$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136352e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136352e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: 58bj8Hzia7KqGSiHQM91bhMRpg2vYKT+AsgN3oaooQ8= Subject key identifier: EE:A4:F4:25:2B:F5:07:FA:35:01:5C:4F:29:F4:8A:1D:E2:36:98:85 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 1DB423C0C5077301F3EB5068E4D7F3A7E0C89ED3 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136352e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:03 +0000 ROA not before: Fri 27 Oct 2023 04:55:03 +0000 ROA not after: Fri 25 Oct 2024 05:00:03 +0000 asID: 17769 IP address blocks: 202.55.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:b4:23:c0:c5:07:73:01:f3:eb:50:68:e4:d7:f3:a7:e0:c8:9e:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:03 2023 GMT Not After : Oct 25 05:00:03 2024 GMT Subject: CN=EEA4F4252BF507FA35015C4F29F48A1DE2369885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1f:0c:4e:9a:f5:c4:16:08:40:22:0c:80:ed: 78:35:ea:c8:47:ad:fd:0a:67:30:3d:83:28:7f:44: 0a:fc:8c:bf:13:46:90:94:61:51:4d:74:c2:a8:4b: 22:ad:f4:29:25:a7:2e:bc:99:70:5b:3b:1e:44:40: 3c:96:5e:4f:40:c6:6a:c0:ec:7d:5d:76:ed:59:12: 9c:7f:34:4a:06:9c:6c:d0:ae:9e:e8:6d:21:af:1a: a0:ed:b5:df:89:c1:fa:6b:f1:89:36:0c:d6:47:b4: 9d:48:a6:be:7f:45:44:b0:8d:82:6d:8e:e8:64:76: 62:c0:a8:ca:99:ff:c6:9d:75:f0:a1:22:7a:03:83: b6:d5:53:72:62:51:25:cd:2b:79:9f:6c:f8:ab:de: 0f:a8:74:ae:ba:7a:37:85:ad:48:4a:c4:10:69:75: 05:65:4d:d6:92:76:66:94:a5:8a:b7:7f:92:9d:66: a0:38:2a:d7:6c:06:02:e8:91:d5:1d:b4:55:7f:7e: a0:dc:36:73:70:cf:31:76:03:69:0e:46:c0:df:6b: 4b:4c:f3:f8:18:30:ba:c8:58:6e:8d:03:6e:4b:a8: f0:7c:35:cf:cc:25:93:41:77:45:d3:19:e5:fb:b9: c7:88:21:69:bd:88:e1:19:3a:b8:48:54:cb:3c:a7: 0d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A4:F4:25:2B:F5:07:FA:35:01:5C:4F:29:F4:8A:1D:E2:36:98:85 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136352e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.165.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:8c:e5:7f:aa:88:e3:71:8a:fc:bb:3c:0b:4b:35:84:62:5f: bb:9f:9e:88:80:fe:1e:bb:44:a2:1f:03:d1:22:40:77:87:01: 8d:d9:99:99:14:d0:f9:b5:bb:50:e5:3e:64:e6:a2:62:95:db: 99:cf:16:b4:6b:3d:b7:97:4b:85:0f:1b:58:85:0a:95:4c:1b: 9c:e1:05:1e:d3:8e:bf:85:14:f8:73:6c:38:5a:84:a9:32:c4: 0c:27:a7:b6:87:7e:c5:f6:ab:ff:51:eb:9b:35:fe:10:d7:20: 32:78:e9:fa:d6:86:a9:d7:d8:dd:3c:e1:bc:7e:a3:af:f8:42: d0:ab:c6:a2:f6:ae:33:36:d2:4b:24:1b:54:99:fb:1b:71:d7: 40:9b:de:0f:4b:8c:44:4e:a3:72:54:36:53:bd:94:6e:5d:5b: 8c:f1:c3:86:91:35:0f:ef:f9:99:c9:95:e7:46:62:0d:2f:3e: e8:08:bf:d9:4c:f2:c3:21:85:c9:c1:3d:04:dc:9c:ed:74:0d: 92:2a:f6:a1:86:38:64:e5:53:3d:d0:04:15:95:e3:5d:8c:96: 7a:eb:bf:f2:84:36:b2:03:e2:a3:3c:c4:83:6e:8a:a5:ad:d6: c8:01:d0:e7:ca:d9:d8:5b:48:d5:cd:9b:7c:7e:08:2c:8c:6c: 3e:38:6c:40 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHbQjwMUHcwHz61Bo5Nfzp+DIntMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDNaFw0yNDEwMjUwNTAwMDNaMDMxMTAvBgNV BAMTKEVFQTRGNDI1MkJGNTA3RkEzNTAxNUM0RjI5RjQ4QTFERTIzNjk4ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChHwxOmvXEFghAIgyA7Xg16shH rf0KZzA9gyh/RAr8jL8TRpCUYVFNdMKoSyKt9Cklpy68mXBbOx5EQDyWXk9AxmrA 7H1ddu1ZEpx/NEoGnGzQrp7obSGvGqDttd+Jwfpr8Yk2DNZHtJ1Ipr5/RUSwjYJt juhkdmLAqMqZ/8addfChInoDg7bVU3JiUSXNK3mfbPir3g+odK66ejeFrUhKxBBp dQVlTdaSdmaUpYq3f5KdZqA4KtdsBgLokdUdtFV/fqDcNnNwzzF2A2kORsDfa0tM 8/gYMLrIWG6NA25LqPB8Nc/MJZNBd0XTGeX7uceIIWm9iOEZOrhIVMs8pw1vAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7qT0JSv1B/o1AVxPKfSKHeI2mIUwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3pTANBgkqhkiG 9w0BAQsFAAOCAQEADIzlf6qI43GK/Ls8C0s1hGJfu5+eiID+HrtEoh8D0SJAd4cB jdmZmRTQ+bW7UOU+ZOaiYpXbmc8WtGs9t5dLhQ8bWIUKlUwbnOEFHtOOv4UU+HNs OFqEqTLEDCentod+xfar/1HrmzX+ENcgMnjp+taGqdfY3TzhvH6jr/hC0KvGovau MzbSSyQbVJn7G3HXQJveD0uMRE6jclQ2U72Ubl1bjPHDhpE1D+/5mcmV50ZiDS8+ 6Ai/2UzywyGFycE9BNyc7XQNkir2oYY4ZOVTPdAEFZXjXYyWeuu/8oQ2sgPiozzE g26Kpa3WyAHQ58rZ2FtI1c2bfH4ILIxsPjhsQA== -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:29 2024 by rpki-client on console-ams.rpki-client.org