$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa File: 3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa (raw, json) Hash identifier: NuabHPajxpAN7w3/5mUF3Yd7wZGAxSFP+3xTvwiuDaQ= Subject key identifier: D0:93:17:7B:CC:6B:88:2D:85:90:18:E6:AC:3D:C0:FE:BC:71:FB:DF Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 2D82E50F454991B3C6321FD9EA5F61C2646FA5EE Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa Signing time: Fri 22 Sep 2023 05:01:48 +0000 ROA not before: Fri 22 Sep 2023 04:56:48 +0000 ROA not after: Fri 20 Sep 2024 05:01:48 +0000 asID: 138841 IP address blocks: 202.162.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:82:e5:0f:45:49:91:b3:c6:32:1f:d9:ea:5f:61:c2:64:6f:a5:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 22 04:56:48 2023 GMT Not After : Sep 20 05:01:48 2024 GMT Subject: CN=D093177BCC6B882D859018E6AC3DC0FEBC71FBDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fe:81:c3:b1:10:04:1a:96:a7:e7:8e:51:aa: c0:c2:3e:cb:53:70:f9:9e:39:8c:28:b1:4a:98:d3: 23:92:b2:4d:58:8d:31:83:c1:ae:32:e2:aa:f9:f3: 0f:5d:46:70:3d:c5:30:26:8b:f0:04:1e:09:9a:e6: 51:56:1b:4b:e6:7c:7e:ab:c3:68:bb:35:c3:c3:1a: b4:40:c6:5a:54:20:a7:f7:3a:54:39:aa:f9:39:f3: a1:5d:fa:5d:f4:4b:8e:ff:42:0d:b5:0f:aa:d0:22: 27:65:8f:55:1a:b7:5b:67:3a:04:82:aa:c7:80:ca: 01:c1:da:92:de:9d:19:85:bc:9a:a3:e1:fc:e5:6d: 1a:1e:80:53:9f:8e:f6:5c:97:6e:90:02:fe:e6:39: 5a:a8:44:b0:0a:30:2a:b1:b9:e5:ca:d7:c9:a7:0f: f6:7f:10:7c:4d:81:db:a9:c2:14:d8:66:a9:3f:8e: 52:13:dd:42:a3:5c:1c:72:09:eb:57:f3:76:09:48: b8:e3:16:5e:82:17:5a:88:f2:21:1f:a3:ca:a4:da: 6d:8d:0a:29:e7:bb:6a:2d:22:d8:f2:54:63:9d:4e: 92:3b:a3:9b:5f:4d:bd:b9:a8:49:6e:d8:62:bc:4b: 19:91:4f:39:fb:15:2e:1c:19:a8:b4:2f:f2:fa:52: 61:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:93:17:7B:CC:6B:88:2D:85:90:18:E6:AC:3D:C0:FE:BC:71:FB:DF X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230332e302f32342d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.203.0/24 Signature Algorithm: sha256WithRSAEncryption 60:40:17:78:a1:2a:6c:79:3c:cc:8d:c5:3e:86:44:fa:ce:63: 5e:bb:cd:87:26:69:06:2c:f1:8a:53:6c:6e:e1:4c:d0:53:d4: 21:b2:1a:9b:a5:ac:26:83:de:c0:b3:94:7c:57:38:f3:f1:d9: 36:db:5e:60:95:43:b0:fb:ec:5e:9b:15:6f:a1:a8:cc:67:a7: bc:1b:8d:02:f8:33:15:9c:b5:8f:d6:08:97:a2:90:cb:dc:6f: a7:a3:e9:96:03:82:69:43:26:e4:35:10:12:44:a8:b8:b1:cc: b7:7a:65:24:c9:75:38:27:45:66:57:78:d3:9d:dd:1b:d7:b3: 3f:79:4a:8d:ca:c6:5d:f4:17:84:59:ef:83:48:68:02:a1:93: 68:72:85:e2:75:ea:c7:c0:21:ff:35:4b:c6:b1:9d:e5:2b:85: 8b:61:18:d8:d9:79:f4:18:94:24:37:bb:53:97:dd:06:03:a2: 82:75:67:c2:44:8f:7a:d4:7f:26:85:8c:3c:b1:e2:c0:bb:c1: e3:c2:78:2c:e1:fe:5a:d8:86:f3:de:c6:7a:7a:0a:00:fc:ad: 34:d2:5e:01:ea:6a:e1:ab:6e:d0:47:96:e9:77:35:ee:a3:db: 52:ae:cc:6f:6f:eb:96:7c:40:3f:b2:16:8b:aa:66:c2:f6:71: 7d:d4:59:07 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULYLlD0VJkbPGMh/Z6l9hwmRvpe4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yMzA5MjIwNDU2NDhaFw0yNDA5MjAwNTAxNDhaMDMxMTAvBgNV BAMTKEQwOTMxNzdCQ0M2Qjg4MkQ4NTkwMThFNkFDM0RDMEZFQkM3MUZCREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ/oHDsRAEGpan545RqsDCPstT cPmeOYwosUqY0yOSsk1YjTGDwa4y4qr58w9dRnA9xTAmi/AEHgma5lFWG0vmfH6r w2i7NcPDGrRAxlpUIKf3OlQ5qvk586Fd+l30S47/Qg21D6rQIidlj1Uat1tnOgSC qseAygHB2pLenRmFvJqj4fzlbRoegFOfjvZcl26QAv7mOVqoRLAKMCqxueXK18mn D/Z/EHxNgdupwhTYZqk/jlIT3UKjXBxyCetX83YJSLjjFl6CF1qI8iEfo8qk2m2N Cinnu2otItjyVGOdTpI7o5tfTb25qElu2GK8SxmRTzn7FS4cGai0L/L6UmFRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0JMXe8xriC2FkBjmrD3A/rxx+98wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKosswDQYJ KoZIhvcNAQELBQADggEBAGBAF3ihKmx5PMyNxT6GRPrOY167zYcmaQYs8YpTbG7h TNBT1CGyGpulrCaD3sCzlHxXOPPx2TbbXmCVQ7D77F6bFW+hqMxnp7wbjQL4MxWc tY/WCJeikMvcb6ej6ZYDgmlDJuQ1EBJEqLixzLd6ZSTJdTgnRWZXeNOd3RvXsz95 So3Kxl30F4RZ74NIaAKhk2hyheJ16sfAIf81S8axneUrhYthGNjZefQYlCQ3u1OX 3QYDooJ1Z8JEj3rUfyaFjDyx4sC7wePCeCzh/lrYhvPexnp6CgD8rTTSXgHqauGr btBHlul3Ne6j21KuzG9v65Z8QD+yFouqZsL2cX3UWQc= -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org