$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37392e302f32342d3234203d3e20313338383431.roa File: 3131302e3233322e37392e302f32342d3234203d3e20313338383431.roa (raw, json) Hash identifier: U1cphPWqLVvMrdctibCIn6homV58q7ygCXByfPwIK80= Subject key identifier: 6C:F9:F9:A3:9E:BD:83:21:D3:6C:D4:79:EF:C1:5B:E1:52:E7:4C:56 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 0FE51E60EB391B8BEA8179CFA526C768C4AB28AA Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37392e302f32342d3234203d3e20313338383431.roa Signing time: Fri 23 Aug 2024 06:00:03 +0000 ROA not before: Fri 23 Aug 2024 05:55:03 +0000 ROA not after: Fri 22 Aug 2025 06:00:03 +0000 asID: 138841 IP address blocks: 110.232.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:e5:1e:60:eb:39:1b:8b:ea:81:79:cf:a5:26:c7:68:c4:ab:28:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Aug 23 05:55:03 2024 GMT Not After : Aug 22 06:00:03 2025 GMT Subject: CN=6CF9F9A39EBD8321D36CD479EFC15BE152E74C56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d5:d7:03:07:e7:2d:48:1f:6a:53:5f:05:bc: 52:74:35:5e:b7:f1:36:35:df:01:a5:82:03:3d:07: 4a:f6:ba:13:3e:8e:70:2f:0c:d3:d0:de:c6:d4:75: 1e:21:5e:47:a3:28:80:b7:c5:8e:77:52:bb:f7:04: e6:3a:d3:2b:ee:d7:cb:ab:92:f1:7f:9d:57:86:ef: 02:f6:47:be:03:9e:67:f0:dd:f8:ec:bb:9d:4c:ff: db:48:6d:71:24:37:87:73:b1:8f:9d:a6:56:ee:59: c7:69:01:09:6b:f9:51:77:cb:e2:60:18:2d:84:82: 20:1f:99:85:50:8c:af:b2:27:72:8d:d0:76:7c:54: f7:d0:e5:e0:89:83:62:8c:aa:f1:bd:82:c2:12:85: 61:4e:4e:37:39:60:77:0e:81:9d:4f:6e:21:a7:ab: 0d:b7:61:fc:02:00:9f:d3:d7:b7:5d:b9:42:06:47: 68:28:05:76:11:52:53:e4:d1:be:72:d4:44:ea:f1: 79:3b:51:d8:dc:d9:18:57:69:b4:54:ae:1b:04:68: bc:d1:bc:58:43:82:57:dd:dd:a9:4d:68:ed:8e:ee: 9c:51:34:9d:f4:5b:54:be:d1:b2:35:f1:e6:8a:7e: ea:c5:1a:d9:ca:c9:08:45:07:f4:34:02:fe:b1:1a: 6d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F9:F9:A3:9E:BD:83:21:D3:6C:D4:79:EF:C1:5B:E1:52:E7:4C:56 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37392e302f32342d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.79.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:0a:42:4c:0f:3c:90:dc:d6:f2:8f:44:45:5e:3a:6f:69:c2: b5:f6:22:e9:4f:1a:65:e6:3f:23:ee:36:df:fa:64:63:86:30: ae:7f:ac:40:b1:79:d1:70:33:1b:b4:d6:59:90:ce:ae:21:35: c0:98:7d:c3:d5:7d:e7:cf:da:f8:86:38:16:f6:8d:53:24:bc: 7c:6b:c9:17:1e:b1:70:00:db:b4:9e:2c:95:d2:a0:76:fa:f7: ef:8d:68:8d:6d:42:c7:3c:0d:42:40:0f:b1:34:bc:79:51:08: 46:0b:84:9d:29:72:61:50:b6:2b:50:d3:e7:43:30:36:3e:de: 99:b1:a2:f3:07:9d:4c:67:27:e8:24:af:be:9a:a7:b6:56:88: e0:63:15:33:45:ea:80:84:05:59:0b:96:c9:f5:d0:07:26:45: 72:ff:ef:04:31:d4:1f:4f:86:72:77:9d:69:7a:3c:a7:2c:91: 98:0a:19:7f:84:07:c3:8b:e7:13:89:1f:75:5c:43:c3:74:f5: 8e:30:87:e0:6b:ca:07:87:e9:e2:70:e2:83:53:4a:24:4b:4d: 5e:cd:1d:84:43:11:4e:a0:63:59:cf:40:67:6d:54:73:e8:90: 30:82:5f:b6:11:11:8f:e0:bc:f8:c4:81:9c:a8:09:8f:fc:47: 03:9e:e0:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD+UeYOs5G4vqgXnPpSbHaMSrKKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDA4MjMwNTU1MDNaFw0yNTA4MjIwNjAwMDNaMDMxMTAvBgNV BAMTKDZDRjlGOUEzOUVCRDgzMjFEMzZDRDQ3OUVGQzE1QkUxNTJFNzRDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS1dcDB+ctSB9qU18FvFJ0NV63 8TY13wGlggM9B0r2uhM+jnAvDNPQ3sbUdR4hXkejKIC3xY53Urv3BOY60yvu18ur kvF/nVeG7wL2R74Dnmfw3fjsu51M/9tIbXEkN4dzsY+dplbuWcdpAQlr+VF3y+Jg GC2EgiAfmYVQjK+yJ3KN0HZ8VPfQ5eCJg2KMqvG9gsIShWFOTjc5YHcOgZ1PbiGn qw23YfwCAJ/T17dduUIGR2goBXYRUlPk0b5y1ETq8Xk7Udjc2RhXabRUrhsEaLzR vFhDglfd3alNaO2O7pxRNJ30W1S+0bI18eaKfurFGtnKyQhFB/Q0Av6xGm2xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbPn5o569gyHTbNR578Fb4VLnTFYwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbuhPMA0GCSqG SIb3DQEBCwUAA4IBAQAbCkJMDzyQ3Nbyj0RFXjpvacK19iLpTxpl5j8j7jbf+mRj hjCuf6xAsXnRcDMbtNZZkM6uITXAmH3D1X3nz9r4hjgW9o1TJLx8a8kXHrFwANu0 niyV0qB2+vfvjWiNbULHPA1CQA+xNLx5UQhGC4SdKXJhULYrUNPnQzA2Pt6ZsaLz B51MZyfoJK++mqe2VojgYxUzReqAhAVZC5bJ9dAHJkVy/+8EMdQfT4Zyd51pejyn LJGYChl/hAfDi+cTiR91XEPDdPWOMIfga8oHh+nicOKDU0okS01ezR2EQxFOoGNZ z0BnbVRz6JAwgl+2ERGP4Lz4xIGcqAmP/EcDnuCS -----END CERTIFICATE-----Generated at Sun Apr 6 15:00:26 2025 by rpki-client