$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136342e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136342e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: gJiPfcs7x+QPwd46zsyy0LC5MIR9E7LSEG+4rdoSXqA= Subject key identifier: D6:53:29:B4:93:E2:E1:B0:A1:DD:65:C7:0F:4B:D7:0F:E6:49:7B:17 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 1EB9A2E856286181AD3965C07C8B8A291623006D Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136342e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Sep 2024 06:01:27 +0000 ROA not before: Fri 27 Sep 2024 05:56:27 +0000 ROA not after: Fri 26 Sep 2025 06:01:27 +0000 asID: 17769 IP address blocks: 202.55.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:b9:a2:e8:56:28:61:81:ad:39:65:c0:7c:8b:8a:29:16:23:00:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Sep 27 05:56:27 2024 GMT Not After : Sep 26 06:01:27 2025 GMT Subject: CN=D65329B493E2E1B0A1DD65C70F4BD70FE6497B17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:41:0a:e3:d6:9f:8b:20:17:86:28:31:68:0a: 99:a5:e6:5c:bf:0d:96:47:98:dc:c8:7e:91:6d:a2: 5e:d0:79:ca:cd:d3:85:9f:ed:8c:c6:6a:f4:f6:95: bd:af:98:1d:c8:bd:ca:97:00:5c:42:83:2e:7b:d0: b3:b6:d9:d4:4b:27:76:fd:88:c0:4c:c6:bf:d5:b8: 3e:15:d3:18:20:b2:ec:d0:5d:33:af:7a:7e:1c:14: dc:08:4d:82:ff:15:03:b3:6d:a7:3c:f9:61:7a:75: c7:37:af:b3:83:b8:b8:dc:ba:3f:c6:c5:b7:74:82: b1:27:d6:76:c3:f7:05:54:3a:7f:9c:14:b7:9a:4e: 89:c8:09:aa:14:d7:d7:dd:00:9a:19:b0:d7:a2:03: 22:d2:0b:93:03:b8:9e:b8:a5:90:c7:d6:a7:70:e1: e4:16:08:0f:de:cf:bd:7e:50:b0:d1:f4:66:73:94: a4:89:59:81:7a:dc:6b:8f:8e:f4:06:f2:6f:f6:e9: 37:70:ce:87:d6:26:49:9d:f9:bc:c4:8f:f6:48:a4: 07:64:80:ce:2c:35:34:86:95:9d:9c:3e:d0:61:0a: 26:11:9a:e8:3d:f2:4b:ce:db:92:c7:22:b6:2c:a7: 24:80:92:75:13:e3:ad:de:77:c0:54:05:e3:34:82: 2d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:53:29:B4:93:E2:E1:B0:A1:DD:65:C7:0F:4B:D7:0F:E6:49:7B:17 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136342e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.164.0/24 Signature Algorithm: sha256WithRSAEncryption b7:ac:01:36:ce:bc:fa:b6:f7:7e:90:7d:c3:5a:bb:01:82:3a: 27:30:5d:56:ec:c7:e0:06:2d:d7:fb:62:67:49:6d:1a:12:10: 2c:05:54:53:39:95:3f:f7:b5:1b:d0:47:e6:b9:08:bb:95:7f: f1:f4:ba:3c:3d:0b:d8:51:27:cd:43:dc:b8:63:2f:b2:5b:6e: 2c:82:9b:2c:f9:d8:19:42:06:55:fa:68:0c:7c:46:78:92:ed: ce:b7:bd:98:64:6a:54:05:29:07:79:2f:16:3c:f9:f7:70:b6: 7a:5f:dd:8a:2f:b2:a2:cf:e7:4a:65:f6:7d:85:8c:75:88:3a: d2:7f:be:f8:47:f9:96:f1:26:2f:4f:c2:fb:04:46:52:df:2f: b4:4f:4d:96:6a:86:66:a2:16:ff:eb:9b:34:18:87:ef:55:cf: 6e:f1:64:74:51:04:03:12:ad:ea:2d:0a:46:d4:d6:a0:f9:72: cf:9c:17:42:1b:dc:2a:0f:16:6d:66:41:ee:76:6a:e2:c2:ac: 1f:fd:cc:ea:3f:67:8c:76:05:b8:6d:66:5f:92:59:21:b6:13: 32:1d:d8:a1:35:80:fc:56:e5:fe:2c:b4:7c:98:e2:88:8d:91: 8d:78:36:d8:c1:08:fc:b4:fe:1c:94:4f:95:89:d7:64:25:54: 63:00:9b:c2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHrmi6FYoYYGtOWXAfIuKKRYjAG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNDA5MjcwNTU2MjdaFw0yNTA5MjYwNjAxMjdaMDMxMTAvBgNV BAMTKEQ2NTMyOUI0OTNFMkUxQjBBMURENjVDNzBGNEJENzBGRTY0OTdCMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQQQrj1p+LIBeGKDFoCpml5ly/ DZZHmNzIfpFtol7QecrN04Wf7YzGavT2lb2vmB3IvcqXAFxCgy570LO22dRLJ3b9 iMBMxr/VuD4V0xggsuzQXTOven4cFNwITYL/FQOzbac8+WF6dcc3r7ODuLjcuj/G xbd0grEn1nbD9wVUOn+cFLeaTonICaoU19fdAJoZsNeiAyLSC5MDuJ64pZDH1qdw 4eQWCA/ez71+ULDR9GZzlKSJWYF63GuPjvQG8m/26TdwzofWJkmd+bzEj/ZIpAdk gM4sNTSGlZ2cPtBhCiYRmug98kvO25LHIrYspySAknUT463ed8BUBeM0gi2PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1lMptJPi4bCh3WXHD0vXD+ZJexcwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3pDANBgkqhkiG 9w0BAQsFAAOCAQEAt6wBNs68+rb3fpB9w1q7AYI6JzBdVuzH4AYt1/tiZ0ltGhIQ LAVUUzmVP/e1G9BH5rkIu5V/8fS6PD0L2FEnzUPcuGMvsltuLIKbLPnYGUIGVfpo DHxGeJLtzre9mGRqVAUpB3kvFjz593C2el/dii+yos/nSmX2fYWMdYg60n+++Ef5 lvEmL0/C+wRGUt8vtE9NlmqGZqIW/+ubNBiH71XPbvFkdFEEAxKt6i0KRtTWoPly z5wXQhvcKg8WbWZB7nZq4sKsH/3M6j9njHYFuG1mX5JZIbYTMh3YoTWA/Fbl/iy0 fJjiiI2RjXg22MEI/LT+HJRPlYnXZCVUYwCbwg== -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org