$ rpki-client -vvf repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/3137352e3130362e31362e302f32322d3234203d3e20313331373637.roa File: 3137352e3130362e31362e302f32322d3234203d3e20313331373637.roa (raw, json) Hash identifier: 1y4TI27i/458SBNR2/1Lnvn5tUXlZixG3zHLAJt3P1o= Subject key identifier: D0:B4:5A:E0:8D:67:AE:4C:54:A7:91:F8:AE:47:E1:38:3C:23:92:A9 Certificate issuer: /CN=4FA812FE6A4A85F790CB2740EF08836883716912 Certificate serial: 09CF86921EF452E34B3EAFA1F7C40F62C8661562 Authority key identifier: 4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/3137352e3130362e31362e302f32322d3234203d3e20313331373637.roa Signing time: Fri 08 Sep 2023 06:00:00 +0000 ROA not before: Fri 08 Sep 2023 05:55:00 +0000 ROA not after: Fri 06 Sep 2024 06:00:00 +0000 asID: 131767 IP address blocks: 175.106.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 08:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:cf:86:92:1e:f4:52:e3:4b:3e:af:a1:f7:c4:0f:62:c8:66:15:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FA812FE6A4A85F790CB2740EF08836883716912 Validity Not Before: Sep 8 05:55:00 2023 GMT Not After : Sep 6 06:00:00 2024 GMT Subject: CN=D0B45AE08D67AE4C54A791F8AE47E1383C2392A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2d:c6:23:6c:87:4b:6f:a1:7e:a7:9c:12:12: 78:a9:8b:83:0e:39:3f:a3:dc:e1:55:e2:57:48:b5: a5:5b:4b:a4:ac:0c:a8:ca:ef:d3:6d:51:f8:48:51: 5c:6a:af:ad:40:44:98:13:da:9d:f3:70:6a:79:d8: a9:50:d5:2f:01:17:e9:c7:f4:ac:15:63:86:f8:63: 43:44:b2:06:45:10:ff:ab:23:ac:ac:2b:2b:d8:67: 61:e0:0e:aa:ed:7f:21:38:d0:0d:dc:3d:18:81:26: df:45:99:d9:6a:48:22:79:b6:b9:bc:33:22:21:9b: 4f:8a:64:fa:20:12:6f:ae:57:f6:e8:38:52:bf:48: 9d:71:75:3c:db:87:49:69:bb:20:d5:40:4d:cd:a2: 81:22:fe:48:fe:59:9c:35:c0:94:27:d3:1c:49:4d: 6e:eb:16:37:9b:31:c9:97:d3:0f:92:5c:b9:9b:88: 1b:ed:95:09:b9:9e:5f:b2:30:83:11:bd:c0:35:09: ae:03:f5:79:3e:07:c3:54:3b:4a:1c:c2:74:82:b7: d1:9b:d2:69:4e:5d:bd:40:6a:05:a6:3e:35:e4:52: 4d:06:90:a6:48:39:ba:cb:b4:7b:08:21:c9:fd:96: c2:8e:07:26:07:3b:b1:44:97:e4:38:6e:f4:30:84: c7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B4:5A:E0:8D:67:AE:4C:54:A7:91:F8:AE:47:E1:38:3C:23:92:A9 X509v3 Authority Key Identifier: keyid:4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/3137352e3130362e31362e302f32322d3234203d3e20313331373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.106.16.0/22 Signature Algorithm: sha256WithRSAEncryption 57:88:11:c7:4f:4c:63:a5:fe:9f:cd:6f:25:7e:61:1c:e0:88: ad:8b:a0:ed:ab:d9:66:1f:a6:7f:ad:7b:07:d8:07:bf:68:22: 3c:c9:30:98:f6:0b:73:53:ba:3f:10:57:a0:6d:93:26:96:00: e7:14:c0:74:22:f2:cf:b5:d3:cc:fb:72:34:1b:93:c9:6c:94: d3:ed:4b:c6:27:68:18:5e:6f:b6:d7:13:e0:da:33:35:bc:a7: 12:c4:47:4e:9c:df:62:48:14:55:0a:b3:0f:7a:8d:3b:de:08: b6:a4:2b:71:6a:28:bc:94:7f:2c:04:af:c1:24:2f:f5:af:06: f7:9b:53:df:b2:45:b3:d3:ce:66:6c:b5:a6:37:b9:e0:3a:6f: b0:fd:5d:bc:ec:e8:a1:19:36:50:06:b5:bd:8c:4c:31:08:4a: 91:d3:2e:06:28:5d:02:0d:dc:fb:6d:b7:34:5e:a2:32:42:ff: 2a:1a:b8:3b:d2:c8:13:df:92:62:e7:5b:d8:4f:3c:ef:27:b5: bf:f4:eb:df:ee:1c:3a:37:58:61:c8:7b:9d:73:ec:55:2b:db: 1d:01:8f:ff:36:ff:a4:d0:7a:13:1f:c9:20:17:b6:01:d4:b8: f6:b0:1b:78:0e:70:71:73:81:77:5c:02:56:09:9d:32:6b:0b: ee:fe:2c:c9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCc+Gkh70UuNLPq+h98QPYshmFWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4 MzcxNjkxMjAeFw0yMzA5MDgwNTU1MDBaFw0yNDA5MDYwNjAwMDBaMDMxMTAvBgNV BAMTKEQwQjQ1QUUwOEQ2N0FFNEM1NEE3OTFGOEFFNDdFMTM4M0MyMzkyQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKLcYjbIdLb6F+p5wSEnipi4MO OT+j3OFV4ldItaVbS6SsDKjK79NtUfhIUVxqr61ARJgT2p3zcGp52KlQ1S8BF+nH 9KwVY4b4Y0NEsgZFEP+rI6ysKyvYZ2HgDqrtfyE40A3cPRiBJt9FmdlqSCJ5trm8 MyIhm0+KZPogEm+uV/boOFK/SJ1xdTzbh0lpuyDVQE3NooEi/kj+WZw1wJQn0xxJ TW7rFjebMcmX0w+SXLmbiBvtlQm5nl+yMIMRvcA1Ca4D9Xk+B8NUO0ocwnSCt9Gb 0mlOXb1AagWmPjXkUk0GkKZIObrLtHsIIcn9lsKOByYHO7FEl+Q4bvQwhMebAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0LRa4I1nrkxUp5H4rkfhODwjkqkwHwYDVR0j BBgwFoAUT6gS/mpKhfeQyydA7wiDaINxaRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NGQxMDhmNy0wOGIyLTQwOWYtOGE3MC1hOWM2N2FlNWVkMjIvMC80RkE4MTJGRTZB NEE4NUY3OTBDQjI3NDBFRjA4ODM2ODgzNzE2OTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4Mzcx NjkxMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0ZDEwOGY3LTA4YjItNDA5Zi04 YTcwLWE5YzY3YWU1ZWQyMi8wLzMxMzczNTJlMzEzMDM2MmUzMTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCr2oQMA0GCSqG SIb3DQEBCwUAA4IBAQBXiBHHT0xjpf6fzW8lfmEc4Iiti6Dtq9lmH6Z/rXsH2Ae/ aCI8yTCY9gtzU7o/EFegbZMmlgDnFMB0IvLPtdPM+3I0G5PJbJTT7UvGJ2gYXm+2 1xPg2jM1vKcSxEdOnN9iSBRVCrMPeo073gi2pCtxaii8lH8sBK/BJC/1rwb3m1Pf skWz085mbLWmN7ngOm+w/V287OihGTZQBrW9jEwxCEqR0y4GKF0CDdz7bbc0XqIy Qv8qGrg70sgT35Ji51vYTzzvJ7W/9Ovf7hw6N1hhyHudc+xVK9sdAY//Nv+k0HoT H8kgF7YB1Lj2sBt4DnBxc4F3XAJWCZ0yawvu/izJ -----END CERTIFICATE-----Generated at Thu May 2 04:01:03 2024 by rpki-client on console-fra.rpki-client.org