$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa File: 3132302e32392e3135322e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: QPZ6HvUxSM5stcBpdr9MeE9bD73wM7NLd/DoJXoc6qQ= Subject key identifier: B7:CF:50:A5:CB:D1:4E:CE:66:3E:0F:17:96:DF:5C:F2:C2:23:2E:E2 Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Certificate serial: 0403F63659A0E6BF2A02261BA8ADBD725A3702CC Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa Signing time: Mon 31 Jul 2023 00:00:04 +0000 ROA not before: Sun 30 Jul 2023 23:55:04 +0000 ROA not after: Mon 29 Jul 2024 00:00:04 +0000 asID: 38758 IP address blocks: 120.29.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 01:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:03:f6:36:59:a0:e6:bf:2a:02:26:1b:a8:ad:bd:72:5a:37:02:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Validity Not Before: Jul 30 23:55:04 2023 GMT Not After : Jul 29 00:00:04 2024 GMT Subject: CN=B7CF50A5CBD14ECE663E0F1796DF5CF2C2232EE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ab:92:c6:2c:72:ab:90:6e:f8:80:59:02:3c: f9:14:24:a5:bf:b6:45:e9:18:ed:6b:26:57:74:51: e2:a3:d4:37:40:94:aa:c9:8a:bf:5f:62:a7:da:b0: a8:1e:c8:45:ff:05:95:fb:46:c8:89:e5:44:46:da: 11:9f:20:a9:96:40:65:6f:bb:14:82:a5:27:bd:19: c6:50:d6:07:5b:20:49:0b:37:7e:45:b1:5b:57:e0: 86:30:ac:d2:69:45:f2:3e:3b:ed:93:f0:d6:a5:1c: 9c:a5:43:d9:06:ab:a9:11:ee:24:97:a9:d9:e7:36: 7b:db:12:8c:18:6c:d8:5c:7f:d2:63:d3:25:30:32: 36:22:90:56:08:c6:5b:53:e4:91:3f:82:33:2b:65: ab:54:6e:83:89:a2:2d:e3:27:c7:fe:c6:b1:e8:91: 13:4c:0a:57:80:58:52:ba:df:0c:66:77:d7:c2:8e: ef:e7:f4:77:3d:e6:cf:55:98:25:20:2a:f1:91:9d: 02:96:45:16:53:f3:de:42:6b:65:01:d1:01:c4:08: 75:7a:c9:85:3b:e0:d1:73:cd:12:6b:b1:20:d9:2a: 6d:00:ea:6e:90:30:ba:c5:6e:f9:75:dd:22:22:65: 5b:07:69:0d:b5:f2:bf:f3:ef:b8:5b:d6:f0:67:05: 2c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CF:50:A5:CB:D1:4E:CE:66:3E:0F:17:96:DF:5C:F2:C2:23:2E:E2 X509v3 Authority Key Identifier: keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132302e32392e3135322e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.29.152.0/21 Signature Algorithm: sha256WithRSAEncryption a7:a1:7d:53:08:40:90:ae:4f:12:27:81:54:c6:b8:88:8d:e6: 37:46:b2:cf:58:ca:4d:a3:e3:2a:db:ae:c5:84:c6:3c:95:33: 4b:b6:46:cc:51:42:0a:ae:e8:0e:94:47:88:22:c1:cd:12:65: c2:38:17:4f:cb:03:76:c1:a3:8f:08:88:a3:c8:d4:b7:29:27: 7e:ad:f7:89:10:f9:05:46:34:58:80:c1:2c:35:fc:6e:75:47: dc:9f:e6:73:b4:62:79:06:fc:af:18:f5:d8:9c:62:ba:7e:94: e8:06:78:5d:f0:9b:24:80:9f:23:31:01:66:1f:d5:1b:0a:09: 65:c0:22:bf:29:18:3c:f8:49:6a:f6:4f:0e:c2:d3:66:30:b2: 80:fc:e6:c3:85:81:c8:dd:72:50:d7:fb:c4:be:a2:af:00:fd: 13:c6:2a:5b:0f:30:c1:a0:1b:bb:de:e5:e9:9b:63:52:7a:fc: 36:b8:4d:40:b2:d5:41:eb:3e:ee:04:67:98:09:b4:63:b8:0c: 90:c1:50:ea:98:44:be:8e:56:e2:d1:f7:a1:a2:d6:0a:e7:84: ee:37:eb:4c:20:54:fa:f7:57:71:9f:50:2f:8f:5e:6c:6d:16: 38:47:5e:55:b5:70:fc:83:12:3e:46:39:f4:27:a7:84:35:ed: f0:2f:d6:dc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBAP2Nlmg5r8qAiYbqK29clo3AswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1 NTQ5ODZGNDAeFw0yMzA3MzAyMzU1MDRaFw0yNDA3MjkwMDAwMDRaMDMxMTAvBgNV BAMTKEI3Q0Y1MEE1Q0JEMTRFQ0U2NjNFMEYxNzk2REY1Q0YyQzIyMzJFRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZq5LGLHKrkG74gFkCPPkUJKW/ tkXpGO1rJld0UeKj1DdAlKrJir9fYqfasKgeyEX/BZX7RsiJ5URG2hGfIKmWQGVv uxSCpSe9GcZQ1gdbIEkLN35FsVtX4IYwrNJpRfI+O+2T8NalHJylQ9kGq6kR7iSX qdnnNnvbEowYbNhcf9Jj0yUwMjYikFYIxltT5JE/gjMrZatUboOJoi3jJ8f+xrHo kRNMCleAWFK63wxmd9fCju/n9Hc95s9VmCUgKvGRnQKWRRZT895Ca2UB0QHECHV6 yYU74NFzzRJrsSDZKm0A6m6QMLrFbvl13SIiZVsHaQ218r/z77hb1vBnBSzZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUt89QpcvRTs5mPg8Xlt9c8sIjLuIwHwYDVR0j BBgwFoAUn+slFVzxr/kK4R2gKY8WTVVJhvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjRlMTk1ZS0xMmRlLTRjM2MtOTNlNS01MjJlZTU0MDE4ZDYvMC85RkVCMjUxNTVD RjFBRkY5MEFFMTFEQTAyOThGMTY0RDU1NDk4NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1NTQ5 ODZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMxMzIzMDJlMzIzOTJlMzEzNTMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3gdmDANBgkqhkiG 9w0BAQsFAAOCAQEAp6F9UwhAkK5PEieBVMa4iI3mN0ayz1jKTaPjKtuuxYTGPJUz S7ZGzFFCCq7oDpRHiCLBzRJlwjgXT8sDdsGjjwiIo8jUtyknfq33iRD5BUY0WIDB LDX8bnVH3J/mc7RieQb8rxj12Jxiun6U6AZ4XfCbJICfIzEBZh/VGwoJZcAivykY PPhJavZPDsLTZjCygPzmw4WByN1yUNf7xL6irwD9E8YqWw8wwaAbu97l6ZtjUnr8 NrhNQLLVQes+7gRnmAm0Y7gMkMFQ6phEvo5W4tH3oaLWCueE7jfrTCBU+vdXcZ9Q L49ebG0WOEdeVbVw/IMSPkY59CenhDXt8C/W3A== -----END CERTIFICATE-----Generated at Wed Apr 24 01:53:49 2024 by rpki-client on console-ams.rpki-client.org