$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137302e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137302e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: 4bj3MXGoZaT4Igt7DvfRdU3lCEctq8NmmP9+BphbuzU= Subject key identifier: 45:95:AB:CA:27:3F:11:2E:50:5B:86:0D:3A:C6:E2:16:02:CD:0B:BA Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 41E93A2FE73CBCECDB2332B3B383B794400194D8 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137302e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Sep 2024 06:01:27 +0000 ROA not before: Fri 27 Sep 2024 05:56:27 +0000 ROA not after: Fri 26 Sep 2025 06:01:27 +0000 asID: 17769 IP address blocks: 202.55.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 19:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:e9:3a:2f:e7:3c:bc:ec:db:23:32:b3:b3:83:b7:94:40:01:94:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Sep 27 05:56:27 2024 GMT Not After : Sep 26 06:01:27 2025 GMT Subject: CN=4595ABCA273F112E505B860D3AC6E21602CD0BBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:83:39:0b:e2:59:e0:76:44:17:51:ef:92:58: ce:8d:bf:f1:5c:a9:0f:b4:c9:4d:13:78:b0:70:ee: a6:62:c5:bf:e9:8f:88:11:71:ef:85:a3:ba:1f:d2: 4d:bb:c1:7b:31:85:60:c1:48:7b:2a:4a:4f:cf:ae: 97:6b:2c:96:6e:01:9f:81:cb:09:e9:52:2b:30:02: 97:41:38:35:f7:40:d3:ff:09:36:db:a7:6f:25:24: 5e:22:8e:ea:71:24:dc:14:58:91:0b:d3:85:92:27: 5b:47:60:b1:b6:d2:1c:3b:66:26:73:26:7e:ca:ce: e3:fd:4c:2b:09:a8:bc:38:1d:dd:ca:58:8b:38:fd: 48:a6:c8:08:0f:35:2f:10:a9:fe:72:75:fc:4e:74: c4:5f:bc:c9:4c:71:4a:5c:32:64:02:25:23:37:62: 8c:6b:20:18:e4:4c:db:31:3e:70:6e:13:a0:2f:bb: aa:65:85:e1:c1:c9:be:73:34:f5:10:cd:c8:ed:63: e4:a9:fe:91:96:41:6e:25:e8:39:fd:38:39:c4:59: 6e:d9:04:fa:f9:53:c0:5f:f8:7c:9f:f8:86:7b:f1: d5:83:f4:22:9f:46:fb:d9:6d:3e:f2:ae:1f:cb:03: 37:e3:5f:9f:80:2d:dc:cd:db:de:ce:ab:98:dd:5a: d9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:95:AB:CA:27:3F:11:2E:50:5B:86:0D:3A:C6:E2:16:02:CD:0B:BA X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137302e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.170.0/24 Signature Algorithm: sha256WithRSAEncryption 34:00:c1:02:21:81:cd:f9:9c:f1:67:8f:40:34:97:8a:6b:fd: 98:39:ef:42:cb:a0:15:6a:e2:dc:36:f7:9c:b1:f7:65:c3:4a: 07:7a:7d:ae:29:aa:ea:38:2a:48:cc:5f:cf:45:fe:19:8a:46: 03:4d:a9:9f:92:70:58:cc:ee:8e:09:de:f0:31:40:4e:19:60: fb:66:0d:49:39:2e:85:8a:61:c5:24:23:fc:57:5d:17:c2:32: cc:29:df:a3:2f:bf:46:8b:d0:e2:d1:5c:81:f6:b6:94:52:47: 72:22:bf:b3:c5:64:60:ee:1f:36:6a:c0:7a:8b:90:f2:96:6e: 2a:10:18:06:a2:72:a2:ec:38:fb:9c:8a:8b:32:70:f1:37:ad: 27:dd:e6:ef:14:0c:20:31:4b:6f:9c:b0:31:e3:73:63:af:e9: e5:52:98:38:e0:7b:7f:04:6c:04:53:b2:4e:bb:23:e4:23:14: 04:f4:11:9c:7a:17:8d:97:10:59:93:13:d0:b6:c3:b0:52:df: 60:e0:96:8b:3f:cb:cb:1b:51:6e:81:aa:d4:1c:51:5b:41:a4: 7b:7c:f5:2a:5c:10:54:b1:9d:0a:e0:8e:7e:ba:f3:6a:8c:d6: 94:a7:3c:aa:18:9a:62:fd:f6:3e:98:1f:95:54:84:85:6a:c9: 9a:53:b7:e5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQek6L+c8vOzbIzKzs4O3lEABlNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNDA5MjcwNTU2MjdaFw0yNTA5MjYwNjAxMjdaMDMxMTAvBgNV BAMTKDQ1OTVBQkNBMjczRjExMkU1MDVCODYwRDNBQzZFMjE2MDJDRDBCQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+gzkL4lngdkQXUe+SWM6Nv/Fc qQ+0yU0TeLBw7qZixb/pj4gRce+Fo7of0k27wXsxhWDBSHsqSk/PrpdrLJZuAZ+B ywnpUiswApdBODX3QNP/CTbbp28lJF4ijupxJNwUWJEL04WSJ1tHYLG20hw7ZiZz Jn7KzuP9TCsJqLw4Hd3KWIs4/UimyAgPNS8Qqf5ydfxOdMRfvMlMcUpcMmQCJSM3 YoxrIBjkTNsxPnBuE6Avu6plheHByb5zNPUQzcjtY+Sp/pGWQW4l6Dn9ODnEWW7Z BPr5U8Bf+Hyf+IZ78dWD9CKfRvvZbT7yrh/LAzfjX5+ALdzN297Oq5jdWtklAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURZWryic/ES5QW4YNOsbiFgLNC7owHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qjANBgkqhkiG 9w0BAQsFAAOCAQEANADBAiGBzfmc8WePQDSXimv9mDnvQsugFWri3Db3nLH3ZcNK B3p9rimq6jgqSMxfz0X+GYpGA02pn5JwWMzujgne8DFAThlg+2YNSTkuhYphxSQj /FddF8IyzCnfoy+/RovQ4tFcgfa2lFJHciK/s8VkYO4fNmrAeouQ8pZuKhAYBqJy ouw4+5yKizJw8TetJ93m7xQMIDFLb5ywMeNzY6/p5VKYOOB7fwRsBFOyTrsj5CMU BPQRnHoXjZcQWZMT0LbDsFLfYOCWiz/LyxtRboGq1BxRW0Gke3z1KlwQVLGdCuCO frrzaozWlKc8qhiaYv32PpgflVSEhWrJmlO35Q== -----END CERTIFICATE-----Generated at Tue Mar 11 05:01:38 2025 by rpki-client