$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e33322e302f32302d3234203d3e20313335343738.roa File: 3137352e3135382e33322e302f32302d3234203d3e20313335343738.roa (raw, json) Hash identifier: W7xghBLprUPjR4+H9P1NnnjHOoOBT08rSCaxQBd1ps0= Subject key identifier: 3C:BB:47:D9:C2:E0:28:FA:27:D2:A9:D7:2B:C6:C2:BC:2E:21:30:08 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: E19441EFA59F7EEC3EE98192878E4A1A31D235 Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e33322e302f32302d3234203d3e20313335343738.roa Signing time: Mon 31 Jul 2023 00:09:45 +0000 ROA not before: Mon 31 Jul 2023 00:04:45 +0000 ROA not after: Mon 29 Jul 2024 00:09:45 +0000 asID: 135478 IP address blocks: 175.158.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 23:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: e1:94:41:ef:a5:9f:7e:ec:3e:e9:81:92:87:8e:4a:1a:31:d2:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jul 31 00:04:45 2023 GMT Not After : Jul 29 00:09:45 2024 GMT Subject: CN=3CBB47D9C2E028FA27D2A9D72BC6C2BC2E213008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:72:a8:35:92:2f:54:4c:43:fc:7f:12:46:e0: 0b:e1:0b:7d:a9:cb:24:aa:f4:bd:f5:a5:7a:e0:22: 5f:42:26:55:59:c4:ee:00:81:88:29:ce:9e:f2:60: 51:f4:67:c6:0b:1a:1e:96:89:b6:7f:7c:c5:63:ed: 3a:b1:ab:7e:41:06:25:2f:cc:b3:19:17:86:f0:aa: e7:02:6f:8b:03:bd:0f:f5:aa:f5:37:e5:2a:95:2d: 8a:23:e8:52:ae:b5:3d:9f:96:7c:fd:6a:07:1b:47: d0:c4:9c:50:a1:ae:28:c8:37:f4:5b:7c:81:ba:e8: 04:a6:28:a6:b4:39:a5:9e:84:b8:c9:dc:e8:d0:d9: 76:3e:d1:1b:04:7a:69:39:40:b7:f0:71:63:5b:9c: ca:fe:4e:76:54:8f:c4:ce:d0:eb:8e:b4:f2:9f:6d: 2a:b2:d4:eb:ca:3a:ee:ba:2e:fe:78:32:51:ee:b4: a2:e9:41:cb:1a:3d:bb:b4:16:8c:71:27:8b:58:2e: 4b:c9:cc:d2:be:0e:a8:3c:6a:6d:ec:05:6d:31:cc: c7:68:5c:09:f1:4b:f8:ca:2c:98:1f:02:87:2d:58: 22:ff:78:14:65:fa:ab:f8:69:64:e3:91:5a:b6:fe: c2:ba:47:c9:f7:4f:6c:b0:c9:80:b7:58:81:d8:79: 2a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BB:47:D9:C2:E0:28:FA:27:D2:A9:D7:2B:C6:C2:BC:2E:21:30:08 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e33322e302f32302d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.158.32.0/20 Signature Algorithm: sha256WithRSAEncryption 22:5d:f5:25:bc:99:61:15:32:44:55:f4:d6:21:0a:2e:51:6b: a5:47:5c:ec:b0:5b:e5:fe:d3:f1:77:c4:d8:03:5d:06:e3:39: 99:34:cb:b2:2a:4d:6c:68:57:bf:b1:af:7c:76:82:52:d5:d9: f6:cf:69:8d:64:a4:e5:fe:76:6f:81:5f:e5:fe:8f:47:25:b5: c0:24:bd:d1:91:a1:ca:c6:73:8d:f7:37:63:6e:0d:9b:30:a3: 37:80:47:7b:cc:43:b4:2d:9f:15:e6:a6:35:e0:10:25:5a:a7: d7:10:a3:ec:4f:77:8b:ec:97:ba:b6:0c:e5:5b:a4:17:06:c1: 5d:20:30:3b:06:e7:36:2d:74:b8:0f:bc:5a:0f:5e:ff:28:e9: 8e:93:76:0f:e2:24:b1:ea:aa:fc:54:ed:3b:9c:6d:d0:f6:27: 36:5f:9d:b8:ae:2e:a2:11:fd:11:7f:4e:b2:dd:58:d3:7d:7d: df:6d:95:05:92:67:ca:b4:95:fc:f4:ff:13:50:97:16:9f:b7: ad:71:e2:55:ea:e5:f3:a2:b4:3f:b7:c6:02:40:aa:85:18:da: 92:4a:ad:33:d2:db:b3:24:5f:64:cd:bc:da:68:e8:71:2b:d7: db:18:0e:4d:a5:ef:10:4e:e6:26:1f:ae:4e:26:32:cc:f8:b8: 06:54:8f:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAOGUQe+ln37sPumBkoeOShox0jUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yMzA3MzEwMDA0NDVaFw0yNDA3MjkwMDA5NDVaMDMxMTAvBgNV BAMTKDNDQkI0N0Q5QzJFMDI4RkEyN0QyQTlENzJCQzZDMkJDMkUyMTMwMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCcqg1ki9UTEP8fxJG4AvhC32p yySq9L31pXrgIl9CJlVZxO4AgYgpzp7yYFH0Z8YLGh6WibZ/fMVj7Tqxq35BBiUv zLMZF4bwqucCb4sDvQ/1qvU35SqVLYoj6FKutT2flnz9agcbR9DEnFChrijIN/Rb fIG66ASmKKa0OaWehLjJ3OjQ2XY+0RsEemk5QLfwcWNbnMr+TnZUj8TO0OuOtPKf bSqy1OvKOu66Lv54MlHutKLpQcsaPbu0FoxxJ4tYLkvJzNK+Dqg8am3sBW0xzMdo XAnxS/jKLJgfAoctWCL/eBRl+qv4aWTjkVq2/sK6R8n3T2ywyYC3WIHYeSotAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPLtH2cLgKPon0qnXK8bCvC4hMAgwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMxMzczNTJlMzEzNTM4MmUzMzMyMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEr54gMA0GCSqG SIb3DQEBCwUAA4IBAQAiXfUlvJlhFTJEVfTWIQouUWulR1zssFvl/tPxd8TYA10G 4zmZNMuyKk1saFe/sa98doJS1dn2z2mNZKTl/nZvgV/l/o9HJbXAJL3RkaHKxnON 9zdjbg2bMKM3gEd7zEO0LZ8V5qY14BAlWqfXEKPsT3eL7Je6tgzlW6QXBsFdIDA7 Buc2LXS4D7xaD17/KOmOk3YP4iSx6qr8VO07nG3Q9ic2X524ri6iEf0Rf06y3VjT fX3fbZUFkmfKtJX89P8TUJcWn7etceJV6uXzorQ/t8YCQKqFGNqSSq0z0tuzJF9k zbzaaOhxK9fbGA5Npe8QTuYmH65OJjLM+LgGVI8A -----END CERTIFICATE-----Generated at Fri Apr 19 20:20:01 2024 by rpki-client on console-fra.rpki-client.org