$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136392e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3136392e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: MAw/4ZNHT7y2TJ+1k6ubRIXhziQ3olPU1qu9xnQYAO0= Subject key identifier: 5A:52:38:77:1B:31:41:DF:A2:33:81:7F:9D:4C:63:EE:D6:19:B6:01 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 0DCB7B34A318B03E574FD71CF4B5A5566EA728D4 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136392e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:02 +0000 ROA not before: Fri 27 Oct 2023 04:55:02 +0000 ROA not after: Fri 25 Oct 2024 05:00:02 +0000 asID: 17769 IP address blocks: 202.55.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:cb:7b:34:a3:18:b0:3e:57:4f:d7:1c:f4:b5:a5:56:6e:a7:28:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:02 2023 GMT Not After : Oct 25 05:00:02 2024 GMT Subject: CN=5A5238771B3141DFA233817F9D4C63EED619B601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:35:d8:87:37:a2:57:76:0f:58:8a:18:27:fe: 8c:05:d3:a8:2e:b7:18:a8:7f:b0:c2:dd:c4:ed:38: c7:30:82:78:94:e8:3c:2f:d7:83:49:94:1e:bd:60: 7b:7a:a1:33:86:d4:ee:b9:7c:43:4b:18:c1:ca:56: 1c:b4:bf:b5:14:77:75:07:58:63:64:d4:22:a0:4e: 65:35:b7:25:04:ec:1d:a3:24:7a:0f:1b:c2:5e:fd: 15:ea:dc:ee:af:1c:5b:8a:b5:8f:be:ec:e7:bf:4e: 9d:c4:1d:1f:ce:5f:78:3a:90:e4:f4:90:59:1b:70: 21:44:f6:a5:9e:1d:3e:1e:94:1f:0e:82:6f:7d:de: 1d:00:96:bb:eb:b8:be:01:7e:fb:72:3c:61:94:d8: 28:9a:6d:32:21:84:1c:0a:3a:26:95:f8:af:d5:b0: 93:2b:8e:ee:4d:57:b8:0b:bb:08:f6:f0:a2:d9:19: 74:95:5b:f0:4f:e5:f6:a5:b2:95:91:62:4c:32:cc: 88:a2:dc:76:9e:ef:60:ff:76:3b:7a:c5:22:b9:e9: 1d:6d:cb:fe:fc:68:77:ca:29:e6:ff:5e:e2:bb:f8: 66:ca:28:ed:5a:87:ca:15:0d:02:db:03:d0:7c:69: d6:73:9d:28:dd:0b:49:d3:f2:4a:de:90:ab:c9:8c: a4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:52:38:77:1B:31:41:DF:A2:33:81:7F:9D:4C:63:EE:D6:19:B6:01 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136392e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.169.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:a7:87:7b:62:20:5d:fe:7f:a8:4a:15:5a:bd:32:b0:51:90: 2d:3a:57:b2:d1:5b:48:8b:74:2a:cf:dd:67:2c:e4:b8:56:76: e8:19:e5:7b:6b:31:6b:a1:da:19:fe:0a:e9:91:0b:b9:6b:83: 12:9f:44:6e:4b:05:38:09:83:db:87:2c:ef:1f:f0:2b:05:40: 0b:82:40:02:ea:c8:fb:ea:f5:a9:4f:e6:b2:a6:61:1b:c8:00: d4:c2:bf:c3:1f:09:fa:d7:fd:75:13:f5:ce:f5:b6:c5:9f:87: 55:ed:f2:a8:7d:ae:0e:bc:6a:0d:bd:1d:4e:6a:e1:5b:70:4e: 66:7f:a5:aa:d1:bf:0d:06:6f:36:8d:91:46:cd:bd:4f:a4:4a: 1c:52:11:5b:da:66:dc:af:85:56:0f:60:c0:f9:b7:a0:29:23: ff:22:3e:cc:33:e8:1b:85:3e:d9:3a:08:85:49:d9:e2:e4:59: a4:86:94:32:de:4d:6e:d4:dc:d7:99:66:8e:be:29:09:85:05: 3f:80:d1:c9:f7:81:0d:c9:b3:a9:6e:41:10:ef:31:f7:af:ea: 6a:b1:90:cd:8f:a6:4c:b4:f7:1d:e0:a5:a8:f1:7a:28:53:9b: f9:5b:44:a0:9b:f4:cf:27:a2:99:2b:01:1a:8f:64:1a:78:a0: 51:f0:b6:0e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDct7NKMYsD5XT9cc9LWlVm6nKNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDJaFw0yNDEwMjUwNTAwMDJaMDMxMTAvBgNV BAMTKDVBNTIzODc3MUIzMTQxREZBMjMzODE3RjlENEM2M0VFRDYxOUI2MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSNdiHN6JXdg9Yihgn/owF06gu txiof7DC3cTtOMcwgniU6Dwv14NJlB69YHt6oTOG1O65fENLGMHKVhy0v7UUd3UH WGNk1CKgTmU1tyUE7B2jJHoPG8Je/RXq3O6vHFuKtY++7Oe/Tp3EHR/OX3g6kOT0 kFkbcCFE9qWeHT4elB8Ogm993h0AlrvruL4BfvtyPGGU2CiabTIhhBwKOiaV+K/V sJMrju5NV7gLuwj28KLZGXSVW/BP5falspWRYkwyzIii3Hae72D/djt6xSK56R1t y/78aHfKKeb/XuK7+GbKKO1ah8oVDQLbA9B8adZznSjdC0nT8krekKvJjKQTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWlI4dxsxQd+iM4F/nUxj7tYZtgEwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qTANBgkqhkiG 9w0BAQsFAAOCAQEAKqeHe2IgXf5/qEoVWr0ysFGQLTpXstFbSIt0Ks/dZyzkuFZ2 6Bnle2sxa6HaGf4K6ZELuWuDEp9EbksFOAmD24cs7x/wKwVAC4JAAurI++r1qU/m sqZhG8gA1MK/wx8J+tf9dRP1zvW2xZ+HVe3yqH2uDrxqDb0dTmrhW3BOZn+lqtG/ DQZvNo2RRs29T6RKHFIRW9pm3K+FVg9gwPm3oCkj/yI+zDPoG4U+2ToIhUnZ4uRZ pIaUMt5NbtTc15lmjr4pCYUFP4DRyfeBDcmzqW5BEO8x96/qarGQzY+mTLT3HeCl qPF6KFOb+VtEoJv0zyeimSsBGo9kGnigUfC2Dg== -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:29 2024 by rpki-client on console-ams.rpki-client.org