$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137302e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137302e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: RL/apdUkhB1XqcxrmZdRmYfqx3nhNk+tM4i7e7PdWg8= Subject key identifier: 6D:40:EA:56:AF:5C:7E:BF:15:27:95:63:18:A4:16:0C:99:50:63:9D Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 56ECB00B3DBC95327C2CB5D6A46CF7B699245651 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137302e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:02 +0000 ROA not before: Fri 27 Oct 2023 04:55:02 +0000 ROA not after: Fri 25 Oct 2024 05:00:02 +0000 asID: 17769 IP address blocks: 202.55.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ec:b0:0b:3d:bc:95:32:7c:2c:b5:d6:a4:6c:f7:b6:99:24:56:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:02 2023 GMT Not After : Oct 25 05:00:02 2024 GMT Subject: CN=6D40EA56AF5C7EBF1527956318A4160C9950639D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:2f:38:21:e6:05:03:56:3f:7a:e5:cf:67: 4a:95:40:91:de:4e:d6:6a:9f:a7:9d:23:c9:e3:77: 0e:39:7f:0e:ef:d0:13:cd:15:f9:80:89:49:26:94: 7e:50:88:b1:f3:da:9a:a9:cf:aa:02:f2:f0:30:64: d8:98:ea:39:4f:c6:f3:8d:9c:72:8e:f0:f8:99:d4: b7:99:a5:8b:ad:d9:db:57:a0:ad:a4:e7:7b:0d:af: 51:e6:f5:7f:0a:64:ea:be:60:01:ef:1e:2a:08:aa: bc:24:2c:bb:9a:db:de:34:a0:1e:9c:be:e1:c8:1d: 4e:0b:88:7f:7c:d5:e2:5e:3f:fb:b8:e5:77:af:4a: b9:6c:ce:f5:7e:a5:68:4a:01:ac:42:df:f1:00:38: 6c:94:07:2a:47:87:b5:bd:5b:a5:51:58:cb:dc:22: 58:09:e8:7c:6e:f1:23:63:30:25:74:fc:ec:86:7e: 74:7d:9f:3c:1d:05:fc:a6:ba:c7:71:f9:c5:1a:9b: 42:f1:f4:81:a1:fa:27:1d:53:5c:c7:f2:6d:17:45: f4:c7:44:64:58:bb:91:94:27:9e:b0:51:eb:41:4d: ff:14:33:28:8b:63:d7:31:1d:1d:3b:a1:33:ca:d5: ff:46:7a:9f:4e:4d:30:2b:2e:77:9e:6e:cf:66:ea: cb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:40:EA:56:AF:5C:7E:BF:15:27:95:63:18:A4:16:0C:99:50:63:9D X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137302e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.170.0/24 Signature Algorithm: sha256WithRSAEncryption 39:43:f2:8e:32:db:cd:9a:78:61:20:f9:38:5f:09:6e:9c:ab: ee:d8:02:cf:f9:1d:73:f9:98:1a:3a:a6:2b:54:8b:40:7c:89: 47:5e:be:e7:54:8f:c0:4b:8c:02:da:4a:12:2b:03:9d:a3:3e: 3f:f1:95:ab:d1:3e:34:e8:82:13:06:be:6a:d1:6c:ab:28:9d: 12:09:04:d0:d0:1e:61:1d:bb:76:17:c1:60:2c:03:ea:a4:01: 0f:6a:f3:10:dd:a3:e0:83:c9:bb:da:fd:40:e4:33:66:ce:81: 93:ac:32:40:fb:7d:8a:0f:42:23:fe:7d:7a:aa:0b:1a:fc:2b: a6:f9:a3:76:ea:9e:b8:c5:62:07:2a:58:29:aa:2e:b0:13:6d: 22:f1:89:49:7c:5e:9a:98:2b:28:f3:a8:2d:aa:74:bc:49:27: 5a:91:11:d1:0e:66:04:53:2c:14:e6:9f:5d:7c:df:cd:45:e7: f5:ee:51:aa:9e:63:2b:7f:b1:5c:de:06:a1:b4:9b:cf:c2:3c: cc:b5:6e:75:ef:c4:f6:82:e2:de:37:6e:b8:e3:98:68:67:73: 1c:19:a4:eb:05:77:87:30:e8:3e:44:fb:63:31:32:f9:02:24: f6:69:73:4d:47:4d:68:54:cf:28:31:e7:6d:52:dd:c8:d8:e3: 95:27:a0:e8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVuywCz28lTJ8LLXWpGz3tpkkVlEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDJaFw0yNDEwMjUwNTAwMDJaMDMxMTAvBgNV BAMTKDZENDBFQTU2QUY1QzdFQkYxNTI3OTU2MzE4QTQxNjBDOTk1MDYzOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBii84IeYFA1Y/euXPZ0qVQJHe TtZqn6edI8njdw45fw7v0BPNFfmAiUkmlH5QiLHz2pqpz6oC8vAwZNiY6jlPxvON nHKO8PiZ1LeZpYut2dtXoK2k53sNr1Hm9X8KZOq+YAHvHioIqrwkLLua2940oB6c vuHIHU4LiH981eJeP/u45XevSrlszvV+pWhKAaxC3/EAOGyUBypHh7W9W6VRWMvc IlgJ6Hxu8SNjMCV0/OyGfnR9nzwdBfymusdx+cUam0Lx9IGh+icdU1zH8m0XRfTH RGRYu5GUJ56wUetBTf8UMyiLY9cxHR07oTPK1f9Gep9OTTArLneebs9m6suNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbUDqVq9cfr8VJ5VjGKQWDJlQY50wHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qjANBgkqhkiG 9w0BAQsFAAOCAQEAOUPyjjLbzZp4YSD5OF8Jbpyr7tgCz/kdc/mYGjqmK1SLQHyJ R16+51SPwEuMAtpKEisDnaM+P/GVq9E+NOiCEwa+atFsqyidEgkE0NAeYR27dhfB YCwD6qQBD2rzEN2j4IPJu9r9QOQzZs6Bk6wyQPt9ig9CI/59eqoLGvwrpvmjduqe uMViBypYKaousBNtIvGJSXxempgrKPOoLap0vEknWpER0Q5mBFMsFOafXXzfzUXn 9e5Rqp5jK3+xXN4GobSbz8I8zLVude/E9oLi3jduuOOYaGdzHBmk6wV3hzDoPkT7 YzEy+QIk9mlzTUdNaFTPKDHnbVLdyNjjlSeg6A== -----END CERTIFICATE-----Generated at Tue Apr 30 12:55:38 2024 by rpki-client on console-fra.rpki-client.org