$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa File: 3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: exRjkpXrdt1dAGrdeT6D2BJs0ogZCNw7AaVbcl/wJ9M= Subject key identifier: CF:55:0B:98:B6:FE:91:CA:98:1E:B6:3C:9E:9C:13:BB:48:8F:B1:41 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 79BBD567EF377AD1B27AA3BD6800D6057E7E7138 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa Signing time: Fri 22 Sep 2023 05:01:48 +0000 ROA not before: Fri 22 Sep 2023 04:56:48 +0000 ROA not after: Fri 20 Sep 2024 05:01:48 +0000 asID: 138841 IP address blocks: 110.232.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:bb:d5:67:ef:37:7a:d1:b2:7a:a3:bd:68:00:d6:05:7e:7e:71:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 22 04:56:48 2023 GMT Not After : Sep 20 05:01:48 2024 GMT Subject: CN=CF550B98B6FE91CA981EB63C9E9C13BB488FB141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f8:91:b6:da:be:c2:3d:3d:c2:58:07:a5:87: 87:7b:f6:88:ed:67:40:52:d5:83:c7:c4:33:79:92: cf:d3:a6:5a:4d:24:60:a5:13:8b:4e:eb:eb:08:ce: 89:8a:69:a1:34:1f:f7:00:b2:04:8c:0e:9e:00:af: 51:21:ab:84:4f:9b:59:16:d6:c7:88:fa:35:49:26: 9d:16:26:ba:70:e9:0d:d3:19:a2:64:cb:01:67:e3: 54:de:bb:aa:9d:2a:79:7b:fc:bb:0b:97:97:34:10: e7:ba:e8:dd:6a:63:57:69:77:74:a8:8c:0f:b8:85: 7c:5f:08:81:ad:5e:0c:af:94:f2:40:fb:99:05:2d: cf:4f:06:5d:1b:66:69:f3:bb:50:da:42:5a:2c:bb: 14:fe:0e:13:9a:45:b1:d8:69:c6:d8:1c:54:74:27: d7:ab:c2:d5:89:b1:18:2e:bc:76:9a:07:72:2a:e7: 77:bc:ef:14:56:db:73:5a:b6:49:58:35:7d:d9:d8: 12:79:de:4c:c7:a8:66:4c:27:67:e4:97:7f:27:03: fe:9b:7d:63:c7:38:c7:57:4c:59:05:7b:18:bf:8d: a3:3d:97:71:e1:2b:b7:31:f2:0e:4c:4a:8e:15:9a: 42:65:b2:3e:00:9b:33:67:96:b3:46:27:85:b6:9a: 3f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:55:0B:98:B6:FE:91:CA:98:1E:B6:3C:9E:9C:13:BB:48:8F:B1:41 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.76.0/23 Signature Algorithm: sha256WithRSAEncryption 66:1d:4a:bc:07:32:34:2a:81:6a:63:ab:78:ff:81:4e:a0:50: 62:5d:7d:d5:4b:ec:1f:67:64:6d:83:9e:f6:ad:ed:45:53:e2: fc:26:e5:4f:d0:59:f0:0d:84:20:89:4c:c2:04:8f:b2:32:79: a3:8e:96:52:c0:66:ee:11:cb:a9:df:70:12:2f:cf:66:51:9d: 1f:d4:be:f1:38:67:a8:68:55:90:74:c8:a8:05:38:55:b2:4c: 2f:85:80:71:7f:cb:42:41:4c:6d:62:a4:c6:c7:da:48:4d:7d: 21:db:9e:c8:02:33:e0:ee:ff:69:e8:f3:51:b5:85:34:5e:96: b3:7a:bf:03:c8:cf:b4:41:c1:87:b1:f8:06:26:5a:bc:90:45: a9:eb:bb:57:75:bb:c2:1c:42:a2:c1:e3:c1:18:9b:9a:b9:3f: f1:d5:5b:33:ba:be:8b:57:0a:67:a9:1b:08:36:52:30:5a:96: 39:04:9b:02:b4:b2:25:19:da:03:f8:04:86:6d:9a:b9:65:21: 35:30:9e:cd:4e:f6:73:bf:de:b9:27:ef:1e:5a:5d:7d:ce:b1: ae:5a:1a:17:92:ee:de:b3:6e:f5:d0:aa:ba:24:98:5b:55:9e: e7:64:3a:f6:4b:29:92:ec:4b:cb:6a:38:da:b4:b3:c6:c3:3e: 60:a1:aa:37 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUebvVZ+83etGyeqO9aADWBX5+cTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yMzA5MjIwNDU2NDhaFw0yNDA5MjAwNTAxNDhaMDMxMTAvBgNV BAMTKENGNTUwQjk4QjZGRTkxQ0E5ODFFQjYzQzlFOUMxM0JCNDg4RkIxNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy+JG22r7CPT3CWAelh4d79ojt Z0BS1YPHxDN5ks/TplpNJGClE4tO6+sIzomKaaE0H/cAsgSMDp4Ar1Ehq4RPm1kW 1seI+jVJJp0WJrpw6Q3TGaJkywFn41Teu6qdKnl7/LsLl5c0EOe66N1qY1dpd3So jA+4hXxfCIGtXgyvlPJA+5kFLc9PBl0bZmnzu1DaQlosuxT+DhOaRbHYacbYHFR0 J9erwtWJsRguvHaaB3Iq53e87xRW23NatklYNX3Z2BJ53kzHqGZMJ2fkl38nA/6b fWPHOMdXTFkFexi/jaM9l3HhK7cx8g5MSo4VmkJlsj4AmzNnlrNGJ4W2mj9ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz1ULmLb+kcqYHrY8npwTu0iPsUEwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzNzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbuhMMA0GCSqG SIb3DQEBCwUAA4IBAQBmHUq8BzI0KoFqY6t4/4FOoFBiXX3VS+wfZ2Rtg572re1F U+L8JuVP0FnwDYQgiUzCBI+yMnmjjpZSwGbuEcup33ASL89mUZ0f1L7xOGeoaFWQ dMioBThVskwvhYBxf8tCQUxtYqTGx9pITX0h257IAjPg7v9p6PNRtYU0Xpazer8D yM+0QcGHsfgGJlq8kEWp67tXdbvCHEKiwePBGJuauT/x1Vszur6LVwpnqRsINlIw WpY5BJsCtLIlGdoD+ASGbZq5ZSE1MJ7NTvZzv965J+8eWl19zrGuWhoXku7es271 0Kq6JJhbVZ7nZDr2SymS7EvLajjatLPGwz5goao3 -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org