$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32312d3234203d3e203436303236.roa File: 3137352e3131312e3131322e302f32312d3234203d3e203436303236.roa (raw, json) Hash identifier: hhI9I4ziesLSYvwJEX70tw6g5F+I7NRtM8/jKfHmEmA= Subject key identifier: A1:96:C5:F4:66:00:64:2D:88:83:A0:29:E9:03:4A:66:5C:4D:CA:59 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 46459AE5CE7EB3F3A63239F70182DC07A1791961 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32312d3234203d3e203436303236.roa Signing time: Sat 23 Dec 2023 21:00:00 +0000 ROA not before: Sat 23 Dec 2023 20:55:00 +0000 ROA not after: Sat 21 Dec 2024 21:00:00 +0000 asID: 46026 IP address blocks: 175.111.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:45:9a:e5:ce:7e:b3:f3:a6:32:39:f7:01:82:dc:07:a1:79:19:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Dec 23 20:55:00 2023 GMT Not After : Dec 21 21:00:00 2024 GMT Subject: CN=A196C5F46600642D8883A029E9034A665C4DCA59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:22:36:c9:f3:6b:41:da:50:88:eb:c5:6c:57: 97:eb:b1:83:d8:9b:9d:b4:05:8b:5c:29:17:7a:45: 60:c8:a0:43:8b:96:b8:f6:aa:46:40:05:c7:f4:b4: 6c:26:b3:2f:31:b9:66:8a:20:4c:55:56:25:d5:78: a8:95:42:45:19:89:64:82:a4:4a:54:0a:c4:a4:4d: 01:b5:26:3b:5e:9e:25:2d:bd:38:98:29:0f:b7:6b: a4:57:85:a1:72:e2:bc:72:f8:4f:8a:79:cf:87:d9: e2:a5:c5:e9:42:50:b9:e8:e4:1e:f1:df:c3:ec:9c: f8:63:df:6e:05:93:90:cd:4f:24:4a:ad:ca:2e:06: 82:00:12:68:d3:6f:9e:33:00:eb:05:0a:40:75:02: d2:46:31:e5:ff:40:5a:d4:52:7f:f7:8d:f2:94:c3: b7:b2:40:3f:0c:18:a0:91:61:88:c7:a0:38:1c:ff: a1:b9:e0:5e:3f:6c:45:df:de:a6:7b:63:37:36:a4: bb:35:05:b9:37:90:45:be:5a:3f:13:1c:02:9a:cf: b6:de:f2:e9:5b:b3:30:22:a6:63:d2:12:c7:da:7d: 2a:39:83:bf:dc:6d:c5:32:11:7d:3a:cd:c2:f4:c4: a9:9d:a5:fa:d5:5b:08:9a:8b:99:56:cc:74:0c:54: ab:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:96:C5:F4:66:00:64:2D:88:83:A0:29:E9:03:4A:66:5C:4D:CA:59 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32312d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.112.0/21 Signature Algorithm: sha256WithRSAEncryption aa:21:4c:73:50:9e:af:b9:5e:d1:c0:dc:a5:7b:e9:85:07:12: 3f:6a:58:f0:9e:77:42:e0:34:48:50:46:bf:cf:a7:fc:f9:48: 64:62:49:af:ec:3d:80:50:12:5e:74:28:b2:7f:5a:3d:31:f3: 35:62:77:f9:cc:e2:bf:88:3b:04:7e:6f:34:21:cb:eb:9e:1b: 31:d3:52:48:72:f6:c3:a5:7f:24:7b:e8:14:ea:72:45:92:e7: 4a:76:72:66:a7:f9:30:e5:5d:11:98:16:95:5b:6d:e8:ca:80: de:4f:a9:7c:6c:a3:60:12:78:61:a7:dd:ab:b8:86:a5:af:4a: b8:40:b0:57:0a:92:f4:66:8c:8c:7c:b7:8e:d2:6c:b6:56:dc: 54:dc:14:4a:fe:8f:ce:d1:5a:c9:ea:02:88:aa:6a:ab:65:9f: d5:e4:0e:b2:eb:22:eb:6b:35:5d:7f:aa:65:d6:19:b7:48:e4: bc:f8:1a:de:1b:79:3d:a1:9c:45:c5:04:c9:2b:bc:5a:ae:33: 94:d0:50:49:e4:6e:c2:de:7a:b0:dc:0e:55:fe:78:aa:de:30: 0f:e6:d0:8b:17:7b:60:f5:7d:ed:df:08:b0:47:20:ea:2e:1b: a6:52:8f:48:d9:39:76:d0:f8:55:d7:13:88:de:f3:1d:4c:3b: 1d:7a:85:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURkWa5c5+s/OmMjn3AYLcB6F5GWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yMzEyMjMyMDU1MDBaFw0yNDEyMjEyMTAwMDBaMDMxMTAvBgNV BAMTKEExOTZDNUY0NjYwMDY0MkQ4ODgzQTAyOUU5MDM0QTY2NUM0RENBNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7IjbJ82tB2lCI68VsV5frsYPY m520BYtcKRd6RWDIoEOLlrj2qkZABcf0tGwmsy8xuWaKIExVViXVeKiVQkUZiWSC pEpUCsSkTQG1JjteniUtvTiYKQ+3a6RXhaFy4rxy+E+Kec+H2eKlxelCULno5B7x 38PsnPhj324Fk5DNTyRKrcouBoIAEmjTb54zAOsFCkB1AtJGMeX/QFrUUn/3jfKU w7eyQD8MGKCRYYjHoDgc/6G54F4/bEXf3qZ7Yzc2pLs1Bbk3kEW+Wj8THAKaz7be 8ulbszAipmPSEsfafSo5g7/cbcUyEX06zcL0xKmdpfrVWwiai5lWzHQMVKuLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoZbF9GYAZC2Ig6Ap6QNKZlxNylkwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzIyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDr29wMA0GCSqG SIb3DQEBCwUAA4IBAQCqIUxzUJ6vuV7RwNyle+mFBxI/aljwnndC4DRIUEa/z6f8 +UhkYkmv7D2AUBJedCiyf1o9MfM1Ynf5zOK/iDsEfm80Icvrnhsx01JIcvbDpX8k e+gU6nJFkudKdnJmp/kw5V0RmBaVW23oyoDeT6l8bKNgEnhhp92ruIalr0q4QLBX CpL0ZoyMfLeO0my2VtxU3BRK/o/O0VrJ6gKIqmqrZZ/V5A6y6yLrazVdf6pl1hm3 SOS8+BreG3k9oZxFxQTJK7xarjOU0FBJ5G7C3nqw3A5V/niq3jAP5tCLF3tg9X3t 3wiwRyDqLhumUo9I2Tl20PhV1xOI3vMdTDsdeoVU -----END CERTIFICATE-----Generated at Fri May 3 04:42:12 2024 by rpki-client on console-fra.rpki-client.org