$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137332e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137332e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: KsBanZtrFrCcxMbzafZ0aONiDKdqsDpHhmyfMWYDBwE= Subject key identifier: 4B:B7:D6:95:96:F9:28:44:45:1A:F5:B3:EB:F5:38:56:BD:11:58:EB Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 60D8BE884CC91F0B890292BB4E8B0C3E23DA83DE Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137332e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Sep 2024 06:01:28 +0000 ROA not before: Fri 27 Sep 2024 05:56:28 +0000 ROA not after: Fri 26 Sep 2025 06:01:28 +0000 asID: 17769 IP address blocks: 202.55.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:d8:be:88:4c:c9:1f:0b:89:02:92:bb:4e:8b:0c:3e:23:da:83:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Sep 27 05:56:28 2024 GMT Not After : Sep 26 06:01:28 2025 GMT Subject: CN=4BB7D69596F92844451AF5B3EBF53856BD1158EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2b:b9:21:65:6c:0e:d8:c8:c5:34:27:f4:e6: c5:67:80:18:85:93:85:cd:3c:53:3f:18:37:d6:61: 32:50:80:0b:25:21:dc:b1:20:b1:c2:f6:8f:b4:6c: 84:07:ae:20:b5:f5:e5:3a:46:2c:02:3f:36:f1:a2: 77:2c:14:03:d4:f0:50:0e:aa:2d:99:27:e4:16:8f: c5:ac:8e:a5:31:9a:98:83:c9:c8:4c:51:17:98:b7: 73:6e:6b:0d:52:80:8e:c4:74:65:ea:6a:cb:25:65: 09:6a:e3:79:2d:14:64:11:86:78:48:7b:4f:bf:3f: 6f:aa:bc:e8:a0:04:85:c0:2b:16:ae:71:a7:1d:32: 22:05:e1:e5:f1:c4:61:e5:64:45:0e:3b:4a:e2:f8: 6e:7e:af:f0:16:71:f6:2a:35:ad:ac:fd:e9:43:07: 88:80:d2:82:da:e7:1d:45:b3:ba:e6:17:1b:ac:f1: 71:28:dd:19:d0:c9:71:e0:4e:59:84:8d:69:a5:76: 1f:b6:cb:5b:d0:20:71:3c:ad:65:9d:dd:6b:89:c7: 6e:2b:ba:54:ad:bf:7c:a0:2b:5a:0b:b5:0b:c3:20: c1:78:7a:35:c7:61:88:f1:b2:7c:50:78:9d:8e:ab: 5e:ca:c6:22:74:e0:c0:ef:59:49:94:49:4b:06:bc: 6f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B7:D6:95:96:F9:28:44:45:1A:F5:B3:EB:F5:38:56:BD:11:58:EB X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137332e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.173.0/24 Signature Algorithm: sha256WithRSAEncryption 62:8c:8f:8a:30:d8:b8:7b:29:2a:98:90:62:70:c2:d1:c4:a9: 1b:35:de:48:57:e4:02:68:77:1c:0b:2a:f7:ee:be:d6:9e:f3: e6:17:37:92:46:f3:3f:25:07:fe:0c:10:47:68:78:2d:9c:32: ee:2c:94:60:9a:21:64:32:31:13:fe:e2:09:34:6d:c4:8f:02: fa:ee:d1:2c:00:0c:dc:75:2c:7b:52:26:6e:9e:23:3f:f2:bf: a5:da:8d:06:ab:7a:40:f2:ec:97:14:c2:4e:f6:c1:f4:94:df: 35:89:e2:11:c7:39:3d:12:c8:cc:4c:4e:4e:ae:05:a5:d3:5f: 44:b4:a2:8b:6b:d7:eb:53:4d:32:c9:c2:1b:8e:dc:eb:fa:9b: 78:65:fe:a5:32:ec:76:1e:ae:4c:66:97:55:02:b7:87:94:04: 38:5f:97:cf:b3:f5:73:14:e4:5f:13:f9:0d:65:54:0d:ec:9d: 7a:c7:5e:dc:64:21:73:a4:e4:d6:57:d7:36:88:3f:57:60:30: 71:ac:de:73:71:f1:66:c1:71:5e:43:14:de:67:a2:86:ee:a7: 34:04:a4:5a:ae:96:f4:7b:d6:54:d6:ed:00:d0:a8:7a:06:83: 2d:9c:db:79:98:12:16:56:0f:98:52:0f:94:6d:b8:03:f6:56: eb:46:5d:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYNi+iEzJHwuJApK7TosMPiPag94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNDA5MjcwNTU2MjhaFw0yNTA5MjYwNjAxMjhaMDMxMTAvBgNV BAMTKDRCQjdENjk1OTZGOTI4NDQ0NTFBRjVCM0VCRjUzODU2QkQxMTU4RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpK7khZWwO2MjFNCf05sVngBiF k4XNPFM/GDfWYTJQgAslIdyxILHC9o+0bIQHriC19eU6RiwCPzbxoncsFAPU8FAO qi2ZJ+QWj8WsjqUxmpiDychMUReYt3Nuaw1SgI7EdGXqasslZQlq43ktFGQRhnhI e0+/P2+qvOigBIXAKxaucacdMiIF4eXxxGHlZEUOO0ri+G5+r/AWcfYqNa2s/elD B4iA0oLa5x1Fs7rmFxus8XEo3RnQyXHgTlmEjWmldh+2y1vQIHE8rWWd3WuJx24r ulStv3ygK1oLtQvDIMF4ejXHYYjxsnxQeJ2Oq17KxiJ04MDvWUmUSUsGvG+hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUS7fWlZb5KERFGvWz6/U4Vr0RWOswHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rTANBgkqhkiG 9w0BAQsFAAOCAQEAYoyPijDYuHspKpiQYnDC0cSpGzXeSFfkAmh3HAsq9+6+1p7z 5hc3kkbzPyUH/gwQR2h4LZwy7iyUYJohZDIxE/7iCTRtxI8C+u7RLAAM3HUse1Im bp4jP/K/pdqNBqt6QPLslxTCTvbB9JTfNYniEcc5PRLIzExOTq4FpdNfRLSii2vX 61NNMsnCG47c6/qbeGX+pTLsdh6uTGaXVQK3h5QEOF+Xz7P1cxTkXxP5DWVUDeyd esde3GQhc6Tk1lfXNog/V2Awcazec3HxZsFxXkMU3meihu6nNASkWq6W9HvWVNbt ANCoegaDLZzbeZgSFlYPmFIPlG24A/ZW60ZdSA== -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org