbw= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org