$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131362e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131362e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: l0SiGuf0uYwEjo1DczpIXGL1j4G5WWeiSzECLrUqyNU= Subject key identifier: 9F:7F:1B:C4:8B:76:6F:56:B5:44:C1:0C:7D:E1:82:35:88:D9:D1:C8 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 113C0072BCBE9F1D9EBE1097B89C527A11C2990C Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131362e302f32342d3234203d3e203436303236.roa Signing time: Mon 31 Jul 2023 00:02:34 +0000 ROA not before: Sun 30 Jul 2023 23:57:34 +0000 ROA not after: Mon 29 Jul 2024 00:02:34 +0000 asID: 46026 IP address blocks: 175.111.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:3c:00:72:bc:be:9f:1d:9e:be:10:97:b8:9c:52:7a:11:c2:99:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jul 30 23:57:34 2023 GMT Not After : Jul 29 00:02:34 2024 GMT Subject: CN=9F7F1BC48B766F56B544C10C7DE1823588D9D1C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:1a:78:19:e6:35:42:3c:ef:fc:f0:09:0e: 25:d0:31:5c:a5:89:f1:9f:c1:2b:d4:90:d9:da:66: d0:fd:fc:8e:8c:ab:67:25:53:4c:28:c4:7f:02:a2: 49:a7:df:9e:60:0e:01:a6:5f:92:ef:86:87:3c:a4: 73:6a:bd:6b:e5:b3:a4:99:c6:74:db:0e:e3:fb:fd: 19:c2:6f:de:da:27:80:69:42:9a:d1:c3:b6:9f:36: cd:58:bf:17:7e:c8:85:47:15:6e:45:bf:52:1d:5d: 1e:04:e1:81:17:cd:f8:e5:0d:9b:13:ec:b6:dc:e0: af:43:31:31:86:aa:7e:48:e8:dd:7f:45:b9:4b:63: bc:c0:50:fc:c4:5b:28:c7:7f:a0:bb:c6:49:d2:27: 20:e6:a3:63:0c:00:92:fe:1a:06:73:94:bc:1d:4a: 4e:2e:5d:df:57:fb:e0:87:73:a7:3e:ce:7d:57:48: 6b:0d:a8:0d:0d:51:93:f1:b2:7a:18:cf:f6:ec:5e: 19:f8:58:c0:6d:8e:1a:10:da:59:e2:45:83:6a:4f: 53:44:4a:d6:3d:1d:3a:5e:3b:07:4e:41:14:57:86: 4a:5a:d4:3c:42:ba:0e:d0:40:78:46:cd:dc:e8:04: 07:a5:b9:b6:8f:62:10:a7:c7:ad:ea:69:b7:c5:43: 6f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:7F:1B:C4:8B:76:6F:56:B5:44:C1:0C:7D:E1:82:35:88:D9:D1:C8 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131362e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.116.0/24 Signature Algorithm: sha256WithRSAEncryption 34:49:2e:d5:7c:af:16:e3:39:6a:4e:f4:97:90:8b:74:33:93: b0:b2:82:73:65:46:03:3a:7c:04:3e:5a:69:7d:e7:c3:93:c8: a9:f5:d0:aa:ff:c5:09:c5:63:d2:cd:8b:39:95:ec:e3:49:d8: 2b:09:a7:fb:2d:16:07:3d:02:4f:ee:31:71:94:d7:70:7e:0e: 3f:eb:60:6b:79:24:d4:0f:ec:b9:66:05:a8:97:2e:09:c0:cf: e7:f8:97:be:75:e9:8f:61:11:ce:32:4a:79:ef:83:8d:d7:f6: ea:5f:87:50:53:63:36:4e:fd:3b:b8:05:ba:09:06:b4:6a:90: 49:0a:ae:a3:77:72:1a:62:20:5c:bd:28:e9:a3:c8:c7:4d:6d: 7a:0c:a5:ea:20:f9:0d:e5:b6:e0:69:6f:4b:f9:4a:2d:59:70: f9:5c:18:b1:b4:89:f8:52:c6:05:1d:2f:4e:58:45:8f:c1:aa: 18:cc:a5:a9:40:35:5e:ca:83:de:5c:77:59:74:b4:c6:df:31: 03:43:ac:11:7c:9f:7a:2f:b0:db:8b:8b:2b:52:44:b1:4c:ea: ef:9b:1b:86:df:34:e8:89:85:9b:52:81:c7:fb:57:20:0b:22: ca:23:97:c8:60:bb:35:8a:0c:7e:9f:ca:ea:f7:c6:6d:12:8e: e9:58:80:20 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUETwAcry+nx2evhCXuJxSehHCmQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yMzA3MzAyMzU3MzRaFw0yNDA3MjkwMDAyMzRaMDMxMTAvBgNV BAMTKDlGN0YxQkM0OEI3NjZGNTZCNTQ0QzEwQzdERTE4MjM1ODhEOUQxQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIRxp4GeY1Qjzv/PAJDiXQMVyl ifGfwSvUkNnaZtD9/I6Mq2clU0woxH8Cokmn355gDgGmX5Lvhoc8pHNqvWvls6SZ xnTbDuP7/RnCb97aJ4BpQprRw7afNs1Yvxd+yIVHFW5Fv1IdXR4E4YEXzfjlDZsT 7Lbc4K9DMTGGqn5I6N1/RblLY7zAUPzEWyjHf6C7xknSJyDmo2MMAJL+GgZzlLwd Sk4uXd9X++CHc6c+zn1XSGsNqA0NUZPxsnoYz/bsXhn4WMBtjhoQ2lniRYNqT1NE StY9HTpeOwdOQRRXhkpa1DxCug7QQHhGzdzoBAelubaPYhCnx63qabfFQ295AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn38bxIt2b1a1RMEMfeGCNYjZ0cgwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr290MA0GCSqG SIb3DQEBCwUAA4IBAQA0SS7VfK8W4zlqTvSXkIt0M5OwsoJzZUYDOnwEPlppfefD k8ip9dCq/8UJxWPSzYs5lezjSdgrCaf7LRYHPQJP7jFxlNdwfg4/62BreSTUD+y5 ZgWoly4JwM/n+Je+demPYRHOMkp574ON1/bqX4dQU2M2Tv07uAW6CQa0apBJCq6j d3IaYiBcvSjpo8jHTW16DKXqIPkN5bbgaW9L+UotWXD5XBixtIn4UsYFHS9OWEWP waoYzKWpQDVeyoPeXHdZdLTG3zEDQ6wRfJ96L7Dbi4srUkSxTOrvmxuG3zToiYWb UoHH+1cgCyLKI5fIYLs1igx+n8rq98ZtEo7pWIAg -----END CERTIFICATE-----Generated at Wed Apr 24 05:34:30 2024 by rpki-client on console-ams.rpki-client.org