$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137352e302f32342d3234203d3e203137373639.roa File: 3230322e35352e3137352e302f32342d3234203d3e203137373639.roa (raw, json) Hash identifier: WXEDDDPWB5FVkZshm54puF6BbpeClu5z65OQiUmZWzQ= Subject key identifier: 2A:C5:24:35:40:B1:DE:DD:3D:C0:ED:FB:3C:61:EA:2B:3E:F5:3C:31 Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Certificate serial: A632B788ECC01C747F4E99826D080A07450B23 Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137352e302f32342d3234203d3e203137373639.roa Signing time: Fri 27 Sep 2024 06:01:27 +0000 ROA not before: Fri 27 Sep 2024 05:56:27 +0000 ROA not after: Fri 26 Sep 2025 06:01:27 +0000 asID: 17769 IP address blocks: 202.55.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a6:32:b7:88:ec:c0:1c:74:7f:4e:99:82:6d:08:0a:07:45:0b:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09 Validity Not Before: Sep 27 05:56:27 2024 GMT Not After : Sep 26 06:01:27 2025 GMT Subject: CN=2AC5243540B1DEDD3DC0EDFB3C61EA2B3EF53C31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1e:b1:04:fc:c1:f3:13:0b:a4:8b:24:70:d6: 14:4a:0d:0b:71:96:7c:c5:53:37:a4:d9:02:c2:ee: e0:91:5a:2b:30:4e:6e:d0:76:b1:5f:d4:75:1d:36: bc:72:7e:ee:0a:02:7b:f3:3f:e2:c2:00:4b:c7:67: aa:4e:78:8e:f4:22:74:1e:a7:71:bc:33:f0:ef:15: 02:dc:bf:22:8a:ff:64:60:6e:6b:9d:47:22:5a:17: 13:a4:1f:d3:7b:38:4a:6f:2a:bf:a1:d6:1f:bb:d9: 3f:87:9e:42:0b:ca:c6:e1:8d:29:0c:b9:c7:49:dd: b0:95:6f:54:5c:fe:3c:2a:fe:42:1b:65:e8:ce:dd: 20:97:74:05:0e:f4:19:7c:45:13:3d:bf:68:27:b2: 7c:a5:69:c2:13:a7:94:bc:79:04:50:ad:5d:8d:40: 71:be:cc:ed:a1:c4:89:6b:11:9a:b9:97:1b:ab:56: c3:ac:5a:d8:5b:1b:77:29:ad:60:e0:8d:98:fe:96: 0d:0f:53:d1:b5:eb:cb:b6:e1:01:75:18:57:e5:4a: 72:2b:c8:02:96:eb:d7:1b:82:81:fd:5d:c2:cf:21: 34:a4:53:68:18:6d:b9:06:d0:64:8e:14:4d:aa:ef: cc:3e:99:5d:d3:f0:23:f9:e0:d6:37:e2:1d:ab:5d: b0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C5:24:35:40:B1:DE:DD:3D:C0:ED:FB:3C:61:EA:2B:3E:F5:3C:31 X509v3 Authority Key Identifier: keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3137352e302f32342d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.55.175.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:70:fc:79:a9:97:1a:20:ac:80:c0:7c:60:7b:bd:0f:24:84: 34:40:aa:25:85:93:e7:69:64:6c:f9:81:4c:23:c5:93:d5:19: de:2d:43:39:c8:13:50:15:c3:a2:a4:04:fa:6b:2e:c9:56:a2: 1e:36:db:23:ac:84:0d:65:74:9b:ac:d8:f2:35:53:4c:f7:a6: e2:ec:31:c1:8a:9e:9f:c3:3f:b0:04:82:68:6d:af:6d:07:c1: 2e:3a:6f:bf:6b:b9:80:6f:40:55:ce:89:01:58:0d:6a:b5:98: 3d:42:b0:49:90:8c:2a:d9:60:1d:8a:5e:d0:6a:df:b8:5c:f1: 82:5a:0a:dd:dc:41:68:a5:a1:03:4c:74:fe:0c:63:b8:99:0a: f3:c3:72:6f:55:eb:f7:27:ea:a9:77:b6:c8:ac:5a:e5:f9:d5: 0c:53:ec:86:18:67:af:a1:49:1f:71:ed:0c:37:46:4d:b9:9d: 98:a9:90:29:87:0c:5a:7f:8f:38:1c:ca:61:53:16:c2:2f:1b: 1b:d2:34:a7:fa:3a:9d:c1:ef:50:fe:59:a8:d7:65:3a:db:7c: 1a:9d:fd:20:5b:f8:9c:95:42:e2:d2:c6:b7:52:9b:cc:2e:c7: 7c:51:38:07:55:7c:1e:8d:df:11:13:39:cd:9f:90:6a:a5:1f: 33:e1:20:c8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAKYyt4jswBx0f06Zgm0ICgdFCyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB Q0UwQUIwOTAeFw0yNDA5MjcwNTU2MjdaFw0yNTA5MjYwNjAxMjdaMDMxMTAvBgNV BAMTKDJBQzUyNDM1NDBCMURFREQzREMwRURGQjNDNjFFQTJCM0VGNTNDMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgHrEE/MHzEwukiyRw1hRKDQtx lnzFUzek2QLC7uCRWiswTm7QdrFf1HUdNrxyfu4KAnvzP+LCAEvHZ6pOeI70InQe p3G8M/DvFQLcvyKK/2RgbmudRyJaFxOkH9N7OEpvKr+h1h+72T+HnkILysbhjSkM ucdJ3bCVb1Rc/jwq/kIbZejO3SCXdAUO9Bl8RRM9v2gnsnylacITp5S8eQRQrV2N QHG+zO2hxIlrEZq5lxurVsOsWthbG3cprWDgjZj+lg0PU9G168u24QF1GFflSnIr yAKW69cbgoH9XcLPITSkU2gYbbkG0GSOFE2q78w+mV3T8CP54NY34h2rXbDtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKsUkNUCx3t09wO37PGHqKz71PDEwHwYDVR0j BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5 NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3rzANBgkqhkiG 9w0BAQsFAAOCAQEAanD8eamXGiCsgMB8YHu9DySENECqJYWT52lkbPmBTCPFk9UZ 3i1DOcgTUBXDoqQE+msuyVaiHjbbI6yEDWV0m6zY8jVTTPem4uwxwYqen8M/sASC aG2vbQfBLjpvv2u5gG9AVc6JAVgNarWYPUKwSZCMKtlgHYpe0GrfuFzxgloK3dxB aKWhA0x0/gxjuJkK88Nyb1Xr9yfqqXe2yKxa5fnVDFPshhhnr6FJH3HtDDdGTbmd mKmQKYcMWn+POBzKYVMWwi8bG9I0p/o6ncHvUP5ZqNdlOtt8Gp39IFv4nJVC4tLG t1KbzC7HfFE4B1V8Ho3fERM5zZ+QaqUfM+EgyA== -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org