$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa File: 3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: 9agyltCdnneW78fueDN7KrLzw6yZsxjQ6RzL5q9Irro= Subject key identifier: 83:46:CE:81:DF:E9:B4:F3:EB:28:89:1B:AC:19:6B:AB:83:4B:84:7E Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 39B139A3B00D70273ADE13861F7260042142C150 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa Signing time: Fri 23 Aug 2024 06:00:04 +0000 ROA not before: Fri 23 Aug 2024 05:55:04 +0000 ROA not after: Fri 22 Aug 2025 06:00:04 +0000 asID: 138841 IP address blocks: 110.232.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:b1:39:a3:b0:0d:70:27:3a:de:13:86:1f:72:60:04:21:42:c1:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Aug 23 05:55:04 2024 GMT Not After : Aug 22 06:00:04 2025 GMT Subject: CN=8346CE81DFE9B4F3EB28891BAC196BAB834B847E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e4:0e:62:99:43:b1:3f:08:cf:52:c5:f1:44: 4b:bf:f4:70:63:01:70:d9:74:3e:7b:9f:7d:64:20: 02:0d:c6:ea:af:7a:f9:36:8b:d2:00:15:a5:11:7f: 95:05:7d:18:d0:e7:64:37:55:00:75:80:7d:9e:24: ba:e2:70:fa:fb:9e:cb:5a:81:5d:21:59:8a:c8:1f: 8f:7a:06:3d:84:9f:8a:9c:78:d7:ff:dd:14:4a:60: 6a:cf:4f:56:32:01:b1:7b:53:a9:90:c2:f5:7c:f9: 1c:f8:ee:54:b0:2c:1c:1d:20:a3:cf:96:69:47:f6: e9:c8:85:f7:68:e8:67:ee:49:78:bc:2f:e1:85:76: de:d2:c0:e0:f3:21:9e:db:4b:97:2c:6c:5b:36:ad: 72:1a:e4:74:d0:76:71:96:67:b5:f5:8d:54:f3:a2: e7:89:17:65:e3:73:43:55:de:52:ce:53:4a:1e:84: 1f:b6:ba:d4:f1:d2:39:ec:eb:a5:b7:a1:7a:ef:ec: e7:ba:5a:25:95:8b:d4:9b:ea:fd:a4:5a:21:18:cf: 67:59:77:36:ab:0b:84:88:a4:06:2d:80:76:8d:8a: 49:dc:8c:9c:71:b8:c4:0b:e1:35:c1:63:c6:53:27: 32:c4:73:ee:43:9a:c7:e0:48:1c:19:11:2f:04:f0: 5c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:46:CE:81:DF:E9:B4:F3:EB:28:89:1B:AC:19:6B:AB:83:4B:84:7E X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.76.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:43:04:14:3a:8a:fb:46:90:75:b1:69:9e:1a:4f:ef:35:fc: 32:af:2c:ce:9f:d8:c6:85:d4:c0:12:8c:1b:7c:09:70:b2:4c: d0:26:c1:83:b6:4a:20:26:10:62:b1:e8:53:43:e6:80:ea:57: 65:81:e3:96:d3:3a:13:83:bf:48:be:f2:c0:6e:16:51:0a:a2: 92:68:fe:02:29:9f:14:5a:52:69:1e:8d:39:51:66:c9:96:42: 48:09:a3:52:fb:33:45:e7:e3:b8:a8:41:63:5d:07:48:f0:7a: bc:50:c8:23:1c:7d:e9:ce:d3:4a:a3:1f:c1:db:27:d5:94:31: 1e:44:17:6c:9b:bd:b8:36:02:cc:c4:33:91:af:bf:ad:bd:c8: 70:20:16:b6:fb:41:85:ea:9c:77:99:64:96:a8:a3:4b:37:f9: 31:f2:87:2e:77:17:c0:8d:ec:0d:61:2f:ef:9c:63:80:a0:bd: 55:48:ad:be:7c:23:1e:88:3f:a8:6b:71:65:d9:3e:4b:23:d6: 2e:5f:dc:41:22:38:7b:00:81:9e:05:06:04:b0:c3:13:14:2a: 4f:df:8a:5e:75:57:8b:b9:b7:28:af:4a:a0:d2:9c:49:26:a1: 54:87:48:f3:c0:79:ca:7f:70:91:b1:ca:2f:b1:c8:bb:d9:25: 15:5c:95:e3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUObE5o7ANcCc63hOGH3JgBCFCwVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDA4MjMwNTU1MDRaFw0yNTA4MjIwNjAwMDRaMDMxMTAvBgNV BAMTKDgzNDZDRTgxREZFOUI0RjNFQjI4ODkxQkFDMTk2QkFCODM0Qjg0N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/5A5imUOxPwjPUsXxREu/9HBj AXDZdD57n31kIAINxuqvevk2i9IAFaURf5UFfRjQ52Q3VQB1gH2eJLricPr7nsta gV0hWYrIH496Bj2En4qceNf/3RRKYGrPT1YyAbF7U6mQwvV8+Rz47lSwLBwdIKPP lmlH9unIhfdo6GfuSXi8L+GFdt7SwODzIZ7bS5csbFs2rXIa5HTQdnGWZ7X1jVTz oueJF2Xjc0NV3lLOU0oehB+2utTx0jns66W3oXrv7Oe6WiWVi9Sb6v2kWiEYz2dZ dzarC4SIpAYtgHaNikncjJxxuMQL4TXBY8ZTJzLEc+5DmsfgSBwZES8E8FzpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUg0bOgd/ptPPrKIkbrBlrq4NLhH4wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzNzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbuhMMA0GCSqG SIb3DQEBCwUAA4IBAQCcQwQUOor7RpB1sWmeGk/vNfwyryzOn9jGhdTAEowbfAlw skzQJsGDtkogJhBisehTQ+aA6ldlgeOW0zoTg79IvvLAbhZRCqKSaP4CKZ8UWlJp Ho05UWbJlkJICaNS+zNF5+O4qEFjXQdI8Hq8UMgjHH3pztNKox/B2yfVlDEeRBds m724NgLMxDORr7+tvchwIBa2+0GF6px3mWSWqKNLN/kx8ocudxfAjewNYS/vnGOA oL1VSK2+fCMeiD+oa3Fl2T5LI9YuX9xBIjh7AIGeBQYEsMMTFCpP34pedVeLubco r0qg0pxJJqFUh0jzwHnKf3CRscovsci72SUVXJXj -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org