$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230322e302f32342d3234203d3e203233363739.roa File: 3230322e3136322e3230322e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: q7DHz2ecfbVN6cRZcTcOGw5BaRtKxkky1w/uMhIhf34= Subject key identifier: 2A:62:A4:43:47:F5:39:7A:A4:06:29:5F:73:0B:74:CB:57:62:73:CE Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 0BAF77526649F14DB695F425B8DAFEB0988D4991 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230322e302f32342d3234203d3e203233363739.roa Signing time: Fri 22 Sep 2023 05:01:49 +0000 ROA not before: Fri 22 Sep 2023 04:56:49 +0000 ROA not after: Fri 20 Sep 2024 05:01:49 +0000 asID: 23679 IP address blocks: 202.162.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:af:77:52:66:49:f1:4d:b6:95:f4:25:b8:da:fe:b0:98:8d:49:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 22 04:56:49 2023 GMT Not After : Sep 20 05:01:49 2024 GMT Subject: CN=2A62A44347F5397AA406295F730B74CB576273CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:66:0d:56:0e:8a:c6:8b:14:bb:27:8c:60:dd: a9:74:5e:a3:aa:61:03:38:07:8e:39:7f:1c:17:7d: 10:d5:5c:eb:ae:36:83:bd:97:e6:a5:3f:48:e3:e3: c8:f9:48:7d:fd:6c:a7:14:a3:a1:de:15:1e:ad:da: ba:cc:76:77:20:e8:f9:92:e3:c0:b5:33:f4:bc:19: ff:4d:3f:b0:c4:18:59:7c:ca:28:44:cc:1e:01:fb: d7:3b:47:42:4a:44:3a:bf:0a:2d:70:38:cf:46:35: a3:1c:c2:36:99:38:c1:d6:2a:3e:19:ff:fa:e7:92: 7e:13:08:80:9c:b5:df:b2:67:46:ac:c8:b1:c7:24: 56:41:8c:73:5d:ee:55:44:18:f1:3b:40:09:48:8b: 68:fd:6e:b4:5e:8c:79:55:61:17:52:b6:09:3f:6e: 4c:44:8a:39:47:17:cf:b7:62:52:26:61:b1:43:20: cb:2f:ca:b4:09:c4:2c:60:ef:f0:d5:1e:36:35:4c: 19:6c:6b:e2:1a:40:50:40:12:ed:81:14:52:11:74: c7:c0:85:c7:4b:56:2a:db:bf:83:f4:4a:f3:07:a7: 66:88:bd:e4:02:4b:76:33:8c:58:f3:24:f0:a2:a8: 0c:f3:cd:10:be:ac:1b:0e:aa:69:74:b9:0f:58:1b: 9e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:62:A4:43:47:F5:39:7A:A4:06:29:5F:73:0B:74:CB:57:62:73:CE X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230322e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.202.0/24 Signature Algorithm: sha256WithRSAEncryption 28:75:e6:a3:4d:c1:05:85:e5:f9:4e:dc:61:5a:cc:ef:cc:c8: 36:e7:86:53:37:f9:e0:18:7c:8f:5b:f9:71:1f:b9:ea:8e:4f: 46:f8:ea:14:c5:ca:a9:f8:c2:e6:cc:2b:39:60:ef:b0:42:a1: 24:20:4c:c5:53:20:d2:c5:0d:ea:61:85:10:00:c3:dc:7e:a0: 84:f0:a1:86:8c:96:53:72:01:5f:16:c1:91:9f:31:73:f8:63: 6f:a4:7a:0c:c1:c5:44:34:81:f4:09:55:56:6a:e4:f5:63:76: b5:ad:aa:80:c0:69:f2:83:58:b6:2b:ad:78:64:be:13:7e:6e: cb:48:88:0a:e2:b4:ca:27:4f:f3:a6:2c:58:ec:eb:a2:51:67: e9:b1:03:39:fc:e6:9e:3e:d6:21:1e:c5:ce:57:7d:b8:7a:25: 6d:31:a4:04:7a:9f:d2:98:4e:81:05:ff:7b:0c:72:5f:09:74: 9e:7b:0e:0e:bb:29:3d:94:b0:7e:69:d4:26:07:3d:75:eb:d5: 5d:8b:3a:88:3f:8a:5e:af:84:87:fc:f3:99:60:73:92:3d:7b: 5b:0a:eb:77:6c:31:80:98:36:c8:6b:67:99:b1:09:f1:26:e5: d3:24:28:6b:92:27:76:a2:da:ce:a9:51:2d:e3:da:26:a1:dd: d8:4d:ff:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC693UmZJ8U22lfQluNr+sJiNSZEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yMzA5MjIwNDU2NDlaFw0yNDA5MjAwNTAxNDlaMDMxMTAvBgNV BAMTKDJBNjJBNDQzNDdGNTM5N0FBNDA2Mjk1RjczMEI3NENCNTc2MjczQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Zg1WDorGixS7J4xg3al0XqOq YQM4B445fxwXfRDVXOuuNoO9l+alP0jj48j5SH39bKcUo6HeFR6t2rrMdncg6PmS 48C1M/S8Gf9NP7DEGFl8yihEzB4B+9c7R0JKRDq/Ci1wOM9GNaMcwjaZOMHWKj4Z //rnkn4TCICctd+yZ0asyLHHJFZBjHNd7lVEGPE7QAlIi2j9brRejHlVYRdStgk/ bkxEijlHF8+3YlImYbFDIMsvyrQJxCxg7/DVHjY1TBlsa+IaQFBAEu2BFFIRdMfA hcdLVirbv4P0SvMHp2aIveQCS3YzjFjzJPCiqAzzzRC+rBsOqml0uQ9YG55XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKmKkQ0f1OXqkBilfcwt0y1dic84wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyqLKMA0GCSqG SIb3DQEBCwUAA4IBAQAodeajTcEFheX5TtxhWszvzMg254ZTN/ngGHyPW/lxH7nq jk9G+OoUxcqp+MLmzCs5YO+wQqEkIEzFUyDSxQ3qYYUQAMPcfqCE8KGGjJZTcgFf FsGRnzFz+GNvpHoMwcVENIH0CVVWauT1Y3a1raqAwGnyg1i2K614ZL4Tfm7LSIgK 4rTKJ0/zpixY7OuiUWfpsQM5/OaePtYhHsXOV324eiVtMaQEep/SmE6BBf97DHJf CXSeew4Ouyk9lLB+adQmBz1169VdizqIP4per4SH/POZYHOSPXtbCut3bDGAmDbI a2eZsQnxJuXTJChrkid2otrOqVEt49omod3YTf/o -----END CERTIFICATE-----Generated at Fri May 3 11:55:16 2024 by rpki-client on console-fra.rpki-client.org