$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131322e3130392e31362e302f32312d3234203d3e203234353231.roa File: 3131322e3130392e31362e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: Ojj2tW470jKzWw7OP1+m+KROLb35B3K703uxZd/oKGA= Subject key identifier: FA:54:58:D3:8E:43:94:AC:17:C3:AA:4C:AC:5B:39:B1:35:9B:19:1A Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 743E5ABA298AA1D16896449A32165BC3C5983202 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131322e3130392e31362e302f32312d3234203d3e203234353231.roa Signing time: Mon 31 Jul 2023 00:05:44 +0000 ROA not before: Mon 31 Jul 2023 00:00:44 +0000 ROA not after: Mon 29 Jul 2024 00:05:44 +0000 asID: 24521 IP address blocks: 112.109.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 20:21:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:3e:5a:ba:29:8a:a1:d1:68:96:44:9a:32:16:5b:c3:c5:98:32:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jul 31 00:00:44 2023 GMT Not After : Jul 29 00:05:44 2024 GMT Subject: CN=FA5458D38E4394AC17C3AA4CAC5B39B1359B191A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a8:aa:16:c9:85:ff:f9:99:0a:e1:74:58:3c: 12:31:59:7c:29:18:78:ca:18:2c:60:26:a1:cd:08: c3:11:22:c4:af:9b:de:c2:79:52:9a:0a:ed:4e:c9: 1b:3d:77:9b:6c:6c:24:8c:04:02:7f:12:a6:b3:4a: b2:89:06:21:82:ea:f5:6e:b9:d4:58:2b:33:fc:49: 6c:56:6f:57:4c:19:26:8f:24:d7:ba:6a:9b:5b:ff: ad:a4:7d:a0:c4:bf:a8:e0:0a:8b:03:e5:83:06:08: 61:2c:e9:b6:44:94:c9:b6:59:1b:b7:41:87:5a:bb: 26:e8:3f:d1:0e:8e:0e:5e:1a:87:d9:6d:67:45:23: 29:2c:64:d7:b3:fc:a3:24:b8:ba:0e:dc:cd:19:75: fa:e4:a0:8f:ce:8d:cb:90:7f:1e:27:ff:ac:a6:78: 22:07:6b:72:6e:b4:c6:e1:9c:c0:a3:dd:4e:10:f9: c3:d2:e4:c0:fa:3a:04:eb:7e:c2:a5:53:01:15:37: 0b:d8:26:7c:08:49:cf:4e:48:3b:7a:63:65:28:a8: 3a:b3:c6:3e:3e:8b:78:8b:42:8f:97:9c:55:18:4b: 3f:25:91:c2:79:c7:12:e3:bb:da:d4:cb:f4:86:ed: 11:57:bb:60:53:68:d8:2f:d6:f5:7e:d9:c4:0d:36: fa:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:54:58:D3:8E:43:94:AC:17:C3:AA:4C:AC:5B:39:B1:35:9B:19:1A X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131322e3130392e31362e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.109.16.0/21 Signature Algorithm: sha256WithRSAEncryption 5d:1e:c1:17:b4:b8:da:b8:38:b2:9e:82:d5:bd:19:5d:5c:95: d7:38:07:e9:89:c3:2b:bb:44:4f:4a:ed:fd:71:dc:b5:bf:75: 78:57:51:bb:2b:38:07:71:c8:f3:bc:49:43:b4:25:37:af:4e: d4:54:dd:16:37:e7:0f:fb:b5:3c:a4:12:b1:f5:ab:7f:52:ca: cd:1b:d2:28:75:f6:c5:60:3c:51:e1:ad:1d:1e:51:7a:cb:46: 52:6e:35:1b:dc:5c:3e:f3:2a:76:8f:bf:49:77:76:65:06:e4: 52:0a:b4:a2:32:8a:75:45:fa:1c:65:c5:a3:d5:1e:0b:45:97: b2:c3:5e:8e:2b:07:18:4a:51:26:af:27:a5:6a:19:8f:70:90: 0d:c5:c1:46:f5:1e:ea:01:b9:ec:60:71:a9:92:ab:af:3c:3c: 87:7f:9a:c8:cf:08:7a:d4:4c:b9:bb:a7:14:02:78:56:c6:33: f8:02:27:f8:98:21:e8:f7:45:a2:5a:54:f0:8b:7d:03:c7:0f: b4:4b:72:a1:57:93:cd:9b:b3:e1:15:6a:d6:02:b7:02:58:6b: 56:16:a9:28:0c:d4:b1:9f:25:19:c3:7b:23:d9:23:10:12:f4: 6d:95:7b:3d:ae:b5:65:21:aa:a9:42:05:10:93:4c:b7:8c:bf: a4:13:82:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdD5auimKodFolkSaMhZbw8WYMgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yMzA3MzEwMDAwNDRaFw0yNDA3MjkwMDA1NDRaMDMxMTAvBgNV BAMTKEZBNTQ1OEQzOEU0Mzk0QUMxN0MzQUE0Q0FDNUIzOUIxMzU5QjE5MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDqKoWyYX/+ZkK4XRYPBIxWXwp GHjKGCxgJqHNCMMRIsSvm97CeVKaCu1OyRs9d5tsbCSMBAJ/EqazSrKJBiGC6vVu udRYKzP8SWxWb1dMGSaPJNe6aptb/62kfaDEv6jgCosD5YMGCGEs6bZElMm2WRu3 QYdauyboP9EOjg5eGofZbWdFIyksZNez/KMkuLoO3M0ZdfrkoI/OjcuQfx4n/6ym eCIHa3JutMbhnMCj3U4Q+cPS5MD6OgTrfsKlUwEVNwvYJnwISc9OSDt6Y2UoqDqz xj4+i3iLQo+XnFUYSz8lkcJ5xxLju9rUy/SG7RFXu2BTaNgv1vV+2cQNNvoLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+lRY045DlKwXw6pMrFs5sTWbGRowHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzEzMjJlMzEzMDM5MmUzMTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3BtEDANBgkqhkiG 9w0BAQsFAAOCAQEAXR7BF7S42rg4sp6C1b0ZXVyV1zgH6YnDK7tET0rt/XHctb91 eFdRuys4B3HI87xJQ7QlN69O1FTdFjfnD/u1PKQSsfWrf1LKzRvSKHX2xWA8UeGt HR5RestGUm41G9xcPvMqdo+/SXd2ZQbkUgq0ojKKdUX6HGXFo9UeC0WXssNejisH GEpRJq8npWoZj3CQDcXBRvUe6gG57GBxqZKrrzw8h3+ayM8IetRMubunFAJ4VsYz +AIn+Jgh6PdFolpU8It9A8cPtEtyoVeTzZuz4RVq1gK3AlhrVhapKAzUsZ8lGcN7 I9kjEBL0bZV7Pa61ZSGqqUIFEJNMt4y/pBOC4Q== -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:48 2024 by rpki-client on console-ams.rpki-client.org