$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa File: 3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa (raw, json) Hash identifier: vpo9vN4piERL2VolK9N7bS+ZeVr6x4uW4VOo6sgDYuc= Subject key identifier: 52:83:5B:01:E5:9D:CB:31:6B:ED:63:91:1F:A4:19:22:1D:E7:E1:97 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 60FD68F0ADDB9697BCFE00245E92200FAB15A95E Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa Signing time: Sat 16 Dec 2023 18:00:00 +0000 ROA not before: Sat 16 Dec 2023 17:55:00 +0000 ROA not after: Sat 14 Dec 2024 18:00:00 +0000 asID: 139962 IP address blocks: 110.76.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 07:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:fd:68:f0:ad:db:96:97:bc:fe:00:24:5e:92:20:0f:ab:15:a9:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: Dec 16 17:55:00 2023 GMT Not After : Dec 14 18:00:00 2024 GMT Subject: CN=52835B01E59DCB316BED63911FA419221DE7E197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:58:e4:ec:0b:7a:ad:2a:f6:c8:09:ed:1d:ca: 05:49:20:c7:7b:a6:4f:65:ca:19:75:72:8b:5f:92: a8:06:1c:9e:c9:59:88:70:df:2a:02:25:d9:51:9b: ee:da:54:81:2c:ba:10:81:43:3f:e9:4a:e9:69:44: 76:ae:ee:00:7a:93:d4:3d:2a:0b:b2:cb:e3:b7:99: e6:4a:cd:82:2e:35:4e:34:38:0e:56:36:62:33:c3: 30:e8:03:02:f4:c0:f2:16:7b:f0:55:67:4c:9b:16: b1:6a:fd:ed:10:d0:f5:be:78:a2:44:a3:cf:05:9a: 1e:47:04:bd:44:96:a1:8f:2f:a7:13:e2:7f:05:a7: b3:3f:98:c9:b7:a3:c0:46:c7:a5:c4:11:65:5d:fd: 3c:02:42:03:ca:ee:b5:79:2b:90:e4:4a:ae:57:b6: 0a:ba:39:27:70:e2:8d:8e:79:d0:5b:15:2d:11:be: 51:8b:f5:ae:4d:84:97:f7:2d:c1:bd:9c:4b:7e:bc: ba:98:d4:a8:8e:1d:78:ff:51:c4:2e:d9:6a:91:47: d0:a7:71:57:9a:3f:33:d2:41:c6:bd:3b:97:f2:7d: b6:3e:d0:30:11:27:1a:33:d2:a0:f4:2c:83:d2:41: 61:bd:92:43:a0:8d:37:27:32:b3:e0:c9:8c:dc:60: 7c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:83:5B:01:E5:9D:CB:31:6B:ED:63:91:1F:A4:19:22:1D:E7:E1:97 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3135312e302f32342d3234203d3e20313339393632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.76.151.0/24 Signature Algorithm: sha256WithRSAEncryption 13:05:e7:13:f1:58:3a:4e:a4:04:58:d7:00:fc:c8:6f:92:d8: 39:4d:95:fc:97:d6:35:7a:f1:97:07:f0:a5:55:66:b6:29:ec: af:ec:f8:6e:2e:5a:64:0e:ea:85:56:e8:83:d5:ed:73:2c:af: dd:98:9f:55:27:4e:7e:49:22:e2:a7:60:b4:fd:ca:13:79:1d: ca:7b:cd:34:32:2c:70:c8:0b:8d:4e:78:f8:30:a6:dd:ad:15: e1:f5:77:d2:36:32:f6:05:c3:7c:d6:7d:18:c5:77:8a:74:8b: f9:e0:cc:c8:70:94:ec:1f:3c:78:0d:38:dd:80:a8:9d:1f:0f: 6a:20:50:d3:20:8b:88:56:48:b3:46:a2:aa:b1:93:43:b0:1e: 58:12:57:91:6f:1c:47:47:33:b9:03:b3:1b:7a:79:6e:23:2d: 14:9a:bb:66:c2:8c:34:76:e9:26:13:16:ee:00:30:95:c2:d9: 11:27:6e:a8:b1:87:8c:cf:eb:6a:71:9c:d0:10:5c:ce:67:14: 8d:26:68:dc:c2:f8:20:c2:e6:d1:16:a6:b0:19:1c:5a:95:d7: d1:1c:2f:ef:12:ba:ce:05:0a:45:a0:bb:2f:2e:13:26:32:e0: b4:86:8f:00:9e:6d:d3:99:c1:84:dc:d8:e1:87:2d:e5:87:72: 7d:2e:b4:b8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYP1o8K3blpe8/gAkXpIgD6sVqV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yMzEyMTYxNzU1MDBaFw0yNDEyMTQxODAwMDBaMDMxMTAvBgNV BAMTKDUyODM1QjAxRTU5RENCMzE2QkVENjM5MTFGQTQxOTIyMURFN0UxOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuWOTsC3qtKvbICe0dygVJIMd7 pk9lyhl1cotfkqgGHJ7JWYhw3yoCJdlRm+7aVIEsuhCBQz/pSulpRHau7gB6k9Q9 Kguyy+O3meZKzYIuNU40OA5WNmIzwzDoAwL0wPIWe/BVZ0ybFrFq/e0Q0PW+eKJE o88Fmh5HBL1ElqGPL6cT4n8Fp7M/mMm3o8BGx6XEEWVd/TwCQgPK7rV5K5DkSq5X tgq6OSdw4o2OedBbFS0RvlGL9a5NhJf3LcG9nEt+vLqY1KiOHXj/UcQu2WqRR9Cn cVeaPzPSQca9O5fyfbY+0DARJxoz0qD0LIPSQWG9kkOgjTcnMrPgyYzcYHwhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUoNbAeWdyzFr7WORH6QZIh3n4ZcwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzMDJlMzczNjJlMzEzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbkyXMA0GCSqG SIb3DQEBCwUAA4IBAQATBecT8Vg6TqQEWNcA/Mhvktg5TZX8l9Y1evGXB/ClVWa2 Keyv7PhuLlpkDuqFVuiD1e1zLK/dmJ9VJ05+SSLip2C0/coTeR3Ke800MixwyAuN Tnj4MKbdrRXh9XfSNjL2BcN81n0YxXeKdIv54MzIcJTsHzx4DTjdgKidHw9qIFDT IIuIVkizRqKqsZNDsB5YEleRbxxHRzO5A7MbenluIy0Umrtmwow0dukmExbuADCV wtkRJ26osYeMz+tqcZzQEFzOZxSNJmjcwvggwubRFqawGRxaldfRHC/vErrOBQpF oLsvLhMmMuC0ho8Anm3TmcGE3Njhhy3lh3J9LrS4 -----END CERTIFICATE-----Generated at Thu May 16 22:57:55 2024 by rpki-client on console-fra.rpki-client.org