$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38302e302f32322d3234203d3e203233363739.roa File: 3131302e3233322e38302e302f32322d3234203d3e203233363739.roa (raw, json) Hash identifier: ZmLiw3jlcWnAE1Mfxd3UjSwpbA9ipmUt17hLtp0MnNQ= Subject key identifier: 71:C3:7E:BD:2F:BB:4F:DC:8E:71:C3:04:A2:80:18:66:E1:EA:3A:B3 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 6DB1B5D1D22F7350195DD7D41CD31BFA267A5A36 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38302e302f32322d3234203d3e203233363739.roa Signing time: Fri 09 Aug 2024 10:02:24 +0000 ROA not before: Fri 09 Aug 2024 09:57:24 +0000 ROA not after: Fri 08 Aug 2025 10:02:24 +0000 asID: 23679 IP address blocks: 110.232.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b1:b5:d1:d2:2f:73:50:19:5d:d7:d4:1c:d3:1b:fa:26:7a:5a:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Aug 9 09:57:24 2024 GMT Not After : Aug 8 10:02:24 2025 GMT Subject: CN=71C37EBD2FBB4FDC8E71C304A2801866E1EA3AB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:73:57:fd:ba:06:fb:27:de:d1:78:cf:1b:aa: 38:c2:a0:af:7a:d1:c7:b3:7f:55:11:42:bb:17:ba: a4:58:e4:fe:e8:59:48:0f:34:d1:29:43:16:6d:41: 02:a0:91:1e:1b:cc:5b:47:63:d9:da:52:e7:92:ff: 7d:58:ad:c1:d5:af:f9:75:69:72:63:2f:57:79:6a: 85:c9:8e:fa:1f:d6:da:c6:2e:44:09:30:6b:9d:21: 9f:82:b1:ae:a3:32:86:c5:c4:15:96:56:77:bb:47: 38:0a:2c:7c:90:0c:1a:49:2e:0f:fb:c1:47:0e:ee: 22:de:55:e6:22:49:3d:10:9a:ca:97:d7:bd:8d:2f: 55:14:58:ec:a3:29:a8:b9:3f:77:4d:a3:8c:6b:3e: 3f:62:e2:e8:4f:21:e8:56:ba:16:9a:2a:a5:5a:40: cf:a6:44:42:86:1d:db:34:53:b6:15:b3:1a:5d:12: 0d:cc:ba:da:b6:72:5f:80:be:8d:8c:cc:0d:13:6e: 3b:9e:5b:7b:df:c8:52:f5:28:82:0f:b7:2e:85:8b: e1:75:60:5b:73:ed:f8:fd:bc:4f:18:f3:e5:a5:44: 99:c2:45:70:12:b8:f9:e1:87:45:90:8e:b8:00:fa: e1:c0:66:b9:47:d3:cc:b4:0c:cc:6c:d0:cd:c0:44: 36:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C3:7E:BD:2F:BB:4F:DC:8E:71:C3:04:A2:80:18:66:E1:EA:3A:B3 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38302e302f32322d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.80.0/22 Signature Algorithm: sha256WithRSAEncryption 40:a8:fb:b9:5a:6a:50:4e:e6:52:b0:25:8f:09:0c:bb:76:2e: f1:49:0a:f3:37:69:3b:bc:8b:e3:1d:dc:5f:f0:06:41:43:9b: 4e:67:14:75:2e:ab:a6:d7:ab:96:ea:ff:41:86:dd:c2:b0:2b: 29:14:06:67:01:4c:52:e7:95:fe:e9:12:81:2c:1c:7e:36:31: f7:2b:c4:f5:cb:11:06:ff:b7:33:c9:1e:73:e4:df:88:6f:6d: 78:f2:2e:89:9e:bf:32:0c:c1:32:86:b4:90:89:06:3d:c0:5c: 94:38:7f:6d:d8:56:4e:18:14:61:ae:f4:26:98:3b:40:7c:bf: 2c:bd:79:c0:0d:1e:69:93:43:0f:4b:ac:76:b8:23:c1:01:d1: 8a:2b:23:55:c1:34:f5:4f:c1:ac:83:98:f1:d3:ca:6a:28:7e: 8c:3f:98:01:b5:4a:59:3c:d5:92:49:a2:c8:d8:8b:86:51:4c: c7:ba:eb:93:a5:99:11:65:c6:22:9a:ba:5a:ac:fb:96:81:4f: 40:60:eb:29:91:44:8c:f2:4c:a8:c8:f9:2a:db:8d:f8:38:0c: cf:a1:b2:c7:c9:cd:fe:19:55:fc:90:18:29:cc:c5:b6:74:73: b8:5e:09:00:64:7b:5e:cb:b8:b4:11:2e:0f:4f:04:dc:75:35: 0e:4e:4b:14 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbbG10dIvc1AZXdfUHNMb+iZ6WjYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDA4MDkwOTU3MjRaFw0yNTA4MDgxMDAyMjRaMDMxMTAvBgNV BAMTKDcxQzM3RUJEMkZCQjRGREM4RTcxQzMwNEEyODAxODY2RTFFQTNBQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqc1f9ugb7J97ReM8bqjjCoK96 0cezf1URQrsXuqRY5P7oWUgPNNEpQxZtQQKgkR4bzFtHY9naUueS/31YrcHVr/l1 aXJjL1d5aoXJjvof1trGLkQJMGudIZ+Csa6jMobFxBWWVne7RzgKLHyQDBpJLg/7 wUcO7iLeVeYiST0QmsqX172NL1UUWOyjKai5P3dNo4xrPj9i4uhPIehWuhaaKqVa QM+mREKGHds0U7YVsxpdEg3Mutq2cl+Avo2MzA0TbjueW3vfyFL1KIIPty6Fi+F1 YFtz7fj9vE8Y8+WlRJnCRXASuPnhh0WQjrgA+uHAZrlH08y0DMxs0M3ARDbrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUccN+vS+7T9yOccMEooAYZuHqOrMwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzODMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAm7oUDANBgkqhkiG 9w0BAQsFAAOCAQEAQKj7uVpqUE7mUrAljwkMu3Yu8UkK8zdpO7yL4x3cX/AGQUOb TmcUdS6rpterlur/QYbdwrArKRQGZwFMUueV/ukSgSwcfjYx9yvE9csRBv+3M8ke c+TfiG9tePIuiZ6/MgzBMoa0kIkGPcBclDh/bdhWThgUYa70Jpg7QHy/LL15wA0e aZNDD0usdrgjwQHRiisjVcE09U/BrIOY8dPKaih+jD+YAbVKWTzVkkmiyNiLhlFM x7rrk6WZEWXGIpq6Wqz7loFPQGDrKZFEjPJMqMj5KtuN+DgMz6Gyx8nN/hlV/JAY KczFtnRzuF4JAGR7Xsu4tBEuD08E3HU1Dk5LFA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org