$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa File: 3131392e322e34302e302f32312d3231203d3e203338353234.roa (raw, json) Hash identifier: iIno+bcEU+zyNTPIx3mwIsBPbWrDNhBxnbAu2EsG950= Subject key identifier: B4:A8:A1:79:A9:B4:81:52:03:30:19:74:FE:3D:14:9E:5E:4E:58:8A Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 109CE65D3131E4CC9745A093F1F56CC3F044E3FC Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa Signing time: Mon 31 Jul 2023 00:05:34 +0000 ROA not before: Mon 31 Jul 2023 00:00:34 +0000 ROA not after: Mon 29 Jul 2024 00:05:34 +0000 asID: 38524 IP address blocks: 119.2.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 09:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:9c:e6:5d:31:31:e4:cc:97:45:a0:93:f1:f5:6c:c3:f0:44:e3:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 31 00:00:34 2023 GMT Not After : Jul 29 00:05:34 2024 GMT Subject: CN=B4A8A179A9B4815203301974FE3D149E5E4E588A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5e:ec:a2:9e:c1:41:06:ac:ce:87:f8:f2:0b: fe:71:2e:6d:b1:be:55:bc:22:02:f1:c6:11:4e:f1: 84:93:4e:84:13:ea:df:52:cc:b4:52:33:00:4a:0d: e2:23:b3:a7:75:8d:d5:dc:98:e0:0c:a6:11:d5:70: c4:89:06:a6:27:55:90:85:1a:25:51:c6:e0:02:d3: ba:65:51:5e:d7:7c:fc:7a:70:9b:ff:9f:14:af:c4: de:9b:1e:48:3d:61:64:1a:a7:90:ad:cc:c9:48:6a: cc:00:76:91:39:45:6a:f3:44:9c:d3:01:0f:a8:fb: 0f:d8:89:8b:52:96:26:c2:c5:af:ad:af:30:79:ff: e8:10:db:fe:c2:ab:ca:12:68:52:64:93:eb:41:54: 01:4c:ac:79:61:9e:dd:15:7b:4d:91:3e:a5:b1:76: dc:75:44:95:87:fc:24:6e:54:7a:9d:52:5b:bc:a6: b0:bd:6b:5f:dd:b5:d8:c7:15:a1:5c:da:62:c6:d6: f9:69:c6:16:eb:cd:0c:47:e1:e5:3e:27:e1:3d:56: 10:3b:8c:19:03:69:5b:53:71:4b:fb:9f:e4:09:77: cb:dd:92:e8:bd:6d:5d:3e:35:f8:96:38:18:61:5d: 85:2f:67:7a:f2:21:e4:74:88:57:05:d4:9d:9b:c7: 18:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A8:A1:79:A9:B4:81:52:03:30:19:74:FE:3D:14:9E:5E:4E:58:8A X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34302e302f32312d3231203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.40.0/21 Signature Algorithm: sha256WithRSAEncryption 8d:4a:5b:7c:a8:81:b5:a5:60:22:c4:11:d5:f9:92:7d:45:a1: d8:ae:0b:ff:d8:1b:1c:de:ae:6f:52:74:bc:08:52:07:68:e6: 42:39:0f:ed:1e:c1:23:7c:4a:2e:76:4f:4c:ff:1a:fe:91:bb: c5:27:b5:76:40:53:b1:d6:52:18:e0:69:e8:ff:8a:b6:4c:8a: f8:c7:54:e9:91:c4:4c:84:1c:e7:61:b3:26:b0:ff:10:b4:6d: f7:74:5c:5a:41:72:22:eb:5a:86:ce:e0:2c:b7:79:86:d9:77: 49:e7:3e:76:10:62:83:d8:c5:d5:6d:9a:18:dd:d8:a1:6e:18: cc:be:84:fe:79:61:30:45:c7:b3:6e:18:81:f0:8a:e3:e2:f7: 44:8c:16:f3:d3:f4:31:cf:1a:e7:81:89:0b:46:95:0c:88:30: db:41:36:0a:65:0b:8a:07:52:01:f7:d3:91:a5:a6:58:b2:65: 3e:db:6d:60:f4:62:ea:2e:c5:7d:93:e8:1a:3a:94:2d:25:9c: ba:48:e5:a5:c8:55:7b:fc:6d:35:69:a7:25:66:cf:03:52:95: 03:c0:ed:b2:1c:01:ac:1a:f5:8a:e6:16:8d:6c:c0:9e:6e:15: 23:5a:34:8d:e8:1e:6f:a0:60:e9:92:68:f9:80:62:d5:41:f4: 98:82:d1:da -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUEJzmXTEx5MyXRaCT8fVsw/BE4/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA3MzEwMDAwMzRaFw0yNDA3MjkwMDA1MzRaMDMxMTAvBgNV BAMTKEI0QThBMTc5QTlCNDgxNTIwMzMwMTk3NEZFM0QxNDlFNUU0RTU4OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjXuyinsFBBqzOh/jyC/5xLm2x vlW8IgLxxhFO8YSTToQT6t9SzLRSMwBKDeIjs6d1jdXcmOAMphHVcMSJBqYnVZCF GiVRxuAC07plUV7XfPx6cJv/nxSvxN6bHkg9YWQap5CtzMlIaswAdpE5RWrzRJzT AQ+o+w/YiYtSlibCxa+trzB5/+gQ2/7Cq8oSaFJkk+tBVAFMrHlhnt0Ve02RPqWx dtx1RJWH/CRuVHqdUlu8prC9a1/dtdjHFaFc2mLG1vlpxhbrzQxH4eU+J+E9VhA7 jBkDaVtTcUv7n+QJd8vdkui9bV0+NfiWOBhhXYUvZ3ryIeR0iFcF1J2bxxhTAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUtKiheam0gVIDMBl0/j0Unl5OWIowHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMDJlMzAyZjMyMzEyZDMy MzEyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN3AigwDQYJKoZIhvcNAQEL BQADggEBAI1KW3yogbWlYCLEEdX5kn1FodiuC//YGxzerm9SdLwIUgdo5kI5D+0e wSN8Si52T0z/Gv6Ru8UntXZAU7HWUhjgaej/irZMivjHVOmRxEyEHOdhsyaw/xC0 bfd0XFpBciLrWobO4Cy3eYbZd0nnPnYQYoPYxdVtmhjd2KFuGMy+hP55YTBFx7Nu GIHwiuPi90SMFvPT9DHPGueBiQtGlQyIMNtBNgplC4oHUgH305GlpliyZT7bbWD0 YuouxX2T6Bo6lC0lnLpI5aXIVXv8bTVppyVmzwNSlQPA7bIcAawa9YrmFo1swJ5u FSNaNI3oHm+gYOmSaPmAYtVB9JiC0do= -----END CERTIFICATE-----Generated at Thu Apr 25 09:16:52 2024 by rpki-client on console-ams.rpki-client.org