$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35342e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e35342e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: 0EMGpFwq6cBlwZjp/NVT27qdFEYSCuuW6ZFLy5P7aRM= Subject key identifier: CB:49:E9:42:20:D6:0F:81:B9:05:9D:2B:DD:3C:55:FE:6F:19:F6:13 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 529B2C1DBB35B35D11C783DA7A8AA88E402457F5 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35342e302f32332d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:44 +0000 ROA not before: Wed 20 Sep 2023 10:55:44 +0000 ROA not after: Wed 18 Sep 2024 11:00:44 +0000 asID: 4434 IP address blocks: 202.154.54.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:9b:2c:1d:bb:35:b3:5d:11:c7:83:da:7a:8a:a8:8e:40:24:57:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:44 2023 GMT Not After : Sep 18 11:00:44 2024 GMT Subject: CN=CB49E94220D60F81B9059D2BDD3C55FE6F19F613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b1:08:5d:46:a2:99:53:e0:cb:3f:b6:58:d4: 4b:18:11:40:81:cc:b5:b3:10:91:2a:15:3d:21:a0: 0a:5a:90:48:c4:10:ef:b1:14:1e:af:9c:50:c1:32: f9:bc:34:06:0b:03:20:fc:17:d4:5d:1b:e5:5b:60: 3f:e0:cf:c9:80:27:8d:75:15:7a:90:5f:42:83:f1: 30:bc:dc:6d:d9:14:15:06:a5:d5:e5:2b:83:84:2d: af:6f:9a:3a:be:54:d5:59:ee:65:e4:4e:af:4d:5a: 86:f3:7b:b2:11:94:67:74:ca:41:f2:b7:7f:56:3a: b2:5e:c3:00:6a:d2:ff:2b:b0:87:b2:82:f7:63:11: 2a:9b:3f:9d:0b:02:f5:e3:21:d4:8b:df:47:c2:c8: 55:85:39:e6:bc:9d:84:9f:f1:5b:a4:b9:81:79:ad: 0b:24:b3:8e:34:89:e2:95:f8:25:70:45:3c:48:b0: 55:20:30:7a:f1:f3:16:90:eb:23:5b:16:39:2c:a9: 51:c6:fc:38:b1:cb:ef:df:dc:ce:8e:1d:eb:3b:b8: 22:08:4d:51:ae:80:df:31:62:23:bb:f4:99:01:ef: 33:01:c4:c0:2a:f5:d4:3a:90:07:12:b5:12:34:44: 65:f9:78:b3:b4:6d:a8:0d:30:0f:43:ba:00:48:79: 97:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:49:E9:42:20:D6:0F:81:B9:05:9D:2B:DD:3C:55:FE:6F:19:F6:13 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35342e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.54.0/23 Signature Algorithm: sha256WithRSAEncryption 62:9b:da:d4:39:57:f7:ee:cb:c3:08:4c:ad:6f:b4:7b:37:5e: aa:20:5d:e5:7e:7d:8c:c0:8f:8a:c9:c8:1f:da:7d:e0:6e:95: 8b:9f:f3:58:9e:49:93:be:02:f9:39:8c:a3:05:ba:bb:d3:f8: 4f:aa:d1:cf:cc:8a:4c:e0:ff:90:3c:ff:bc:4e:4b:27:92:27: fd:c0:74:4c:ac:c4:cb:3e:3c:cb:db:4e:c1:1a:4d:2c:9b:27: b0:f2:26:67:9d:06:b9:a9:da:36:c0:53:7d:6f:da:e3:13:db: 87:40:f0:34:86:b4:43:72:97:2a:87:5f:4c:91:5d:04:1f:c3: f9:58:08:f5:4f:47:e6:c2:2a:2d:7a:a6:85:ff:8a:bf:c6:20: 2b:c6:bd:8b:b1:d8:0b:96:0c:03:ae:7e:f9:f8:64:e6:74:c0: 07:d5:e4:61:84:8b:d3:4b:aa:2e:55:84:99:bc:ab:ba:8f:bd: a3:44:68:a1:5f:0e:90:27:3b:be:0c:28:7b:85:df:5b:4d:21: a8:7e:b6:9e:7d:99:02:8d:96:5d:24:7e:b5:00:94:8f:ad:53: 06:c2:4b:8c:44:c6:00:f9:fe:aa:fb:15:30:57:6f:1c:a3:1b: a4:ba:1d:72:c5:c9:69:54:e3:82:0d:df:29:b9:2c:1d:82:33: 36:03:57:88 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUpssHbs1s10Rx4PaeoqojkAkV/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDRaFw0yNDA5MTgxMTAwNDRaMDMxMTAvBgNV BAMTKENCNDlFOTQyMjBENjBGODFCOTA1OUQyQkREM0M1NUZFNkYxOUY2MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPsQhdRqKZU+DLP7ZY1EsYEUCB zLWzEJEqFT0hoApakEjEEO+xFB6vnFDBMvm8NAYLAyD8F9RdG+VbYD/gz8mAJ411 FXqQX0KD8TC83G3ZFBUGpdXlK4OELa9vmjq+VNVZ7mXkTq9NWobze7IRlGd0ykHy t39WOrJewwBq0v8rsIeygvdjESqbP50LAvXjIdSL30fCyFWFOea8nYSf8VukuYF5 rQsks440ieKV+CVwRTxIsFUgMHrx8xaQ6yNbFjksqVHG/Dixy+/f3M6OHes7uCII TVGugN8xYiO79JkB7zMBxMAq9dQ6kAcStRI0RGX5eLO0bagNMA9DugBIeZchAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUy0npQiDWD4G5BZ0r3TxV/m8Z9hMwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmjYwDQYJKoZIhvcN AQELBQADggEBAGKb2tQ5V/fuy8MITK1vtHs3XqogXeV+fYzAj4rJyB/afeBulYuf 81ieSZO+Avk5jKMFurvT+E+q0c/Mikzg/5A8/7xOSyeSJ/3AdEysxMs+PMvbTsEa TSybJ7DyJmedBrmp2jbAU31v2uMT24dA8DSGtENylyqHX0yRXQQfw/lYCPVPR+bC Ki16poX/ir/GICvGvYux2AuWDAOufvn4ZOZ0wAfV5GGEi9NLqi5VhJm8q7qPvaNE aKFfDpAnO74MKHuF31tNIah+tp59mQKNll0kfrUAlI+tUwbCS4xExgD5/qr7FTBX bxyjG6S6HXLFyWlU44IN3ym5LB2CMzYDV4g= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org