$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa File: 3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: /OZ7NLjdHZ1xMIU/xKRPTHQLffoun4HIExb95ESSXpE= Subject key identifier: 25:DA:E7:75:78:07:E0:10:14:7B:B4:E5:0F:DB:F9:FD:D2:0E:96:A1 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 3A3518C6758D9F828249B3957CCFB03D47A8764A Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa Signing time: Sat 10 Aug 2024 11:00:02 +0000 ROA not before: Sat 10 Aug 2024 10:55:02 +0000 ROA not after: Sat 09 Aug 2025 11:00:02 +0000 asID: 138841 IP address blocks: 202.162.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:35:18:c6:75:8d:9f:82:82:49:b3:95:7c:cf:b0:3d:47:a8:76:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Aug 10 10:55:02 2024 GMT Not After : Aug 9 11:00:02 2025 GMT Subject: CN=25DAE7757807E010147BB4E50FDBF9FDD20E96A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1f:7b:7f:33:4c:69:12:a3:d1:aa:88:73:65: d7:36:27:4b:5f:47:5c:b2:5a:74:90:43:1b:54:b8: ad:ad:ef:6f:5a:6f:f6:67:e8:b9:ce:98:97:7a:53: d2:a1:76:0c:41:61:10:22:20:5f:82:c1:08:ba:6b: 68:a2:87:48:4e:73:a3:6c:69:0d:d3:99:33:6a:5c: d6:a5:24:69:2d:fb:46:a7:a0:27:4f:41:60:ef:0a: 53:2a:57:78:7c:63:b9:74:be:df:b5:d6:dd:0c:2e: 88:23:1e:69:36:8f:88:1c:ed:e2:a3:74:06:c4:f9: 42:dd:92:ea:91:a4:62:86:66:d5:e1:6c:0c:1e:4f: 8a:58:bd:64:da:93:b4:d0:2c:ca:db:b1:6b:5d:b9: 1b:95:43:b6:1d:5b:98:f9:fb:c6:f9:1c:34:9d:60: 1c:00:88:e3:5e:b6:f0:eb:eb:99:43:7b:5e:a0:79: 0f:56:a9:9c:fb:7f:c8:e8:95:0a:08:5c:94:05:23: 9d:37:ca:f4:dd:b9:6d:d5:24:33:b3:eb:d5:47:dc: 2b:31:25:33:2e:ad:dc:cc:9c:62:93:22:d9:bb:9c: db:c0:98:14:91:80:1e:c2:70:ea:c7:3a:f4:a3:5f: 8d:0f:0d:e8:f6:85:e8:d3:7d:d4:a3:33:3b:52:be: be:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:DA:E7:75:78:07:E0:10:14:7B:B4:E5:0F:DB:F9:FD:D2:0E:96:A1 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.200.0/23 Signature Algorithm: sha256WithRSAEncryption 64:ce:ba:c2:04:34:47:2c:f7:d6:a9:40:1c:2a:23:91:30:18: 73:56:a2:c1:3d:95:36:c2:21:6f:52:04:c8:12:ed:de:d0:e0: 90:75:db:7d:6d:3e:08:26:de:4a:ba:c6:b0:82:73:66:5f:0e: f8:85:e1:22:65:63:e1:76:dd:84:84:b6:bf:61:4b:94:9f:41: 0c:46:b2:78:c0:1e:b4:2c:ff:ff:ea:f7:b1:5f:52:b2:1c:f9: 1c:bb:15:fb:40:30:14:5c:3e:9b:8b:fd:98:fc:cd:7a:a5:e2: 55:36:c7:29:be:47:c5:11:01:ff:12:d2:8e:15:2f:83:c9:ee: 11:63:82:54:ee:b3:4c:b9:f6:1b:6f:27:22:c5:18:eb:3b:86: 4e:ac:cd:22:16:bc:8e:64:59:4a:04:4e:72:0b:f9:92:65:a0: f0:a9:93:da:01:f2:b0:14:25:c5:0c:9a:4e:0f:e4:3d:12:20: 21:5e:56:6f:f5:5f:06:09:74:39:13:6f:9c:5b:0c:ec:9e:de: 64:68:f7:0b:b2:41:e9:ee:1d:3b:92:6c:ed:cb:46:9f:51:54: 8e:cd:fa:bd:6a:94:ee:70:e1:ed:2c:7a:b7:14:1e:40:17:41: 60:8b:17:34:1e:af:10:da:dd:64:97:8f:55:3b:c0:9b:a0:a5: a8:f6:b7:f3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOjUYxnWNn4KCSbOVfM+wPUeodkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDA4MTAxMDU1MDJaFw0yNTA4MDkxMTAwMDJaMDMxMTAvBgNV BAMTKDI1REFFNzc1NzgwN0UwMTAxNDdCQjRFNTBGREJGOUZERDIwRTk2QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNH3t/M0xpEqPRqohzZdc2J0tf R1yyWnSQQxtUuK2t729ab/Zn6LnOmJd6U9KhdgxBYRAiIF+CwQi6a2iih0hOc6Ns aQ3TmTNqXNalJGkt+0anoCdPQWDvClMqV3h8Y7l0vt+11t0MLogjHmk2j4gc7eKj dAbE+ULdkuqRpGKGZtXhbAweT4pYvWTak7TQLMrbsWtduRuVQ7YdW5j5+8b5HDSd YBwAiONetvDr65lDe16geQ9WqZz7f8jolQoIXJQFI503yvTduW3VJDOz69VH3Csx JTMurdzMnGKTItm7nNvAmBSRgB7CcOrHOvSjX40PDej2hejTfdSjMztSvr6nAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJdrndXgH4BAUe7TlD9v5/dIOlqEwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKosgwDQYJ KoZIhvcNAQELBQADggEBAGTOusIENEcs99apQBwqI5EwGHNWosE9lTbCIW9SBMgS 7d7Q4JB1231tPggm3kq6xrCCc2ZfDviF4SJlY+F23YSEtr9hS5SfQQxGsnjAHrQs ///q97FfUrIc+Ry7FftAMBRcPpuL/Zj8zXql4lU2xym+R8URAf8S0o4VL4PJ7hFj glTus0y59htvJyLFGOs7hk6szSIWvI5kWUoETnIL+ZJloPCpk9oB8rAUJcUMmk4P 5D0SICFeVm/1XwYJdDkTb5xbDOye3mRo9wuyQenuHTuSbO3LRp9RVI7N+r1qlO5w 4e0sercUHkAXQWCLFzQerxDa3WSXj1U7wJugpaj2t/M= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org