$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131382e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131382e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: 8NSrSCYMDFTZmNfl6/e4Rj0vrg/r9XtzMS28Z7c/LO4= Subject key identifier: 52:CB:1A:10:48:9C:B9:B4:C1:14:3E:BC:3D:62:D0:79:FF:C8:7D:3C Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 112ADD93C7093FE6295E56999B1BB6E5237AA15A Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131382e302f32342d3234203d3e203436303236.roa Signing time: Mon 31 Jul 2023 00:02:35 +0000 ROA not before: Sun 30 Jul 2023 23:57:35 +0000 ROA not after: Mon 29 Jul 2024 00:02:35 +0000 asID: 46026 IP address blocks: 175.111.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 07:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:2a:dd:93:c7:09:3f:e6:29:5e:56:99:9b:1b:b6:e5:23:7a:a1:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jul 30 23:57:35 2023 GMT Not After : Jul 29 00:02:35 2024 GMT Subject: CN=52CB1A10489CB9B4C1143EBC3D62D079FFC87D3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0b:1a:74:2d:c3:c8:72:86:8f:bc:c7:45:70: 13:bd:da:ca:5d:b3:92:0c:dd:b7:5e:94:bf:9d:84: df:3e:34:e1:14:b4:c3:6a:b4:4b:dd:0f:28:f8:87: d2:80:8a:f7:56:15:67:01:f2:a2:a1:87:11:36:23: ce:ea:17:3c:83:58:99:1a:34:f8:71:dd:c4:1e:6b: 04:bf:9c:7e:b2:57:65:db:da:18:2e:e3:d6:54:b6: c6:8f:d8:17:cd:ad:d4:a1:dc:9a:c2:d7:ce:c1:df: 8a:f2:11:e4:5b:1f:a0:7b:68:3a:2e:20:44:52:06: c0:d8:c0:27:98:bd:f8:80:8d:cc:d4:02:69:71:7d: 9c:bd:29:16:a6:ed:d3:56:d3:3b:45:56:fe:21:f2: 43:16:eb:e7:59:0a:87:84:ad:84:9f:06:33:6b:10: 98:ed:6a:78:67:7c:70:4f:66:2d:54:cc:30:93:8a: 44:55:aa:5e:4a:e1:dc:06:8e:c9:59:ca:2f:c2:16: f9:ca:c9:e4:25:16:5c:b9:d0:a9:7b:9e:59:95:18: a9:7a:b0:f1:9f:61:be:cb:07:38:84:1a:e6:bd:f6: bb:2f:96:9c:bd:f5:10:24:52:2c:66:85:12:b9:64: 73:84:ef:1a:0d:de:5b:52:1c:5b:38:fe:b9:b8:48: ee:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:CB:1A:10:48:9C:B9:B4:C1:14:3E:BC:3D:62:D0:79:FF:C8:7D:3C X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131382e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.118.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:ad:5f:a4:0e:e0:5f:00:d0:59:0d:83:0e:3e:6a:f2:51:05: fd:cf:0f:a4:aa:3c:a0:1d:77:d7:22:6c:fa:2b:8f:bf:6b:4d: 97:9a:e2:a6:6a:98:a9:07:61:65:04:de:e4:4d:12:d0:bc:d6: 40:e7:39:e7:d7:c9:ab:a9:ae:9c:82:37:14:b9:ac:54:ec:eb: 8d:b6:fe:d3:31:07:27:9d:ab:cf:32:a3:b0:9d:37:6d:8a:60: 29:b0:d1:67:cf:6e:97:51:08:fa:f6:63:bb:1a:3a:66:fc:4d: 34:e8:f2:90:5e:eb:f2:72:d7:ea:b2:4f:3f:8d:c7:d4:a8:58: d9:ea:b7:6a:e7:c4:2c:94:06:7a:bb:a7:a2:ef:56:66:ce:e0: 05:db:a8:c2:9d:1a:21:30:3c:0c:7b:66:21:ed:7a:34:d4:db: 8d:1a:f6:20:0f:f1:9b:42:e5:1c:13:83:9b:80:0d:2d:88:e7: 0f:3e:88:3c:4c:bc:83:71:22:41:bc:b2:aa:df:6f:53:e0:2b: e8:a1:de:cd:53:86:49:d9:e5:17:db:63:cf:6b:62:d5:61:a8: 25:99:e0:d7:38:6f:c2:9d:4c:ca:53:1e:e8:60:22:e4:02:85: 62:50:02:d9:8f:88:2a:3e:6f:8c:b5:fe:a2:85:60:10:a8:a0: d6:52:4f:0e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUESrdk8cJP+YpXlaZmxu25SN6oVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yMzA3MzAyMzU3MzVaFw0yNDA3MjkwMDAyMzVaMDMxMTAvBgNV BAMTKDUyQ0IxQTEwNDg5Q0I5QjRDMTE0M0VCQzNENjJEMDc5RkZDODdEM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxCxp0LcPIcoaPvMdFcBO92spd s5IM3bdelL+dhN8+NOEUtMNqtEvdDyj4h9KAivdWFWcB8qKhhxE2I87qFzyDWJka NPhx3cQeawS/nH6yV2Xb2hgu49ZUtsaP2BfNrdSh3JrC187B34ryEeRbH6B7aDou IERSBsDYwCeYvfiAjczUAmlxfZy9KRam7dNW0ztFVv4h8kMW6+dZCoeErYSfBjNr EJjtanhnfHBPZi1UzDCTikRVql5K4dwGjslZyi/CFvnKyeQlFly50Kl7nlmVGKl6 sPGfYb7LBziEGua99rsvlpy99RAkUixmhRK5ZHOE7xoN3ltSHFs4/rm4SO6JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUssaEEicubTBFD68PWLQef/IfTwwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr292MA0GCSqG SIb3DQEBCwUAA4IBAQBrrV+kDuBfANBZDYMOPmryUQX9zw+kqjygHXfXImz6K4+/ a02XmuKmapipB2FlBN7kTRLQvNZA5znn18mrqa6cgjcUuaxU7OuNtv7TMQcnnavP MqOwnTdtimApsNFnz26XUQj69mO7Gjpm/E006PKQXuvyctfqsk8/jcfUqFjZ6rdq 58QslAZ6u6ei71ZmzuAF26jCnRohMDwMe2Yh7Xo01NuNGvYgD/GbQuUcE4ObgA0t iOcPPog8TLyDcSJBvLKq329T4Cvood7NU4ZJ2eUX22PPa2LVYaglmeDXOG/CnUzK Ux7oYCLkAoViUALZj4gqPm+Mtf6ihWAQqKDWUk8O -----END CERTIFICATE-----Generated at Wed Apr 24 05:34:30 2024 by rpki-client on console-ams.rpki-client.org