$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa File: 3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa (raw, json) Hash identifier: TWKcWpg42cUAg5Z9vmeCf55hR+3J1NKHML8KCAPYVCk= Subject key identifier: B5:2C:73:A1:B0:25:14:F1:EC:F9:97:BA:A8:55:84:6B:0D:86:76:94 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 4B50CEDDB605B7557D8195535BB49B7B4480C95B Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa Signing time: Mon 07 Aug 2023 11:00:01 +0000 ROA not before: Mon 07 Aug 2023 10:55:01 +0000 ROA not after: Mon 05 Aug 2024 11:00:01 +0000 asID: 56233 IP address blocks: 192.140.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 02:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:50:ce:dd:b6:05:b7:55:7d:81:95:53:5b:b4:9b:7b:44:80:c9:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Aug 7 10:55:01 2023 GMT Not After : Aug 5 11:00:01 2024 GMT Subject: CN=B52C73A1B02514F1ECF997BAA855846B0D867694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:dc:11:cf:2f:2c:16:cd:ab:fe:b5:c8:95:23: 87:54:dc:b4:72:ae:bc:c6:38:7c:08:bc:8f:1d:45: cb:6f:25:37:6c:f0:de:42:84:32:b2:10:a0:01:50: 7b:77:c3:0d:51:d5:a8:96:4c:65:f1:2a:7b:41:b8: bf:80:74:1a:04:46:ba:ca:b5:d9:ea:f5:7c:5a:f6: 46:34:48:93:9b:a2:e2:51:0a:7c:4f:8d:76:e3:23: 9d:7a:d8:aa:41:8f:3c:10:e6:e9:5f:7b:08:4f:79: 49:56:39:df:72:96:a0:97:39:d9:86:45:3a:5d:68: 62:e3:a8:cf:dc:33:be:1d:59:5f:69:c9:45:c3:8a: 7e:71:0d:f0:8e:9d:93:8d:16:8b:a3:b5:00:08:fa: 88:62:aa:30:be:a3:cc:ac:e7:3f:e8:62:a3:bc:17: e7:d2:c9:4a:1e:5d:6e:fc:12:84:78:46:c1:7a:a9: 14:a6:57:62:97:79:f4:74:57:2b:87:f3:f2:fc:b7: c5:f9:35:8a:5a:5e:1c:11:5d:ca:31:37:7b:d2:c4: d1:2d:1d:c0:bf:bf:4b:0e:17:30:bc:4c:de:6c:7f: 3b:04:c8:50:ca:2c:75:75:d5:45:b9:d2:32:89:69: d7:96:2a:e8:4f:e9:65:67:6a:f7:a4:ef:5e:d9:ca: af:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2C:73:A1:B0:25:14:F1:EC:F9:97:BA:A8:55:84:6B:0D:86:76:94 X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.140.224.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:2c:93:05:2f:1e:b8:69:a1:ef:49:8d:72:4b:a2:16:99:29: 7f:fa:6b:26:ad:54:51:17:b1:80:ce:55:da:af:34:62:74:4e: d7:d6:69:8c:a7:ef:ea:b4:45:b0:81:2f:70:35:de:34:8c:56: 4d:30:9b:8b:8e:0e:56:e5:30:8d:f0:43:a6:88:ca:07:65:2f: 01:b5:1e:a2:0a:57:15:61:ab:66:89:fd:83:dc:bb:da:47:99: 90:1b:30:67:eb:0c:a9:a6:1a:68:dc:74:4f:0e:d4:19:e6:85: 70:17:19:29:2c:7b:69:ac:f9:3a:34:4a:ac:f9:dc:f8:dd:16: df:1f:94:a0:b6:56:2e:fc:c3:73:08:dc:1f:81:65:38:f5:1b: e9:c9:59:88:c5:a5:b4:a9:80:92:ed:4c:71:59:c4:4a:cf:8b: b9:1a:69:0a:15:c3:f2:f6:4a:a5:b7:60:26:fc:e9:4c:50:e4: 66:cc:c1:c3:41:19:28:05:37:8e:b9:0f:5c:62:77:4d:f8:5a: 1d:b4:5a:8a:b2:df:9d:e4:46:4c:c0:0b:83:de:bd:4d:d8:2b: 5e:62:96:d6:da:5a:c4:c1:41:80:cb:a2:2a:db:ed:9f:a0:d6: e2:57:d2:39:b6:2b:d2:df:0d:ec:8f:7b:fa:93:e0:56:13:50: 12:ac:f7:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUS1DO3bYFt1V9gZVTW7Sbe0SAyVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yMzA4MDcxMDU1MDFaFw0yNDA4MDUxMTAwMDFaMDMxMTAvBgNV BAMTKEI1MkM3M0ExQjAyNTE0RjFFQ0Y5OTdCQUE4NTU4NDZCMEQ4Njc2OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ3BHPLywWzav+tciVI4dU3LRy rrzGOHwIvI8dRctvJTds8N5ChDKyEKABUHt3ww1R1aiWTGXxKntBuL+AdBoERrrK tdnq9Xxa9kY0SJObouJRCnxPjXbjI5162KpBjzwQ5ulfewhPeUlWOd9ylqCXOdmG RTpdaGLjqM/cM74dWV9pyUXDin5xDfCOnZONFoujtQAI+ohiqjC+o8ys5z/oYqO8 F+fSyUoeXW78EoR4RsF6qRSmV2KXefR0VyuH8/L8t8X5NYpaXhwRXcoxN3vSxNEt HcC/v0sOFzC8TN5sfzsEyFDKLHV11UW50jKJadeWKuhP6WVnavek717Zyq+rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtSxzobAlFPHs+Ze6qFWEaw2GdpQwHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZmQ0YmMyLTQxZDQtNDJlNi1h N2ZmLTU5NDkzODg1MTI2YS8wLzMxMzkzMjJlMzEzNDMwMmUzMjMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM2MzIzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwIzgMA0GCSqG SIb3DQEBCwUAA4IBAQCcLJMFLx64aaHvSY1yS6IWmSl/+msmrVRRF7GAzlXarzRi dE7X1mmMp+/qtEWwgS9wNd40jFZNMJuLjg5W5TCN8EOmiMoHZS8BtR6iClcVYatm if2D3LvaR5mQGzBn6wypphpo3HRPDtQZ5oVwFxkpLHtprPk6NEqs+dz43RbfH5Sg tlYu/MNzCNwfgWU49RvpyVmIxaW0qYCS7UxxWcRKz4u5GmkKFcPy9kqlt2Am/OlM UORmzMHDQRkoBTeOuQ9cYndN+FodtFqKst+d5EZMwAuD3r1N2CteYpbW2lrEwUGA y6Iq2+2foNbiV9I5tivS3w3sj3v6k+BWE1ASrPf0 -----END CERTIFICATE-----Generated at Thu Apr 18 20:08:36 2024 by rpki-client on console-fra.rpki-client.org