$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34352e302f32342d3234203d3e203338353234.roa File: 3131392e322e34352e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: I7tTeJ1JKaD2HYWgWwBBc5eW/lHe3/ZRe456d8STSds= Subject key identifier: 6F:3A:E0:8A:3E:67:69:12:85:E1:4F:3B:BF:14:F4:41:66:E6:39:4A Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 7AED51E3A0FA965E716B06165B34A38E5E15EDE2 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34352e302f32342d3234203d3e203338353234.roa Signing time: Mon 31 Jul 2023 00:05:36 +0000 ROA not before: Mon 31 Jul 2023 00:00:36 +0000 ROA not after: Mon 29 Jul 2024 00:05:36 +0000 asID: 38524 IP address blocks: 119.2.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 08:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ed:51:e3:a0:fa:96:5e:71:6b:06:16:5b:34:a3:8e:5e:15:ed:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 31 00:00:36 2023 GMT Not After : Jul 29 00:05:36 2024 GMT Subject: CN=6F3AE08A3E67691285E14F3BBF14F44166E6394A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:0c:4f:a0:a9:0e:44:a8:e9:df:22:b1:1d: 89:66:ca:1b:9c:a8:0f:c2:d9:17:f1:89:3e:bd:d6: 8a:8a:83:03:20:7f:aa:93:e7:07:fd:40:f5:b0:71: 59:11:78:51:60:d5:bb:ed:aa:cd:1a:8f:c0:29:ff: bb:39:f0:c7:98:a8:a2:51:93:c0:02:13:44:3d:dc: 85:23:0a:6e:16:1b:a8:f6:33:6e:1e:29:4a:fa:aa: 16:aa:22:ee:30:3d:f9:ab:dd:53:5e:6a:94:6b:e6: da:aa:0b:85:45:0e:de:d4:c1:11:1a:de:46:f2:c7: 68:f0:ee:9a:67:92:6a:38:80:60:10:57:5a:8a:98: c0:45:d0:2a:11:ba:b9:3d:98:cb:c8:2d:41:69:f2: 56:31:9b:ec:8e:0b:53:3e:2d:53:f6:2d:ca:16:66: 44:a4:d0:bd:b8:7e:8a:e0:82:b1:be:85:55:48:63: ea:73:02:e5:96:c3:83:0e:0e:3b:18:fb:e4:cd:cc: b6:c9:12:bf:dc:b2:c4:ca:5c:1a:2c:1d:31:88:ba: c3:e7:b9:49:eb:fe:25:99:b7:6d:e3:b7:c9:e3:9c: 72:c3:3c:66:60:9e:df:9a:04:6a:d3:02:75:1f:92: 75:fe:5a:ab:8f:e7:a9:89:5d:95:d5:bb:2e:d3:1f: 5a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:3A:E0:8A:3E:67:69:12:85:E1:4F:3B:BF:14:F4:41:66:E6:39:4A X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34352e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.45.0/24 Signature Algorithm: sha256WithRSAEncryption 73:31:60:a3:23:6d:51:2c:c2:7c:18:d6:b7:03:02:77:2a:29: 90:ed:15:00:7f:2a:78:4e:b7:9c:eb:f9:4c:dd:82:d3:94:2f: bd:ac:e9:ce:f1:de:1d:cc:0f:c0:17:70:bf:78:81:40:ed:1b: 48:e6:42:77:b5:55:02:91:15:79:ad:69:dd:1c:0f:ee:c6:31: 51:80:10:2b:d7:07:66:21:d5:e7:c7:62:09:7f:de:ba:9e:ab: f6:c5:8d:20:62:7e:d2:b8:5a:fb:38:34:60:27:ed:f1:9a:0f: e5:4d:16:a9:3b:2e:6b:f1:02:ba:d1:5b:35:cb:c3:fc:71:23: 63:12:9d:eb:26:36:da:14:5e:29:34:6a:86:47:48:8c:fd:10: d2:b8:f6:c5:37:94:d8:c4:78:59:dd:3b:f8:52:69:5c:fb:d6: 2f:71:d6:4e:ff:ed:98:84:9b:a1:ae:37:c9:60:29:ce:77:0b: 97:1f:23:70:ff:72:56:73:69:fe:76:e2:73:ee:a1:99:9c:d2: ff:18:67:15:70:13:36:8f:8a:f5:08:40:cc:94:4c:86:ff:13: 28:f0:31:ab:5f:d4:0a:d4:c4:3e:fa:5c:9b:0f:69:01:12:f8: b6:c6:b1:22:cc:a8:bd:80:76:17:16:91:91:69:99:aa:21:4a: 86:4d:35:40 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUeu1R46D6ll5xawYWWzSjjl4V7eIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA3MzEwMDAwMzZaFw0yNDA3MjkwMDA1MzZaMDMxMTAvBgNV BAMTKDZGM0FFMDhBM0U2NzY5MTI4NUUxNEYzQkJGMTRGNDQxNjZFNjM5NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwywxPoKkORKjp3yKxHYlmyhuc qA/C2RfxiT691oqKgwMgf6qT5wf9QPWwcVkReFFg1bvtqs0aj8Ap/7s58MeYqKJR k8ACE0Q93IUjCm4WG6j2M24eKUr6qhaqIu4wPfmr3VNeapRr5tqqC4VFDt7UwREa 3kbyx2jw7ppnkmo4gGAQV1qKmMBF0CoRurk9mMvILUFp8lYxm+yOC1M+LVP2LcoW ZkSk0L24forggrG+hVVIY+pzAuWWw4MODjsY++TNzLbJEr/cssTKXBosHTGIusPn uUnr/iWZt23jt8njnHLDPGZgnt+aBGrTAnUfknX+WquP56mJXZXVuy7TH1q9AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUbzrgij5naRKF4U87vxT0QWbmOUowHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzNTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3Ai0wDQYJKoZIhvcNAQEL BQADggEBAHMxYKMjbVEswnwY1rcDAncqKZDtFQB/KnhOt5zr+UzdgtOUL72s6c7x 3h3MD8AXcL94gUDtG0jmQne1VQKRFXmtad0cD+7GMVGAECvXB2Yh1efHYgl/3rqe q/bFjSBiftK4Wvs4NGAn7fGaD+VNFqk7LmvxArrRWzXLw/xxI2MSnesmNtoUXik0 aoZHSIz9ENK49sU3lNjEeFndO/hSaVz71i9x1k7/7ZiEm6GuN8lgKc53C5cfI3D/ clZzaf524nPuoZmc0v8YZxVwEzaPivUIQMyUTIb/EyjwMatf1ArUxD76XJsPaQES +LbGsSLMqL2AdhcWkZFpmaohSoZNNUA= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:44 2024 by rpki-client on console-fra.rpki-client.org