$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132322e3130322e34302e302f32312d3234203d3e203338373538.roa File: 3132322e3130322e34302e302f32312d3234203d3e203338373538.roa (raw, json) Hash identifier: Fpg6ojvEHW8fJUVggYSDwlCSZfr3LJaywBnVRrlorQU= Subject key identifier: 9E:A3:90:CE:92:1E:66:01:2C:78:2F:6E:7A:8A:6B:0F:65:C6:69:8E Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Certificate serial: 3F9D605009103636D7FDA1A49A2F8F3695E15740 Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132322e3130322e34302e302f32312d3234203d3e203338373538.roa Signing time: Mon 31 Jul 2023 00:00:05 +0000 ROA not before: Sun 30 Jul 2023 23:55:05 +0000 ROA not after: Mon 29 Jul 2024 00:00:05 +0000 asID: 38758 IP address blocks: 122.102.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 21:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:9d:60:50:09:10:36:36:d7:fd:a1:a4:9a:2f:8f:36:95:e1:57:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4 Validity Not Before: Jul 30 23:55:05 2023 GMT Not After : Jul 29 00:00:05 2024 GMT Subject: CN=9EA390CE921E66012C782F6E7A8A6B0F65C6698E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f5:31:51:23:7a:43:c6:02:58:8b:10:b6:b8: b8:15:8e:09:84:b4:8f:80:25:35:3f:dd:38:4e:51: a5:a4:7d:ad:90:7c:f3:60:8a:18:6e:47:07:e7:ca: 18:72:42:bb:0c:c7:67:27:b6:f2:c7:fe:cf:95:d2: 2b:f4:03:dd:ff:aa:5d:cc:81:91:9a:21:4f:a7:09: 51:40:d3:c6:f3:65:87:22:8b:4f:e9:87:e9:c4:a4: 48:51:b4:58:d1:0d:82:83:ab:30:e8:74:e3:24:31: 8a:09:22:2b:2a:99:20:d8:52:ad:21:a0:4f:68:b7: cc:33:06:08:43:71:ab:29:36:17:e3:a6:37:4d:04: 7b:19:e6:1a:b1:b7:59:b1:e0:1e:7a:64:e7:65:d4: 7c:2a:b0:24:79:1e:e0:bf:16:4b:18:46:f2:b4:d6: 17:2d:4c:1d:ec:60:b1:fd:b5:ef:90:97:80:d7:4c: c0:d9:57:68:5a:9b:db:5a:1c:e6:84:81:77:e9:cc: 67:f3:9f:a6:85:32:ba:cf:b8:42:a9:5c:f1:3a:06: 9f:d5:35:1c:9a:36:77:14:ce:1b:62:ba:b3:a9:47: 9e:4e:26:19:25:a5:62:98:49:e3:65:91:78:4a:c0: 13:33:b3:d4:57:f1:ed:31:44:45:83:1f:82:43:86: ed:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A3:90:CE:92:1E:66:01:2C:78:2F:6E:7A:8A:6B:0F:65:C6:69:8E X509v3 Authority Key Identifier: keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3132322e3130322e34302e302f32312d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.102.40.0/21 Signature Algorithm: sha256WithRSAEncryption 95:ae:00:f4:9b:a3:b2:8d:c3:f0:6e:47:fd:ec:68:92:3c:77: e5:0c:ca:56:3d:76:9b:19:ff:f0:31:b0:72:8f:c7:a9:91:5c: 15:bb:4d:2f:09:a9:08:57:d2:11:72:6e:cd:1c:da:ee:9f:20: 77:6f:2d:73:e5:12:d6:1e:da:86:ac:00:31:83:62:60:a8:cd: aa:ec:4c:8a:45:6a:e3:58:bc:2a:8f:33:e2:f8:06:4b:34:25: cd:cb:7d:37:02:45:0b:c8:6b:bc:70:8c:7e:b9:1b:8d:da:71: 7d:1c:38:1d:72:5a:22:a5:e0:d0:8f:f7:1c:d1:f5:b3:09:f0: 48:71:bb:78:79:79:48:3b:c5:9d:aa:23:a3:c6:ec:11:9e:a4: d9:3f:a5:77:bd:cb:c0:8f:2d:23:0c:c6:fd:e0:97:02:81:f0: c3:53:ca:39:60:cd:33:01:b8:56:22:e1:bd:01:72:f9:72:4f: eb:5f:b1:88:9d:7d:98:29:1b:2a:37:8d:f8:b4:f7:87:34:7f: a3:69:67:29:d3:f9:bf:2b:64:de:87:4c:44:6a:12:9f:48:d9: 0f:2b:c6:af:ca:c2:47:8c:ec:77:ae:6f:ab:e2:32:28:ea:73: a0:3e:99:60:08:0d:31:ba:e4:83:bd:57:1d:ac:b8:81:44:a2: 52:4f:2a:ff -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP51gUAkQNjbX/aGkmi+PNpXhV0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1 NTQ5ODZGNDAeFw0yMzA3MzAyMzU1MDVaFw0yNDA3MjkwMDAwMDVaMDMxMTAvBgNV BAMTKDlFQTM5MENFOTIxRTY2MDEyQzc4MkY2RTdBOEE2QjBGNjVDNjY5OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr9TFRI3pDxgJYixC2uLgVjgmE tI+AJTU/3ThOUaWkfa2QfPNgihhuRwfnyhhyQrsMx2cntvLH/s+V0iv0A93/ql3M gZGaIU+nCVFA08bzZYcii0/ph+nEpEhRtFjRDYKDqzDodOMkMYoJIisqmSDYUq0h oE9ot8wzBghDcaspNhfjpjdNBHsZ5hqxt1mx4B56ZOdl1HwqsCR5HuC/FksYRvK0 1hctTB3sYLH9te+Ql4DXTMDZV2ham9taHOaEgXfpzGfzn6aFMrrPuEKpXPE6Bp/V NRyaNncUzhtiurOpR55OJhklpWKYSeNlkXhKwBMzs9RX8e0xREWDH4JDhu0rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnqOQzpIeZgEseC9ueoprD2XGaY4wHwYDVR0j BBgwFoAUn+slFVzxr/kK4R2gKY8WTVVJhvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjRlMTk1ZS0xMmRlLTRjM2MtOTNlNS01MjJlZTU0MDE4ZDYvMC85RkVCMjUxNTVD RjFBRkY5MEFFMTFEQTAyOThGMTY0RDU1NDk4NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZFQjI1MTU1Q0YxQUZGOTBBRTExREEwMjk4RjE2NEQ1NTQ5 ODZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNGUxOTVlLTEyZGUtNGMzYy05 M2U1LTUyMmVlNTQwMThkNi8wLzMxMzIzMjJlMzEzMDMyMmUzNDMwMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3pmKDANBgkqhkiG 9w0BAQsFAAOCAQEAla4A9Jujso3D8G5H/exokjx35QzKVj12mxn/8DGwco/HqZFc FbtNLwmpCFfSEXJuzRza7p8gd28tc+US1h7ahqwAMYNiYKjNquxMikVq41i8Ko8z 4vgGSzQlzct9NwJFC8hrvHCMfrkbjdpxfRw4HXJaIqXg0I/3HNH1swnwSHG7eHl5 SDvFnaojo8bsEZ6k2T+ld73LwI8tIwzG/eCXAoHww1PKOWDNMwG4ViLhvQFy+XJP 61+xiJ19mCkbKjeN+LT3hzR/o2lnKdP5vytk3odMRGoSn0jZDyvGr8rCR4zsd65v q+IyKOpzoD6ZYAgNMbrkg71XHay4gUSiUk8q/w== -----END CERTIFICATE-----Generated at Wed Apr 17 02:28:29 2024 by rpki-client on console-ams.rpki-client.org