$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3131372e32302e34382e302f32302d3234203d3e203233393531.roa File: 3131372e32302e34382e302f32302d3234203d3e203233393531.roa (raw, json) Hash identifier: lo/i7vyt7Ke16RV2OKhfPw2A5+h2klCaI0P+nEUufcU= Subject key identifier: 7A:70:23:03:6B:EC:D1:D0:8F:DE:D3:2B:10:55:35:91:23:12:97:11 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 03514D9199C632EA8960A14BDA6D137BE0094AA5 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3131372e32302e34382e302f32302d3234203d3e203233393531.roa Signing time: Tue 19 Sep 2023 04:00:00 +0000 ROA not before: Tue 19 Sep 2023 03:55:00 +0000 ROA not after: Tue 17 Sep 2024 04:00:00 +0000 asID: 23951 IP address blocks: 117.20.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:51:4d:91:99:c6:32:ea:89:60:a1:4b:da:6d:13:7b:e0:09:4a:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Sep 19 03:55:00 2023 GMT Not After : Sep 17 04:00:00 2024 GMT Subject: CN=7A7023036BECD1D08FDED32B1055359123129711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:42:11:60:a9:e2:20:8f:1d:bb:3a:4b:3d:8e: 44:50:36:6f:14:a7:70:87:02:01:c0:1c:c8:44:61: 49:be:ed:23:06:87:e0:f1:cb:00:00:4a:0e:67:c7: 05:40:10:70:38:38:1e:1f:b9:93:50:d5:56:e1:9f: 18:98:40:bf:cd:8c:a7:d3:5c:c5:31:73:01:af:2a: 98:de:19:58:04:87:83:a4:8e:59:79:de:14:0c:74: 1f:f2:fc:55:f3:fe:2d:e7:5e:2e:e6:02:67:57:d8: 3d:9b:42:c4:a9:a3:8b:d9:0e:3e:b6:03:d1:46:11: c3:2e:6e:5c:10:ae:80:3e:3d:f5:b0:25:d1:f0:73: b4:a4:fe:95:f4:08:63:9b:ce:6e:a9:46:4b:eb:7e: 1e:b0:d1:e0:89:eb:52:f0:1d:28:bd:30:57:2e:ab: 5f:42:7c:88:38:e7:5c:0c:d2:e0:c4:08:5c:d7:82: a7:52:c7:dc:7b:16:2f:9d:97:8f:11:60:15:43:bf: 89:f4:19:77:2a:ed:d0:41:7a:c1:c9:7d:7b:42:2e: 2f:e1:73:1a:2e:d5:84:51:87:2d:77:49:3a:f4:85: e8:64:57:45:47:5b:f9:11:82:40:22:99:2f:e8:e6: 33:b4:7f:01:d4:f1:98:47:11:54:36:d5:d7:02:67: 39:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:70:23:03:6B:EC:D1:D0:8F:DE:D3:2B:10:55:35:91:23:12:97:11 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3131372e32302e34382e302f32302d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.20.48.0/20 Signature Algorithm: sha256WithRSAEncryption a0:81:81:47:42:ef:9a:a5:98:09:6e:df:71:98:7a:d1:3f:94: 30:2e:6d:f0:6d:6e:0b:65:2d:09:2a:ce:7b:4f:b6:57:2e:d3: 86:3c:d0:a5:bd:84:30:68:ef:3f:93:ed:a6:4c:91:2e:1c:3f: ec:06:58:5c:22:2d:cc:a0:75:08:f7:6b:f3:76:aa:f3:03:87: 2a:e7:03:73:d8:7b:c4:74:d3:6d:35:cd:fd:9a:d2:92:ba:a6: a1:cc:7a:d9:58:8e:e3:2c:6a:22:8a:09:f9:f0:28:1d:d5:f3: 5c:57:72:1f:89:a5:c5:c4:15:a1:7c:bd:06:11:da:fb:0d:2a: 64:7f:95:91:31:a7:41:f8:da:71:57:82:06:f9:64:1f:11:d8: f7:10:58:ca:84:bb:db:98:1f:55:2d:30:91:dd:bc:c8:c5:90: 45:38:95:7d:64:6a:ea:5b:bc:4d:94:a2:89:79:d2:dc:91:af: 92:8a:f1:d7:d5:8a:1b:1c:69:79:9e:42:56:9e:12:4e:dd:d1: e0:7d:84:f0:00:68:4b:c5:2b:1a:9c:dc:45:6a:e2:b3:b3:60: dd:f1:bd:e8:ad:23:24:c5:3c:a9:11:7d:8b:ce:69:2d:82:4a: ce:09:16:68:7a:fb:b3:d3:fc:df:84:fe:dd:cd:48:b2:d6:54: 9c:0c:b1:a7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUA1FNkZnGMuqJYKFL2m0Te+AJSqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yMzA5MTkwMzU1MDBaFw0yNDA5MTcwNDAwMDBaMDMxMTAvBgNV BAMTKDdBNzAyMzAzNkJFQ0QxRDA4RkRFRDMyQjEwNTUzNTkxMjMxMjk3MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLQhFgqeIgjx27Oks9jkRQNm8U p3CHAgHAHMhEYUm+7SMGh+DxywAASg5nxwVAEHA4OB4fuZNQ1VbhnxiYQL/NjKfT XMUxcwGvKpjeGVgEh4Okjll53hQMdB/y/FXz/i3nXi7mAmdX2D2bQsSpo4vZDj62 A9FGEcMublwQroA+PfWwJdHwc7Sk/pX0CGObzm6pRkvrfh6w0eCJ61LwHSi9MFcu q19CfIg451wM0uDECFzXgqdSx9x7Fi+dl48RYBVDv4n0GXcq7dBBesHJfXtCLi/h cxou1YRRhy13STr0hehkV0VHW/kRgkAimS/o5jO0fwHU8ZhHEVQ21dcCZznzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUenAjA2vs0dCP3tMrEFU1kSMSlxEwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzEzNzJlMzIzMDJlMzQzODJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMyMzMzOTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR1FDAwDQYJKoZIhvcN AQELBQADggEBAKCBgUdC75qlmAlu33GYetE/lDAubfBtbgtlLQkqzntPtlcu04Y8 0KW9hDBo7z+T7aZMkS4cP+wGWFwiLcygdQj3a/N2qvMDhyrnA3PYe8R00201zf2a 0pK6pqHMetlYjuMsaiKKCfnwKB3V81xXch+JpcXEFaF8vQYR2vsNKmR/lZExp0H4 2nFXggb5ZB8R2PcQWMqEu9uYH1UtMJHdvMjFkEU4lX1kaupbvE2Uool50tyRr5KK 8dfVihscaXmeQlaeEk7d0eB9hPAAaEvFKxqc3EVq4rOzYN3xveitIyTFPKkRfYvO aS2CSs4JFmh6+7PT/N+E/t3NSLLWVJwMsac= -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:50 2024 by rpki-client on console-fra.rpki-client.org