$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136362e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136362e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: c/wd3q6B6dUxlMgnoCqrGo3rhWcEtEYAZl+wHxxwxbE= Subject key identifier: D6:D0:D6:1C:FD:9D:50:21:72:1E:D9:98:DC:06:E1:FC:8F:0F:CE:47 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 13B2866A7A7F2F26727007411576C39F794752A4 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136362e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:03 +0000 ROA not before: Fri 27 Oct 2023 04:55:03 +0000 ROA not after: Fri 25 Oct 2024 05:00:03 +0000 asID: 17769 IP address blocks: 202.55.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:b2:86:6a:7a:7f:2f:26:72:70:07:41:15:76:c3:9f:79:47:52:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:03 2023 GMT Not After : Oct 25 05:00:03 2024 GMT Subject: CN=D6D0D61CFD9D5021721ED998DC06E1FC8F0FCE47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:18:85:83:a2:b3:3a:4f:4c:c4:c3:3f:62:0e: 54:61:d5:fa:05:09:8e:bc:47:c2:94:4d:82:ab:f9: fe:a3:93:1a:ad:42:17:64:e7:4c:26:0e:04:b7:62: 05:ec:8e:cf:29:84:67:42:5d:9d:63:3a:e6:8f:bc: 30:b1:a6:7f:7f:72:ec:74:23:be:1f:df:21:4a:a1: 73:71:74:d7:b0:78:6f:7a:91:2f:e6:95:b0:58:ac: bf:a0:3c:af:d7:61:6f:0e:10:0a:67:b6:bb:f5:86: fa:2a:5f:52:ea:b0:41:5a:bb:bd:0e:c0:35:d8:80: c8:a5:62:cb:98:d0:fe:4c:c0:4f:37:ce:54:29:38: f7:0a:f2:5a:7f:be:5e:a5:a5:21:7a:8d:ba:c4:2c: 7e:58:85:ee:1c:e1:27:bd:6b:00:52:fb:d5:03:e8: 04:e6:28:20:2f:22:a1:86:3c:ff:10:f5:8b:91:08: 4d:20:36:cd:40:bd:7b:35:a2:f5:ef:9e:eb:da:46: f2:37:39:d3:96:fd:46:33:8e:ce:80:b9:be:7d:84: cd:eb:66:14:4b:22:27:dd:54:b1:d6:2e:61:08:13: ad:7b:cb:aa:5f:6d:23:eb:c2:a1:cc:59:4b:82:9f: fb:9a:99:ba:c9:26:a1:73:50:db:80:6c:6f:f2:a0: bc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:D0:D6:1C:FD:9D:50:21:72:1E:D9:98:DC:06:E1:FC:8F:0F:CE:47 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136362e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.166.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:38:31:ea:0c:26:56:17:7f:54:75:d4:3d:a3:19:56:b4:1d: cb:e8:17:f0:e3:7b:d9:dc:fb:49:9a:9d:dc:ec:d4:d3:7d:85: 25:8b:86:b0:f7:f6:f6:c0:9c:7f:23:09:41:0e:c3:fd:95:44: c7:d5:b9:c5:b1:8b:65:4a:ea:90:67:de:a5:07:fc:22:a2:6f: f3:79:fd:9f:02:23:e3:03:20:e9:65:a5:e0:22:3d:b5:a5:36: de:91:97:e2:00:72:33:ed:74:af:23:f4:cd:a4:40:1c:e5:5b: 31:14:89:02:76:84:e6:06:24:84:20:ff:4d:1e:e2:5a:36:ba: 73:e8:49:6a:4b:44:6d:37:7c:73:11:d1:d8:f0:ae:a4:1f:f3: d2:9a:56:c7:56:6e:ee:42:13:2d:55:ce:0c:a1:2a:ad:ef:21: 39:6d:48:26:ba:be:08:8f:bd:72:33:d4:26:39:9f:d0:9b:3c: 7b:53:28:33:85:e0:bd:b7:4c:97:21:fa:a8:0c:23:69:1b:41: 3f:6c:8f:4a:b0:01:87:4e:02:2c:e5:09:b7:4f:33:fa:9c:de: 47:7c:f0:96:c4:da:50:da:e7:0b:6c:bd:65:a7:f2:9c:0f:ec: 4c:6d:a7:6e:59:de:e8:09:05:66:67:e2:6f:88:b4:15:ef:52: 3e:36:06:34 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE7KGanp/LyZycAdBFXbDn3lHUqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDNaFw0yNDEwMjUwNTAwMDNaMDMxMTAvBgNV BAMTKEQ2RDBENjFDRkQ5RDUwMjE3MjFFRDk5OERDMDZFMUZDOEYwRkNFNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJGIWDorM6T0zEwz9iDlRh1foF CY68R8KUTYKr+f6jkxqtQhdk50wmDgS3YgXsjs8phGdCXZ1jOuaPvDCxpn9/cux0 I74f3yFKoXNxdNeweG96kS/mlbBYrL+gPK/XYW8OEApntrv1hvoqX1LqsEFau70O wDXYgMilYsuY0P5MwE83zlQpOPcK8lp/vl6lpSF6jbrELH5Yhe4c4Se9awBS+9UD 6ATmKCAvIqGGPP8Q9YuRCE0gNs1AvXs1ovXvnuvaRvI3OdOW/UYzjs6Aub59hM3r ZhRLIifdVLHWLmEIE617y6pfbSPrwqHMWUuCn/uambrJJqFzUNuAbG/yoLxbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1tDWHP2dUCFyHtmY3Abh/I8PzkcwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3pjANBgkqhkiG 9w0BAQsFAAOCAQEAfTgx6gwmVhd/VHXUPaMZVrQdy+gX8ON72dz7SZqd3OzU032F JYuGsPf29sCcfyMJQQ7D/ZVEx9W5xbGLZUrqkGfepQf8IqJv83n9nwIj4wMg6WWl 4CI9taU23pGX4gByM+10ryP0zaRAHOVbMRSJAnaE5gYkhCD/TR7iWja6c+hJaktE bTd8cxHR2PCupB/z0ppWx1Zu7kITLVXODKEqre8hOW1IJrq+CI+9cjPUJjmf0Js8 e1MoM4XgvbdMlyH6qAwjaRtBP2yPSrABh04CLOUJt08z+pzeR3zwlsTaUNrnC2y9 ZafynA/sTG2nblne6AkFZmfib4i0Fe9SPjYGNA== -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:29 2024 by rpki-client on console-ams.rpki-client.org