$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132302e302f32312d3231203d3e203338353135.roa File: 3131372e37342e3132302e302f32312d3231203d3e203338353135.roa (raw, json) Hash identifier: hp0XS2oh3Zf6zNRgAAFYrT4TDX5xxtWi+LRc5gm0zio= Subject key identifier: 46:DB:63:5A:A0:90:C9:E0:51:B2:23:E5:39:1A:8D:37:33:8D:6F:C5 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 0A9426B550290FC77F1F5B95522D32CC977AE1B6 Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132302e302f32312d3231203d3e203338353135.roa Signing time: Wed 06 Dec 2023 10:00:00 +0000 ROA not before: Wed 06 Dec 2023 09:55:00 +0000 ROA not after: Wed 04 Dec 2024 10:00:00 +0000 asID: 38515 IP address blocks: 117.74.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:94:26:b5:50:29:0f:c7:7f:1f:5b:95:52:2d:32:cc:97:7a:e1:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Dec 6 09:55:00 2023 GMT Not After : Dec 4 10:00:00 2024 GMT Subject: CN=46DB635AA090C9E051B223E5391A8D37338D6FC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fd:f0:19:ae:26:46:94:28:7e:7d:01:48:20: ff:ff:dd:34:07:c2:a1:ec:eb:3c:1b:75:01:10:d5: a1:3a:25:b8:e7:62:20:48:7c:34:91:35:8f:21:9c: ca:7c:f4:ec:16:f2:47:da:8c:0f:91:db:36:b0:bf: 91:24:4a:a3:59:f3:fd:0c:32:c6:4c:e4:4c:5a:24: 8e:6b:b4:0e:cb:ba:78:0f:60:c5:74:c4:a4:75:4d: a9:de:90:a7:2a:16:ab:5b:fb:d7:ef:1c:6f:26:0e: 4b:3d:83:3e:3c:59:aa:11:0f:76:51:7b:02:4f:8e: 82:bc:cf:9f:fb:47:b0:63:bb:d8:c9:4e:f3:70:0a: 26:76:f8:18:9f:13:e5:d9:a1:b7:a0:64:2c:3b:35: f4:8e:f1:f3:98:ca:f4:71:74:53:f5:3e:9e:74:ed: ba:f3:4b:21:75:bb:80:f9:72:90:ea:78:27:c0:c5: 9c:97:fe:72:bd:e4:98:96:74:c7:2f:3a:ad:09:b6: b9:ff:d5:68:d3:d9:d5:95:03:05:a9:9a:6a:cb:09: 9d:55:46:4c:a0:64:86:d7:5e:6b:9d:f8:22:ff:0e: 71:72:08:d1:02:a4:27:a0:3a:97:55:7f:70:d8:00: 8e:10:96:5b:74:63:b8:22:3a:ac:7b:33:76:a7:65: f8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:DB:63:5A:A0:90:C9:E0:51:B2:23:E5:39:1A:8D:37:33:8D:6F:C5 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3131372e37342e3132302e302f32312d3231203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.120.0/21 Signature Algorithm: sha256WithRSAEncryption 14:85:15:5b:52:17:4b:69:5d:dd:05:a2:8a:ee:87:c7:1d:3c: dd:d8:36:69:e2:8e:d0:d9:30:e6:88:c9:cd:32:7c:13:fd:71: 1e:a3:59:4c:5d:23:fc:98:6d:20:84:d6:16:4f:aa:c5:05:13: cb:c4:fb:23:72:70:8f:a8:e9:9c:3f:00:b2:3f:ed:ee:8f:6b: 17:2b:67:29:0d:2d:6c:8b:b0:9c:33:61:c4:c1:63:61:70:17: 9f:c6:1e:13:fb:31:36:40:20:87:00:84:47:9a:d0:2a:ea:9b: 40:36:69:c8:6b:a6:9c:c6:05:62:ea:df:c6:00:2a:89:ff:e4: a9:a4:c7:d1:c1:f6:e7:e4:70:b1:f7:8c:1a:8e:09:9e:8a:8e: 55:03:61:ca:c3:9a:bd:15:a4:41:ef:5d:af:e9:1b:db:dd:b7: 3d:e9:08:8f:27:35:33:58:cd:15:18:69:7c:f2:23:cf:84:d9: 99:d3:4d:06:2a:27:3b:09:2a:eb:e0:38:a4:b3:4d:06:9a:9f: 5e:ad:5d:e1:a3:6c:21:3f:16:75:41:11:e5:93:57:20:17:94: 92:54:cc:5e:61:64:1d:aa:a0:73:b9:d1:22:71:39:00:5a:91: e6:fd:20:64:85:02:be:51:9d:fd:c8:80:dc:35:3c:2a:88:4e: 3b:f5:cb:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCpQmtVApD8d/H1uVUi0yzJd64bYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yMzEyMDYwOTU1MDBaFw0yNDEyMDQxMDAwMDBaMDMxMTAvBgNV BAMTKDQ2REI2MzVBQTA5MEM5RTA1MUIyMjNFNTM5MUE4RDM3MzM4RDZGQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1/fAZriZGlCh+fQFIIP//3TQH wqHs6zwbdQEQ1aE6JbjnYiBIfDSRNY8hnMp89OwW8kfajA+R2zawv5EkSqNZ8/0M MsZM5ExaJI5rtA7LungPYMV0xKR1TanekKcqFqtb+9fvHG8mDks9gz48WaoRD3ZR ewJPjoK8z5/7R7Bju9jJTvNwCiZ2+BifE+XZobegZCw7NfSO8fOYyvRxdFP1Pp50 7brzSyF1u4D5cpDqeCfAxZyX/nK95JiWdMcvOq0Jtrn/1WjT2dWVAwWpmmrLCZ1V RkygZIbXXmud+CL/DnFyCNECpCegOpdVf3DYAI4Qllt0Y7giOqx7M3anZfgpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURttjWqCQyeBRsiPlORqNNzONb8UwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMxMzEzNzJlMzczNDJlMzEzMjMwMmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3VKeDANBgkqhkiG 9w0BAQsFAAOCAQEAFIUVW1IXS2ld3QWiiu6Hxx083dg2aeKO0Nkw5ojJzTJ8E/1x HqNZTF0j/JhtIITWFk+qxQUTy8T7I3Jwj6jpnD8Asj/t7o9rFytnKQ0tbIuwnDNh xMFjYXAXn8YeE/sxNkAghwCER5rQKuqbQDZpyGumnMYFYurfxgAqif/kqaTH0cH2 5+RwsfeMGo4JnoqOVQNhysOavRWkQe9dr+kb2923PekIjyc1M1jNFRhpfPIjz4TZ mdNNBionOwkq6+A4pLNNBpqfXq1d4aNsIT8WdUER5ZNXIBeUklTMXmFkHaqgc7nR InE5AFqR5v0gZIUCvlGd/ciA3DU8KohOO/XL4w== -----END CERTIFICATE-----Generated at Sun May 5 11:44:51 2024 by rpki-client on console-ams.rpki-client.org