$ rpki-client -vvf repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/36302e3235332e39362e302f31392d3234203d3e203338313434.roa File: 36302e3235332e39362e302f31392d3234203d3e203338313434.roa (raw, json) Hash identifier: 2GyoDj7oB/SMb7EN8B4mx7FODKsMb0/YAYXt+yjU4c8= Subject key identifier: C6:8F:45:CE:1A:85:F8:87:35:39:39:C0:26:8D:9A:94:7C:DE:B8:CC Certificate issuer: /CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Certificate serial: 434C58FD709F6C8F9B65D8219C2FAF5080FB0732 Authority key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/36302e3235332e39362e302f31392d3234203d3e203338313434.roa Signing time: Mon 31 Jul 2023 00:09:32 +0000 ROA not before: Mon 31 Jul 2023 00:04:32 +0000 ROA not after: Mon 29 Jul 2024 00:09:32 +0000 asID: 38144 IP address blocks: 60.253.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 21:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:4c:58:fd:70:9f:6c:8f:9b:65:d8:21:9c:2f:af:50:80:fb:07:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Validity Not Before: Jul 31 00:04:32 2023 GMT Not After : Jul 29 00:09:32 2024 GMT Subject: CN=C68F45CE1A85F887353939C0268D9A947CDEB8CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ba:ab:e9:e4:c9:11:0e:f0:d3:f0:49:f3:10: 11:5d:3b:7f:13:33:71:2c:f1:50:ca:c2:b3:45:f1: 67:bc:b4:d2:7a:6a:b3:0e:27:8f:b3:66:28:45:04: 85:b4:2d:d1:bf:40:eb:05:51:6a:12:28:99:2e:f5: 86:bb:6f:67:77:ea:b7:f5:b8:b9:aa:aa:6b:64:25: af:e8:9e:c5:9c:ee:90:a0:28:ea:ff:45:87:d2:66: df:d9:b1:6b:83:ef:39:a5:91:89:54:5a:f6:39:d0: ed:97:88:ad:b0:98:be:d1:80:c0:d1:14:9f:91:25: 14:30:a0:51:6d:ab:2c:f5:e2:d9:86:2f:dd:59:2b: eb:28:69:7f:84:f0:21:c8:9d:2d:75:26:fe:cf:36: b2:44:38:97:94:40:89:8a:22:db:40:b0:27:8b:b0: f3:a0:4b:18:9f:68:7c:80:b2:b1:05:bb:96:b7:29: d1:78:d6:be:03:23:cd:ce:89:5c:8d:93:a7:15:f3: 43:c9:19:0e:88:f7:93:30:fa:cf:7a:d1:7c:df:be: bb:c4:6f:e1:a2:43:d5:55:a3:2f:d9:89:9b:8c:d4: 71:0b:8a:1c:70:eb:71:f7:b0:cb:02:36:6d:f7:e5: 48:88:30:87:f6:4e:ba:c4:08:b8:60:07:b9:47:aa: 74:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:8F:45:CE:1A:85:F8:87:35:39:39:C0:26:8D:9A:94:7C:DE:B8:CC X509v3 Authority Key Identifier: keyid:25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/36302e3235332e39362e302f31392d3234203d3e203338313434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 60.253.96.0/19 Signature Algorithm: sha256WithRSAEncryption 12:72:ad:d6:4e:d1:bf:ad:95:4c:8f:60:76:56:80:95:44:e0: d7:ec:30:0c:ab:e7:42:a7:97:c2:05:15:1e:5b:aa:11:e8:66: d8:81:92:26:7d:cb:3a:1a:6f:f9:03:af:02:16:e4:85:31:9e: 7d:09:8f:f2:57:dd:20:ff:fa:e8:8b:d9:8c:37:ec:54:ba:89: 54:34:13:e1:ac:dc:e6:dd:5a:99:f8:eb:f8:ad:a4:b6:cc:e2: f7:47:69:03:a2:fd:3b:2b:e1:b6:ad:af:0a:82:a5:6c:47:38: c7:98:15:4e:eb:15:90:b8:05:53:ad:bf:78:0d:6b:90:76:92: 8f:95:cd:de:d2:b4:64:e3:62:19:d3:64:f7:d5:bc:dd:27:ba: c8:90:66:38:a3:b8:22:90:f2:75:8a:f8:67:70:e2:bc:b1:43: 89:48:99:0f:b3:15:13:bc:67:7b:e7:4b:0a:9e:d4:7d:c5:78: 77:c8:60:19:f3:fd:23:89:8d:e0:9f:2f:2a:25:31:52:a2:92: 7d:e4:d8:d1:de:51:48:4b:88:c3:28:89:03:23:ff:b7:d1:8e: 14:ab:22:06:e9:30:87:0e:14:f5:10:94:a4:e4:0c:f0:3f:d7: f3:24:e7:22:4a:99:99:48:74:97:72:33:85:8d:e8:13:22:cd: cb:bc:85:c9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQ0xY/XCfbI+bZdghnC+vUID7BzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQw NThEQTEwMTAeFw0yMzA3MzEwMDA0MzJaFw0yNDA3MjkwMDA5MzJaMDMxMTAvBgNV BAMTKEM2OEY0NUNFMUE4NUY4ODczNTM5MzlDMDI2OEQ5QTk0N0NERUI4Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCuqvp5MkRDvDT8EnzEBFdO38T M3Es8VDKwrNF8We8tNJ6arMOJ4+zZihFBIW0LdG/QOsFUWoSKJku9Ya7b2d36rf1 uLmqqmtkJa/onsWc7pCgKOr/RYfSZt/ZsWuD7zmlkYlUWvY50O2XiK2wmL7RgMDR FJ+RJRQwoFFtqyz14tmGL91ZK+soaX+E8CHInS11Jv7PNrJEOJeUQImKIttAsCeL sPOgSxifaHyAsrEFu5a3KdF41r4DI83OiVyNk6cV80PJGQ6I95Mw+s960XzfvrvE b+GiQ9VVoy/ZiZuM1HELihxw63H3sMsCNm335UiIMIf2TrrECLhgB7lHqnQfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUxo9FzhqF+Ic1OTnAJo2alHzeuMwwHwYDVR0j BBgwFoAUJT4rtN5GevCPGRr3Yy7jvQWNoQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2Q3NTM2ZC05ZTEwLTRkNDktYjZjYS0wNDFjYzlhNTkxNGUvMC8yNTNFMkJCNERF NDY3QUYwOEYxOTFBRjc2MzJFRTNCRDA1OERBMTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQwNThE QTEwMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjZDc1MzZkLTllMTAtNGQ0OS1i NmNhLTA0MWNjOWE1OTE0ZS8wLzM2MzAyZTMyMzUzMzJlMzkzNjJlMzAyZjMxMzky ZDMyMzQyMDNkM2UyMDMzMzgzMTM0MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU8/WAwDQYJKoZIhvcN AQELBQADggEBABJyrdZO0b+tlUyPYHZWgJVE4NfsMAyr50Knl8IFFR5bqhHoZtiB kiZ9yzoab/kDrwIW5IUxnn0Jj/JX3SD/+uiL2Yw37FS6iVQ0E+Gs3ObdWpn46/it pLbM4vdHaQOi/Tsr4batrwqCpWxHOMeYFU7rFZC4BVOtv3gNa5B2ko+Vzd7StGTj YhnTZPfVvN0nusiQZjijuCKQ8nWK+Gdw4ryxQ4lImQ+zFRO8Z3vnSwqe1H3FeHfI YBnz/SOJjeCfLyolMVKikn3k2NHeUUhLiMMoiQMj/7fRjhSrIgbpMIcOFPUQlKTk DPA/1/Mk5yJKmZlIdJdyM4WN6BMizcu8hck= -----END CERTIFICATE-----Generated at Tue Apr 23 20:37:36 2024 by rpki-client on console-fra.rpki-client.org