$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa File: 3131392e322e34332e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: s/PHDCZHWhsHRUlq80SpqU/Il4NVy55Lmk6aDqb/ysY= Subject key identifier: 61:9F:AF:81:CF:83:18:44:19:48:9F:6C:ED:44:BB:A4:AE:F8:6E:47 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 67DCC6F455F71CA96F261CE67F77A84FDC4DF2BC Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa Signing time: Mon 31 Jul 2023 00:05:35 +0000 ROA not before: Mon 31 Jul 2023 00:00:35 +0000 ROA not after: Mon 29 Jul 2024 00:05:35 +0000 asID: 38524 IP address blocks: 119.2.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:dc:c6:f4:55:f7:1c:a9:6f:26:1c:e6:7f:77:a8:4f:dc:4d:f2:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 31 00:00:35 2023 GMT Not After : Jul 29 00:05:35 2024 GMT Subject: CN=619FAF81CF83184419489F6CED44BBA4AEF86E47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ae:83:c1:bc:5a:94:d0:1c:ea:01:0f:ed:0e: f7:44:4e:0b:eb:49:1a:74:a2:8e:c2:8a:83:3d:4e: 94:62:fc:ce:d8:cb:24:48:73:11:76:19:18:77:3f: 05:ed:7e:57:bc:e9:34:39:4d:83:c9:4c:c7:6f:6f: e1:cc:c8:70:8f:d8:38:48:c1:46:b0:de:ab:d7:07: 5b:3f:e2:87:31:ab:99:f4:ce:ba:5a:5c:13:89:37: ea:63:c6:4e:23:12:0a:96:a8:90:44:06:c4:fc:64: 45:ad:43:f4:3e:8b:75:80:2b:e1:48:49:ea:52:48: 44:43:2d:26:e3:a4:64:65:1c:6a:c3:59:9e:ca:0d: 78:1b:c1:51:1b:48:42:4d:a4:5d:f5:0f:4b:3e:1f: 08:bc:1b:a1:fa:f6:4c:2c:0d:49:c8:83:df:db:f0: 63:1f:0a:cf:ba:0b:a0:61:f0:03:89:cb:05:ec:3d: 01:85:70:c2:a4:e6:ac:f4:a4:1c:46:56:a0:9b:dd: 36:b0:52:e9:46:c3:bd:91:ae:91:5a:ee:f2:81:65: a7:f8:c6:ec:49:86:f2:8b:34:5d:b2:ff:9c:96:6d: f4:19:1d:e4:6e:4d:41:82:82:23:38:0f:97:ff:88: 4b:56:35:9b:13:9e:6a:df:18:03:ab:fd:2a:5a:67: 04:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9F:AF:81:CF:83:18:44:19:48:9F:6C:ED:44:BB:A4:AE:F8:6E:47 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.43.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:b1:c3:9d:5e:bf:5f:9e:d5:82:e6:1a:88:cf:88:f6:4c:b1: 0f:f0:83:45:ed:89:46:44:b9:90:ad:bb:64:2a:8d:a4:2a:fd: 0d:bf:9b:ef:81:c1:fc:b4:85:89:28:ed:5a:24:a5:e4:13:ec: 8d:ab:53:71:42:ca:5a:1f:03:3c:b6:a7:62:d8:e9:cb:35:cb: 34:40:db:4d:cf:14:b7:ad:4d:06:7a:a4:22:51:42:5e:3f:0d: a3:a9:15:de:95:59:48:c1:b2:fa:70:88:6f:5b:66:dc:d9:5f: e1:e4:1a:fa:af:af:77:7c:f2:b0:70:d1:85:38:8b:84:87:7d: 4c:1f:bf:01:4f:5e:3e:c4:f1:11:c8:6e:28:79:2e:0d:22:8d: 5d:a5:cb:5a:65:44:1f:3a:0d:30:65:17:59:bc:ba:80:64:7d: 7a:90:ab:1f:7f:89:02:a0:9e:b1:68:5f:12:93:e3:d6:6d:6f: 4f:83:77:b4:70:bb:05:ef:54:f5:89:34:90:49:92:20:2b:47: a4:9f:9b:3c:3d:ba:2a:c2:ac:a7:fc:93:76:36:57:06:0e:87: 61:07:9e:0a:da:d7:4e:5a:82:7a:f1:8b:41:35:11:b8:d8:97: a3:67:57:f2:22:88:e0:c3:6b:25:6b:b2:2c:5b:d6:79:7b:cf: 07:25:24:a0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUZ9zG9FX3HKlvJhzmf3eoT9xN8rwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA3MzEwMDAwMzVaFw0yNDA3MjkwMDA1MzVaMDMxMTAvBgNV BAMTKDYxOUZBRjgxQ0Y4MzE4NDQxOTQ4OUY2Q0VENDRCQkE0QUVGODZFNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsroPBvFqU0BzqAQ/tDvdETgvr SRp0oo7CioM9TpRi/M7YyyRIcxF2GRh3PwXtfle86TQ5TYPJTMdvb+HMyHCP2DhI wUaw3qvXB1s/4ocxq5n0zrpaXBOJN+pjxk4jEgqWqJBEBsT8ZEWtQ/Q+i3WAK+FI SepSSERDLSbjpGRlHGrDWZ7KDXgbwVEbSEJNpF31D0s+Hwi8G6H69kwsDUnIg9/b 8GMfCs+6C6Bh8AOJywXsPQGFcMKk5qz0pBxGVqCb3TawUulGw72RrpFa7vKBZaf4 xuxJhvKLNF2y/5yWbfQZHeRuTUGCgiM4D5f/iEtWNZsTnmrfGAOr/SpaZwRxAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUYZ+vgc+DGEQZSJ9s7US7pK74bkcwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AiswDQYJKoZIhvcNAQEL BQADggEBACyxw51ev1+e1YLmGojPiPZMsQ/wg0XtiUZEuZCtu2QqjaQq/Q2/m++B wfy0hYko7VokpeQT7I2rU3FCylofAzy2p2LY6cs1yzRA203PFLetTQZ6pCJRQl4/ DaOpFd6VWUjBsvpwiG9bZtzZX+HkGvqvr3d88rBw0YU4i4SHfUwfvwFPXj7E8RHI bih5Lg0ijV2ly1plRB86DTBlF1m8uoBkfXqQqx9/iQKgnrFoXxKT49Ztb0+Dd7Rw uwXvVPWJNJBJkiArR6Sfmzw9uirCrKf8k3Y2VwYOh2EHngra105agnrxi0E1EbjY l6NnV/IiiODDayVrsixb1nl7zwclJKA= -----END CERTIFICATE-----Generated at Sun May 5 21:09:55 2024 by rpki-client on console-fra.rpki-client.org