$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa File: 3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa (raw, json) Hash identifier: 55bpDPjql72mfxIBlZzeMhcmowARz1+su3RjU6c8Ofg= Subject key identifier: E0:CE:1B:74:52:19:F0:D0:7D:FC:3A:CD:13:04:90:61:7F:BE:33:D0 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 5A76DE066F81FA83C4F64102F7FB8296AE86656E Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa Signing time: Mon 31 Jul 2023 00:09:45 +0000 ROA not before: Mon 31 Jul 2023 00:04:45 +0000 ROA not after: Mon 29 Jul 2024 00:09:45 +0000 asID: 135478 IP address blocks: 175.158.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 12:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:76:de:06:6f:81:fa:83:c4:f6:41:02:f7:fb:82:96:ae:86:65:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jul 31 00:04:45 2023 GMT Not After : Jul 29 00:09:45 2024 GMT Subject: CN=E0CE1B745219F0D07DFC3ACD130490617FBE33D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:12:80:cb:e2:18:98:db:44:17:06:80:15:d2: a9:f1:5f:a8:0a:40:51:7a:7d:b7:2b:a8:b6:e4:89: e4:58:c2:8c:24:72:f1:d3:0a:ae:26:8c:c6:bf:a9: f7:5a:b8:4e:01:e7:1b:e4:74:0a:b9:d2:a4:cc:b6: 7f:59:7b:af:2d:85:4c:c1:6d:e6:95:09:12:11:97: c4:0e:8d:e7:eb:63:d5:30:86:c3:07:8f:48:e7:99: 0a:0d:f5:ac:95:20:51:1b:50:2a:6a:c5:b6:1b:de: 90:ae:6d:e9:fc:26:c9:e0:34:c2:49:d3:96:18:04: f6:00:3b:21:90:89:8e:5d:5c:0a:c7:d2:00:40:f4: 1f:6b:3c:ed:00:93:08:fb:e4:3d:7b:49:88:d4:a9: 25:a3:ee:ef:fc:b2:df:89:f6:14:ec:dc:69:b2:63: 85:75:4f:06:73:db:5a:82:ac:f2:b7:ab:4d:bd:01: b0:c4:35:9f:ba:49:cd:7d:b5:8d:c7:54:81:b0:be: 7b:11:e4:73:66:51:4b:10:f0:ef:9a:f4:8d:eb:be: ea:bd:ed:cd:5b:79:87:7e:e6:26:89:11:20:ca:dc: 37:57:49:d0:7d:e3:f4:47:5b:62:67:4e:fa:0d:0c: 1b:c0:5a:6c:c4:8f:d0:0a:9d:ff:22:c3:57:e1:b9: b6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:CE:1B:74:52:19:F0:D0:7D:FC:3A:CD:13:04:90:61:7F:BE:33:D0 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/3137352e3135382e34382e302f32302d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.158.48.0/20 Signature Algorithm: sha256WithRSAEncryption 5c:78:71:6d:57:d3:a6:09:2f:10:de:5d:6f:62:e3:46:a3:0b: 28:b7:c5:d7:bd:ff:a8:7d:ad:f6:90:23:b9:17:55:74:ef:2b: 6b:a3:3e:5e:ed:68:5b:e1:4f:dc:84:e3:68:d4:26:2b:dc:40: 41:d9:50:87:d6:13:e1:6f:4f:c2:50:81:19:f3:19:99:4d:3d: 13:07:65:da:16:09:0d:ff:cd:03:1b:9e:4b:0d:f9:fb:24:c9: 36:21:c2:e4:65:2a:81:0a:d7:5a:6b:aa:fa:63:37:7d:7b:d7: 1b:61:01:f4:94:d1:7e:3f:1c:79:16:1b:69:c5:84:f5:2a:1a: 9b:e3:39:68:23:94:58:14:d0:52:20:fb:43:ad:6e:5c:7a:05: 41:e5:08:65:65:d0:e6:af:e3:fe:80:79:99:14:3f:ba:c3:e5: ad:76:bf:2e:91:60:ea:94:4c:68:82:0a:9c:f7:a7:01:e0:5a: 98:b2:c7:8e:fa:30:7b:13:10:3f:c4:db:f4:17:cc:11:d6:5a: e5:cb:94:db:33:7b:00:ba:44:3b:09:53:e5:c9:0f:f5:0a:6a: f1:50:2e:50:6b:9e:e8:92:ef:b6:ca:68:3f:7e:65:05:27:6b: 81:5f:77:34:8b:79:57:9a:5d:79:7f:0b:cb:77:f8:c3:e6:12: e4:eb:11:bc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWnbeBm+B+oPE9kEC9/uClq6GZW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yMzA3MzEwMDA0NDVaFw0yNDA3MjkwMDA5NDVaMDMxMTAvBgNV BAMTKEUwQ0UxQjc0NTIxOUYwRDA3REZDM0FDRDEzMDQ5MDYxN0ZCRTMzRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+EoDL4hiY20QXBoAV0qnxX6gK QFF6fbcrqLbkieRYwowkcvHTCq4mjMa/qfdauE4B5xvkdAq50qTMtn9Ze68thUzB beaVCRIRl8QOjefrY9UwhsMHj0jnmQoN9ayVIFEbUCpqxbYb3pCuben8JsngNMJJ 05YYBPYAOyGQiY5dXArH0gBA9B9rPO0Akwj75D17SYjUqSWj7u/8st+J9hTs3Gmy Y4V1TwZz21qCrPK3q029AbDENZ+6Sc19tY3HVIGwvnsR5HNmUUsQ8O+a9I3rvuq9 7c1beYd+5iaJESDK3DdXSdB94/RHW2JnTvoNDBvAWmzEj9AKnf8iw1fhubYjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4M4bdFIZ8NB9/DrNEwSQYX++M9AwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMxMzczNTJlMzEzNTM4MmUzNDM4MmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEr54wMA0GCSqG SIb3DQEBCwUAA4IBAQBceHFtV9OmCS8Q3l1vYuNGowsot8XXvf+ofa32kCO5F1V0 7ytroz5e7Whb4U/chONo1CYr3EBB2VCH1hPhb0/CUIEZ8xmZTT0TB2XaFgkN/80D G55LDfn7JMk2IcLkZSqBCtdaa6r6Yzd9e9cbYQH0lNF+Pxx5FhtpxYT1Khqb4zlo I5RYFNBSIPtDrW5cegVB5QhlZdDmr+P+gHmZFD+6w+Wtdr8ukWDqlExoggqc96cB 4FqYsseO+jB7ExA/xNv0F8wR1lrly5TbM3sAukQ7CVPlyQ/1CmrxUC5Qa57oku+2 ymg/fmUFJ2uBX3c0i3lXml15fwvLd/jD5hLk6xG8 -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:37 2024 by rpki-client on console-fra.rpki-client.org