$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137342e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137342e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: TOicGjX8vcWkrijZarpkF1YRbk4fvyDvP+6bb+eWkQo= Subject key identifier: BB:F4:BB:EB:DB:C5:EB:C0:27:E5:10:B0:E7:99:95:9D:BE:02:78:BF Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 4FBCB99CABC3116D6F51DCD86DFE626FB9B705CF Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137342e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Sep 2024 05:00:02 +0000 ROA not before: Fri 27 Sep 2024 04:55:02 +0000 ROA not after: Fri 26 Sep 2025 05:00:02 +0000 asID: 17769 IP address blocks: 202.55.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:bc:b9:9c:ab:c3:11:6d:6f:51:dc:d8:6d:fe:62:6f:b9:b7:05:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Sep 27 04:55:02 2024 GMT Not After : Sep 26 05:00:02 2025 GMT Subject: CN=BBF4BBEBDBC5EBC027E510B0E799959DBE0278BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:81:40:52:d3:6a:bb:95:c8:1a:54:a2:46:c3: 2d:ce:3a:0b:bd:c7:e6:3a:14:e2:a0:f3:f0:0e:bb: 07:07:71:eb:8d:9a:8c:ca:66:51:55:70:da:83:4f: 04:b9:7f:52:9c:d1:0f:d0:9d:bc:8b:25:e1:d8:d3: f9:80:df:64:8b:21:f0:9b:cf:1e:e7:6d:a8:6d:55: f6:ca:f7:00:44:94:36:38:27:3c:9e:e0:9f:2e:4b: 67:d6:38:6a:1e:8a:22:7b:b4:8d:11:eb:bc:e3:75: 76:52:1c:52:eb:05:e8:ff:59:10:1c:c4:bb:61:1c: 6e:13:17:37:92:3d:2f:b2:d6:d2:e8:88:a1:51:91: eb:59:97:ec:01:51:a1:5e:a6:d5:d4:91:96:27:51: b9:39:a3:b6:14:c4:9f:1d:76:86:65:d8:8f:12:ca: 8b:f8:e0:f6:5b:9d:77:51:e2:ce:ec:f6:7c:fe:51: 37:5b:eb:51:6a:dd:e4:b5:8b:07:65:c4:98:cb:8c: c3:92:9b:c1:4a:82:04:c3:13:22:47:e2:83:e3:77: a2:ac:67:32:8d:57:aa:82:f3:3a:97:5c:fa:5f:e5: 1a:d1:7b:b6:31:ab:62:d6:14:9b:0e:4f:29:6a:0d: b1:93:70:fd:51:48:5a:9c:35:29:33:6a:f6:6a:a8: 01:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F4:BB:EB:DB:C5:EB:C0:27:E5:10:B0:E7:99:95:9D:BE:02:78:BF X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137342e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.174.0/24 Signature Algorithm: sha256WithRSAEncryption 90:f8:b6:ee:47:71:1e:e4:71:59:53:71:03:4a:f9:93:7a:e7: b7:98:55:4a:ec:1a:62:09:09:7c:5b:53:b8:ee:3d:27:4b:b3: c4:44:cf:35:32:0f:a9:be:8e:0b:b2:db:8d:0d:26:c9:28:e1: 7a:00:2d:32:27:7e:e8:2b:fb:83:a4:4d:8a:32:37:4b:ba:89: b6:79:e7:c1:8a:47:7f:a4:5c:ba:33:f8:f5:c3:d2:a9:f7:55: c7:11:43:92:97:b7:6c:ba:4c:6a:0d:dc:f9:8b:f0:51:f7:7f: b4:c2:46:e2:a9:e8:24:d7:f3:ac:a3:cc:32:24:12:13:18:49: 58:33:30:5b:28:35:c9:7b:1c:d7:e5:68:84:bc:99:ce:dc:ab: 5b:72:79:69:96:16:65:90:4c:a6:83:ff:1e:b3:c8:93:4d:4f: f6:77:5a:fa:20:39:d7:73:4b:bc:2b:55:f9:50:c1:e5:79:70: a9:21:9d:3b:8f:3c:c2:cf:b2:83:d3:2a:05:8b:fa:90:18:4d: a7:5b:38:89:be:b6:fc:43:d8:2d:44:22:1c:8b:83:20:f4:e1: b4:07:68:de:13:bd:d7:3e:e5:6c:8a:7f:d5:7c:d8:7f:d4:b8: 3b:05:35:e4:c9:90:8c:5a:bd:57:7e:98:85:ec:69:e5:ac:d2: 51:c3:6e:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT7y5nKvDEW1vUdzYbf5ib7m3Bc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNDA5MjcwNDU1MDJaFw0yNTA5MjYwNTAwMDJaMDMxMTAvBgNV BAMTKEJCRjRCQkVCREJDNUVCQzAyN0U1MTBCMEU3OTk5NTlEQkUwMjc4QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwgUBS02q7lcgaVKJGwy3OOgu9 x+Y6FOKg8/AOuwcHceuNmozKZlFVcNqDTwS5f1Kc0Q/QnbyLJeHY0/mA32SLIfCb zx7nbahtVfbK9wBElDY4Jzye4J8uS2fWOGoeiiJ7tI0R67zjdXZSHFLrBej/WRAc xLthHG4TFzeSPS+y1tLoiKFRketZl+wBUaFeptXUkZYnUbk5o7YUxJ8ddoZl2I8S yov44PZbnXdR4s7s9nz+UTdb61Fq3eS1iwdlxJjLjMOSm8FKggTDEyJH4oPjd6Ks ZzKNV6qC8zqXXPpf5RrRe7Yxq2LWFJsOTylqDbGTcP1RSFqcNSkzavZqqAGrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu/S769vF68An5RCw55mVnb4CeL8wHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rjANBgkqhkiG 9w0BAQsFAAOCAQEAkPi27kdxHuRxWVNxA0r5k3rnt5hVSuwaYgkJfFtTuO49J0uz xETPNTIPqb6OC7LbjQ0mySjhegAtMid+6Cv7g6RNijI3S7qJtnnnwYpHf6RcujP4 9cPSqfdVxxFDkpe3bLpMag3c+YvwUfd/tMJG4qnoJNfzrKPMMiQSExhJWDMwWyg1 yXsc1+VohLyZztyrW3J5aZYWZZBMpoP/HrPIk01P9nda+iA513NLvCtV+VDB5Xlw qSGdO488ws+yg9MqBYv6kBhNp1s4ib62/EPYLUQiHIuDIPThtAdo3hO91z7lbIp/ 1XzYf9S4OwU15MmQjFq9V36Yhexp5azSUcNuXw== -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org