$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35362e302f32312d3234203d3e2034343334.roa File: 3230322e3135342e35362e302f32312d3234203d3e2034343334.roa (raw, json) Hash identifier: ImBWhv4g7+Ep4gsnVQ0kC14jzVGxseRnARyf0fl4Q+4= Subject key identifier: BD:33:AC:67:9E:10:03:94:34:24:AC:99:FF:C5:B3:9E:54:B3:F4:61 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4528B06C1055E96B826C2004034EE4E9E6E18E29 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35362e302f32312d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:50 +0000 ROA not before: Wed 21 Aug 2024 10:55:50 +0000 ROA not after: Wed 20 Aug 2025 11:00:50 +0000 asID: 4434 IP address blocks: 202.154.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:28:b0:6c:10:55:e9:6b:82:6c:20:04:03:4e:e4:e9:e6:e1:8e:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:50 2024 GMT Not After : Aug 20 11:00:50 2025 GMT Subject: CN=BD33AC679E1003943424AC99FFC5B39E54B3F461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3c:0a:6b:61:63:75:a3:4a:47:8b:62:7a:d8: e7:ad:89:83:5e:06:4d:5d:46:62:49:91:4d:13:cb: 9f:b2:d0:fd:5c:d8:e6:73:e6:6b:c1:ae:04:6e:46: d5:7f:15:af:2b:c3:c6:2b:25:66:d6:a5:44:6a:d0: 69:ef:6c:1d:a0:f7:41:97:7f:2c:dc:54:0b:fb:d2: 2c:44:2b:30:7b:ea:0a:13:cd:80:20:e7:f7:5f:c3: ab:65:3d:2a:92:49:cf:2e:1a:ef:0c:49:25:4a:0c: ef:23:d7:8b:92:7d:fd:2a:ad:a9:03:b1:4b:0f:09: 47:d1:f4:9d:95:19:c1:36:10:ea:2d:18:b4:a8:42: 26:37:08:b3:d2:7e:b3:c5:fe:34:f2:8e:3f:31:d6: e6:cd:b2:42:ed:5a:81:d5:35:03:9b:0e:cf:56:19: ca:91:bb:21:63:04:e7:be:9b:27:ca:1e:ed:e9:b1: 89:53:32:2b:66:3d:7f:dc:34:74:92:c2:a3:6d:4f: dd:66:96:5d:c7:9a:2e:e9:07:5f:d4:cc:85:5d:c3: d8:1d:c0:ea:90:92:fe:0e:50:76:b1:05:de:b0:55: 57:a6:a4:1d:69:65:e4:6d:2a:a4:10:a7:66:ca:41: c2:6e:11:e5:f6:3e:5f:98:ad:31:cc:b3:a3:bb:87: f2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:33:AC:67:9E:10:03:94:34:24:AC:99:FF:C5:B3:9E:54:B3:F4:61 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35362e302f32312d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.56.0/21 Signature Algorithm: sha256WithRSAEncryption b0:5a:b7:46:43:1e:77:ea:a0:cb:e7:04:fd:d5:84:34:26:44: d3:7a:65:6b:01:89:ed:60:81:f6:d4:d4:f6:67:66:60:85:c9: bc:cd:57:8d:f2:0c:cd:45:96:8c:40:8d:f5:e1:b7:44:72:bf: 28:e5:67:a9:b6:91:4c:09:fc:0f:f9:29:84:ed:45:e7:d9:a8: 27:0c:91:c7:29:37:ea:16:70:f8:9e:4d:db:c2:be:cc:93:79: e4:0e:da:4b:da:c2:d3:3e:02:9d:2d:09:0a:45:c4:11:fe:33: 8f:16:73:9c:89:35:94:24:e6:16:a0:29:ce:93:85:eb:0b:a6: 2e:14:b4:3e:9e:e4:ba:12:06:d4:4e:70:9a:3a:c6:c1:40:d2: c7:17:c0:59:86:5b:73:6f:7e:78:67:e7:93:41:b6:72:a0:b1: d2:bc:0d:a8:2c:05:58:73:f7:d3:9e:d6:c9:db:d4:84:12:36: 8e:18:d5:a9:31:b9:9f:02:b4:76:81:cc:46:5a:a9:ad:19:ef: 4f:8f:bf:e6:08:10:6c:ac:71:2e:23:f6:f3:ee:36:93:37:d8: 0d:0b:8b:9c:18:f6:11:d3:c1:89:bc:9a:17:63:df:24:88:a2: f1:ac:ab:3b:58:4a:3c:49:0f:10:24:63:38:32:3c:72:65:7d: 7e:33:38:77 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURSiwbBBV6WuCbCAEA07k6ebhjikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTBaFw0yNTA4MjAxMTAwNTBaMDMxMTAvBgNV BAMTKEJEMzNBQzY3OUUxMDAzOTQzNDI0QUM5OUZGQzVCMzlFNTRCM0Y0NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVPAprYWN1o0pHi2J62OetiYNe Bk1dRmJJkU0Ty5+y0P1c2OZz5mvBrgRuRtV/Fa8rw8YrJWbWpURq0GnvbB2g90GX fyzcVAv70ixEKzB76goTzYAg5/dfw6tlPSqSSc8uGu8MSSVKDO8j14uSff0qrakD sUsPCUfR9J2VGcE2EOotGLSoQiY3CLPSfrPF/jTyjj8x1ubNskLtWoHVNQObDs9W GcqRuyFjBOe+myfKHu3psYlTMitmPX/cNHSSwqNtT91mll3Hmi7pB1/UzIVdw9gd wOqQkv4OUHaxBd6wVVempB1pZeRtKqQQp2bKQcJuEeX2Pl+YrTHMs6O7h/JvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvTOsZ54QA5Q0JKyZ/8WznlSz9GEwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKmjgwDQYJKoZIhvcN AQELBQADggEBALBat0ZDHnfqoMvnBP3VhDQmRNN6ZWsBie1ggfbU1PZnZmCFybzN V43yDM1FloxAjfXht0RyvyjlZ6m2kUwJ/A/5KYTtRefZqCcMkccpN+oWcPieTdvC vsyTeeQO2kvawtM+Ap0tCQpFxBH+M48Wc5yJNZQk5hagKc6ThesLpi4UtD6e5LoS BtROcJo6xsFA0scXwFmGW3Nvfnhn55NBtnKgsdK8DagsBVhz99Oe1snb1IQSNo4Y 1akxuZ8CtHaBzEZaqa0Z70+Pv+YIEGyscS4j9vPuNpM32A0Li5wY9hHTwYm8mhdj 3ySIovGsqztYSjxJDxAkYzgyPHJlfX4zOHc= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org