$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa File: 3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa (raw, json) Hash identifier: xnlQUU02tyJu/L3iO3JT/Ehu0/CFUa//3/T15ds9NAQ= Subject key identifier: 56:D0:F2:87:E5:6D:1D:22:D0:F3:76:2A:68:67:DE:57:99:EA:92:93 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 7CDC95BC046F6876F0682FBE212CF967224651F6 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa Signing time: Fri 08 Sep 2023 05:01:50 +0000 ROA not before: Fri 08 Sep 2023 04:56:50 +0000 ROA not after: Fri 06 Sep 2024 05:01:50 +0000 asID: 23679 IP address blocks: 202.162.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:dc:95:bc:04:6f:68:76:f0:68:2f:be:21:2c:f9:67:22:46:51:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 8 04:56:50 2023 GMT Not After : Sep 6 05:01:50 2024 GMT Subject: CN=56D0F287E56D1D22D0F3762A6867DE5799EA9293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2f:f9:f1:02:6a:86:3f:b7:97:95:94:4e:a5: f6:a5:a0:7c:6c:da:81:b7:dc:c7:f4:0e:d6:69:32: 4e:df:3c:d8:17:06:1f:28:05:1f:f0:c6:53:25:14: 03:5b:c0:d5:e6:c6:71:d5:0a:75:70:2e:30:56:8c: 6f:2c:80:35:c8:cf:bb:39:b4:dc:ce:85:83:64:92: 37:8c:9d:5c:71:5f:36:15:18:6a:ca:a1:f0:bc:13: 91:ca:c3:05:20:3a:f7:4a:21:a2:5a:13:ab:df:dd: 91:6d:30:d7:97:c8:70:e7:cb:12:fd:81:c6:b6:90: ee:ec:9e:73:74:6a:bb:2c:de:86:23:74:15:04:a9: 69:72:c1:69:2c:cb:06:47:75:8e:f8:2b:a9:22:f0: f4:a0:00:64:17:0a:eb:ef:44:a6:67:ec:3b:c5:89: e3:03:e6:d1:64:ae:30:10:a4:91:11:a0:5f:0a:dd: 54:50:fb:8e:7a:ac:6c:30:de:27:47:10:8b:d9:82: 7e:74:76:b1:57:5c:03:57:39:9d:4c:34:e9:37:fd: e5:3b:46:8d:64:46:9f:84:19:e2:e0:99:b8:83:30: 29:a0:b4:f5:d5:f1:f6:bf:37:69:93:15:99:b3:a6: 32:b3:cc:2a:79:f6:4e:4b:1d:54:13:ab:1b:37:68: 11:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D0:F2:87:E5:6D:1D:22:D0:F3:76:2A:68:67:DE:57:99:EA:92:93 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3139322e302f32312d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.192.0/21 Signature Algorithm: sha256WithRSAEncryption 1c:48:b1:66:9c:a9:46:c1:8b:d4:a9:6e:df:b2:73:49:ad:55: 14:3f:99:db:7d:dc:2c:b4:94:33:78:01:60:68:d3:55:7c:03: 82:f3:15:e4:51:e6:37:ae:14:1f:67:82:fc:11:10:0d:7f:30: 49:a3:86:ec:2d:af:df:c3:37:cb:0f:e9:ec:5b:56:a4:2b:13: 9f:cf:45:62:f3:05:1d:6a:bc:10:e7:28:88:11:c0:2e:24:e6: 56:c0:2c:71:9d:cf:62:76:0e:56:d3:45:ea:a7:0c:95:c9:2c: cb:47:c2:b3:d8:45:78:63:43:97:6f:46:97:32:5f:e1:54:a8: 93:0c:ab:2d:af:ce:cf:7b:0a:d5:86:28:5b:48:6d:a1:34:2e: 4f:d1:61:60:06:a9:32:30:34:e4:40:e0:6a:b0:a0:f0:c0:31: 34:a1:48:18:e4:c9:ce:36:03:c0:6c:cf:25:af:24:a6:80:4e: 0c:8a:51:50:fb:df:a7:10:69:33:47:85:17:3c:7e:23:71:e8: fc:46:d7:b3:ae:3c:d4:48:5a:de:91:33:46:a4:d1:8b:7f:5d: b9:4d:87:21:e7:67:64:cd:1f:90:da:74:80:22:19:54:93:41: b8:7f:e2:d1:ba:54:0d:c8:64:ae:69:1c:5e:19:23:d3:d2:80: 0a:ee:0d:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfNyVvARvaHbwaC++ISz5ZyJGUfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yMzA5MDgwNDU2NTBaFw0yNDA5MDYwNTAxNTBaMDMxMTAvBgNV BAMTKDU2RDBGMjg3RTU2RDFEMjJEMEYzNzYyQTY4NjdERTU3OTlFQTkyOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGL/nxAmqGP7eXlZROpfaloHxs 2oG33Mf0DtZpMk7fPNgXBh8oBR/wxlMlFANbwNXmxnHVCnVwLjBWjG8sgDXIz7s5 tNzOhYNkkjeMnVxxXzYVGGrKofC8E5HKwwUgOvdKIaJaE6vf3ZFtMNeXyHDnyxL9 gca2kO7snnN0arss3oYjdBUEqWlywWksywZHdY74K6ki8PSgAGQXCuvvRKZn7DvF ieMD5tFkrjAQpJERoF8K3VRQ+456rGww3idHEIvZgn50drFXXANXOZ1MNOk3/eU7 Ro1kRp+EGeLgmbiDMCmgtPXV8fa/N2mTFZmzpjKzzCp59k5LHVQTqxs3aBHRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVtDyh+VtHSLQ83YqaGfeV5nqkpMwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMTM5MzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDyqLAMA0GCSqG SIb3DQEBCwUAA4IBAQAcSLFmnKlGwYvUqW7fsnNJrVUUP5nbfdwstJQzeAFgaNNV fAOC8xXkUeY3rhQfZ4L8ERANfzBJo4bsLa/fwzfLD+nsW1akKxOfz0Vi8wUdarwQ 5yiIEcAuJOZWwCxxnc9idg5W00XqpwyVySzLR8Kz2EV4Y0OXb0aXMl/hVKiTDKst r87PewrVhihbSG2hNC5P0WFgBqkyMDTkQOBqsKDwwDE0oUgY5MnONgPAbM8lrySm gE4MilFQ+9+nEGkzR4UXPH4jcej8RtezrjzUSFrekTNGpNGLf125TYch52dkzR+Q 2nSAIhlUk0G4f+LRulQNyGSuaRxeGSPT0oAK7g2g -----END CERTIFICATE-----Generated at Fri May 3 11:55:16 2024 by rpki-client on console-fra.rpki-client.org