$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3132382e302f32322d3232203d3e203538333639.roa File: 3131362e3139372e3132382e302f32322d3232203d3e203538333639.roa (raw, json) Hash identifier: LF+KZKgTYLSVptoVB6K92N2yziCNiAlTEpXL+hsb2JU= Subject key identifier: 8B:D8:DB:23:7C:29:FE:CE:D3:F1:FF:E9:4B:EA:D6:57:DD:22:BC:79 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 10B7F38CE43B71C8D32EAB97BD5BDBF433BEEDA8 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3132382e302f32322d3232203d3e203538333639.roa Signing time: Mon 31 Jul 2023 00:07:33 +0000 ROA not before: Mon 31 Jul 2023 00:02:33 +0000 ROA not after: Mon 29 Jul 2024 00:07:33 +0000 asID: 58369 IP address blocks: 116.197.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:b7:f3:8c:e4:3b:71:c8:d3:2e:ab:97:bd:5b:db:f4:33:be:ed:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Jul 31 00:02:33 2023 GMT Not After : Jul 29 00:07:33 2024 GMT Subject: CN=8BD8DB237C29FECED3F1FFE94BEAD657DD22BC79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a2:3b:66:d4:15:fa:a9:52:8d:b7:2b:92:e6: 11:2a:51:0e:92:f8:85:b1:a5:1d:d7:52:a9:8d:77: 5f:85:7a:2d:e8:3f:29:57:8b:08:04:13:26:dd:50: 9d:26:eb:3d:9e:c5:67:66:18:5f:8b:c3:26:c1:11: 1f:43:30:7d:53:fc:08:51:66:8a:81:92:76:0f:66: 4a:bd:a2:7b:2e:b2:da:76:49:8c:02:b9:26:e7:ec: aa:c8:be:11:79:dc:9b:de:6b:69:09:d2:dc:b7:b5: c0:16:cc:5d:a2:ec:63:25:2d:84:87:a1:84:05:e6: ac:66:b1:36:f5:a6:7e:b5:f2:0b:5b:43:fb:f3:df: 08:88:a1:d8:8a:ab:3c:27:ac:79:9c:86:6f:dd:89: 07:4c:f8:98:c0:4b:56:df:fc:72:46:25:4f:f3:22: f4:bb:ec:11:95:f2:f9:92:09:51:21:90:aa:8f:67: f4:b2:9a:b0:ea:36:1e:a4:27:3c:d5:74:03:b9:f4: ea:c9:b8:f9:88:09:73:91:81:50:2a:c6:dd:61:53: 8a:2c:0a:32:8d:25:18:13:40:1e:d6:00:22:f5:0d: 99:0d:99:d5:a5:23:38:14:a1:68:74:fe:c8:db:e1: 16:9a:e5:1c:7b:30:63:f9:b9:41:10:2b:7d:2b:e5: 87:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D8:DB:23:7C:29:FE:CE:D3:F1:FF:E9:4B:EA:D6:57:DD:22:BC:79 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/3131362e3139372e3132382e302f32322d3232203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.197.128.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:25:2d:7b:8f:09:18:52:ed:b8:01:25:d8:eb:b6:ba:1a:e5: d7:8a:d3:fb:4f:d5:70:b9:b7:1c:dd:53:3c:80:c2:e1:3c:c6: f6:17:cc:9e:55:1b:99:89:e1:45:06:23:58:4a:f9:cd:7d:ea: b4:2a:08:12:24:96:14:79:9b:a9:f5:c1:d2:05:51:64:d2:fa: 9c:11:66:54:54:6d:00:71:e2:25:ad:a7:1a:75:93:56:75:b3: e3:7c:e1:5e:9c:ec:e4:e4:57:8d:95:4f:43:08:9c:60:66:67: 2e:e9:d3:ed:97:a3:f0:df:f1:3e:cb:be:d2:48:93:d9:f2:65: ea:8f:dd:45:0a:59:ba:a0:c9:b3:4b:f1:0a:2b:ac:22:df:05: 2f:96:a2:b7:b7:bb:1d:9f:09:97:85:08:79:f2:6c:9a:40:7d: 1e:1c:69:35:b3:5f:4f:fc:22:98:65:cb:3d:74:b0:d6:7f:65: de:de:48:95:43:d6:9c:47:6b:0a:0c:03:21:f6:80:67:db:8a: a0:39:20:50:4c:6b:f2:a6:13:dc:4e:bd:3c:19:c9:35:6f:9d: 86:65:4b:67:10:95:b4:45:26:86:4a:08:5c:2c:a5:cc:88:ee: 4e:85:97:19:47:1a:f4:cb:c6:ca:46:79:b1:cc:f5:da:09:bc: 6c:6c:de:90 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUELfzjOQ7ccjTLquXvVvb9DO+7agwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yMzA3MzEwMDAyMzNaFw0yNDA3MjkwMDA3MzNaMDMxMTAvBgNV BAMTKDhCRDhEQjIzN0MyOUZFQ0VEM0YxRkZFOTRCRUFENjU3REQyMkJDNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmojtm1BX6qVKNtyuS5hEqUQ6S +IWxpR3XUqmNd1+Fei3oPylXiwgEEybdUJ0m6z2exWdmGF+LwybBER9DMH1T/AhR ZoqBknYPZkq9onsustp2SYwCuSbn7KrIvhF53Jvea2kJ0ty3tcAWzF2i7GMlLYSH oYQF5qxmsTb1pn618gtbQ/vz3wiIodiKqzwnrHmchm/diQdM+JjAS1bf/HJGJU/z IvS77BGV8vmSCVEhkKqPZ/SymrDqNh6kJzzVdAO59OrJuPmICXORgVAqxt1hU4os CjKNJRgTQB7WACL1DZkNmdWlIzgUoWh0/sjb4Raa5Rx7MGP5uUEQK30r5YcrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUi9jbI3wp/s7T8f/pS+rWV90ivHkwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMxMzEzNjJlMzEzOTM3MmUzMTMyMzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCdMWAMA0GCSqG SIb3DQEBCwUAA4IBAQBuJS17jwkYUu24ASXY67a6GuXXitP7T9Vwubcc3VM8gMLh PMb2F8yeVRuZieFFBiNYSvnNfeq0KggSJJYUeZup9cHSBVFk0vqcEWZUVG0AceIl racadZNWdbPjfOFenOzk5FeNlU9DCJxgZmcu6dPtl6Pw3/E+y77SSJPZ8mXqj91F Clm6oMmzS/EKK6wi3wUvlqK3t7sdnwmXhQh58myaQH0eHGk1s19P/CKYZcs9dLDW f2Xe3kiVQ9acR2sKDAMh9oBn24qgOSBQTGvyphPcTr08Gck1b52GZUtnEJW0RSaG SghcLKXMiO5OhZcZRxr0y8bKRnmxzPXaCbxsbN6Q -----END CERTIFICATE-----Generated at Wed Apr 24 10:29:46 2024 by rpki-client on console-fra.rpki-client.org