$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39322e302f32322d3234203d3e20313532373830.roa File: 3131302e3233322e39322e302f32322d3234203d3e20313532373830.roa (raw, json) Hash identifier: sbrsfjLLhqpKDojV+x0rC88PYw1ETAXgO9yziSiF7yw= Subject key identifier: C7:31:7F:52:23:7E:16:08:DA:D5:5D:9E:90:E0:52:7C:84:25:D5:19 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 70F0C1B8BC7BB3CEFDF3F795AC66DDE3170947B1 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39322e302f32322d3234203d3e20313532373830.roa Signing time: Wed 02 Oct 2024 08:26:19 +0000 ROA not before: Wed 02 Oct 2024 08:21:19 +0000 ROA not after: Wed 01 Oct 2025 08:26:19 +0000 asID: 152780 IP address blocks: 110.232.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:f0:c1:b8:bc:7b:b3:ce:fd:f3:f7:95:ac:66:dd:e3:17:09:47:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Oct 2 08:21:19 2024 GMT Not After : Oct 1 08:26:19 2025 GMT Subject: CN=C7317F52237E1608DAD55D9E90E0527C8425D519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1c:ec:92:66:f3:f8:bc:ee:a7:88:af:a9:5e: 34:da:9e:78:22:d7:8a:2b:89:c0:ec:2d:5c:f4:c9: 00:f8:6d:50:28:78:c5:11:74:39:8d:a7:19:25:67: ae:db:4c:44:30:f4:35:06:c9:9b:a1:42:d4:fa:91: 3e:b8:23:99:47:29:4e:3f:b1:e5:99:21:0e:8a:46: 86:d2:1c:d2:61:55:b4:29:cf:57:57:83:f6:a1:dc: c3:58:b2:b7:22:78:c8:a6:95:be:be:d9:ee:e8:88: a3:4e:a9:88:5d:ba:f0:05:09:c0:07:92:c1:61:ac: 0e:21:35:3c:58:7b:a4:25:0c:58:cf:e1:74:23:ec: 6d:5b:9f:94:05:c9:83:f5:3f:36:e4:1c:bc:90:b2: cb:35:b0:ac:08:c3:96:ce:97:92:8d:cf:ae:83:70: 01:af:63:12:64:52:68:59:32:41:07:c2:21:57:42: cd:b9:c9:91:fc:2a:2f:67:14:fd:00:59:08:05:ec: d5:3d:2e:a3:d3:2c:e8:29:37:3d:a1:60:ef:a3:f2: c6:b9:ef:da:e5:d3:41:95:86:00:6d:5b:d0:f8:21: 65:a4:23:c1:78:26:e2:d0:24:a4:1b:fa:f5:9f:69: fe:9a:75:72:14:bb:c7:67:99:97:cd:9d:01:aa:03: d3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:31:7F:52:23:7E:16:08:DA:D5:5D:9E:90:E0:52:7C:84:25:D5:19 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39322e302f32322d3234203d3e20313532373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.92.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:55:69:8e:e2:b2:b0:13:2e:57:fd:0a:17:75:07:28:2b:5f: a1:f3:ae:43:3d:d4:d8:97:e5:df:e3:83:3b:c3:73:50:37:be: 3c:6d:17:5a:d8:c2:e7:16:2a:fc:dc:33:43:1f:53:85:06:6d: bf:97:95:cd:b3:5f:d6:23:4f:68:d2:f0:82:84:1e:cc:bf:80: 5f:3a:b5:c6:88:7c:93:a8:32:a2:9a:5b:21:cd:41:01:26:9f: 42:4a:82:88:92:3f:cb:b9:c1:2e:0b:e3:41:26:1b:5a:c2:37: 01:9f:f4:ca:4b:fc:91:db:ce:6e:5c:db:07:f0:87:de:5f:2a: 5f:41:7d:7e:ab:ad:e0:e6:36:a9:a9:e8:46:d2:48:9f:e6:06: 71:05:a3:0f:4b:fc:de:b8:de:38:3a:40:ec:96:4f:b0:6b:0e: 65:f3:f1:fe:60:d1:61:27:7a:8c:e7:49:7b:59:59:8c:d9:f5: 54:74:b4:64:72:eb:9b:98:19:6a:29:84:68:42:38:8c:08:83: 4e:c1:7b:fd:96:06:07:77:ff:c9:50:4d:24:c4:78:ab:70:11: cc:e6:ac:fd:e9:0d:e7:65:ac:e4:ca:02:5f:d8:7d:fd:f6:f2: ed:8c:0e:67:5b:f9:7f:da:58:46:3f:b7:63:59:0b:82:28:80: 88:8a:e7:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcPDBuLx7s8798/eVrGbd4xcJR7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDEwMDIwODIxMTlaFw0yNTEwMDEwODI2MTlaMDMxMTAvBgNV BAMTKEM3MzE3RjUyMjM3RTE2MDhEQUQ1NUQ5RTkwRTA1MjdDODQyNUQ1MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0HOySZvP4vO6niK+pXjTanngi 14oricDsLVz0yQD4bVAoeMURdDmNpxklZ67bTEQw9DUGyZuhQtT6kT64I5lHKU4/ seWZIQ6KRobSHNJhVbQpz1dXg/ah3MNYsrcieMimlb6+2e7oiKNOqYhduvAFCcAH ksFhrA4hNTxYe6QlDFjP4XQj7G1bn5QFyYP1PzbkHLyQsss1sKwIw5bOl5KNz66D cAGvYxJkUmhZMkEHwiFXQs25yZH8Ki9nFP0AWQgF7NU9LqPTLOgpNz2hYO+j8sa5 79rl00GVhgBtW9D4IWWkI8F4JuLQJKQb+vWfaf6adXIUu8dnmZfNnQGqA9MhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxzF/UiN+Fgja1V2ekOBSfIQl1RkwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzOTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCbuhcMA0GCSqG SIb3DQEBCwUAA4IBAQBMVWmO4rKwEy5X/QoXdQcoK1+h865DPdTYl+Xf44M7w3NQ N748bRda2MLnFir83DNDH1OFBm2/l5XNs1/WI09o0vCChB7Mv4BfOrXGiHyTqDKi mlshzUEBJp9CSoKIkj/LucEuC+NBJhtawjcBn/TKS/yR285uXNsH8IfeXypfQX1+ q63g5japqehG0kif5gZxBaMPS/zeuN44OkDslk+waw5l8/H+YNFhJ3qM50l7WVmM 2fVUdLRkcuubmBlqKYRoQjiMCINOwXv9lgYHd//JUE0kxHircBHM5qz96Q3nZazk ygJf2H399vLtjA5nW/l/2lhGP7djWQuCKICIiudc -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org