$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137312e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137312e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: 0vJHAbm/VZagwcsfpK0Mof+2ZnjfKIIivU81yeIqbxg= Subject key identifier: 4B:EC:1A:34:43:E6:9C:57:25:8A:0A:88:64:F3:B4:15:8B:6C:DF:AB Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 3F8636953DDF5F0815A94CD7623B78A4495D64AB Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137312e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:02 +0000 ROA not before: Fri 27 Oct 2023 04:55:02 +0000 ROA not after: Fri 25 Oct 2024 05:00:02 +0000 asID: 17769 IP address blocks: 202.55.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:86:36:95:3d:df:5f:08:15:a9:4c:d7:62:3b:78:a4:49:5d:64:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:02 2023 GMT Not After : Oct 25 05:00:02 2024 GMT Subject: CN=4BEC1A3443E69C57258A0A8864F3B4158B6CDFAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:49:34:5c:af:ff:4c:c6:46:e1:b7:fd:0c:30: 9b:33:28:4c:5b:0c:df:80:55:ac:42:6d:15:2d:07: 1b:83:31:47:f8:1e:4d:31:48:17:69:8b:04:bd:40: 3f:74:3e:2d:ea:df:56:83:7b:cc:1e:5f:3d:96:81: 52:9e:a8:ca:57:a8:27:fa:2b:97:48:1c:93:85:04: 8a:dd:bd:6c:15:51:ea:2d:8b:63:1c:98:b7:77:cc: c8:c2:01:5b:aa:dd:3f:93:f1:d2:1b:7a:f1:33:35: 4d:97:52:30:61:b0:4c:6f:3d:a2:5f:1e:ff:41:23: 98:70:9b:09:f7:e2:70:e1:03:4d:1f:54:ac:4f:3c: 64:c4:46:30:84:4a:57:10:f9:ae:1d:fb:db:34:b9: cf:2d:e5:16:cf:bb:7c:95:2a:9f:7d:d6:af:8c:00: 1d:33:a7:69:0a:ba:f2:14:cd:b2:2d:cc:58:87:7b: 8d:2a:5c:14:39:84:30:ca:26:00:e0:66:fb:e4:65: d0:23:1b:21:47:79:f1:f2:a7:44:b9:12:56:fa:6e: 27:d9:ce:59:39:1b:ea:60:a9:90:a7:34:cc:b1:d7: ed:c9:1d:75:63:a7:81:c3:22:17:23:0e:c7:9a:20: eb:20:9b:e3:2f:4b:ef:91:ae:8c:31:60:7f:ad:aa: d6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:EC:1A:34:43:E6:9C:57:25:8A:0A:88:64:F3:B4:15:8B:6C:DF:AB X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137312e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.171.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:5e:0c:be:55:8e:b1:3c:ab:4e:b1:a3:8f:c4:cf:54:18:fa: 79:c7:0f:b5:27:b5:81:ba:5a:07:c3:21:00:dc:30:4a:7a:00: dd:5a:32:14:f4:b7:bd:35:2d:5a:75:df:f1:59:86:09:9a:ef: 93:72:83:dd:91:c5:a2:66:6b:4b:39:de:b6:09:f0:8f:26:e8: 6c:ca:02:5d:b2:9e:24:66:9b:25:1e:39:7e:37:b8:dd:60:df: 55:64:94:3e:f7:fa:3f:e1:7c:b1:68:90:0e:24:d7:9a:63:cd: 64:e1:4e:05:0c:a6:f1:0f:29:a3:c0:ff:2a:ad:30:9e:63:e7: d8:ed:7d:f6:5c:5a:d8:42:3c:17:19:e0:b2:ee:0f:ba:ef:98: c0:55:fa:66:ab:f5:41:0a:ac:65:de:4e:08:69:7d:69:74:a0: 6d:f1:90:b2:b3:cb:cd:8a:0a:4f:dd:5e:7c:64:54:d8:ab:1b: 34:71:1e:fe:0e:35:fe:7e:38:36:19:ff:de:d4:e5:ed:70:47: c2:61:e9:3a:70:58:1a:c7:43:56:90:45:cb:2c:53:4f:dc:49: 15:1c:b4:5f:56:70:4c:46:dc:44:11:03:6d:1d:72:c4:91:78: 12:65:6b:4e:0e:1d:98:0b:47:2c:2d:ae:8d:ce:4c:61:b5:c0: 7a:ee:ad:8b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP4Y2lT3fXwgVqUzXYjt4pEldZKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDJaFw0yNDEwMjUwNTAwMDJaMDMxMTAvBgNV BAMTKDRCRUMxQTM0NDNFNjlDNTcyNThBMEE4ODY0RjNCNDE1OEI2Q0RGQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDISTRcr/9Mxkbht/0MMJszKExb DN+AVaxCbRUtBxuDMUf4Hk0xSBdpiwS9QD90Pi3q31aDe8weXz2WgVKeqMpXqCf6 K5dIHJOFBIrdvWwVUeoti2McmLd3zMjCAVuq3T+T8dIbevEzNU2XUjBhsExvPaJf Hv9BI5hwmwn34nDhA00fVKxPPGTERjCESlcQ+a4d+9s0uc8t5RbPu3yVKp991q+M AB0zp2kKuvIUzbItzFiHe40qXBQ5hDDKJgDgZvvkZdAjGyFHefHyp0S5Elb6bifZ zlk5G+pgqZCnNMyx1+3JHXVjp4HDIhcjDseaIOsgm+MvS++RrowxYH+tqtajAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUS+waNEPmnFcligqIZPO0FYts36swHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qzANBgkqhkiG 9w0BAQsFAAOCAQEADF4MvlWOsTyrTrGjj8TPVBj6eccPtSe1gbpaB8MhANwwSnoA 3VoyFPS3vTUtWnXf8VmGCZrvk3KD3ZHFomZrSznetgnwjybobMoCXbKeJGabJR45 fje43WDfVWSUPvf6P+F8sWiQDiTXmmPNZOFOBQym8Q8po8D/Kq0wnmPn2O199lxa 2EI8Fxngsu4Puu+YwFX6Zqv1QQqsZd5OCGl9aXSgbfGQsrPLzYoKT91efGRU2Ksb NHEe/g41/n44Nhn/3tTl7XBHwmHpOnBYGsdDVpBFyyxTT9xJFRy0X1ZwTEbcRBED bR1yxJF4EmVrTg4dmAtHLC2ujc5MYbXAeu6tiw== -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:29 2024 by rpki-client on console-ams.rpki-client.org