$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136302e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136302e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: shuDTgDzno5Nt9xhNWUGiVg1T6cVuwSna6stZs0WBic= Subject key identifier: 79:FC:F2:40:4C:33:89:E8:53:D8:48:0F:69:3D:37:8F:B2:C8:2F:36 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 6E3718365CF30F6ED1F13B9DDD7C133AE01ACB5C Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136302e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:02 +0000 ROA not before: Fri 27 Oct 2023 04:55:02 +0000 ROA not after: Fri 25 Oct 2024 05:00:02 +0000 asID: 17769 IP address blocks: 202.55.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:37:18:36:5c:f3:0f:6e:d1:f1:3b:9d:dd:7c:13:3a:e0:1a:cb:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:02 2023 GMT Not After : Oct 25 05:00:02 2024 GMT Subject: CN=79FCF2404C3389E853D8480F693D378FB2C82F36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:22:11:74:4e:33:3e:cc:a2:30:f0:c7:b0:ee: 5b:a5:ae:0f:39:d4:6d:9c:40:b3:a4:d9:f7:6a:fe: 1f:d1:ce:ea:2b:f2:09:41:82:37:0d:e5:a8:81:cc: be:4e:c3:b9:4f:72:bc:42:ec:1a:c6:bb:82:c7:52: 04:d7:b1:e2:d5:74:e5:f8:ae:cd:e2:ec:36:cb:32: 49:85:38:1b:ae:24:a0:63:1c:02:9e:9f:2f:90:31: e8:f6:52:fe:5a:81:ba:34:1d:17:aa:98:51:c8:62: 41:85:af:2e:c2:ac:16:90:3e:07:80:48:50:b3:53: 4c:d2:b0:eb:2b:70:25:d6:be:c4:78:86:13:10:c4: 5f:20:16:6a:57:cd:36:1c:9d:1c:c5:6c:f2:36:1c: 5a:d8:b1:d1:5e:17:c6:7f:04:cf:13:c7:e9:82:8d: e5:15:c6:b4:3a:e6:67:0e:88:87:9c:2d:94:4f:9a: bc:be:57:6f:6f:7b:08:7e:ee:c8:82:f5:6f:f4:a6: 6f:52:bc:97:4d:1a:75:f5:0d:41:d7:84:ec:48:e4: 12:15:1a:e8:9e:cd:09:45:b0:5d:95:50:3f:90:70: 28:2b:ec:05:cc:f7:63:d4:6f:47:5b:f6:6f:44:46: 55:63:22:ed:58:15:60:a5:f1:43:a6:08:f5:c0:b1: 8a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FC:F2:40:4C:33:89:E8:53:D8:48:0F:69:3D:37:8F:B2:C8:2F:36 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136302e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.160.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:e0:7a:d0:fe:dd:c0:17:17:ae:23:97:fd:8a:f8:36:8e:2e: 5b:f6:83:2a:46:b2:86:d7:1a:44:39:92:4d:e2:f6:97:65:a8: ea:25:8a:bc:5b:2d:b0:b1:33:b6:af:d9:6d:7a:b4:d8:45:10: 2d:42:01:7b:48:f8:c5:d7:7b:9c:04:10:e8:c9:d3:0c:c0:d4: bf:bd:b7:1d:de:87:7e:ce:ec:a6:1c:34:f8:c8:31:fd:28:4c: 96:d8:8c:70:14:10:e5:52:bb:d6:92:cb:f4:b8:64:0f:fd:d4: 46:bc:46:a2:9c:2a:62:f0:17:e0:0a:e5:d0:59:93:d3:82:0a: cd:04:cc:cf:81:5b:86:77:60:25:6e:4d:d4:fe:88:28:84:16: 95:d2:84:8e:25:f1:c9:75:b5:e5:05:cf:c6:15:16:38:d2:80: 1d:34:01:fe:02:7b:90:78:b6:ed:33:de:30:ef:19:fb:29:bd: 70:dd:a9:09:1c:dc:2c:df:e9:6d:15:5b:be:85:91:eb:d3:94: cb:78:9c:03:d9:b3:6c:4b:61:fc:c3:e4:10:59:d0:8b:fc:cc: ab:9b:bf:3f:58:77:4f:88:7b:cd:cc:ed:91:91:d1:6d:d6:72: 80:1e:55:f4:c4:66:cf:01:7f:b0:e5:2e:ef:21:b4:71:6b:d8: 9c:16:18:63 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbjcYNlzzD27R8Tud3XwTOuAay1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDJaFw0yNDEwMjUwNTAwMDJaMDMxMTAvBgNV BAMTKDc5RkNGMjQwNEMzMzg5RTg1M0Q4NDgwRjY5M0QzNzhGQjJDODJGMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsIhF0TjM+zKIw8Mew7lulrg85 1G2cQLOk2fdq/h/Rzuor8glBgjcN5aiBzL5Ow7lPcrxC7BrGu4LHUgTXseLVdOX4 rs3i7DbLMkmFOBuuJKBjHAKeny+QMej2Uv5agbo0HReqmFHIYkGFry7CrBaQPgeA SFCzU0zSsOsrcCXWvsR4hhMQxF8gFmpXzTYcnRzFbPI2HFrYsdFeF8Z/BM8Tx+mC jeUVxrQ65mcOiIecLZRPmry+V29vewh+7siC9W/0pm9SvJdNGnX1DUHXhOxI5BIV GuiezQlFsF2VUD+QcCgr7AXM92PUb0db9m9ERlVjIu1YFWCl8UOmCPXAsYoFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUefzyQEwziehT2EgPaT03j7LILzYwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3oDANBgkqhkiG 9w0BAQsFAAOCAQEAfOB60P7dwBcXriOX/Yr4No4uW/aDKkayhtcaRDmSTeL2l2Wo 6iWKvFstsLEztq/ZbXq02EUQLUIBe0j4xdd7nAQQ6MnTDMDUv723Hd6Hfs7sphw0 +Mgx/ShMltiMcBQQ5VK71pLL9LhkD/3URrxGopwqYvAX4Arl0FmT04IKzQTMz4Fb hndgJW5N1P6IKIQWldKEjiXxyXW15QXPxhUWONKAHTQB/gJ7kHi27TPeMO8Z+ym9 cN2pCRzcLN/pbRVbvoWR69OUy3icA9mzbEth/MPkEFnQi/zMq5u/P1h3T4h7zczt kZHRbdZygB5V9MRmzwF/sOUu7yG0cWvYnBYYYw== -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:29 2024 by rpki-client on console-ams.rpki-client.org