$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37322e302f32342d3234203d3e203233363739.roa File: 3131302e3233322e37322e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: TV2bNQe0G/ya6YMDROQARE8z82sVMVqheJndp4B4hWs= Subject key identifier: 85:00:0A:CE:F4:3D:EF:C7:46:52:E6:50:EA:CD:63:34:68:98:AF:28 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 67C397B9F4C0EC76181AAFA4C5871EC6D7ED9301 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37322e302f32342d3234203d3e203233363739.roa Signing time: Fri 08 Sep 2023 10:01:11 +0000 ROA not before: Fri 08 Sep 2023 09:56:11 +0000 ROA not after: Fri 06 Sep 2024 10:01:11 +0000 asID: 23679 IP address blocks: 110.232.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c3:97:b9:f4:c0:ec:76:18:1a:af:a4:c5:87:1e:c6:d7:ed:93:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 8 09:56:11 2023 GMT Not After : Sep 6 10:01:11 2024 GMT Subject: CN=85000ACEF43DEFC74652E650EACD63346898AF28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:05:47:da:b6:2f:a2:ac:fe:53:74:87:8a:b6: f2:ff:a8:3a:e9:50:e7:21:b5:09:d5:83:2f:85:95: d2:70:df:21:99:2c:95:44:a2:6a:46:ee:02:0c:84: d7:27:7d:31:e2:8c:29:4a:28:5f:96:4e:01:1b:f1: 06:58:40:bd:f6:ef:57:5c:42:2b:86:4d:53:72:24: d9:08:3f:96:0a:59:49:6e:77:d1:74:76:1a:05:bc: bd:bd:21:77:b3:a2:bf:24:e9:0c:8d:80:14:6c:d2: dd:fc:a6:31:9e:ce:9c:d3:5f:77:a1:10:34:f7:85: 7c:bb:36:f6:cb:4a:e9:6a:b1:19:06:2f:25:8c:ec: 91:4a:d1:a4:19:6e:82:9e:f2:a5:9e:8d:96:51:32: ea:14:08:ce:e8:1c:3b:11:3c:4b:01:7d:be:da:c4: 37:ef:1e:65:b2:5b:eb:69:02:8a:4a:98:f8:a3:53: aa:50:5e:bc:cc:58:a8:0e:fd:fc:4b:9c:c1:e3:17: 61:14:5a:86:44:f4:cd:59:86:d8:0f:3d:00:bb:23: b8:49:f4:53:17:bf:cc:f2:4b:d5:01:6b:18:a9:f7: cb:16:3e:4f:bf:e9:78:b0:74:05:1a:c2:2e:80:29: ef:be:8f:3a:67:56:50:f0:d4:f7:88:86:ca:be:33: 72:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:00:0A:CE:F4:3D:EF:C7:46:52:E6:50:EA:CD:63:34:68:98:AF:28 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37322e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.72.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:96:ec:8a:a1:7e:4e:01:81:dc:86:79:3c:8e:e7:dc:92:5d: c3:1b:22:5b:58:a9:a7:25:5c:d1:82:66:20:e0:89:42:c6:dd: 81:41:e2:f3:15:0b:fa:0f:95:b9:89:03:c3:0a:b8:ed:9f:9b: bb:d9:76:6e:b8:da:ac:7f:fe:70:25:61:2f:51:38:2e:14:8b: 66:01:7c:57:7c:b2:56:7a:86:7c:e6:fc:49:ca:1d:b1:95:1f: e9:ba:ab:9b:5d:96:b9:43:9a:22:ac:31:17:cc:af:c1:2d:13: a6:c1:01:1e:32:1c:fd:9a:56:dd:2d:92:23:50:4e:76:04:4c: 91:f6:56:0d:07:00:ec:ef:61:c4:12:34:a7:5d:6d:d2:ae:7c: 88:fb:67:fa:87:68:a8:96:98:a8:bb:9e:c3:fb:7f:7c:82:98: a5:4d:e2:3b:dc:06:87:d1:bc:9f:9c:89:98:dd:19:23:3e:b3: 29:f0:50:b7:0c:a4:51:e0:d6:c7:b7:33:9b:a4:13:cc:16:b9: 87:43:6c:27:b7:d6:71:cc:59:a7:10:c1:8b:13:74:8a:ce:4a: cb:91:88:9c:10:81:6e:73:4d:40:b3:15:8d:37:00:b5:2d:8e: bd:b4:1f:f3:f9:71:da:e7:26:9c:e1:2c:82:b7:97:a0:fe:7e: ec:a4:31:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZ8OXufTA7HYYGq+kxYcextftkwEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yMzA5MDgwOTU2MTFaFw0yNDA5MDYxMDAxMTFaMDMxMTAvBgNV BAMTKDg1MDAwQUNFRjQzREVGQzc0NjUyRTY1MEVBQ0Q2MzM0Njg5OEFGMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5BUfati+irP5TdIeKtvL/qDrp UOchtQnVgy+FldJw3yGZLJVEompG7gIMhNcnfTHijClKKF+WTgEb8QZYQL3271dc QiuGTVNyJNkIP5YKWUlud9F0dhoFvL29IXezor8k6QyNgBRs0t38pjGezpzTX3eh EDT3hXy7NvbLSulqsRkGLyWM7JFK0aQZboKe8qWejZZRMuoUCM7oHDsRPEsBfb7a xDfvHmWyW+tpAopKmPijU6pQXrzMWKgO/fxLnMHjF2EUWoZE9M1ZhtgPPQC7I7hJ 9FMXv8zyS9UBaxip98sWPk+/6XiwdAUawi6AKe++jzpnVlDw1PeIhsq+M3K/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhQAKzvQ978dGUuZQ6s1jNGiYrygwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG7oSDANBgkqhkiG 9w0BAQsFAAOCAQEAf5bsiqF+TgGB3IZ5PI7n3JJdwxsiW1ippyVc0YJmIOCJQsbd gUHi8xUL+g+VuYkDwwq47Z+bu9l2brjarH/+cCVhL1E4LhSLZgF8V3yyVnqGfOb8 ScodsZUf6bqrm12WuUOaIqwxF8yvwS0TpsEBHjIc/ZpW3S2SI1BOdgRMkfZWDQcA 7O9hxBI0p11t0q58iPtn+odoqJaYqLuew/t/fIKYpU3iO9wGh9G8n5yJmN0ZIz6z KfBQtwykUeDWx7czm6QTzBa5h0NsJ7fWccxZpxDBixN0is5Ky5GInBCBbnNNQLMV jTcAtS2OvbQf8/lx2ucmnOEsgreXoP5+7KQxwA== -----END CERTIFICATE-----Generated at Fri May 3 11:55:16 2024 by rpki-client on console-fra.rpki-client.org