$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32332d3234203d3e20313430303331.roa File: 3230322e3136322e3230342e302f32332d3234203d3e20313430303331.roa (raw, json) Hash identifier: yDV3Qprz/ajGL0+kUB7hUpETudixN9frdkAYvKy7Q4g= Subject key identifier: 88:FB:53:0C:92:CC:DE:2C:44:F7:C4:1E:F8:AF:F8:82:76:E2:13:43 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 63E5BDEC746B1207B933A7AF5EEEE40FA2A2256E Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32332d3234203d3e20313430303331.roa Signing time: Fri 23 Aug 2024 06:00:02 +0000 ROA not before: Fri 23 Aug 2024 05:55:02 +0000 ROA not after: Fri 22 Aug 2025 06:00:02 +0000 asID: 140031 IP address blocks: 202.162.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e5:bd:ec:74:6b:12:07:b9:33:a7:af:5e:ee:e4:0f:a2:a2:25:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Aug 23 05:55:02 2024 GMT Not After : Aug 22 06:00:02 2025 GMT Subject: CN=88FB530C92CCDE2C44F7C41EF8AFF88276E21343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c0:25:8e:b2:1f:bf:6c:05:00:c7:50:6e:3a: 73:7a:3b:4a:70:ba:e0:72:e6:16:fd:96:ca:48:d5: 04:4d:92:0e:a2:a2:9c:a1:63:64:28:1d:7f:f3:bc: c5:95:d4:10:0a:c1:3b:6f:5c:37:9c:b5:14:8d:ab: 01:45:02:84:03:30:ed:50:41:75:85:bb:6c:d1:50: 6b:4b:30:e8:67:4c:ed:72:f3:aa:16:71:81:29:af: 24:d1:4a:30:ac:d7:c5:99:5c:98:62:96:3d:b3:e8: e7:9b:83:db:e5:b4:92:10:1e:96:9c:f1:2c:31:c0: f2:70:de:e2:f7:59:91:e7:7d:e5:9e:a4:3a:8d:90: e4:2d:1a:b9:b6:80:e3:2c:ff:48:b8:c4:48:50:86: a3:7a:f6:c3:5a:b7:c7:e9:62:f6:7c:1e:14:39:d6: f7:c8:d7:39:76:61:36:32:a5:8d:87:b6:23:e6:d6: 7e:b0:da:27:59:38:75:c7:50:af:26:23:34:19:ac: 80:69:a5:90:29:2a:51:26:96:45:9f:f4:62:37:c0: 92:5f:0f:4e:9e:fd:99:d1:96:a8:1c:3c:b1:b8:2c: 01:d8:d5:1d:92:5f:7b:95:76:e8:23:fa:25:39:69: 57:e6:01:d9:7c:da:9c:b4:f4:20:2b:a4:0c:af:b5: 40:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:FB:53:0C:92:CC:DE:2C:44:F7:C4:1E:F8:AF:F8:82:76:E2:13:43 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32332d3234203d3e20313430303331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.204.0/23 Signature Algorithm: sha256WithRSAEncryption 78:15:8c:78:be:c2:e3:7f:5f:52:2d:5d:31:31:07:5c:6a:6b: f1:12:bb:bc:e9:ac:2a:8c:e4:b8:3c:69:d2:4c:15:30:e9:41: 0b:cf:31:9f:cf:2f:9d:bc:65:2e:f2:8b:fd:9f:47:cb:91:9c: dd:39:77:34:a0:48:cd:76:49:fd:f8:ff:c7:72:9d:d6:be:11: fb:b5:32:72:5c:5c:2a:d2:56:db:62:14:5c:36:a4:1d:6c:65: 2b:5a:ab:e7:bd:49:5d:72:8f:82:a4:e6:da:db:80:e3:46:48: bd:9f:a7:cb:3b:37:e8:c4:d0:af:25:76:fe:ef:f2:33:69:ae: d2:be:67:2c:df:10:4b:f3:b7:ed:97:27:fc:c2:35:42:a7:1e: 6f:3f:e4:14:6a:52:cc:e7:f5:73:3b:94:a9:ed:20:09:47:b0: 38:c2:68:ae:c4:fd:7a:75:37:eb:e7:ac:13:99:e6:bd:90:10: c6:68:68:2b:b7:e9:50:12:93:65:ee:ba:62:6d:22:88:be:d8: b0:3b:06:40:57:d9:1f:0e:2f:fb:aa:f7:0d:8e:22:b5:ec:55: 69:46:43:ab:fa:a0:31:af:ef:ab:ae:4c:27:01:7f:72:73:4b: 6e:6f:3b:fd:ec:13:33:4a:c7:99:ca:ad:7a:c2:ac:73:fb:1a: c9:f5:92:e6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUY+W97HRrEge5M6evXu7kD6KiJW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDA4MjMwNTU1MDJaFw0yNTA4MjIwNjAwMDJaMDMxMTAvBgNV BAMTKDg4RkI1MzBDOTJDQ0RFMkM0NEY3QzQxRUY4QUZGODgyNzZFMjEzNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8wCWOsh+/bAUAx1BuOnN6O0pw uuBy5hb9lspI1QRNkg6iopyhY2QoHX/zvMWV1BAKwTtvXDectRSNqwFFAoQDMO1Q QXWFu2zRUGtLMOhnTO1y86oWcYEpryTRSjCs18WZXJhilj2z6Oebg9vltJIQHpac 8SwxwPJw3uL3WZHnfeWepDqNkOQtGrm2gOMs/0i4xEhQhqN69sNat8fpYvZ8HhQ5 1vfI1zl2YTYypY2HtiPm1n6w2idZOHXHUK8mIzQZrIBppZApKlEmlkWf9GI3wJJf D06e/ZnRlqgcPLG4LAHY1R2SX3uVdugj+iU5aVfmAdl82py09CArpAyvtUBLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiPtTDJLM3ixE98Qe+K/4gnbiE0MwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKoswwDQYJ KoZIhvcNAQELBQADggEBAHgVjHi+wuN/X1ItXTExB1xqa/ESu7zprCqM5Lg8adJM FTDpQQvPMZ/PL528ZS7yi/2fR8uRnN05dzSgSM12Sf34/8dynda+Efu1MnJcXCrS VttiFFw2pB1sZStaq+e9SV1yj4Kk5trbgONGSL2fp8s7N+jE0K8ldv7v8jNprtK+ ZyzfEEvzt+2XJ/zCNUKnHm8/5BRqUszn9XM7lKntIAlHsDjCaK7E/Xp1N+vnrBOZ 5r2QEMZoaCu36VASk2XuumJtIoi+2LA7BkBX2R8OL/uq9w2OIrXsVWlGQ6v6oDGv 76uuTCcBf3JzS25vO/3sEzNKx5nKrXrCrHP7Gsn1kuY= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org