$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136302e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136302e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: 1+BV/NTZwsd8/f/6SrmjQsaN3Cxn5HVV92bi1Tr6Udg= Subject key identifier: 5B:F6:EF:B6:4D:0B:E8:0F:C4:71:6F:C0:DB:73:4A:24:AA:3C:05:99 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 4F6F9C6420914CD9E3CB4B8734C58B509B12CFDE Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136302e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Sep 2024 06:01:27 +0000 ROA not before: Fri 27 Sep 2024 05:56:27 +0000 ROA not after: Fri 26 Sep 2025 06:01:27 +0000 asID: 17769 IP address blocks: 202.55.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:6f:9c:64:20:91:4c:d9:e3:cb:4b:87:34:c5:8b:50:9b:12:cf:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Sep 27 05:56:27 2024 GMT Not After : Sep 26 06:01:27 2025 GMT Subject: CN=5BF6EFB64D0BE80FC4716FC0DB734A24AA3C0599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:fd:c3:44:01:a1:c4:f8:5b:3a:b2:e2:d6:94: 6d:5f:29:2c:8f:ab:e3:eb:77:07:60:b2:f5:2d:1e: df:10:80:b2:c0:d2:de:96:04:7d:09:10:89:7c:ca: f8:b8:7f:c8:19:86:8f:da:41:24:a4:d9:6d:5d:0c: 4f:47:dd:c0:db:2e:40:36:fe:bc:5b:a5:14:e7:21: d1:42:ce:43:75:60:22:9d:1e:58:46:50:f7:1d:35: 4f:51:05:df:4f:04:a7:30:34:02:ce:05:af:1f:7d: b7:e2:e0:05:90:83:56:8e:e1:7d:94:a9:2b:82:f4: 82:8b:c9:0a:b7:3f:25:fe:1e:66:38:69:be:ec:69: 46:4b:51:70:7e:1c:77:ce:fc:ec:2d:21:97:78:c1: 6a:4f:46:1f:36:06:bd:b8:28:7b:b6:41:c7:b0:7d: 29:cd:39:d1:35:86:94:0f:9f:6f:c1:69:33:e0:86: 50:58:e2:af:21:e7:b9:fe:d6:48:8f:50:ff:6f:9f: c3:47:26:19:cc:c2:eb:49:73:74:d0:ff:32:2c:86: 12:b7:0a:df:1c:62:4a:3b:47:81:bd:87:54:bc:c9: 89:24:57:fd:47:27:18:28:a9:7e:7b:5b:68:70:24: 41:b8:2e:bb:c7:20:07:aa:fa:8d:47:15:4a:5f:56: 5b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F6:EF:B6:4D:0B:E8:0F:C4:71:6F:C0:DB:73:4A:24:AA:3C:05:99 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136302e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.160.0/24 Signature Algorithm: sha256WithRSAEncryption a7:3e:b2:4c:44:01:89:68:91:b8:dc:ed:5b:08:90:6a:f2:0b: c3:cc:0a:f5:f0:03:32:33:d9:1d:91:14:ed:9a:de:ca:38:f8: b9:ba:57:a8:10:0c:6a:ba:7c:c4:6d:46:ea:d6:e2:7e:4e:ba: 23:63:ef:72:46:7e:61:42:7d:37:90:ac:9c:54:ec:ce:b0:e3: 9b:53:5a:67:22:84:bd:91:75:35:ac:f9:0c:4b:94:16:d1:d7: da:2c:e2:f7:b8:93:86:b1:e5:af:bb:23:98:03:f7:f4:22:c8: d9:ac:3c:a2:c0:8a:0f:df:50:e7:a4:7d:ca:b1:2e:9d:cc:ae: 7b:c5:0c:b4:07:8c:94:27:5d:a6:11:2c:16:79:74:3c:f2:08: 5e:3b:70:9e:46:36:97:a7:c0:c9:d3:86:6a:47:e2:5a:a3:43: 41:dd:00:51:b5:0a:c7:c0:d4:16:5a:7d:f6:38:30:fe:c2:f0: f0:80:42:8f:3c:b5:32:cc:cc:70:ac:98:91:23:9e:d3:fa:7f: a6:b8:28:0d:37:8b:b0:4d:c2:b3:9b:fe:3c:1a:66:75:c1:45: af:a6:5e:a5:06:5f:c5:ef:4d:54:ed:53:a9:4f:90:85:a1:94: 4d:91:ac:40:a8:0e:f9:fd:a2:b3:28:b5:83:57:4b:e1:6f:c4: 00:bb:af:92 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT2+cZCCRTNnjy0uHNMWLUJsSz94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNDA5MjcwNTU2MjdaFw0yNTA5MjYwNjAxMjdaMDMxMTAvBgNV BAMTKDVCRjZFRkI2NEQwQkU4MEZDNDcxNkZDMERCNzM0QTI0QUEzQzA1OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY/cNEAaHE+Fs6suLWlG1fKSyP q+PrdwdgsvUtHt8QgLLA0t6WBH0JEIl8yvi4f8gZho/aQSSk2W1dDE9H3cDbLkA2 /rxbpRTnIdFCzkN1YCKdHlhGUPcdNU9RBd9PBKcwNALOBa8ffbfi4AWQg1aO4X2U qSuC9IKLyQq3PyX+HmY4ab7saUZLUXB+HHfO/OwtIZd4wWpPRh82Br24KHu2Qcew fSnNOdE1hpQPn2/BaTPghlBY4q8h57n+1kiPUP9vn8NHJhnMwutJc3TQ/zIshhK3 Ct8cYko7R4G9h1S8yYkkV/1HJxgoqX57W2hwJEG4LrvHIAeq+o1HFUpfVlspAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUW/bvtk0L6A/EcW/A23NKJKo8BZkwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3oDANBgkqhkiG 9w0BAQsFAAOCAQEApz6yTEQBiWiRuNztWwiQavILw8wK9fADMjPZHZEU7Zreyjj4 ubpXqBAMarp8xG1G6tbifk66I2PvckZ+YUJ9N5CsnFTszrDjm1NaZyKEvZF1Naz5 DEuUFtHX2izi97iThrHlr7sjmAP39CLI2aw8osCKD99Q56R9yrEuncyue8UMtAeM lCddphEsFnl0PPIIXjtwnkY2l6fAydOGakfiWqNDQd0AUbUKx8DUFlp99jgw/sLw 8IBCjzy1MszMcKyYkSOe0/p/prgoDTeLsE3Cs5v+PBpmdcFFr6ZepQZfxe9NVO1T qU+QhaGUTZGsQKgO+f2isyi1g1dL4W/EALuvkg== -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org