$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131392e38322e3234302e302f32312d3234203d3e203234353231.roa File: 3131392e38322e3234302e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: ESwreuywVu+3zFW3NzTkx6Ms1wMPE47eV1j9PZlfxWU= Subject key identifier: BE:2E:27:C8:4A:26:4F:76:30:AE:EF:06:54:8B:81:D1:9F:32:7A:97 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 3DA176D742BF81077BA57B4FEBAA00F33EACC566 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131392e38322e3234302e302f32312d3234203d3e203234353231.roa Signing time: Mon 31 Jul 2023 00:05:45 +0000 ROA not before: Mon 31 Jul 2023 00:00:45 +0000 ROA not after: Mon 29 Jul 2024 00:05:45 +0000 asID: 24521 IP address blocks: 119.82.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a1:76:d7:42:bf:81:07:7b:a5:7b:4f:eb:aa:00:f3:3e:ac:c5:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jul 31 00:00:45 2023 GMT Not After : Jul 29 00:05:45 2024 GMT Subject: CN=BE2E27C84A264F7630AEEF06548B81D19F327A97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:73:6f:a3:2a:c2:68:90:6a:43:4b:e3:cb:3c: 0d:36:c8:0e:40:52:de:0f:53:06:53:64:e8:67:77: de:80:5b:f4:d8:54:80:b8:e3:a7:a8:5c:1d:23:09: 03:42:07:dc:1d:29:2a:89:6c:a1:58:f4:78:72:1f: d5:32:2d:9c:b6:bc:c3:ad:bf:a9:19:f2:75:f6:fc: 66:b6:3f:25:15:3f:14:a0:9a:d3:45:61:a1:70:37: af:5e:88:7d:25:ff:98:a5:95:4b:c8:82:cf:bb:56: 49:6f:f0:10:75:6e:ea:41:e1:4f:c3:26:4c:73:ef: 41:5e:6b:1e:1b:b3:ac:57:73:7d:ba:ff:92:69:e1: cb:23:9a:18:63:a9:08:6e:b1:ef:10:38:17:81:fe: 4c:36:9e:d9:ae:b7:04:f3:f8:c7:55:c7:7b:fe:5f: 2d:33:87:25:02:50:04:46:06:69:ab:b6:a1:31:10: d4:c1:3f:52:96:86:06:b2:98:9c:5d:76:8c:c0:39: bb:58:75:42:82:9a:c9:7a:99:e2:8c:bb:c2:84:81: 5f:6e:be:70:4b:42:dc:9f:ac:a8:4e:9d:4e:32:0f: e6:3e:4b:88:dc:25:c4:19:b9:a9:f4:1a:29:50:15: 61:34:d8:fc:1d:b8:6d:8a:d4:ce:b5:f2:4c:54:a8: a7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:2E:27:C8:4A:26:4F:76:30:AE:EF:06:54:8B:81:D1:9F:32:7A:97 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3131392e38322e3234302e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.82.240.0/21 Signature Algorithm: sha256WithRSAEncryption 83:20:df:c4:74:b6:08:c9:8d:e6:2c:77:82:b9:a0:85:ae:19: 88:58:ea:99:88:33:54:0a:09:b2:60:63:06:03:1c:08:54:c1: 4a:ed:c4:e3:27:65:07:15:71:94:3c:a1:a5:1d:6e:08:b0:72: d0:fa:9a:f1:36:98:e6:be:1c:a4:b6:d5:fe:e6:75:5d:fb:77: 78:3e:71:30:e3:f8:f0:cb:fb:ed:4f:76:17:fc:f6:95:ad:6f: b0:2e:49:22:40:e5:76:c3:81:40:1c:b1:9f:08:6d:1a:27:8f: 91:2a:7c:2c:e7:65:cd:cd:15:2a:65:31:18:fe:0c:4a:34:88: 8a:71:79:eb:25:76:f4:e7:c5:ce:d6:58:57:ab:90:32:fd:0b: b2:39:f1:91:b6:c0:33:a5:0f:9b:73:d8:6b:f3:40:1d:de:5c: 97:70:cc:1c:bc:82:86:c1:0b:cb:6e:88:42:77:77:11:8d:d9: 02:eb:03:a0:65:8f:6b:d3:4f:75:a0:7e:fd:65:4a:0a:1a:db: cd:1a:f3:75:c5:7f:99:59:71:db:b5:12:da:47:8b:6b:ca:a1: 73:cf:85:eb:73:a4:e4:43:f7:c3:1d:e1:ab:35:9d:fa:bf:70: 31:42:6e:d2:06:43:76:f6:dc:1c:5b:81:92:b1:c1:3c:ca:51: fd:6b:43:fc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPaF210K/gQd7pXtP66oA8z6sxWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yMzA3MzEwMDAwNDVaFw0yNDA3MjkwMDA1NDVaMDMxMTAvBgNV BAMTKEJFMkUyN0M4NEEyNjRGNzYzMEFFRUYwNjU0OEI4MUQxOUYzMjdBOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChc2+jKsJokGpDS+PLPA02yA5A Ut4PUwZTZOhnd96AW/TYVIC446eoXB0jCQNCB9wdKSqJbKFY9HhyH9UyLZy2vMOt v6kZ8nX2/Ga2PyUVPxSgmtNFYaFwN69eiH0l/5illUvIgs+7Vklv8BB1bupB4U/D Jkxz70Feax4bs6xXc326/5Jp4csjmhhjqQhuse8QOBeB/kw2ntmutwTz+MdVx3v+ Xy0zhyUCUARGBmmrtqExENTBP1KWhgaymJxddozAObtYdUKCmsl6meKMu8KEgV9u vnBLQtyfrKhOnU4yD+Y+S4jcJcQZuan0GilQFWE02PwduG2K1M618kxUqKdlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvi4nyEomT3Ywru8GVIuB0Z8yepcwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzEzOTJlMzgzMjJlMzIzNDMwMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3dS8DANBgkqhkiG 9w0BAQsFAAOCAQEAgyDfxHS2CMmN5ix3grmgha4ZiFjqmYgzVAoJsmBjBgMcCFTB Su3E4ydlBxVxlDyhpR1uCLBy0Pqa8TaY5r4cpLbV/uZ1Xft3eD5xMOP48Mv77U92 F/z2la1vsC5JIkDldsOBQByxnwhtGiePkSp8LOdlzc0VKmUxGP4MSjSIinF56yV2 9OfFztZYV6uQMv0LsjnxkbbAM6UPm3PYa/NAHd5cl3DMHLyChsELy26IQnd3EY3Z AusDoGWPa9NPdaB+/WVKChrbzRrzdcV/mVlx27US2keLa8qhc8+F63Ok5EP3wx3h qzWd+r9wMUJu0gZDdvbcHFuBkrHBPMpR/WtD/A== -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:08 2024 by rpki-client on console-ams.rpki-client.org