$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37342e302f32332d3234203d3e20313338383431.roa File: 3131302e3233322e37342e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: WUBa4oPmrrCdNjBObxEDNZ4BWugZJvfZ4zUBFow+WqA= Subject key identifier: D8:B9:0F:93:11:57:C6:03:FB:A3:3A:98:BB:83:EA:47:6F:31:13:60 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 241AB29D2D31C2CFFBCCBD7A7D573DCFDC84DF9A Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37342e302f32332d3234203d3e20313338383431.roa Signing time: Fri 22 Sep 2023 05:01:49 +0000 ROA not before: Fri 22 Sep 2023 04:56:49 +0000 ROA not after: Fri 20 Sep 2024 05:01:49 +0000 asID: 138841 IP address blocks: 110.232.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:1a:b2:9d:2d:31:c2:cf:fb:cc:bd:7a:7d:57:3d:cf:dc:84:df:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 22 04:56:49 2023 GMT Not After : Sep 20 05:01:49 2024 GMT Subject: CN=D8B90F931157C603FBA33A98BB83EA476F311360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:42:03:a1:bf:96:c9:1c:08:27:29:06:ff:44: c9:b3:a9:ae:5f:d4:b8:f0:70:8d:40:09:11:ae:74: 1a:bd:f0:1f:53:f8:89:5d:00:89:1e:b0:d0:0f:68: 73:ec:99:7b:4a:4b:b4:bd:43:63:70:2c:40:b0:9a: 8d:07:96:10:2d:4e:b4:fb:d1:db:8e:c3:26:3b:f5: 02:36:3a:90:a2:6a:51:00:9a:25:21:42:59:5c:be: 83:e5:b8:ee:84:bf:ae:f6:8c:df:2d:3d:23:f5:26: 8b:47:bd:37:8c:6b:ca:69:24:0c:5c:09:d4:a9:30: c1:ff:2a:ed:e6:b7:65:f5:e8:d7:65:9b:4b:ae:4f: 4e:7d:40:32:a5:02:85:01:56:a4:31:1f:b3:04:da: 27:dc:f6:a2:6a:03:0b:4c:23:1e:e1:11:85:bb:f8: ca:68:f4:e4:1d:74:7f:af:0a:c7:da:45:43:d0:aa: 3a:ad:a4:0c:ed:8b:07:4c:dc:86:e2:66:8d:c4:a8: f8:0e:46:bb:80:1c:a7:07:29:0f:43:ff:96:b3:f2: a1:22:f6:70:f8:71:13:3a:c6:be:8d:0c:20:a3:2c: b7:af:4d:0f:9f:83:ba:4c:4b:52:57:e8:d4:b6:d5: 5b:ee:e8:e9:65:19:b3:05:db:d2:b0:b3:27:70:ac: e7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B9:0F:93:11:57:C6:03:FB:A3:3A:98:BB:83:EA:47:6F:31:13:60 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37342e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.74.0/23 Signature Algorithm: sha256WithRSAEncryption 42:db:a6:64:c5:95:55:82:11:e9:69:22:27:e8:1a:9d:84:dd: cf:a2:16:44:2a:e1:c9:7a:9b:98:32:dc:81:d7:64:f0:d5:16: f5:ef:6e:6c:a2:d6:42:23:dd:9e:4a:76:2d:f7:4c:a1:e7:0d: 30:c1:18:a7:f0:0d:2a:aa:5e:00:df:3a:d9:c7:96:d2:80:00: 9a:51:67:7f:41:76:f3:83:86:30:60:20:e6:8f:32:d1:1b:3e: 32:ec:f0:63:40:61:77:c0:7c:ab:72:e3:a7:eb:8e:3e:45:46: 92:b5:6d:28:d0:58:a3:82:29:ee:6c:c1:5a:dc:f0:a5:01:ce: 97:6c:49:bb:31:85:24:00:63:bf:10:e3:26:fd:02:16:b3:28: f9:6b:b2:40:a4:0c:e8:66:ed:8d:ec:70:72:db:11:3b:ea:ff: cc:6a:81:e6:0c:96:db:fa:70:78:33:68:2f:05:1e:29:f1:b7: a5:c5:80:7e:19:57:93:88:ad:43:a1:86:74:2f:a0:06:d4:10: d8:ac:c2:f9:94:f7:6a:f7:2f:3f:28:9c:41:96:23:e7:be:e3: 59:cf:11:4d:84:e1:1f:f5:f4:af:65:0f:16:f5:41:1d:81:ab: 27:bb:ea:a8:86:59:2a:6d:49:f4:8e:3b:1a:3c:7f:d1:c3:99: 2e:ec:5e:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJBqynS0xws/7zL16fVc9z9yE35owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yMzA5MjIwNDU2NDlaFw0yNDA5MjAwNTAxNDlaMDMxMTAvBgNV BAMTKEQ4QjkwRjkzMTE1N0M2MDNGQkEzM0E5OEJCODNFQTQ3NkYzMTEzNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3QgOhv5bJHAgnKQb/RMmzqa5f 1LjwcI1ACRGudBq98B9T+IldAIkesNAPaHPsmXtKS7S9Q2NwLECwmo0HlhAtTrT7 0duOwyY79QI2OpCialEAmiUhQllcvoPluO6Ev672jN8tPSP1JotHvTeMa8ppJAxc CdSpMMH/Ku3mt2X16Ndlm0uuT059QDKlAoUBVqQxH7ME2ifc9qJqAwtMIx7hEYW7 +Mpo9OQddH+vCsfaRUPQqjqtpAztiwdM3IbiZo3EqPgORruAHKcHKQ9D/5az8qEi 9nD4cRM6xr6NDCCjLLevTQ+fg7pMS1JX6NS21Vvu6OllGbMF29KwsydwrOftAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2LkPkxFXxgP7ozqYu4PqR28xE2AwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzNzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbuhKMA0GCSqG SIb3DQEBCwUAA4IBAQBC26ZkxZVVghHpaSIn6BqdhN3PohZEKuHJepuYMtyB12Tw 1Rb1725sotZCI92eSnYt90yh5w0wwRin8A0qql4A3zrZx5bSgACaUWd/QXbzg4Yw YCDmjzLRGz4y7PBjQGF3wHyrcuOn644+RUaStW0o0FijginubMFa3PClAc6XbEm7 MYUkAGO/EOMm/QIWsyj5a7JApAzoZu2N7HBy2xE76v/MaoHmDJbb+nB4M2gvBR4p 8belxYB+GVeTiK1DoYZ0L6AG1BDYrML5lPdq9y8/KJxBliPnvuNZzxFNhOEf9fSv ZQ8W9UEdgasnu+qohlkqbUn0jjsaPH/Rw5ku7F4s -----END CERTIFICATE-----Generated at Fri May 3 11:55:16 2024 by rpki-client on console-fra.rpki-client.org