$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230362e302f32332d3234203d3e20313338383431.roa File: 3230322e3136322e3230362e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: pdgM8eglKbgpBqz5UfpLi4SKnrXytBJvET22ereoA3A= Subject key identifier: D6:0D:B6:7A:F6:22:9B:FD:E5:A4:6C:43:12:F5:C4:2F:7C:CA:43:9F Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 647959DE24D8444BE3177B8942B11DEDE814E447 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230362e302f32332d3234203d3e20313338383431.roa Signing time: Fri 23 Aug 2024 06:00:05 +0000 ROA not before: Fri 23 Aug 2024 05:55:05 +0000 ROA not after: Fri 22 Aug 2025 06:00:05 +0000 asID: 138841 IP address blocks: 202.162.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:79:59:de:24:d8:44:4b:e3:17:7b:89:42:b1:1d:ed:e8:14:e4:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Aug 23 05:55:05 2024 GMT Not After : Aug 22 06:00:05 2025 GMT Subject: CN=D60DB67AF6229BFDE5A46C4312F5C42F7CCA439F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:88:c3:76:e1:54:ff:86:45:08:c5:fb:8f:41: 25:65:d3:3d:6b:83:cb:c1:f5:31:cd:3e:f9:ec:a6: 29:2b:22:51:5d:36:ae:ec:95:e0:79:f6:fd:b0:5c: d6:fd:58:79:8a:b8:29:ff:9a:e5:25:48:28:0e:ea: 7b:82:4f:16:b2:ae:1f:a9:22:1c:61:63:93:cd:a0: 05:74:79:30:ee:03:b0:bc:ad:73:56:40:e4:e3:93: ce:a0:31:b6:bb:3f:71:fb:b0:17:3a:f3:4b:d9:ac: 33:8c:61:02:3f:61:b5:83:82:37:d2:4c:26:b5:bb: d4:a8:03:a2:a1:41:d0:87:5b:2e:c2:a5:c1:37:b6: 23:b2:c0:be:53:10:b1:99:33:34:52:dd:68:81:ca: 5e:d4:cf:cc:ba:5e:1f:7f:87:98:22:3d:d5:a6:90: f0:6a:29:12:55:4c:7b:f8:ed:cc:35:1f:2c:81:1e: 3e:fb:e8:8d:75:06:7e:05:8f:f5:81:d9:e0:03:74: a9:a6:75:f3:96:91:fd:13:f9:e4:a3:89:64:92:68: 2f:74:30:04:e9:9d:4e:e7:50:e5:55:1d:27:15:e7: bd:72:8a:ab:d7:47:9c:4b:0c:0e:6e:79:8f:34:25: 71:82:47:37:c4:3a:12:6c:3c:b9:06:26:3e:97:bc: 02:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0D:B6:7A:F6:22:9B:FD:E5:A4:6C:43:12:F5:C4:2F:7C:CA:43:9F X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230362e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.206.0/23 Signature Algorithm: sha256WithRSAEncryption cc:ac:f2:c2:da:6d:6f:d8:09:2b:04:3e:66:10:37:21:3f:ab: de:68:09:67:f6:7e:3f:85:99:0e:86:db:15:ee:07:78:82:7b: 5a:34:5b:d4:52:b1:3d:8a:e8:ac:88:85:49:77:e4:a2:3d:d1: 40:59:f8:3d:26:1c:d2:ee:1f:66:8d:2c:02:dd:38:4b:46:59: 8a:d7:9f:01:d4:65:72:57:c1:42:fa:50:ce:8c:92:19:75:7e: 4d:35:e5:8c:b8:10:32:5a:6f:cf:d7:88:7e:66:12:a5:60:e8: 43:fc:21:f2:5f:0e:fc:9f:6b:c5:c2:99:58:0e:89:1f:68:4a: c8:c1:3d:b3:08:fe:57:67:29:e8:e1:09:70:a0:5b:3c:13:d2: a6:57:4e:35:5b:f7:1c:07:33:2e:f9:22:9e:5b:f1:4c:af:11: 7c:42:f4:e2:56:3c:15:fe:38:9f:70:9b:a0:06:3c:73:e5:79: 76:bb:b0:e0:4d:92:0e:5d:ab:a9:ca:27:e1:0e:77:72:ad:6f: 8c:51:bf:ff:68:d6:03:4a:69:76:57:cd:39:56:f2:ab:ec:f9: a0:b9:1f:a7:60:dd:3a:d3:60:17:7e:b2:f8:57:c0:c1:1b:45: 23:dd:47:ec:69:11:36:cc:97:ec:32:7b:3e:27:9e:40:2e:06: ad:ac:8a:3d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZHlZ3iTYREvjF3uJQrEd7egU5EcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDA4MjMwNTU1MDVaFw0yNTA4MjIwNjAwMDVaMDMxMTAvBgNV BAMTKEQ2MERCNjdBRjYyMjlCRkRFNUE0NkM0MzEyRjVDNDJGN0NDQTQzOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9iMN24VT/hkUIxfuPQSVl0z1r g8vB9THNPvnspikrIlFdNq7sleB59v2wXNb9WHmKuCn/muUlSCgO6nuCTxayrh+p IhxhY5PNoAV0eTDuA7C8rXNWQOTjk86gMba7P3H7sBc680vZrDOMYQI/YbWDgjfS TCa1u9SoA6KhQdCHWy7CpcE3tiOywL5TELGZMzRS3WiByl7Uz8y6Xh9/h5giPdWm kPBqKRJVTHv47cw1HyyBHj776I11Bn4Fj/WB2eADdKmmdfOWkf0T+eSjiWSSaC90 MATpnU7nUOVVHScV571yiqvXR5xLDA5ueY80JXGCRzfEOhJsPLkGJj6XvAKbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1g22evYim/3lpGxDEvXEL3zKQ58wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKos4wDQYJ KoZIhvcNAQELBQADggEBAMys8sLabW/YCSsEPmYQNyE/q95oCWf2fj+FmQ6G2xXu B3iCe1o0W9RSsT2K6KyIhUl35KI90UBZ+D0mHNLuH2aNLALdOEtGWYrXnwHUZXJX wUL6UM6Mkhl1fk015Yy4EDJab8/XiH5mEqVg6EP8IfJfDvyfa8XCmVgOiR9oSsjB PbMI/ldnKejhCXCgWzwT0qZXTjVb9xwHMy75Ip5b8UyvEXxC9OJWPBX+OJ9wm6AG PHPleXa7sOBNkg5dq6nKJ+EOd3Ktb4xRv/9o1gNKaXZXzTlW8qvs+aC5H6dg3TrT YBd+svhXwMEbRSPdR+xpETbMl+wyez4nnkAuBq2sij0= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org