$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137312e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137312e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: HY2Lm/Wv56q0jC2Eykf082uzU9W7rCpdXShoCfWdI5c= Subject key identifier: AF:3F:90:A4:75:E2:53:16:01:FD:CB:E9:EB:E8:CD:43:9E:D0:1C:10 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 64A5FB370B5FED1CE2A88712912A12C4D60DEF6B Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137312e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Sep 2024 06:01:27 +0000 ROA not before: Fri 27 Sep 2024 05:56:27 +0000 ROA not after: Fri 26 Sep 2025 06:01:27 +0000 asID: 17769 IP address blocks: 202.55.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:a5:fb:37:0b:5f:ed:1c:e2:a8:87:12:91:2a:12:c4:d6:0d:ef:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Sep 27 05:56:27 2024 GMT Not After : Sep 26 06:01:27 2025 GMT Subject: CN=AF3F90A475E2531601FDCBE9EBE8CD439ED01C10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4b:67:df:97:2c:7b:cd:06:8a:a7:0b:d2:96: 34:d3:7f:2e:8e:39:38:93:a7:54:70:b4:91:15:ba: 11:97:87:23:b9:b6:48:51:39:07:3c:44:e2:36:ea: 7a:4e:11:16:8c:a0:ce:74:24:27:ef:52:a1:50:8a: df:18:b3:32:7f:32:5d:ad:94:ba:e1:18:09:57:7e: 22:40:0b:01:cd:ba:3e:df:7c:63:7f:1e:15:77:df: 45:39:4d:20:96:91:4c:6e:0f:b6:77:12:2e:d1:1b: 19:bb:82:96:1e:84:64:4a:b7:6d:a7:a6:8e:82:1d: 35:f2:90:b5:35:04:e1:f6:13:1b:20:27:ec:a2:20: 15:8f:4d:7e:25:f8:ef:55:3b:8d:b1:53:47:19:68: d0:ea:67:14:41:9e:31:c7:e1:c0:5f:98:cf:37:9c: bd:94:69:cf:2b:18:4c:cd:e7:7c:26:69:c6:06:93: 2a:11:35:3d:60:30:0f:e2:c7:ae:09:a6:48:1f:b1: 8d:f9:6b:68:ac:15:16:40:ee:6b:cf:69:09:b3:09: cb:74:39:d6:8b:9a:19:b5:0b:ea:3c:2f:6c:b2:06: fa:de:94:18:56:9b:28:a0:6a:27:36:7e:1c:36:4c: 3d:61:2c:05:71:2b:5d:90:e3:ec:02:b3:12:9f:f4: a0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:3F:90:A4:75:E2:53:16:01:FD:CB:E9:EB:E8:CD:43:9E:D0:1C:10 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137312e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.171.0/24 Signature Algorithm: sha256WithRSAEncryption b8:a4:fe:32:bf:95:62:ee:61:84:4f:68:f6:3e:5d:d3:53:55: 5f:62:d6:60:50:1e:fe:6a:9a:da:2a:ca:2a:19:eb:c2:75:2d: d9:03:a6:5a:25:1e:be:c1:c0:0d:ba:05:e4:eb:12:51:64:cd: e6:9d:1a:41:7d:a2:79:08:1b:3a:82:b3:79:84:f8:60:80:d2: d0:c1:cd:de:e5:dd:c0:c2:a8:c7:7d:38:11:ab:52:7f:95:15: ca:17:c6:06:f0:c8:19:83:02:40:1a:1f:49:59:36:b5:31:be: 44:09:fc:d3:87:44:f3:cb:3c:9d:a1:c5:97:b5:5f:7e:49:c3: 43:87:27:c5:34:b2:f8:1c:49:23:e1:de:d0:3f:71:3a:25:11: 9b:77:2c:40:1b:86:ca:e5:76:63:d5:3b:0c:e7:bf:19:e4:0b: 31:d3:9a:d8:36:7e:c0:49:49:f8:75:19:3e:03:42:05:09:86: 5e:cb:64:a2:e7:eb:d1:76:06:ea:58:a7:76:a7:0b:99:19:22: 5b:5b:e6:67:c5:28:e5:79:93:b8:85:5f:bf:a0:34:78:4a:b5: 55:a9:e7:a5:73:55:9a:09:7d:e7:3d:20:78:ed:f5:2c:ff:32: 87:b0:57:20:d7:66:9a:ad:b0:9e:e2:5c:03:6d:4f:69:2e:77: 57:59:9d:cd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZKX7Nwtf7RziqIcSkSoSxNYN72swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNDA5MjcwNTU2MjdaFw0yNTA5MjYwNjAxMjdaMDMxMTAvBgNV BAMTKEFGM0Y5MEE0NzVFMjUzMTYwMUZEQ0JFOUVCRThDRDQzOUVEMDFDMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMS2fflyx7zQaKpwvSljTTfy6O OTiTp1RwtJEVuhGXhyO5tkhROQc8ROI26npOERaMoM50JCfvUqFQit8YszJ/Ml2t lLrhGAlXfiJACwHNuj7ffGN/HhV330U5TSCWkUxuD7Z3Ei7RGxm7gpYehGRKt22n po6CHTXykLU1BOH2ExsgJ+yiIBWPTX4l+O9VO42xU0cZaNDqZxRBnjHH4cBfmM83 nL2Uac8rGEzN53wmacYGkyoRNT1gMA/ix64JpkgfsY35a2isFRZA7mvPaQmzCct0 OdaLmhm1C+o8L2yyBvrelBhWmyigaic2fhw2TD1hLAVxK12Q4+wCsxKf9KAfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrz+QpHXiUxYB/cvp6+jNQ57QHBAwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qzANBgkqhkiG 9w0BAQsFAAOCAQEAuKT+Mr+VYu5hhE9o9j5d01NVX2LWYFAe/mqa2irKKhnrwnUt 2QOmWiUevsHADboF5OsSUWTN5p0aQX2ieQgbOoKzeYT4YIDS0MHN3uXdwMKox304 EatSf5UVyhfGBvDIGYMCQBofSVk2tTG+RAn804dE88s8naHFl7VffknDQ4cnxTSy +BxJI+He0D9xOiURm3csQBuGyuV2Y9U7DOe/GeQLMdOa2DZ+wElJ+HUZPgNCBQmG Xstkoufr0XYG6lindqcLmRkiW1vmZ8Uo5XmTuIVfv6A0eEq1VannpXNVmgl95z0g eO31LP8yh7BXINdmmq2wnuJcA21PaS53V1mdzQ== -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org