$ rpki-client -vvf repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/3137352e34352e3138392e302f32342d3234203d3e203436303139.roa File: 3137352e34352e3138392e302f32342d3234203d3e203436303139.roa (raw, json) Hash identifier: SJh3drYM9RUic7dNUbCxLV8QM9/ZENJ9xvzsJT+Xh+k= Subject key identifier: A2:B6:DD:07:BB:6A:F4:83:9C:60:19:93:4C:4A:49:B6:1D:1B:B3:A8 Certificate issuer: /CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5 Certificate serial: 5C7CE73A0B8E1B1C58F2D967E28275A3B3358A3B Authority key identifier: 9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/3137352e34352e3138392e302f32342d3234203d3e203436303139.roa Signing time: Mon 31 Jul 2023 00:02:31 +0000 ROA not before: Sun 30 Jul 2023 23:57:31 +0000 ROA not after: Mon 29 Jul 2024 00:02:31 +0000 asID: 46019 IP address blocks: 175.45.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 00:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:7c:e7:3a:0b:8e:1b:1c:58:f2:d9:67:e2:82:75:a3:b3:35:8a:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5 Validity Not Before: Jul 30 23:57:31 2023 GMT Not After : Jul 29 00:02:31 2024 GMT Subject: CN=A2B6DD07BB6AF4839C6019934C4A49B61D1BB3A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:79:a5:59:6a:7e:97:90:93:cd:c0:84:cf:7c: 31:ba:c1:f3:0a:3e:a9:0a:40:84:75:92:ae:8d:7e: 98:9a:37:23:9c:29:65:0e:4e:ec:66:a6:4c:37:a7: 5a:27:58:85:22:34:ff:97:46:44:87:84:a5:db:fc: a7:fd:51:df:fd:7b:14:8e:a0:99:2d:c0:2c:f3:a2: f8:41:6c:04:74:ed:1f:32:e3:9e:69:e3:f9:d2:3d: 61:11:a9:3d:85:08:17:8c:9f:85:d0:74:93:1d:44: 39:47:13:65:3c:45:21:ce:d1:a4:df:57:1c:b8:63: 82:6f:bd:9d:c9:4b:b2:a8:18:d5:db:5a:7b:de:8d: 72:85:31:9b:f0:bc:81:33:64:77:29:40:1b:c9:3a: 9d:dc:f5:54:fe:aa:aa:45:74:25:f2:54:3d:4a:81: 9c:c5:7e:fe:59:d4:f8:af:ef:25:ae:76:ae:21:62: 74:d1:6a:da:5e:f0:17:1a:1f:6e:7e:3d:57:6f:de: 4d:20:ba:2f:d9:bc:66:55:2f:bb:9a:10:24:8b:e7: ed:0e:b9:e5:08:1b:a1:bf:d9:c2:80:19:27:f9:ca: 28:d9:18:4b:19:d2:b9:59:21:3a:e5:4a:79:5d:6e: b2:a4:9b:b6:b1:c2:90:38:35:5e:b4:27:9a:8e:3f: 59:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B6:DD:07:BB:6A:F4:83:9C:60:19:93:4C:4A:49:B6:1D:1B:B3:A8 X509v3 Authority Key Identifier: keyid:9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/3137352e34352e3138392e302f32342d3234203d3e203436303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.45.189.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:2f:ec:06:43:9c:77:06:0b:d9:48:17:54:0e:cb:1b:c3:29: 94:39:49:03:76:52:f5:1f:54:e4:52:84:6e:22:9e:c5:87:19: b0:6c:4b:bd:af:26:6f:ad:94:f5:24:47:f9:05:93:4f:27:c4: e5:c1:a7:13:8d:bc:02:e7:b1:8d:05:48:87:fd:2e:2e:c9:7d: aa:22:08:47:65:fa:b8:21:10:1b:f0:f4:db:88:2e:02:72:a1: 8c:73:85:fc:17:aa:be:e0:5c:cf:5e:0b:60:4d:de:f2:44:75: 8f:ab:e2:0e:9c:e3:f8:c8:5a:9f:e6:f3:76:6e:ba:7c:83:e4: 9d:da:5d:c4:f6:01:2e:4a:ec:f8:be:c0:e1:d3:f1:fd:15:0e: e0:e4:eb:2c:f5:80:f1:00:d9:0f:b9:e4:f2:a4:92:ea:77:c9: 24:a6:96:88:85:ce:81:1f:38:7a:6d:3d:cb:74:41:e6:b5:85: cb:ed:aa:61:0a:10:b3:25:c6:f6:5c:20:a2:bd:aa:ee:97:b1: ee:6f:a4:31:4b:4d:aa:86:aa:0d:94:e3:44:3c:c0:ef:37:f8: ce:d3:f9:dc:f9:94:47:dd:8e:00:5f:ac:00:de:05:93:06:07: e2:ff:bc:aa:d5:29:36:73:a4:30:a0:92:80:ac:2c:a6:10:4d: a5:b0:1e:c1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXHznOguOGxxY8tln4oJ1o7M1ijswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY1NkVDNTBEQTE0RDEzRDE0OUY1MTQ1RDYyQUZDNUEz RjBCNzBCNTAeFw0yMzA3MzAyMzU3MzFaFw0yNDA3MjkwMDAyMzFaMDMxMTAvBgNV BAMTKEEyQjZERDA3QkI2QUY0ODM5QzYwMTk5MzRDNEE0OUI2MUQxQkIzQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfeaVZan6XkJPNwITPfDG6wfMK PqkKQIR1kq6NfpiaNyOcKWUOTuxmpkw3p1onWIUiNP+XRkSHhKXb/Kf9Ud/9exSO oJktwCzzovhBbAR07R8y455p4/nSPWERqT2FCBeMn4XQdJMdRDlHE2U8RSHO0aTf Vxy4Y4JvvZ3JS7KoGNXbWnvejXKFMZvwvIEzZHcpQBvJOp3c9VT+qqpFdCXyVD1K gZzFfv5Z1Piv7yWudq4hYnTRatpe8BcaH25+PVdv3k0gui/ZvGZVL7uaECSL5+0O ueUIG6G/2cKAGSf5yijZGEsZ0rlZITrlSnldbrKkm7axwpA4NV60J5qOP1kRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUorbdB7tq9IOcYBmTTEpJth0bs6gwHwYDVR0j BBgwFoAUn1bsUNoU0T0Un1FF1ir8Wj8LcLUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmY3MWM5MS0xNjI0LTRmYzAtOGM2My0yZWZhZmQ0NmZiYzEvMC85RjU2RUM1MERB MTREMTNEMTQ5RjUxNDVENjJBRkM1QTNGMEI3MEI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY1NkVDNTBEQTE0RDEzRDE0OUY1MTQ1RDYyQUZDNUEzRjBC NzBCNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiZjcxYzkxLTE2MjQtNGZjMC04 YzYzLTJlZmFmZDQ2ZmJjMS8wLzMxMzczNTJlMzQzNTJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAK8tvTANBgkqhkiG 9w0BAQsFAAOCAQEAPi/sBkOcdwYL2UgXVA7LG8MplDlJA3ZS9R9U5FKEbiKexYcZ sGxLva8mb62U9SRH+QWTTyfE5cGnE428AuexjQVIh/0uLsl9qiIIR2X6uCEQG/D0 24guAnKhjHOF/BeqvuBcz14LYE3e8kR1j6viDpzj+Mhan+bzdm66fIPkndpdxPYB Lkrs+L7A4dPx/RUO4OTrLPWA8QDZD7nk8qSS6nfJJKaWiIXOgR84em09y3RB5rWF y+2qYQoQsyXG9lwgor2q7pex7m+kMUtNqoaqDZTjRDzA7zf4ztP53PmUR92OAF+s AN4FkwYH4v+8qtUpNnOkMKCSgKwsphBNpbAewQ== -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:35 2024 by rpki-client on console-fra.rpki-client.org