$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137322e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137322e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: 1RNEIimWls5L1YA+6LvVON5gsGW9KYIAg/Gbxl/jXeo= Subject key identifier: E2:53:4F:41:6B:75:40:8A:7A:9E:4F:C1:CB:05:F6:C9:BA:AA:25:9F Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 20519F678420D55572710D3D947D4BFD160B3D90 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137322e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Sep 2024 06:01:28 +0000 ROA not before: Fri 27 Sep 2024 05:56:28 +0000 ROA not after: Fri 26 Sep 2025 06:01:28 +0000 asID: 17769 IP address blocks: 202.55.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:51:9f:67:84:20:d5:55:72:71:0d:3d:94:7d:4b:fd:16:0b:3d:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Sep 27 05:56:28 2024 GMT Not After : Sep 26 06:01:28 2025 GMT Subject: CN=E2534F416B75408A7A9E4FC1CB05F6C9BAAA259F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e7:09:4d:0b:97:b3:97:29:4c:94:86:15:d4: 37:02:b8:f4:d1:9b:06:40:94:03:a0:7c:b4:26:27: 21:db:7f:dd:2d:ec:ca:2b:34:21:c0:ab:5d:35:d9: d1:2b:75:e9:ee:d7:18:3b:25:2c:fd:ef:fb:bd:da: f9:51:89:08:bf:53:ef:e4:cc:47:fe:d1:1b:89:58: 47:25:b8:fa:1f:4e:94:a0:d0:6c:30:98:fa:3c:69: 43:02:5a:2e:12:6c:c2:2f:67:57:4f:8a:8e:14:c4: 34:46:4a:5b:0d:f6:92:9e:d6:ec:b7:6e:35:02:3f: 7b:32:59:e3:6a:3d:90:fd:85:c4:4a:e3:73:ae:b5: 69:21:37:07:28:d8:aa:d2:83:11:b0:e8:e6:87:b1: f9:72:bc:0e:36:ea:60:a9:85:c8:45:2b:d4:7c:a1: b0:8b:cc:95:ec:19:ef:e7:3e:36:9a:7f:64:27:6a: 2f:5f:d8:09:06:67:88:55:80:28:24:9f:2c:87:14: 1e:7e:4f:1e:b8:3f:46:59:0d:b7:86:0e:b3:4b:a6: 06:58:88:57:4c:0b:62:d8:a4:c0:83:7c:4c:f4:73: 0c:4a:b3:e8:9d:b1:38:0d:d3:5b:fa:5b:d7:57:af: 4c:e8:c4:a2:69:d0:2c:78:55:2f:c0:0d:ee:c4:6c: 02:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:53:4F:41:6B:75:40:8A:7A:9E:4F:C1:CB:05:F6:C9:BA:AA:25:9F X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137322e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.172.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:f3:af:ab:5d:ad:c0:99:e2:d8:c8:7b:1e:f9:a5:39:e2:d4: 1f:54:fe:ab:0b:bf:41:b7:88:51:bc:a7:a1:63:c1:88:2b:ca: e6:5f:f5:42:85:a7:c3:01:82:ef:d1:1c:66:b8:39:ef:cd:8f: 74:b9:fd:de:52:be:e2:bf:95:86:6b:9c:7a:b8:70:76:ec:7c: 82:c0:06:c0:58:80:01:d7:1a:0c:13:2b:8f:11:40:e5:25:6e: 83:a9:62:10:f4:e5:96:7c:48:be:1e:79:cd:04:20:cf:d6:a8: 71:55:21:ef:e3:1a:6a:e2:ca:a8:fd:98:86:b3:99:b3:40:cb: 13:8b:68:ee:43:cd:ce:84:5c:04:52:88:d1:8a:5e:2c:b3:81: ae:01:79:b0:97:5d:eb:2d:80:20:77:d3:6b:c9:51:e1:db:86: 13:20:91:4f:d8:45:d1:00:f7:e1:1b:7d:74:d3:01:c8:a9:5a: 11:9c:b2:d2:bf:d3:77:bd:42:d9:98:5f:c7:bb:ba:6c:ce:21: 5b:d8:3e:7d:f3:d3:b1:17:76:d5:fb:fa:7f:cf:7b:7e:c0:f2: 55:be:1f:91:c1:a4:a5:8a:cf:45:76:30:74:9a:30:48:ad:21: b0:ce:02:31:f5:6a:cf:58:84:82:76:5d:a7:48:a7:cd:57:a6: f6:b4:c5:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIFGfZ4Qg1VVycQ09lH1L/RYLPZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNDA5MjcwNTU2MjhaFw0yNTA5MjYwNjAxMjhaMDMxMTAvBgNV BAMTKEUyNTM0RjQxNkI3NTQwOEE3QTlFNEZDMUNCMDVGNkM5QkFBQTI1OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb5wlNC5ezlylMlIYV1DcCuPTR mwZAlAOgfLQmJyHbf90t7MorNCHAq1012dErdenu1xg7JSz97/u92vlRiQi/U+/k zEf+0RuJWEcluPofTpSg0GwwmPo8aUMCWi4SbMIvZ1dPio4UxDRGSlsN9pKe1uy3 bjUCP3syWeNqPZD9hcRK43OutWkhNwco2KrSgxGw6OaHsflyvA426mCphchFK9R8 obCLzJXsGe/nPjaaf2Qnai9f2AkGZ4hVgCgknyyHFB5+Tx64P0ZZDbeGDrNLpgZY iFdMC2LYpMCDfEz0cwxKs+idsTgN01v6W9dXr0zoxKJp0Cx4VS/ADe7EbAJRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4lNPQWt1QIp6nk/BywX2ybqqJZ8wHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rDANBgkqhkiG 9w0BAQsFAAOCAQEAG/Ovq12twJni2Mh7HvmlOeLUH1T+qwu/QbeIUbynoWPBiCvK 5l/1QoWnwwGC79EcZrg5782PdLn93lK+4r+Vhmucerhwdux8gsAGwFiAAdcaDBMr jxFA5SVug6liEPTllnxIvh55zQQgz9aocVUh7+MaauLKqP2YhrOZs0DLE4to7kPN zoRcBFKI0YpeLLOBrgF5sJdd6y2AIHfTa8lR4duGEyCRT9hF0QD34Rt9dNMByKla EZyy0r/Td71C2Zhfx7u6bM4hW9g+ffPTsRd21fv6f897fsDyVb4fkcGkpYrPRXYw dJowSK0hsM4CMfVqz1iEgnZdp0inzVem9rTFEA== -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org