$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136332e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136332e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: 1XzNvowX+xZXSvbefcZ3UD56eJlS5Wp4IhyPv+oUNW4= Subject key identifier: CD:D3:41:DC:2A:50:C6:89:04:5E:79:55:47:5B:57:1C:1F:93:F0:B8 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 5865FE734B589F06838B03DB7654C70A6F0D86C0 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136332e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:01 +0000 ROA not before: Fri 27 Oct 2023 04:55:01 +0000 ROA not after: Fri 25 Oct 2024 05:00:01 +0000 asID: 17769 IP address blocks: 202.55.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:65:fe:73:4b:58:9f:06:83:8b:03:db:76:54:c7:0a:6f:0d:86:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:01 2023 GMT Not After : Oct 25 05:00:01 2024 GMT Subject: CN=CDD341DC2A50C689045E7955475B571C1F93F0B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e8:74:ca:43:98:9a:d3:9c:68:1f:7b:56:1b: e2:08:91:1c:78:20:f5:59:3f:59:76:90:5c:e2:44: e1:4b:ed:b4:cc:9a:19:29:af:1a:88:7c:f8:ac:60: 3d:34:dc:ac:20:e3:8a:d8:e4:e2:89:d2:2d:c2:be: 86:e1:21:3a:32:99:fb:07:e2:8a:c1:7e:e2:86:36: 91:0f:ad:80:b0:b0:2d:49:41:77:b2:67:39:32:3c: 6d:0a:fe:8c:90:9e:7f:d9:c5:42:a9:72:d0:cc:79: 83:a1:99:06:08:0a:fb:2c:89:ff:45:00:37:31:eb: 00:4b:5c:70:09:8f:9a:c7:cd:53:e0:1c:4c:17:75: 72:68:44:ec:3d:79:62:fe:b5:03:59:d9:1b:88:fa: f5:de:5b:89:f7:46:20:7a:46:b2:09:92:76:84:27: 44:d4:78:05:65:25:1f:13:19:97:55:2b:41:be:6d: c4:b2:99:f1:04:a3:dd:d4:9e:b9:6b:f1:ec:11:55: 84:0a:dd:26:9d:88:33:6b:3c:d8:07:3c:03:4e:72: e1:bc:63:29:f7:da:09:f3:e5:d2:7a:97:29:b8:4f: f4:76:c7:db:a9:e1:3d:b0:19:08:09:09:d9:f5:df: 08:62:c2:e0:74:9a:12:18:88:42:90:04:51:a4:30: 48:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D3:41:DC:2A:50:C6:89:04:5E:79:55:47:5B:57:1C:1F:93:F0:B8 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136332e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.163.0/24 Signature Algorithm: sha256WithRSAEncryption a3:51:ce:eb:37:e9:96:c6:00:a0:65:ca:c3:72:c2:67:46:23: f6:81:80:b7:63:7b:3c:f9:2d:7e:08:9a:af:1e:28:8c:3f:a1: 15:48:d2:50:30:03:21:e1:f5:f7:f8:a6:f4:93:04:dc:e2:92: 69:b9:8a:35:5d:fc:3b:3e:14:b3:9d:87:5e:44:3e:40:bb:fc: 49:d2:6f:11:69:76:d5:c2:02:3d:da:68:21:11:d2:a6:58:80: 60:3f:b6:34:2a:46:7b:25:3a:50:50:ff:9f:45:c3:89:ff:63: b9:78:44:30:76:61:74:58:a1:42:8f:3d:8e:0a:25:db:2c:11: fb:d1:84:9e:bd:b8:a2:61:cb:83:e8:93:53:01:0b:8b:17:37: 8b:40:bd:e5:ed:f3:9d:71:78:8b:28:f1:a7:c0:3c:04:c8:34: 8e:ef:9f:f3:e7:d3:4f:ed:bb:35:26:01:8f:5d:3e:ca:87:e0: 46:42:82:40:69:53:6e:01:2c:b9:5c:da:e6:4a:dd:e4:be:f2: 21:0a:60:41:70:11:57:2c:0d:ca:6b:90:1a:08:51:30:1f:80: d6:0c:d0:5b:b1:72:83:a7:34:ec:02:3a:82:ef:1b:7f:8f:65: 2b:0b:63:65:27:c5:6d:6c:0e:06:ab:1f:af:e3:f4:b6:36:a3: dd:f3:f7:55 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWGX+c0tYnwaDiwPbdlTHCm8NhsAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDFaFw0yNDEwMjUwNTAwMDFaMDMxMTAvBgNV BAMTKENERDM0MURDMkE1MEM2ODkwNDVFNzk1NTQ3NUI1NzFDMUY5M0YwQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC46HTKQ5ia05xoH3tWG+IIkRx4 IPVZP1l2kFziROFL7bTMmhkprxqIfPisYD003Kwg44rY5OKJ0i3CvobhIToymfsH 4orBfuKGNpEPrYCwsC1JQXeyZzkyPG0K/oyQnn/ZxUKpctDMeYOhmQYICvssif9F ADcx6wBLXHAJj5rHzVPgHEwXdXJoROw9eWL+tQNZ2RuI+vXeW4n3RiB6RrIJknaE J0TUeAVlJR8TGZdVK0G+bcSymfEEo93Unrlr8ewRVYQK3SadiDNrPNgHPANOcuG8 Yyn32gnz5dJ6lym4T/R2x9up4T2wGQgJCdn13whiwuB0mhIYiEKQBFGkMEgjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzdNB3CpQxokEXnlVR1tXHB+T8LgwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3ozANBgkqhkiG 9w0BAQsFAAOCAQEAo1HO6zfplsYAoGXKw3LCZ0Yj9oGAt2N7PPktfgiarx4ojD+h FUjSUDADIeH19/im9JME3OKSabmKNV38Oz4Us52HXkQ+QLv8SdJvEWl21cICPdpo IRHSpliAYD+2NCpGeyU6UFD/n0XDif9juXhEMHZhdFihQo89jgol2ywR+9GEnr24 omHLg+iTUwELixc3i0C95e3znXF4iyjxp8A8BMg0ju+f8+fTT+27NSYBj10+yofg RkKCQGlTbgEsuVza5krd5L7yIQpgQXARVywNymuQGghRMB+A1gzQW7Fyg6c07AI6 gu8bf49lKwtjZSfFbWwOBqsfr+P0tjaj3fP3VQ== -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:29 2024 by rpki-client on console-ams.rpki-client.org