$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137332e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137332e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: DNXs9yfzOIwMbm3Y6yDVa4iNXqQUP0euwY6dnY6KcSA= Subject key identifier: 39:2E:47:D3:EB:A7:FC:BA:1F:82:DB:D7:29:B2:33:FB:56:40:12:08 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 3CB28CF1C0DDF879E8A5F7933E573401B7F5F368 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137332e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:03 +0000 ROA not before: Fri 27 Oct 2023 04:55:03 +0000 ROA not after: Fri 25 Oct 2024 05:00:03 +0000 asID: 17769 IP address blocks: 202.55.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:b2:8c:f1:c0:dd:f8:79:e8:a5:f7:93:3e:57:34:01:b7:f5:f3:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:03 2023 GMT Not After : Oct 25 05:00:03 2024 GMT Subject: CN=392E47D3EBA7FCBA1F82DBD729B233FB56401208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:51:86:f4:db:17:f5:89:23:4c:db:af:c5:5c: 91:7a:77:05:3e:e7:f3:aa:03:2e:c3:9b:02:a0:af: 74:f4:6a:13:f7:7e:c3:09:0d:c6:36:50:d8:61:65: 58:68:67:5b:a0:d0:17:60:ed:76:09:13:32:eb:5d: 2d:33:93:4a:54:ff:f0:5d:4d:c2:fa:07:c4:6d:6e: 9f:41:b5:1b:cc:15:4c:e6:f0:c0:ac:87:9a:34:26: 7c:0f:3a:f2:40:ed:b0:52:86:01:b6:76:dd:2b:a2: 56:f9:51:c9:70:07:ac:4a:15:01:e2:d2:c6:c7:53: de:64:50:77:d8:e4:d5:e0:6e:38:72:26:9e:d3:11: 6c:db:bb:27:87:5b:36:5f:fb:97:69:dd:9b:aa:e7: 3d:01:24:27:66:49:72:af:89:a1:de:b7:5a:0f:b1: cf:07:ae:d6:b1:24:cd:11:ad:63:2e:06:0e:6d:50: c7:69:da:a8:41:39:42:a2:82:0f:04:cd:a1:5f:b0: 0e:e5:4e:ba:86:ed:c4:6a:a0:b2:dd:63:69:cc:94: 3d:74:6f:0b:30:f7:fd:50:9a:a7:f2:3d:df:34:87: f3:22:a6:a0:db:02:4b:b9:0e:2e:06:9c:b3:4b:6e: 7a:89:22:72:58:15:a0:58:63:f6:c8:49:86:62:de: 75:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:2E:47:D3:EB:A7:FC:BA:1F:82:DB:D7:29:B2:33:FB:56:40:12:08 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137332e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.173.0/24 Signature Algorithm: sha256WithRSAEncryption 18:bc:cf:74:45:6d:7f:a3:59:49:2e:b7:ab:23:d6:98:5f:50: 40:96:f1:66:9a:93:f8:62:fd:d7:1f:70:d7:c1:ea:52:b7:e1: b1:9f:e0:89:7c:f1:d7:9c:f2:18:d0:62:51:9f:3b:3a:b4:d6: e9:2a:bd:8f:3c:76:c4:39:fe:56:1e:e9:3b:94:75:6d:4e:d9: 93:16:22:04:7c:69:0b:b7:d5:0a:2d:b4:83:03:94:9e:05:1d: ed:e5:f8:ba:04:34:3b:67:aa:be:8f:c8:35:55:57:6e:22:37: c1:4a:81:16:8a:4b:50:01:4b:01:5b:4c:64:15:fb:ed:c5:cd: e0:f6:f2:97:09:e2:47:6d:03:cb:71:51:ac:f0:d5:50:f3:c3: e5:6d:84:6b:4c:a5:ee:86:fb:41:66:42:49:cd:2e:06:98:7e: 8f:ee:02:3a:18:a8:03:07:0d:74:cc:86:89:5e:d0:14:76:0e: 0d:28:ed:c0:58:0b:a2:e2:8e:b6:ac:89:b8:7e:6e:c7:42:33: c7:ff:5b:1f:5d:5a:82:e2:c1:b4:a7:b5:78:c4:83:82:34:59: cf:96:88:79:bb:41:32:41:9c:00:49:8d:38:9e:50:fa:c9:ba: 83:be:54:c5:de:ed:5f:cf:3d:ae:28:47:54:51:65:00:55:03: 0a:b7:22:d6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPLKM8cDd+HnopfeTPlc0Abf182gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDNaFw0yNDEwMjUwNTAwMDNaMDMxMTAvBgNV BAMTKDM5MkU0N0QzRUJBN0ZDQkExRjgyREJENzI5QjIzM0ZCNTY0MDEyMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrUYb02xf1iSNM26/FXJF6dwU+ 5/OqAy7DmwKgr3T0ahP3fsMJDcY2UNhhZVhoZ1ug0Bdg7XYJEzLrXS0zk0pU//Bd TcL6B8Rtbp9BtRvMFUzm8MCsh5o0JnwPOvJA7bBShgG2dt0rolb5UclwB6xKFQHi 0sbHU95kUHfY5NXgbjhyJp7TEWzbuyeHWzZf+5dp3Zuq5z0BJCdmSXKviaHet1oP sc8HrtaxJM0RrWMuBg5tUMdp2qhBOUKigg8EzaFfsA7lTrqG7cRqoLLdY2nMlD10 bwsw9/1QmqfyPd80h/MipqDbAku5Di4GnLNLbnqJInJYFaBYY/bISYZi3nV1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOS5H0+un/LofgtvXKbIz+1ZAEggwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rTANBgkqhkiG 9w0BAQsFAAOCAQEAGLzPdEVtf6NZSS63qyPWmF9QQJbxZpqT+GL91x9w18HqUrfh sZ/giXzx15zyGNBiUZ87OrTW6Sq9jzx2xDn+Vh7pO5R1bU7ZkxYiBHxpC7fVCi20 gwOUngUd7eX4ugQ0O2eqvo/INVVXbiI3wUqBFopLUAFLAVtMZBX77cXN4Pbylwni R20Dy3FRrPDVUPPD5W2Ea0yl7ob7QWZCSc0uBph+j+4COhioAwcNdMyGiV7QFHYO DSjtwFgLouKOtqyJuH5ux0Izx/9bH11aguLBtKe1eMSDgjRZz5aIebtBMkGcAEmN OJ5Q+sm6g75Uxd7tX889rihHVFFlAFUDCrci1g== -----END CERTIFICATE-----Generated at Tue Apr 30 12:55:38 2024 by rpki-client on console-fra.rpki-client.org