$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137322e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137322e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: 9qNrMrpi1Nvwa+wuxwH5q7iYRrOlO+XYz74/sgFEBpg= Subject key identifier: 82:9F:4B:D5:31:73:22:39:55:7D:EB:52:64:91:59:2E:C1:BB:3D:88 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 3A4CBD51A41463E85F371D5DB8A6E0FAC14F8893 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137322e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:03 +0000 ROA not before: Fri 27 Oct 2023 04:55:03 +0000 ROA not after: Fri 25 Oct 2024 05:00:03 +0000 asID: 17769 IP address blocks: 202.55.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4c:bd:51:a4:14:63:e8:5f:37:1d:5d:b8:a6:e0:fa:c1:4f:88:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:03 2023 GMT Not After : Oct 25 05:00:03 2024 GMT Subject: CN=829F4BD531732239557DEB526491592EC1BB3D88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1c:bd:00:58:01:5f:70:45:3a:d3:f7:4c:7a: c5:31:9e:aa:9b:2e:5a:d8:c4:f6:d8:82:ce:1b:65: ee:64:b5:c8:31:68:c5:fd:69:cd:11:2f:e9:94:65: eb:1e:bc:c1:7e:30:03:dc:9e:23:3d:08:50:2c:03: f1:cb:23:f8:66:cf:fc:2a:2d:1a:fd:bc:14:1d:4c: 0c:6b:c9:39:b3:53:15:1b:7a:7b:be:6b:57:94:be: ab:77:04:a0:b4:72:1f:9c:d0:87:0e:1a:09:71:e0: 53:35:e6:e2:9b:81:66:94:f4:c5:18:34:df:63:6a: 98:a8:d0:cc:84:65:ed:9b:d6:93:c5:69:12:89:ce: 53:89:54:24:fb:f3:03:fd:a3:c6:fe:f5:2d:87:a3: 40:d9:1d:e4:ae:de:2f:d3:76:3e:04:22:3a:a4:18: ca:b0:19:b4:99:78:78:b0:47:4e:43:49:46:0c:0b: 52:9f:2f:73:48:24:3c:8a:7b:58:4b:f9:4b:c9:e1: 81:f0:0f:f0:12:d4:25:b8:ee:be:84:1b:e4:af:03: 37:1d:58:e5:73:8f:02:0d:98:a9:94:56:59:d0:6e: 1a:10:44:54:0b:74:e5:be:48:c2:69:c2:18:d4:ff: 9a:c8:ee:6c:db:56:89:4b:bb:ac:7c:b0:6c:0f:85: 49:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:9F:4B:D5:31:73:22:39:55:7D:EB:52:64:91:59:2E:C1:BB:3D:88 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137322e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.172.0/24 Signature Algorithm: sha256WithRSAEncryption 40:42:ae:fd:2b:5d:5c:31:66:4c:f2:ec:f0:b1:ab:fb:e6:69: cc:62:2b:c5:68:6f:84:95:bd:97:ed:c4:c3:2b:e7:ee:8b:58: e2:8a:75:b5:f8:3a:ab:2e:80:4f:fb:65:83:31:e6:fe:ad:d5: cb:17:fe:a6:a3:69:55:55:72:a4:2a:5d:df:6d:de:3b:66:3d: 61:48:4e:db:20:3e:b2:c1:8b:0e:a0:a9:b5:4d:6d:ab:9e:d4: c4:c8:c5:67:9e:bd:b6:01:13:4b:3c:ab:46:20:90:87:d1:54: 37:bb:5d:29:7f:52:82:76:b2:cb:30:4f:7f:9c:89:72:0e:40: 12:7c:23:9d:63:26:21:05:3d:ed:6f:a7:29:ff:89:b8:8b:bf: 5b:64:d7:a7:97:60:27:3f:57:ec:24:b4:cf:49:79:d7:9b:2e: 0e:f5:7d:ed:9f:db:84:0c:68:37:64:46:7c:49:06:4b:5e:04: 8a:4b:f0:c8:22:67:b0:f9:f7:0b:dc:fc:fe:bf:30:30:ca:d0: b4:4f:36:27:22:69:b2:9b:4d:bb:f2:5d:b4:56:19:23:9a:66: 97:e9:b4:8f:a3:21:32:11:8c:0a:23:ec:b6:11:71:34:26:6f: da:6e:41:1d:df:39:f3:63:92:0d:7b:05:cc:78:98:bf:7a:66: a5:eb:37:ff -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOky9UaQUY+hfNx1duKbg+sFPiJMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDNaFw0yNDEwMjUwNTAwMDNaMDMxMTAvBgNV BAMTKDgyOUY0QkQ1MzE3MzIyMzk1NTdERUI1MjY0OTE1OTJFQzFCQjNEODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJHL0AWAFfcEU60/dMesUxnqqb LlrYxPbYgs4bZe5ktcgxaMX9ac0RL+mUZesevMF+MAPcniM9CFAsA/HLI/hmz/wq LRr9vBQdTAxryTmzUxUbenu+a1eUvqt3BKC0ch+c0IcOGglx4FM15uKbgWaU9MUY NN9japio0MyEZe2b1pPFaRKJzlOJVCT78wP9o8b+9S2Ho0DZHeSu3i/Tdj4EIjqk GMqwGbSZeHiwR05DSUYMC1KfL3NIJDyKe1hL+UvJ4YHwD/AS1CW47r6EG+SvAzcd WOVzjwINmKmUVlnQbhoQRFQLdOW+SMJpwhjU/5rI7mzbVolLu6x8sGwPhUnZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgp9L1TFzIjlVfetSZJFZLsG7PYgwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rDANBgkqhkiG 9w0BAQsFAAOCAQEAQEKu/StdXDFmTPLs8LGr++ZpzGIrxWhvhJW9l+3Ewyvn7otY 4op1tfg6qy6AT/tlgzHm/q3Vyxf+pqNpVVVypCpd323eO2Y9YUhO2yA+ssGLDqCp tU1tq57UxMjFZ569tgETSzyrRiCQh9FUN7tdKX9SgnayyzBPf5yJcg5AEnwjnWMm IQU97W+nKf+JuIu/W2TXp5dgJz9X7CS0z0l515suDvV97Z/bhAxoN2RGfEkGS14E ikvwyCJnsPn3C9z8/r8wMMrQtE82JyJpsptNu/JdtFYZI5pml+m0j6MhMhGMCiPs thFxNCZv2m5BHd8582OSDXsFzHiYv3pmpes3/w== -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:29 2024 by rpki-client on console-ams.rpki-client.org