$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136312e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136312e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: AMZA6poYk3LsQX36BjatntHHqUJ3uNfC32cqYqHULzA= Subject key identifier: B4:85:42:F0:63:8E:7D:0D:93:C7:A1:97:01:42:C5:F2:8A:91:0C:3F Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 555E3258FB549D9F613F68D4DEF72FB14A451960 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136312e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Sep 2024 06:01:27 +0000 ROA not before: Fri 27 Sep 2024 05:56:27 +0000 ROA not after: Fri 26 Sep 2025 06:01:27 +0000 asID: 17769 IP address blocks: 202.55.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:5e:32:58:fb:54:9d:9f:61:3f:68:d4:de:f7:2f:b1:4a:45:19:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Sep 27 05:56:27 2024 GMT Not After : Sep 26 06:01:27 2025 GMT Subject: CN=B48542F0638E7D0D93C7A1970142C5F28A910C3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fa:f3:50:fa:55:c0:5d:66:f8:19:b5:b7:64: cf:9a:df:01:f5:a9:26:a9:f3:76:2a:8e:dd:91:42: 84:b6:14:87:b4:3b:b1:b0:43:e0:ca:94:a1:c3:e0: 24:e1:f9:6f:04:e5:ff:90:e5:9d:8a:f6:d3:45:0a: 42:58:9b:d2:c1:ec:dc:39:db:d6:1b:08:a2:a4:e3: e5:55:e4:20:62:16:3a:62:14:2b:33:84:06:ff:c1: 52:89:b0:06:5e:30:0e:8c:1e:ed:6f:8d:c4:7a:45: 0d:fd:7b:66:a2:eb:81:fa:38:44:9d:34:1c:cc:58: db:b6:a9:ba:ae:78:6f:b9:24:04:cf:a6:67:23:17: eb:6b:9b:a7:41:dc:3e:d7:74:38:ac:fe:c1:53:2b: 32:9f:49:e0:93:61:e7:4f:5f:00:23:33:16:e9:f2: 63:bc:50:5a:59:bc:0e:ec:4a:ab:b8:e5:35:3d:0b: de:93:5d:36:50:54:7d:37:96:66:61:65:70:bb:01: cf:44:4d:d2:ed:37:02:f7:8f:b7:d2:d5:2a:79:68: 71:f9:a3:c7:29:01:81:ce:2b:04:2f:a7:6b:ef:e4: bd:f3:87:3f:88:8e:0e:29:5f:ef:fb:10:59:a8:2e: b1:39:46:d4:d0:84:91:20:e6:bd:3e:ed:e7:00:91: c5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:85:42:F0:63:8E:7D:0D:93:C7:A1:97:01:42:C5:F2:8A:91:0C:3F X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136312e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.161.0/24 Signature Algorithm: sha256WithRSAEncryption a4:8c:a9:5a:b7:50:64:b8:4b:d1:83:ca:60:98:00:95:5b:b1: d6:db:66:86:0f:f8:9d:aa:74:db:85:4b:43:e7:a8:a4:77:d9: fe:01:4c:fa:75:b5:d8:11:a6:ce:d3:b3:5c:fe:13:35:89:26: d8:71:06:f2:72:65:31:d6:02:ea:0b:8b:89:d6:8a:84:2e:74: af:f9:8d:9d:1a:a6:a0:de:ec:4e:7a:ee:c9:03:78:dc:16:59: f1:f6:9b:b4:b6:bd:7f:5e:9c:5a:0d:08:ca:35:08:08:54:2f: 81:01:e3:40:94:04:b3:4e:6f:01:dd:f0:2c:ee:cf:9b:15:cf: bb:12:5f:87:e1:1f:85:29:44:85:83:a9:92:ab:80:9f:22:33: 37:55:db:4b:33:cf:bd:f4:55:03:28:02:85:66:41:01:00:37: 6e:40:ea:59:61:73:cd:e5:8e:6f:47:e2:b7:0f:f5:06:8e:6d: c7:be:94:bc:4e:fc:43:67:e5:e9:bb:b6:41:1c:dc:3a:38:81: e9:9f:81:03:35:9b:14:89:f8:2f:4f:45:84:4e:18:1b:42:ed: 3f:1b:64:94:73:58:55:95:b2:4b:e5:6b:e6:b2:fb:b1:3f:b3: f9:60:57:f5:34:21:6b:97:68:aa:36:76:6b:71:20:ed:e0:af: fa:21:33:8c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVV4yWPtUnZ9hP2jU3vcvsUpFGWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNDA5MjcwNTU2MjdaFw0yNTA5MjYwNjAxMjdaMDMxMTAvBgNV BAMTKEI0ODU0MkYwNjM4RTdEMEQ5M0M3QTE5NzAxNDJDNUYyOEE5MTBDM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn+vNQ+lXAXWb4GbW3ZM+a3wH1 qSap83Yqjt2RQoS2FIe0O7GwQ+DKlKHD4CTh+W8E5f+Q5Z2K9tNFCkJYm9LB7Nw5 29YbCKKk4+VV5CBiFjpiFCszhAb/wVKJsAZeMA6MHu1vjcR6RQ39e2ai64H6OESd NBzMWNu2qbqueG+5JATPpmcjF+trm6dB3D7XdDis/sFTKzKfSeCTYedPXwAjMxbp 8mO8UFpZvA7sSqu45TU9C96TXTZQVH03lmZhZXC7Ac9ETdLtNwL3j7fS1Sp5aHH5 o8cpAYHOKwQvp2vv5L3zhz+Ijg4pX+/7EFmoLrE5RtTQhJEg5r0+7ecAkcUTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtIVC8GOOfQ2Tx6GXAULF8oqRDD8wHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3oTANBgkqhkiG 9w0BAQsFAAOCAQEApIypWrdQZLhL0YPKYJgAlVux1ttmhg/4nap024VLQ+eopHfZ /gFM+nW12BGmztOzXP4TNYkm2HEG8nJlMdYC6guLidaKhC50r/mNnRqmoN7sTnru yQN43BZZ8fabtLa9f16cWg0IyjUICFQvgQHjQJQEs05vAd3wLO7PmxXPuxJfh+Ef hSlEhYOpkquAnyIzN1XbSzPPvfRVAygChWZBAQA3bkDqWWFzzeWOb0fitw/1Bo5t x76UvE78Q2fl6bu2QRzcOjiB6Z+BAzWbFIn4L09FhE4YG0LtPxtklHNYVZWyS+Vr 5rL7sT+z+WBX9TQha5doqjZ2a3Eg7eCv+iEzjA== -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org