$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa File: 3131392e322e34312e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: REAUVw2pv7/7YmHnYFd9Myz+2vMJUY9DDL4oSXLITUc= Subject key identifier: F0:2B:40:9E:86:13:93:BF:D1:4F:3D:45:5F:EF:24:A6:51:DA:80:62 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 228895850FF1A4149B99B3176BD446277DDF17AC Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa Signing time: Mon 31 Jul 2023 00:05:34 +0000 ROA not before: Mon 31 Jul 2023 00:00:34 +0000 ROA not after: Mon 29 Jul 2024 00:05:34 +0000 asID: 38524 IP address blocks: 119.2.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 21:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:88:95:85:0f:f1:a4:14:9b:99:b3:17:6b:d4:46:27:7d:df:17:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 31 00:00:34 2023 GMT Not After : Jul 29 00:05:34 2024 GMT Subject: CN=F02B409E861393BFD14F3D455FEF24A651DA8062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a0:0f:4b:f4:10:b3:95:52:c0:65:f8:e2:89: 23:89:18:e3:c3:1b:ab:de:01:85:16:ef:95:a7:62: 75:30:9d:11:1f:90:eb:40:27:a7:45:b7:a9:06:20: 0f:fc:0e:a1:a6:eb:a9:50:6a:fe:ad:dd:9d:6c:9c: 2b:24:19:ef:ad:0b:a7:4d:77:c1:d5:7a:e9:4c:ea: 8b:20:af:d1:f5:17:fa:66:0c:ad:26:61:1e:05:ba: 60:10:7c:c0:60:61:0b:b8:5e:a3:b8:ec:0d:46:99: 5d:08:66:02:c3:67:19:a9:e2:f5:b9:c9:de:9e:6e: e0:1b:b5:ab:bc:53:1f:64:94:c9:02:a6:01:f0:0a: 4c:3e:86:60:8c:23:47:6a:1e:79:44:56:81:f9:88: aa:de:cb:8e:47:57:c9:64:bb:6d:0b:11:83:15:c3: 0a:a6:c0:98:49:f5:00:5a:48:8a:12:f2:e4:87:84: 74:f1:8c:b4:52:fe:f1:fb:00:76:4e:37:c4:95:4b: 65:ec:ea:ae:18:a7:f6:07:96:30:1e:49:85:f8:ee: d0:be:48:a7:c6:fe:a6:64:a8:8d:4f:a7:52:a4:22: 89:70:d2:50:50:ad:cf:5a:9c:82:7d:77:79:b6:6a: b1:c8:46:20:4b:dd:36:c4:3c:fb:ff:9d:f0:0e:b2: 8e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:2B:40:9E:86:13:93:BF:D1:4F:3D:45:5F:EF:24:A6:51:DA:80:62 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34312e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.41.0/24 Signature Algorithm: sha256WithRSAEncryption b8:84:fc:b6:97:8b:e9:3f:1c:d5:d5:71:b3:43:b6:e4:4d:9b: 27:6a:b4:16:d6:df:4e:0e:af:ae:c4:fb:8d:ab:84:a6:cb:4b: 59:f3:52:b7:fe:55:34:8b:41:0d:25:67:8d:6e:47:92:ad:b1: 4f:e8:5d:69:47:66:4d:59:10:42:fb:8a:76:0f:2d:e4:c9:8e: d8:a3:85:11:0d:71:ce:85:fb:17:ba:af:47:64:96:88:8f:ae: da:9c:44:22:29:d5:47:1a:00:06:22:b8:17:60:10:b0:ca:47: ef:14:ef:41:b8:b3:30:df:7f:3c:25:29:03:60:53:09:a0:14: cc:ba:5f:40:25:16:f1:db:b2:a8:83:b2:cb:2c:ca:22:23:62: b9:4a:f2:f0:3b:88:4d:92:8e:4f:54:4b:d6:b4:95:72:33:74: b2:50:64:e5:ac:93:fd:c6:63:a3:82:6d:ac:d7:f0:28:44:ec: e9:c5:a2:08:b3:03:f1:d5:9b:dd:e3:82:87:8d:1b:22:54:f8: 06:2f:a8:05:80:35:30:f5:d6:a8:09:63:3e:07:c8:62:ac:70: 94:44:53:08:47:b4:80:7d:f1:31:33:a4:76:08:00:67:c9:2d: 88:39:1b:2d:6b:21:01:14:51:9e:1e:bb:6a:6e:3f:3d:5b:5f: 28:04:3d:ac -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUIoiVhQ/xpBSbmbMXa9RGJ33fF6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA3MzEwMDAwMzRaFw0yNDA3MjkwMDA1MzRaMDMxMTAvBgNV BAMTKEYwMkI0MDlFODYxMzkzQkZEMTRGM0Q0NTVGRUYyNEE2NTFEQTgwNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqoA9L9BCzlVLAZfjiiSOJGOPD G6veAYUW75WnYnUwnREfkOtAJ6dFt6kGIA/8DqGm66lQav6t3Z1snCskGe+tC6dN d8HVeulM6osgr9H1F/pmDK0mYR4FumAQfMBgYQu4XqO47A1GmV0IZgLDZxmp4vW5 yd6ebuAbtau8Ux9klMkCpgHwCkw+hmCMI0dqHnlEVoH5iKrey45HV8lku20LEYMV wwqmwJhJ9QBaSIoS8uSHhHTxjLRS/vH7AHZON8SVS2Xs6q4Yp/YHljAeSYX47tC+ SKfG/qZkqI1Pp1KkIolw0lBQrc9anIJ9d3m2arHIRiBL3TbEPPv/nfAOso7RAgMB AAGjggItMIICKTAdBgNVHQ4EFgQU8CtAnoYTk7/RTz1FX+8kplHagGIwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AikwDQYJKoZIhvcNAQEL BQADggEBALiE/LaXi+k/HNXVcbNDtuRNmydqtBbW304Or67E+42rhKbLS1nzUrf+ VTSLQQ0lZ41uR5KtsU/oXWlHZk1ZEEL7inYPLeTJjtijhRENcc6F+xe6r0dkloiP rtqcRCIp1UcaAAYiuBdgELDKR+8U70G4szDffzwlKQNgUwmgFMy6X0AlFvHbsqiD ssssyiIjYrlK8vA7iE2Sjk9US9a0lXIzdLJQZOWsk/3GY6OCbazX8ChE7OnFogiz A/HVm93jgoeNGyJU+AYvqAWANTD11qgJYz4HyGKscJREUwhHtIB98TEzpHYIAGfJ LYg5Gy1rIQEUUZ4eu2puPz1bXygEPaw= -----END CERTIFICATE-----Generated at Wed Apr 17 01:00:27 2024 by rpki-client on console-fra.rpki-client.org