$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35362e302f32312d3234203d3e2034343334.roa File: 3230322e3135342e35362e302f32312d3234203d3e2034343334.roa (raw, json) Hash identifier: O8LVm/DZqwTKwkyWM1MfzZe/wQbUqJb1pU7TpCIoshw= Subject key identifier: AF:24:AC:0C:22:7F:CA:63:C2:25:CA:68:25:D5:EA:9D:99:E9:36:13 Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 315CE03E6502CF4269D0D51E737147A40F3B1080 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35362e302f32312d3234203d3e2034343334.roa Signing time: Wed 20 Sep 2023 11:00:42 +0000 ROA not before: Wed 20 Sep 2023 10:55:42 +0000 ROA not after: Wed 18 Sep 2024 11:00:42 +0000 asID: 4434 IP address blocks: 202.154.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:5c:e0:3e:65:02:cf:42:69:d0:d5:1e:73:71:47:a4:0f:3b:10:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Sep 20 10:55:42 2023 GMT Not After : Sep 18 11:00:42 2024 GMT Subject: CN=AF24AC0C227FCA63C225CA6825D5EA9D99E93613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8c:76:da:87:5d:c9:f0:d7:0c:70:cd:16:a4: 3c:9b:1d:4c:e4:7d:24:86:ce:1a:91:52:cd:75:46: df:e2:bd:2f:bf:d0:19:18:06:36:ac:4a:dd:e2:c0: 71:39:f5:82:22:f0:de:ec:f6:ee:12:ed:b2:78:9b: 3a:03:6d:05:ab:ee:a8:20:b5:b0:d8:08:8a:11:27: 57:f0:13:78:4d:4d:08:a4:94:17:3d:8f:79:6d:ff: 52:0b:e3:ed:39:0b:cc:5b:59:49:ff:f2:38:4e:d9: f1:4d:ce:41:79:00:91:3b:43:1f:4e:95:98:cd:4d: 88:71:3e:ce:93:44:e6:b1:4c:41:86:4d:54:f7:e1: f6:1f:ec:1f:c5:ef:d7:8f:2d:e3:6c:0f:85:88:85: fa:bd:0a:e9:c1:af:b1:b7:5a:76:f6:d5:3a:16:a3: 59:39:3d:a1:08:e3:39:bb:c2:8d:0d:e8:64:0e:9e: e1:d0:c5:82:a7:a9:58:09:27:3b:58:5a:67:7b:f6: a0:14:31:1d:e4:cd:d4:5a:29:5c:2b:6d:20:34:42: 49:d2:f3:be:62:bb:4d:67:91:a7:20:dd:7b:81:b4: 89:1a:a2:79:f5:eb:f7:20:6e:58:99:a2:78:a7:32: f0:c7:72:34:30:25:eb:61:bb:3f:27:2d:99:b7:9e: 7f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:24:AC:0C:22:7F:CA:63:C2:25:CA:68:25:D5:EA:9D:99:E9:36:13 X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e35362e302f32312d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.56.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:c2:41:0f:4c:ea:f0:86:b0:22:64:83:a7:44:50:0f:ac:6b: b7:e8:2b:44:d8:a3:c9:48:c9:3b:1e:73:a3:19:a7:36:8f:3d: ca:58:f8:e7:76:2e:97:be:14:07:f5:c7:da:7b:98:6d:80:b6: f0:1d:44:89:91:60:ba:2c:d9:c5:6c:8f:f3:80:e3:ca:27:a7: fe:b2:c1:3c:0e:b7:35:7f:ba:55:e2:b2:59:da:7d:26:d3:7b: e9:7c:23:3e:08:33:aa:71:fe:26:b0:3e:e4:df:2b:f1:3c:ba: 29:15:64:9e:71:47:0d:93:a5:06:65:6d:c5:c8:68:d5:80:2b: 75:32:45:74:fe:9c:f1:1f:4e:a8:9e:f8:cc:1b:5a:fc:96:90: 49:a2:1b:00:5d:6f:0e:2e:4e:7f:55:c3:eb:c4:ab:74:82:79: b3:e2:15:26:e8:34:ee:b3:64:7c:77:a6:ca:23:20:fc:56:c3: ac:bd:99:2f:7d:d2:76:f6:63:0c:9e:b2:22:e8:46:ad:91:90: 27:20:30:82:61:ec:dd:7a:f6:a7:20:ab:86:55:8a:01:30:26: 0a:98:f6:05:4f:68:2a:88:4d:0f:a2:ad:16:c4:46:b6:18:94: 30:dd:04:e0:25:04:c7:e1:6f:c0:6e:a8:99:b3:8f:5a:54:71: d6:e0:8f:33 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMVzgPmUCz0Jp0NUec3FHpA87EIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yMzA5MjAxMDU1NDJaFw0yNDA5MTgxMTAwNDJaMDMxMTAvBgNV BAMTKEFGMjRBQzBDMjI3RkNBNjNDMjI1Q0E2ODI1RDVFQTlEOTlFOTM2MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfjHbah13J8NcMcM0WpDybHUzk fSSGzhqRUs11Rt/ivS+/0BkYBjasSt3iwHE59YIi8N7s9u4S7bJ4mzoDbQWr7qgg tbDYCIoRJ1fwE3hNTQiklBc9j3lt/1IL4+05C8xbWUn/8jhO2fFNzkF5AJE7Qx9O lZjNTYhxPs6TROaxTEGGTVT34fYf7B/F79ePLeNsD4WIhfq9CunBr7G3Wnb21ToW o1k5PaEI4zm7wo0N6GQOnuHQxYKnqVgJJztYWmd79qAUMR3kzdRaKVwrbSA0QknS 875iu01nkacg3XuBtIkaonn16/cgbliZoninMvDHcjQwJethuz8nLZm3nn8tAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUrySsDCJ/ymPCJcpoJdXqnZnpNhMwHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05 MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKmjgwDQYJKoZIhvcN AQELBQADggEBAFzCQQ9M6vCGsCJkg6dEUA+sa7foK0TYo8lIyTsec6MZpzaPPcpY +Od2Lpe+FAf1x9p7mG2AtvAdRImRYLos2cVsj/OA48onp/6ywTwOtzV/ulXislna fSbTe+l8Iz4IM6px/iawPuTfK/E8uikVZJ5xRw2TpQZlbcXIaNWAK3UyRXT+nPEf Tqie+MwbWvyWkEmiGwBdbw4uTn9Vw+vEq3SCebPiFSboNO6zZHx3psojIPxWw6y9 mS990nb2YwyesiLoRq2RkCcgMIJh7N169qcgq4ZVigEwJgqY9gVPaCqITQ+irRbE RrYYlDDdBOAlBMfhb8BuqJmzj1pUcdbgjzM= -----END CERTIFICATE-----Generated at Sat Jun 22 13:58:56 2024 by rpki-client on console-fra.rpki-client.org