$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e382e302f32332d3234203d3e2034343334.roa File: 3230322e3135342e382e302f32332d3234203d3e2034343334.roa (raw, json) Hash identifier: wbqvOEkmmfyLYP9Zzj7jIocggD2UTOc4eUWF/fVKcyE= Subject key identifier: 82:3A:06:7E:11:3C:3E:4C:5E:97:99:8C:AD:05:C4:61:EF:17:1C:3E Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Certificate serial: 4CD57000217D177946AA04549381B0609CE04209 Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e382e302f32332d3234203d3e2034343334.roa Signing time: Wed 21 Aug 2024 11:00:52 +0000 ROA not before: Wed 21 Aug 2024 10:55:52 +0000 ROA not after: Wed 20 Aug 2025 11:00:52 +0000 asID: 4434 IP address blocks: 202.154.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d5:70:00:21:7d:17:79:46:aa:04:54:93:81:b0:60:9c:e0:42:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6 Validity Not Before: Aug 21 10:55:52 2024 GMT Not After : Aug 20 11:00:52 2025 GMT Subject: CN=823A067E113C3E4C5E97998CAD05C461EF171C3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f9:cc:8d:2a:10:c9:1d:6b:0d:cc:9d:c2:cb: 1b:fd:7d:3c:c4:6a:01:7c:3a:a2:1c:61:a0:07:0a: 49:38:9d:22:72:f4:9b:22:72:2e:9b:87:63:27:ee: 01:0f:f9:ee:64:a0:56:94:5f:20:02:79:64:69:1b: 97:59:3c:67:50:94:4e:c1:a9:ef:8f:0e:9b:e9:e7: a7:04:73:35:b9:10:e7:01:d1:e7:ef:3b:3c:ba:1e: 97:44:94:0c:94:db:6e:c9:26:3c:9e:f4:82:82:67: 96:01:e6:95:72:32:7d:d3:4f:3e:88:f0:41:65:13: 59:54:ce:00:95:f7:26:f2:a1:bf:96:a1:ff:3e:cd: 3b:31:42:b8:15:e2:14:e8:12:b6:be:a8:9f:ba:c9: 89:9d:11:4a:91:14:f8:83:29:50:5e:9b:fe:70:7b: ab:a1:bd:14:19:e4:30:fb:9f:b5:a6:6f:57:c6:2f: 53:3f:fb:2a:6f:e8:d3:5b:a6:19:4f:23:e1:3b:65: a4:d9:7b:c2:17:06:32:88:a8:f8:28:12:f3:ae:cc: f3:78:8f:4e:4a:56:59:1a:b6:60:77:92:cb:09:dd: e0:ae:7b:05:7f:2e:a7:1d:b3:48:6b:f3:1f:64:69: 7d:95:bc:ea:c4:71:74:5a:52:88:3d:f9:87:f6:48: 4e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:3A:06:7E:11:3C:3E:4C:5E:97:99:8C:AD:05:C4:61:EF:17:1C:3E X509v3 Authority Key Identifier: keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e382e302f32332d3234203d3e2034343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.154.8.0/23 Signature Algorithm: sha256WithRSAEncryption 77:c6:d3:50:ab:0f:ae:4b:cd:3b:7a:f0:91:b8:33:4c:8b:c2: b7:d9:01:23:02:59:f8:4d:38:93:47:b2:79:f5:e7:e6:31:4d: b0:7b:cd:9e:c1:cb:77:ba:fb:8c:7b:c4:2a:36:a8:6a:18:bb: ea:7c:f2:d8:fc:72:69:02:5d:81:0c:5a:2e:e4:e6:92:f1:ab: 7e:58:68:79:61:29:ef:f3:c8:d2:f9:1e:49:2c:a7:d7:14:9c: fe:91:4c:ba:28:80:57:92:dd:ff:92:89:43:b9:5d:ed:c0:5d: c9:10:d2:ff:ab:60:cb:af:f8:7f:56:3f:02:6d:6f:22:0e:1d: 43:ec:d7:87:50:a2:b8:33:92:07:fc:75:b5:0f:c0:eb:01:d1: 21:14:07:8b:f8:17:32:af:51:de:c1:01:8c:90:c2:6d:d1:a8: 13:fc:d3:6b:db:96:42:f0:c7:91:22:a9:a4:2a:33:fc:9f:76: 27:33:3e:6a:90:68:89:3d:6c:b9:9d:9c:77:6d:f2:e2:e6:a3: 59:dd:a6:8c:04:ad:d9:c0:92:3c:d3:36:26:49:3f:3a:f3:6d: 8f:52:8b:46:7b:23:13:4d:e6:e9:1f:4d:54:c3:ca:f3:44:06: 2e:fb:d3:d8:b9:d5:4a:aa:46:0a:7a:f0:e1:08:b1:2b:9c:97: 4a:a7:fd:d2 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUTNVwACF9F3lGqgRUk4GwYJzgQgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5 QUU5MjdGNjAeFw0yNDA4MjExMDU1NTJaFw0yNTA4MjAxMTAwNTJaMDMxMTAvBgNV BAMTKDgyM0EwNjdFMTEzQzNFNEM1RTk3OTk4Q0FEMDVDNDYxRUYxNzFDM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4+cyNKhDJHWsNzJ3Cyxv9fTzE agF8OqIcYaAHCkk4nSJy9Jsici6bh2Mn7gEP+e5koFaUXyACeWRpG5dZPGdQlE7B qe+PDpvp56cEczW5EOcB0efvOzy6HpdElAyU227JJjye9IKCZ5YB5pVyMn3TTz6I 8EFlE1lUzgCV9ybyob+Wof8+zTsxQrgV4hToEra+qJ+6yYmdEUqRFPiDKVBem/5w e6uhvRQZ5DD7n7Wmb1fGL1M/+ypv6NNbphlPI+E7ZaTZe8IXBjKIqPgoEvOuzPN4 j05KVlkatmB3kssJ3eCuewV/Lqcds0hr8x9kaX2VvOrEcXRaUog9+Yf2SE67AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUgjoGfhE8Pkxel5mMrQXEYe8XHD4wHwYDVR0j BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5 MjdGNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMwYzE0YTktM2E3Ny00OWUyLTkx OTQtNDhkMDkxMzQ1OGIyLzAvMzIzMDMyMmUzMTM1MzQyZTM4MmUzMDJmMzIzMzJk MzIzNDIwM2QzZTIwMzQzNDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKmggwDQYJKoZIhvcNAQEL BQADggEBAHfG01CrD65LzTt68JG4M0yLwrfZASMCWfhNOJNHsnn15+YxTbB7zZ7B y3e6+4x7xCo2qGoYu+p88tj8cmkCXYEMWi7k5pLxq35YaHlhKe/zyNL5Hkksp9cU nP6RTLoogFeS3f+SiUO5Xe3AXckQ0v+rYMuv+H9WPwJtbyIOHUPs14dQorgzkgf8 dbUPwOsB0SEUB4v4FzKvUd7BAYyQwm3RqBP802vblkLwx5EiqaQqM/yfdiczPmqQ aIk9bLmdnHdt8uLmo1ndpowErdnAkjzTNiZJPzrzbY9Si0Z7IxNN5ukfTVTDyvNE Bi7709i51UqqRgp68OEIsSucl0qn/dI= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org