$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137352e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137352e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: sFQzpgtawfvuW2R+khnHG9KxmeTBRYQ1Yg1dls5LG+c= Subject key identifier: 69:38:22:1C:00:86:18:59:7B:14:A8:2E:55:60:DD:B6:E8:95:8C:69 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: 140A91A2252DA5786368AA4380A6FAD5D2B2529B Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137352e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Oct 2023 05:00:02 +0000 ROA not before: Fri 27 Oct 2023 04:55:02 +0000 ROA not after: Fri 25 Oct 2024 05:00:02 +0000 asID: 17769 IP address blocks: 202.55.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:0a:91:a2:25:2d:a5:78:63:68:aa:43:80:a6:fa:d5:d2:b2:52:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Oct 27 04:55:02 2023 GMT Not After : Oct 25 05:00:02 2024 GMT Subject: CN=6938221C008618597B14A82E5560DDB6E8958C69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:64:a5:06:a3:2d:c8:dc:28:e0:15:b8:07:32: 07:77:13:65:a8:98:45:97:54:34:8a:8f:17:24:62: 87:5c:60:88:12:77:db:b0:7d:a8:f7:91:81:b5:3c: f6:fb:24:92:93:3c:31:cc:70:3e:d8:4c:b5:0b:01: 7f:6a:d0:3e:28:94:1a:9f:ce:fd:e4:63:7e:fc:da: 24:35:04:36:1f:e9:e6:d2:98:5f:b2:93:0b:b4:55: f5:9d:58:7b:6d:82:d6:6f:98:93:99:16:48:f5:96: c4:9a:9e:2d:5b:a1:ae:64:81:79:c5:5a:68:fa:75: 54:6d:e1:57:23:b1:3b:e7:a6:6b:cf:b8:17:54:b3: fc:36:02:8f:f5:8b:49:e0:a4:47:ec:60:58:d3:47: 9d:77:35:a7:38:1c:a7:64:1d:42:f8:44:28:76:c1: 72:1e:ab:26:32:ec:be:aa:c1:17:24:35:20:6d:5b: 6b:a4:c3:7a:41:96:2b:ea:9b:69:fb:d4:4f:30:f5: a4:9d:47:12:22:1d:95:65:17:dd:01:26:9e:cc:69: 12:90:0c:50:be:d7:1d:3e:cf:a3:b8:af:2f:39:4d: 19:4f:a8:55:f0:d1:20:1d:37:c8:b5:f1:29:b3:56: 2a:41:ff:10:58:ac:8c:45:70:34:9d:d7:63:62:6a: 01:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:38:22:1C:00:86:18:59:7B:14:A8:2E:55:60:DD:B6:E8:95:8C:69 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137352e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.175.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:ee:db:a3:c8:e6:2b:b5:07:5c:0b:44:57:75:fb:67:80:8c: b4:d4:a5:ee:a3:4d:b2:ab:df:80:f1:c0:85:91:69:3a:0a:0e: 94:56:1e:03:ef:be:1f:d5:0e:99:3a:0f:a4:75:cf:0f:e6:c9: 1e:db:d2:76:42:d2:1d:8a:60:7c:d7:11:4a:cc:ef:1f:c9:84: 32:1e:f2:c7:8a:ab:6a:57:2e:54:80:5c:ac:44:c2:05:5e:38: f9:93:e4:71:1f:7b:e1:6f:d7:e8:97:db:69:1e:bc:99:48:87: f8:ab:ad:ac:e8:d0:99:5f:91:23:af:2a:3f:d4:3d:6f:c6:df: 6f:f8:f6:19:5a:f6:a4:e6:4f:5d:4e:98:eb:e3:97:c0:cf:9e: 45:12:d4:51:f6:ed:86:94:87:22:dc:5c:08:fd:3f:44:07:22: 57:a8:a4:8b:84:e9:a1:a6:0f:0b:ad:e3:67:3b:7f:9c:35:e2: 87:4d:f7:77:bb:6f:1f:f3:67:0d:7b:d2:e6:d9:8e:75:9d:e8: 4f:f0:49:1c:2e:c3:77:4a:2f:13:a9:8e:10:4d:39:ed:e6:57: a5:a4:6f:54:7a:65:1d:5f:d4:7a:b7:4e:e6:cf:cf:67:68:dd: 21:4d:62:77:4b:5b:2e:fd:9b:12:64:45:ce:0e:58:52:1e:18: 03:1d:0a:23 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFAqRoiUtpXhjaKpDgKb61dKyUpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yMzEwMjcwNDU1MDJaFw0yNDEwMjUwNTAwMDJaMDMxMTAvBgNV BAMTKDY5MzgyMjFDMDA4NjE4NTk3QjE0QTgyRTU1NjBEREI2RTg5NThDNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPZKUGoy3I3CjgFbgHMgd3E2Wo mEWXVDSKjxckYodcYIgSd9uwfaj3kYG1PPb7JJKTPDHMcD7YTLULAX9q0D4olBqf zv3kY3782iQ1BDYf6ebSmF+ykwu0VfWdWHttgtZvmJOZFkj1lsSani1boa5kgXnF Wmj6dVRt4VcjsTvnpmvPuBdUs/w2Ao/1i0ngpEfsYFjTR513Nac4HKdkHUL4RCh2 wXIeqyYy7L6qwRckNSBtW2ukw3pBlivqm2n71E8w9aSdRxIiHZVlF90BJp7MaRKQ DFC+1x0+z6O4ry85TRlPqFXw0SAdN8i18SmzVipB/xBYrIxFcDSd12NiagG7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaTgiHACGGFl7FKguVWDdtuiVjGkwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rzANBgkqhkiG 9w0BAQsFAAOCAQEAOu7bo8jmK7UHXAtEV3X7Z4CMtNSl7qNNsqvfgPHAhZFpOgoO lFYeA+++H9UOmToPpHXPD+bJHtvSdkLSHYpgfNcRSszvH8mEMh7yx4qralcuVIBc rETCBV44+ZPkcR974W/X6JfbaR68mUiH+KutrOjQmV+RI68qP9Q9b8bfb/j2GVr2 pOZPXU6Y6+OXwM+eRRLUUfbthpSHItxcCP0/RAciV6iki4TpoaYPC63jZzt/nDXi h033d7tvH/NnDXvS5tmOdZ3oT/BJHC7Dd0ovE6mOEE057eZXpaRvVHplHV/UerdO 5s/PZ2jdIU1id0tbLv2bEmRFzg5YUh4YAx0KIw== -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:29 2024 by rpki-client on console-ams.rpki-client.org