$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136382e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136382e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: FhEjvKMY1xrzixOBf5tUKTZBzR86o4476YDLF6nfH50= Subject key identifier: 93:FA:A3:FA:81:CE:68:B7:D3:09:6A:3A:21:7F:B4:0C:D1:98:DE:13 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 396624A576B491F3B9B660FD567C0A545DEFDE81 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136382e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:01 +0000 ROA not before: Fri 27 Oct 2023 04:55:01 +0000 ROA not after: Fri 25 Oct 2024 05:00:01 +0000 asID: 17769 IP address blocks: 202.55.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:66:24:a5:76:b4:91:f3:b9:b6:60:fd:56:7c:0a:54:5d:ef:de:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:01 2023 GMT Not After : Oct 25 05:00:01 2024 GMT Subject: CN=93FAA3FA81CE68B7D3096A3A217FB40CD198DE13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a8:d7:dc:ed:a1:43:d1:04:32:5e:27:98:4b: 94:2f:d6:70:9c:9e:16:67:e7:2f:fd:fb:56:e4:98: ed:68:01:32:de:4b:73:91:cf:6b:8a:34:2c:b2:e7: 00:c6:31:7c:5f:05:40:56:57:5a:21:3f:20:5c:47: 3e:e3:dd:ed:ed:47:93:2a:6d:f8:c6:a0:47:99:21: fc:fe:63:91:5b:3f:f6:7d:a3:f0:ad:9b:6d:17:f4: bb:6f:5c:0f:96:9c:a6:7d:4f:5e:ff:cc:28:09:e2: be:ad:f9:2e:31:d6:54:c0:4d:17:b3:91:c1:73:5b: f1:35:15:58:76:b3:7a:b8:2e:c9:53:ba:3b:d4:72: 76:86:b2:da:ca:47:5c:c6:c0:33:40:0e:ca:26:70: e4:3b:fa:07:39:f1:7b:99:44:1f:ba:90:bb:06:a9: 4f:af:9d:60:65:d1:ae:a4:b1:42:4f:18:95:05:57: 93:2d:5e:39:8f:e6:12:97:95:d6:5f:15:e1:aa:1a: 4f:32:9a:18:74:57:2f:48:83:37:dd:1c:f1:ba:2f: 42:e0:4c:ad:74:96:58:75:9f:e0:d4:a2:50:f0:83: f5:fa:70:38:8d:64:bf:46:ee:47:f8:f5:d7:0b:b1: 85:47:bd:a7:b1:c4:2e:4c:02:41:cd:fb:46:c9:b5: aa:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:FA:A3:FA:81:CE:68:B7:D3:09:6A:3A:21:7F:B4:0C:D1:98:DE:13 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136382e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.168.0/24 Signature Algorithm: sha256WithRSAEncryption 65:d3:e4:6f:48:70:26:00:b4:c8:d9:ed:01:5d:10:9b:67:47: 6e:8d:f2:96:fd:f9:98:c7:95:b2:a4:42:08:d5:4d:04:71:a9: 7d:11:75:2b:21:21:a5:ce:f2:d8:45:00:32:da:cb:34:b3:a8: 0f:db:4a:83:55:65:46:a6:8d:99:b0:43:e3:b0:9c:9f:e8:88: 2b:13:12:8c:77:85:b1:75:7f:db:5d:07:b3:a2:c9:0f:26:4b: 7c:66:2d:fd:c8:b2:fd:58:95:b2:d2:90:c5:b4:66:35:ff:a4: 2c:2a:f7:62:65:ee:da:2d:81:ca:3f:71:e2:a3:87:16:79:a6: f8:30:80:e4:f0:27:5a:8e:81:16:90:16:b6:ce:2f:b5:5e:15: 5e:d0:e2:0a:fb:21:d3:5c:0e:ba:9b:5f:ad:62:18:29:c8:54: af:e4:86:ba:68:10:34:3d:63:1b:e5:30:78:0a:e6:18:1d:b6: c1:00:3c:2b:5c:f8:21:97:fc:9a:b6:46:22:2b:df:ec:7f:29: 89:0e:b0:1e:1e:5a:20:1b:77:ce:34:0f:2b:5e:a0:ac:73:cd: d4:e8:91:77:49:22:25:73:b2:3e:4f:db:a0:2a:55:39:36:96: 28:27:52:5d:b5:8b:c1:dc:fa:3c:87:80:be:00:0a:fa:ad:b3: c9:38:75:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOWYkpXa0kfO5tmD9VnwKVF3v3oEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDFaFw0yNDEwMjUwNTAwMDFaMDMxMTAvBgNV BAMTKDkzRkFBM0ZBODFDRTY4QjdEMzA5NkEzQTIxN0ZCNDBDRDE5OERFMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+qNfc7aFD0QQyXieYS5Qv1nCc nhZn5y/9+1bkmO1oATLeS3ORz2uKNCyy5wDGMXxfBUBWV1ohPyBcRz7j3e3tR5Mq bfjGoEeZIfz+Y5FbP/Z9o/Ctm20X9LtvXA+WnKZ9T17/zCgJ4r6t+S4x1lTATRez kcFzW/E1FVh2s3q4LslTujvUcnaGstrKR1zGwDNADsomcOQ7+gc58XuZRB+6kLsG qU+vnWBl0a6ksUJPGJUFV5MtXjmP5hKXldZfFeGqGk8ymhh0Vy9IgzfdHPG6L0Lg TK10llh1n+DUolDwg/X6cDiNZL9G7kf49dcLsYVHvaexxC5MAkHN+0bJtaqJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUk/qj+oHOaLfTCWo6IX+0DNGY3hMwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qDANBgkqhkiG 9w0BAQsFAAOCAQEAZdPkb0hwJgC0yNntAV0Qm2dHbo3ylv35mMeVsqRCCNVNBHGp fRF1KyEhpc7y2EUAMtrLNLOoD9tKg1VlRqaNmbBD47Ccn+iIKxMSjHeFsXV/210H s6LJDyZLfGYt/ciy/ViVstKQxbRmNf+kLCr3YmXu2i2Byj9x4qOHFnmm+DCA5PAn Wo6BFpAWts4vtV4VXtDiCvsh01wOuptfrWIYKchUr+SGumgQND1jG+UweArmGB22 wQA8K1z4IZf8mrZGIivf7H8piQ6wHh5aIBt3zjQPK16grHPN1OiRd0kiJXOyPk/b oCpVOTaWKCdSXbWLwdz6PIeAvgAK+q2zyTh1YA== -----END CERTIFICATE-----Generated at Tue Apr 30 12:55:38 2024 by rpki-client on console-fra.rpki-client.org