$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS58552.roa File: AS58552.roa (raw, json) Hash identifier: MZoojIqcN+c7SmQuo2XmvprVkNtlihLiP1r/EcApeTY= Subject key identifier: 04:3C:AB:C9:62:92:ED:01:16:D5:E5:6B:E5:30:E4:75:AB:0D:14:1B Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F Certificate serial: 4237FB6D2FF85B66CB6EF356130EB9ABFC32DF32 Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS58552.roa Signing time: Tue 13 Feb 2024 07:00:00 +0000 ROA not before: Tue 13 Feb 2024 06:55:00 +0000 ROA not after: Tue 11 Feb 2025 07:00:00 +0000 asID: 58552 IP address blocks: 115.124.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 15:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:37:fb:6d:2f:f8:5b:66:cb:6e:f3:56:13:0e:b9:ab:fc:32:df:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F Validity Not Before: Feb 13 06:55:00 2024 GMT Not After : Feb 11 07:00:00 2025 GMT Subject: CN=043CABC96292ED0116D5E56BE530E475AB0D141B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2d:bd:62:34:47:3a:79:b6:33:c1:e6:6b:5c: ae:ec:c2:41:98:fd:1c:bf:0d:be:c9:89:01:8b:22: 29:10:c9:a1:5b:3d:7c:67:b8:64:e3:f4:73:e3:23: e4:14:cb:26:b1:63:57:4a:75:f9:13:93:c1:68:8f: 6e:a4:67:03:99:2b:35:9f:96:14:bb:ed:52:be:3a: ac:fa:7a:3d:95:01:56:33:6e:ce:04:e3:c9:39:9b: c7:a0:aa:01:41:9d:0c:18:49:50:bd:7f:11:1b:b8: 21:03:a0:69:11:83:cf:55:86:79:dc:d0:ca:22:54: 3f:63:39:41:16:25:66:db:f2:e4:67:7c:ff:2b:1c: 59:41:9b:e4:47:9a:65:b0:f3:f1:af:a1:e0:3f:b3: ef:c8:82:1f:a0:86:7d:d4:2a:58:4d:94:8c:f7:82: 7b:50:53:e2:e4:7f:92:22:42:ea:3d:fc:7d:36:5d: 9d:95:cc:96:d4:57:f4:5a:d8:6d:30:42:ba:43:ff: d0:64:00:d1:70:13:c1:fe:37:d6:0b:0a:68:7c:88: e2:58:7a:e5:66:16:6a:88:4d:72:19:87:40:14:6b: 9c:82:49:e5:32:7a:22:f0:56:d2:ec:6d:d0:11:79: d1:d9:ca:8c:0d:db:a7:fe:2c:74:5d:2e:2d:e7:23: 1f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:3C:AB:C9:62:92:ED:01:16:D5:E5:6B:E5:30:E4:75:AB:0D:14:1B X509v3 Authority Key Identifier: keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS58552.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.124.93.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:f2:9b:cd:45:2a:57:6c:42:4f:b5:a0:06:ec:c9:ba:b3:71: 85:75:c1:cf:ef:16:61:b8:ce:84:e5:a2:e4:55:ea:06:e2:4a: b0:72:28:5e:2d:93:ca:a4:3a:cd:f0:d7:e1:85:23:0c:72:03: 51:b5:e6:58:24:41:01:dc:3f:70:d8:a7:35:cb:1e:03:32:a3: 3a:8c:15:7b:c7:21:97:e9:e4:46:37:63:04:78:de:d0:b5:29: 81:8b:e2:ca:ce:d6:52:c4:12:4b:62:2b:bc:9b:02:97:e1:f8: f3:e8:41:17:31:90:3f:cb:0e:84:5c:30:bf:1c:66:53:f5:58: ed:5e:51:6d:13:d5:86:f8:26:cc:d6:d5:06:2f:96:f6:2a:2e: a3:ea:2d:df:3c:60:a3:40:b1:7d:8b:12:e2:9d:1a:d5:b0:c8: e6:20:c1:32:1b:9d:21:0e:61:a1:c2:8f:42:df:74:d8:b4:cf: 8f:cc:45:32:27:b3:5a:33:1e:b3:1f:bf:ca:e1:fe:3c:d7:0e: a9:31:67:02:77:a8:b7:fe:d9:34:48:86:0e:57:17:31:34:df: c6:b0:eb:9d:d1:a2:d8:f4:47:dd:f7:68:db:28:3a:76:56:87: 70:8a:d3:f4:85:e7:bd:79:cb:44:4a:10:3c:97:75:dc:30:a6: 50:d6:aa:eb -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUQjf7bS/4W2bLbvNWEw65q/wy3zIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZF N0FCQzE3RjAeFw0yNDAyMTMwNjU1MDBaFw0yNTAyMTEwNzAwMDBaMDMxMTAvBgNV BAMTKDA0M0NBQkM5NjI5MkVEMDExNkQ1RTU2QkU1MzBFNDc1QUIwRDE0MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Lb1iNEc6ebYzweZrXK7swkGY /Ry/Db7JiQGLIikQyaFbPXxnuGTj9HPjI+QUyyaxY1dKdfkTk8Foj26kZwOZKzWf lhS77VK+Oqz6ej2VAVYzbs4E48k5m8egqgFBnQwYSVC9fxEbuCEDoGkRg89Vhnnc 0MoiVD9jOUEWJWbb8uRnfP8rHFlBm+RHmmWw8/GvoeA/s+/Igh+ghn3UKlhNlIz3 gntQU+Lkf5IiQuo9/H02XZ2VzJbUV/Ra2G0wQrpD/9BkANFwE8H+N9YLCmh8iOJY euVmFmqITXIZh0AUa5yCSeUyeiLwVtLsbdARedHZyowN26f+LHRdLi3nIx9fAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQUBDyryWKS7QEW1eVr5TDkdasNFBswHwYDVR0j BBgwFoAUkWm5tlJs0UmE3eOkLiTdj+erwX8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0yMDc0YzU5ODA4OTgvMC85MTY5QjlCNjUy NkNEMTQ5ODREREUzQTQyRTI0REQ4RkU3QUJDMTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZFN0FC QzE3Ri5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby84OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0y MDc0YzU5ODA4OTgvMC9BUzU4NTUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAc3xdMA0GCSqGSIb3DQEB CwUAA4IBAQCf8pvNRSpXbEJPtaAG7Mm6s3GFdcHP7xZhuM6E5aLkVeoG4kqwcihe LZPKpDrN8NfhhSMMcgNRteZYJEEB3D9w2Kc1yx4DMqM6jBV7xyGX6eRGN2MEeN7Q tSmBi+LKztZSxBJLYiu8mwKX4fjz6EEXMZA/yw6EXDC/HGZT9VjtXlFtE9WG+CbM 1tUGL5b2Ki6j6i3fPGCjQLF9ixLinRrVsMjmIMEyG50hDmGhwo9C33TYtM+PzEUy J7NaMx6zH7/K4f481w6pMWcCd6i3/tk0SIYOVxcxNN/GsOud0aLY9Efd92jbKDp2 VodwitP0hee9ectEShA8l3XcMKZQ1qrr -----END CERTIFICATE-----Generated at Wed May 1 13:28:04 2024 by rpki-client on console-fra.rpki-client.org