$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230362e302f32332d3234203d3e20313338383431.roa File: 3230322e3136322e3230362e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: tHbp/8ple5QAvoLMgJSFsOdTa4+NMkNofN4dmS1Goxk= Subject key identifier: A3:71:14:01:F8:7D:24:86:CC:A9:DD:7C:72:F1:5D:B2:6A:8B:3D:E0 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 147FCECC858E4424D51B1120D5906809301A82B5 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230362e302f32332d3234203d3e20313338383431.roa Signing time: Fri 22 Sep 2023 05:01:49 +0000 ROA not before: Fri 22 Sep 2023 04:56:49 +0000 ROA not after: Fri 20 Sep 2024 05:01:49 +0000 asID: 138841 IP address blocks: 202.162.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:7f:ce:cc:85:8e:44:24:d5:1b:11:20:d5:90:68:09:30:1a:82:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 22 04:56:49 2023 GMT Not After : Sep 20 05:01:49 2024 GMT Subject: CN=A3711401F87D2486CCA9DD7C72F15DB26A8B3DE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:78:69:68:77:90:5b:93:41:35:2d:13:41:21: d7:3d:c8:4a:c8:d3:a0:0e:e7:e2:fc:9c:a0:ce:d6: 30:0f:01:90:79:aa:a1:b8:53:d8:65:58:85:0f:6e: 76:c5:70:5a:7c:17:00:b8:d4:fe:9e:09:87:9b:d6: da:c4:6b:81:d6:55:7e:6d:7c:c3:f4:07:9e:13:9d: f9:88:3e:d1:e6:90:04:90:66:90:1c:7c:b7:b9:fa: ec:96:55:c6:a4:fd:7b:59:22:15:a6:69:35:c9:76: b8:d1:ec:84:0a:86:24:b2:b1:19:17:76:00:55:0b: 44:b1:06:58:81:86:4c:cd:8b:6c:c6:40:11:c2:c4: 15:6d:f8:07:13:c5:67:71:fd:f7:3d:34:e5:0e:6f: 69:f9:4f:df:7b:63:21:57:fa:9c:89:9f:d8:8e:af: d6:09:c0:a3:1f:3d:2c:05:50:4e:10:ad:1d:ba:7a: 42:f8:19:f2:d2:a2:9c:1e:f4:2a:35:6d:c1:9e:8a: dc:01:6d:c7:1e:52:fd:0e:bd:71:32:e1:ef:c9:23: 92:0d:c1:39:97:a0:45:26:55:7f:93:ae:b4:4b:d7: 9e:65:6d:40:47:49:7c:1f:7f:69:86:17:a5:69:dd: ba:19:c5:43:24:57:ce:f7:b0:3c:1d:c5:fa:37:82: 38:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:71:14:01:F8:7D:24:86:CC:A9:DD:7C:72:F1:5D:B2:6A:8B:3D:E0 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230362e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.206.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:e0:46:da:79:b0:97:f8:00:02:c9:d3:3c:63:2e:73:c7:90: f7:24:80:ed:89:5d:3b:e3:99:8c:1d:4c:32:ea:ab:33:4e:bb: 7a:4f:1e:55:6e:cc:49:5c:7f:d3:8a:97:bd:17:10:27:b6:55: 0a:b4:01:e5:20:8c:65:ab:e8:1c:20:d3:84:dd:09:79:d3:c6: e7:42:ae:87:6c:53:5f:63:46:6c:59:d6:b2:f4:18:da:47:35: f3:52:6b:d0:b9:53:bc:c1:f6:bd:d8:66:9a:bb:80:8e:ea:e8: f5:c1:a3:f4:bd:78:75:aa:ce:29:3c:a2:f5:8c:b8:5d:94:d8: ea:34:5b:88:6b:01:53:98:a9:ed:fe:83:23:6b:1f:16:0c:0b: ae:c7:58:51:0e:2d:60:31:1b:52:89:e6:12:35:f5:f4:95:d1: b1:cc:dc:01:22:1a:1e:23:94:4e:97:eb:7a:8f:68:ee:af:12: 5c:54:90:e1:b3:56:7f:a7:1f:56:84:41:7f:df:41:fb:bc:ca: 3e:d4:82:dd:7e:54:b7:1b:91:e3:e6:08:ca:de:e0:cb:60:89: ff:e5:86:fa:f1:bb:59:3a:50:75:1a:b3:76:89:3e:00:81:b4: 25:02:f2:97:79:f5:ae:f1:5c:21:c1:ec:5a:b0:05:a9:00:ad: c4:ab:53:40 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFH/OzIWORCTVGxEg1ZBoCTAagrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yMzA5MjIwNDU2NDlaFw0yNDA5MjAwNTAxNDlaMDMxMTAvBgNV BAMTKEEzNzExNDAxRjg3RDI0ODZDQ0E5REQ3QzcyRjE1REIyNkE4QjNERTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSeGlod5Bbk0E1LRNBIdc9yErI 06AO5+L8nKDO1jAPAZB5qqG4U9hlWIUPbnbFcFp8FwC41P6eCYeb1trEa4HWVX5t fMP0B54TnfmIPtHmkASQZpAcfLe5+uyWVcak/XtZIhWmaTXJdrjR7IQKhiSysRkX dgBVC0SxBliBhkzNi2zGQBHCxBVt+AcTxWdx/fc9NOUOb2n5T997YyFX+pyJn9iO r9YJwKMfPSwFUE4QrR26ekL4GfLSopwe9Co1bcGeitwBbcceUv0OvXEy4e/JI5IN wTmXoEUmVX+TrrRL155lbUBHSXwff2mGF6Vp3boZxUMkV873sDwdxfo3gjgPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUo3EUAfh9JIbMqd18cvFdsmqLPeAwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKos4wDQYJ KoZIhvcNAQELBQADggEBAA7gRtp5sJf4AALJ0zxjLnPHkPckgO2JXTvjmYwdTDLq qzNOu3pPHlVuzElcf9OKl70XECe2VQq0AeUgjGWr6Bwg04TdCXnTxudCrodsU19j RmxZ1rL0GNpHNfNSa9C5U7zB9r3YZpq7gI7q6PXBo/S9eHWqzik8ovWMuF2U2Oo0 W4hrAVOYqe3+gyNrHxYMC67HWFEOLWAxG1KJ5hI19fSV0bHM3AEiGh4jlE6X63qP aO6vElxUkOGzVn+nH1aEQX/fQfu8yj7Ugt1+VLcbkePmCMre4Mtgif/lhvrxu1k6 UHUas3aJPgCBtCUC8pd59a7xXCHB7FqwBakArcSrU0A= -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org