$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34342e302f32342d3234203d3e203338353234.roa File: 3131392e322e34342e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: mhaBBP/SUFXUJAl5xijl42Bz3uOSbA0y4NIkWifhvy0= Subject key identifier: A2:B9:7B:E7:E8:01:90:05:3F:F2:5E:3E:F7:6E:97:F5:80:35:0A:08 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 62F5FA59D91CB91936E1E6D4CA38778AF19EA720 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34342e302f32342d3234203d3e203338353234.roa Signing time: Mon 31 Jul 2023 00:05:36 +0000 ROA not before: Mon 31 Jul 2023 00:00:36 +0000 ROA not after: Mon 29 Jul 2024 00:05:36 +0000 asID: 38524 IP address blocks: 119.2.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 09:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:f5:fa:59:d9:1c:b9:19:36:e1:e6:d4:ca:38:77:8a:f1:9e:a7:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 31 00:00:36 2023 GMT Not After : Jul 29 00:05:36 2024 GMT Subject: CN=A2B97BE7E80190053FF25E3EF76E97F580350A08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d7:0e:4e:41:eb:14:5f:e2:aa:e7:76:c8:8e: 8a:dc:bb:5d:6f:9f:9d:ec:28:0b:1a:34:7b:3e:02: 6d:e3:c9:54:fc:15:63:1a:46:a2:01:c1:38:a1:fc: 93:8a:5e:d1:74:23:b6:e4:0b:cd:c4:6a:79:33:04: 20:8d:da:36:f5:97:ea:d6:cb:00:0f:e0:8e:2a:53: 72:58:0e:bb:46:69:df:9b:b2:db:17:43:71:8a:d9: 60:26:80:9e:c5:1d:e8:3b:b4:7a:9e:03:11:af:92: fa:9b:bc:7e:9e:29:0f:63:1f:e9:db:e7:75:5a:e5: 70:05:11:f0:7c:de:82:98:0e:04:83:ea:9a:6d:e2: 86:25:19:a2:0a:67:3d:86:cd:b7:3e:73:b2:78:48: 76:e8:f4:29:40:8a:78:e9:90:2b:50:c5:c0:f5:a2: c0:4f:c8:0a:3a:16:ed:12:11:aa:f1:f1:1e:5a:96: 96:a0:93:f9:50:e4:f2:fc:e3:ed:d7:13:b2:73:a4: 4f:98:f0:21:5b:1c:8e:bf:f1:cf:33:20:c7:41:19: 41:e5:e7:de:c4:6c:0d:3b:10:52:71:a5:08:96:34: f0:b5:f1:24:71:f6:71:e1:fd:a1:76:9d:19:11:13: 73:ca:94:97:c0:ec:4e:f9:bd:1c:d0:d6:27:ed:19: 0a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B9:7B:E7:E8:01:90:05:3F:F2:5E:3E:F7:6E:97:F5:80:35:0A:08 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34342e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.44.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:89:aa:46:a6:8f:9b:a1:93:09:a8:46:d2:7f:2a:b3:d6:a6: a5:d5:94:1d:0e:9a:a9:09:40:d6:30:b6:87:f0:6f:27:0e:5e: 1b:63:ee:a9:36:7c:14:09:d3:d1:b8:bc:6e:db:d0:77:87:57: ef:c6:b7:6d:af:ff:56:94:67:35:d7:b3:08:1b:21:56:e8:6c: 96:4b:6b:dc:0a:5c:1c:91:27:1f:70:44:f4:c1:34:a5:99:a7: 3d:e3:de:b4:06:93:52:21:02:5c:c7:53:52:2c:85:83:2a:b6: 89:9d:42:ff:3e:f9:ce:98:6b:07:b7:3b:13:c1:b7:59:ee:69: d5:2a:3f:89:d7:65:7d:c4:31:72:47:42:6a:19:28:bb:76:c0: 39:f6:07:e6:35:60:f8:ae:91:e7:73:b0:c6:5b:60:94:73:e8: 84:2b:5f:6f:f0:de:73:3f:92:4f:9b:99:9e:35:24:bf:7b:56: fa:40:f3:41:77:56:c4:76:af:0b:b9:c7:76:5b:24:a6:d9:a4: 25:ae:99:da:86:dc:df:d3:4b:cc:d4:33:7c:ca:9e:05:1d:17: 66:2c:a7:86:84:0b:ad:66:46:53:ff:f2:7e:6f:9c:13:6e:6c: f9:d2:a8:0f:c4:b7:4d:f4:fe:0a:a5:a0:e7:76:58:af:58:82: d8:07:c3:9c -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUYvX6WdkcuRk24ebUyjh3ivGepyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA3MzEwMDAwMzZaFw0yNDA3MjkwMDA1MzZaMDMxMTAvBgNV BAMTKEEyQjk3QkU3RTgwMTkwMDUzRkYyNUUzRUY3NkU5N0Y1ODAzNTBBMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp1w5OQesUX+Kq53bIjorcu11v n53sKAsaNHs+Am3jyVT8FWMaRqIBwTih/JOKXtF0I7bkC83EankzBCCN2jb1l+rW ywAP4I4qU3JYDrtGad+bstsXQ3GK2WAmgJ7FHeg7tHqeAxGvkvqbvH6eKQ9jH+nb 53Va5XAFEfB83oKYDgSD6ppt4oYlGaIKZz2Gzbc+c7J4SHbo9ClAinjpkCtQxcD1 osBPyAo6Fu0SEarx8R5alpagk/lQ5PL84+3XE7JzpE+Y8CFbHI6/8c8zIMdBGUHl 597EbA07EFJxpQiWNPC18SRx9nHh/aF2nRkRE3PKlJfA7E75vRzQ1iftGQoLAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUorl75+gBkAU/8l4+926X9YA1CggwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AiwwDQYJKoZIhvcNAQEL BQADggEBAI6Jqkamj5uhkwmoRtJ/KrPWpqXVlB0OmqkJQNYwtofwbycOXhtj7qk2 fBQJ09G4vG7b0HeHV+/Gt22v/1aUZzXXswgbIVbobJZLa9wKXByRJx9wRPTBNKWZ pz3j3rQGk1IhAlzHU1IshYMqtomdQv8++c6Yawe3OxPBt1nuadUqP4nXZX3EMXJH QmoZKLt2wDn2B+Y1YPiukedzsMZbYJRz6IQrX2/w3nM/kk+bmZ41JL97VvpA80F3 VsR2rwu5x3ZbJKbZpCWumdqG3N/TS8zUM3zKngUdF2Ysp4aEC61mRlP/8n5vnBNu bPnSqA/Et030/gqloOd2WK9YgtgHw5w= -----END CERTIFICATE-----Generated at Thu Apr 25 09:16:52 2024 by rpki-client on console-ams.rpki-client.org