$ rpki-client -vvf repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/3138332e38312e3135322e302f32312d3234203d3e203234353237.roa File: 3138332e38312e3135322e302f32312d3234203d3e203234353237.roa (raw, json) Hash identifier: aMMBK1ZzCuCSx366VauUaSPkKCtUtW4LSpq273qMkOY= Subject key identifier: 0A:FA:3F:54:CC:B2:6E:22:DD:9A:FA:E9:AF:0E:63:D2:85:8F:5D:56 Certificate issuer: /CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Certificate serial: 54DB19866EB3A47C89BAE82834E75661FB349CF9 Authority key identifier: E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/3138332e38312e3135322e302f32312d3234203d3e203234353237.roa Signing time: Mon 31 Jul 2023 00:01:16 +0000 ROA not before: Sun 30 Jul 2023 23:56:16 +0000 ROA not after: Mon 29 Jul 2024 00:01:16 +0000 asID: 24527 IP address blocks: 183.81.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 14:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:db:19:86:6e:b3:a4:7c:89:ba:e8:28:34:e7:56:61:fb:34:9c:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Validity Not Before: Jul 30 23:56:16 2023 GMT Not After : Jul 29 00:01:16 2024 GMT Subject: CN=0AFA3F54CCB26E22DD9AFAE9AF0E63D2858F5D56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4d:a2:7e:51:7d:11:fb:ce:97:20:97:e1:1f: 4d:6b:ef:c6:70:9d:33:b5:a2:d6:e1:51:9f:06:e4: 60:ec:c9:68:a5:a0:a0:67:56:06:33:65:17:d3:7b: f6:55:99:2c:2e:98:c0:f8:8d:f3:f7:69:ea:43:88: 07:32:16:cf:09:2c:e2:fe:b8:ee:93:a4:28:f3:30: 34:1e:b0:34:c2:ad:a0:48:56:2c:af:d1:cb:42:d7: 98:75:9b:24:61:bc:8b:46:86:69:6c:65:7a:ba:2b: 65:cb:57:78:a9:8a:ed:e7:b2:80:be:be:cc:b8:be: b3:73:27:d9:2a:42:f3:8b:ed:8e:37:29:c2:5f:0e: 7d:4f:db:dc:1a:76:33:53:c9:c4:13:8f:61:e2:dc: 4f:38:f9:75:16:c2:21:cc:aa:51:a5:cc:3d:17:3b: 4f:a9:e0:8c:50:be:66:d3:08:c7:21:2a:d6:29:33: 96:16:59:79:02:43:f8:0b:45:37:16:c7:57:67:4e: f2:45:73:97:13:ea:46:b3:07:c2:d4:9c:d3:17:b1: 10:17:d2:b4:cd:68:d8:1f:73:2b:99:6f:d8:fb:2a: b1:3a:b8:4b:3a:78:64:4c:5b:5a:80:7a:34:4e:ec: f9:5f:0b:eb:b0:a7:5e:54:75:d4:60:39:b7:06:02: cc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:FA:3F:54:CC:B2:6E:22:DD:9A:FA:E9:AF:0E:63:D2:85:8F:5D:56 X509v3 Authority Key Identifier: keyid:E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/3138332e38312e3135322e302f32312d3234203d3e203234353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 183.81.152.0/21 Signature Algorithm: sha256WithRSAEncryption ab:5c:ab:ae:06:ce:56:ee:fd:5f:0f:75:fc:43:4b:b8:57:48: da:ae:08:21:29:b4:31:5e:39:8c:7a:c1:be:63:0a:f0:8b:a9: 08:8f:a8:58:3c:44:4d:1f:b2:6a:ed:74:bd:11:fe:2d:2a:17: b1:4d:c6:ce:1c:df:38:f2:63:91:8f:50:13:97:af:57:a3:42: 0a:56:c2:3b:a2:35:5f:dc:d4:5f:f0:d0:93:a6:8a:4a:68:80: 83:32:64:e0:8c:e2:58:1f:95:06:33:4f:0b:64:af:be:82:56: 50:ec:85:1f:e3:cf:25:2b:75:70:28:74:cc:1c:34:5a:6c:94: e6:56:96:9a:dc:e2:8e:eb:fc:7b:43:cc:07:b7:5e:32:c5:b4: 61:71:39:8f:ed:1a:9a:25:c6:83:a1:31:7d:9d:20:df:f9:f8: 59:26:66:e0:d2:5d:29:62:86:67:6c:bc:35:06:0a:01:b1:2d: cd:32:44:e2:e1:c4:05:ec:9d:23:60:87:19:4b:0f:6d:a3:e4: 59:96:f8:56:54:43:7a:e5:f2:cd:fd:a7:6d:f9:da:7f:ed:48: e8:b2:26:f5:60:3b:b3:76:9f:76:fd:ac:f4:fb:dc:74:d7:a6: b7:77:ff:99:fd:31:09:fd:63:af:e7:f1:c2:67:e1:e6:21:13: b9:62:c5:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVNsZhm6zpHyJuugoNOdWYfs0nPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAw NEFCMkM2MTAeFw0yMzA3MzAyMzU2MTZaFw0yNDA3MjkwMDAxMTZaMDMxMTAvBgNV BAMTKDBBRkEzRjU0Q0NCMjZFMjJERDlBRkFFOUFGMEU2M0QyODU4RjVENTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRTaJ+UX0R+86XIJfhH01r78Zw nTO1otbhUZ8G5GDsyWiloKBnVgYzZRfTe/ZVmSwumMD4jfP3aepDiAcyFs8JLOL+ uO6TpCjzMDQesDTCraBIViyv0ctC15h1myRhvItGhmlsZXq6K2XLV3ipiu3nsoC+ vsy4vrNzJ9kqQvOL7Y43KcJfDn1P29wadjNTycQTj2Hi3E84+XUWwiHMqlGlzD0X O0+p4IxQvmbTCMchKtYpM5YWWXkCQ/gLRTcWx1dnTvJFc5cT6kazB8LUnNMXsRAX 0rTNaNgfcyuZb9j7KrE6uEs6eGRMW1qAejRO7PlfC+uwp15UddRgObcGAsxbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCvo/VMyybiLdmvrprw5j0oWPXVYwHwYDVR0j BBgwFoAU6fegqm3Mof99PWFGDVU0oASrLGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmI4N2ZlYi0wZmUyLTQxOGEtYTM3YS1iZTNkZDFmMGU2M2MvMC9FOUY3QTBBQTZE Q0NBMUZGN0QzRDYxNDYwRDU1MzRBMDA0QUIyQzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAwNEFC MkM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2Yjg3ZmViLTBmZTItNDE4YS1h MzdhLWJlM2RkMWYwZTYzYy8wLzMxMzgzMzJlMzgzMTJlMzEzNTMyMmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7dRmDANBgkqhkiG 9w0BAQsFAAOCAQEAq1yrrgbOVu79Xw91/ENLuFdI2q4IISm0MV45jHrBvmMK8Iup CI+oWDxETR+yau10vRH+LSoXsU3GzhzfOPJjkY9QE5evV6NCClbCO6I1X9zUX/DQ k6aKSmiAgzJk4IziWB+VBjNPC2SvvoJWUOyFH+PPJSt1cCh0zBw0WmyU5laWmtzi juv8e0PMB7deMsW0YXE5j+0amiXGg6ExfZ0g3/n4WSZm4NJdKWKGZ2y8NQYKAbEt zTJE4uHEBeydI2CHGUsPbaPkWZb4VlRDeuXyzf2nbfnaf+1I6LIm9WA7s3afdv2s 9PvcdNemt3f/mf0xCf1jr+fxwmfh5iETuWLFpA== -----END CERTIFICATE-----Generated at Wed Apr 24 13:21:28 2024 by rpki-client on console-ams.rpki-client.org