$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa File: 3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa (raw, json) Hash identifier: fBOewGvfKirBOUYDZv6M775GlpgyK29eVN/eFkaqN9c= Subject key identifier: 67:93:FA:40:DB:10:84:83:6C:63:CD:95:22:47:2F:21:B8:78:8F:33 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 53F4081134DAEDB4F5E1A5BC2EE93F741137D02E Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa Signing time: Mon 31 Jul 2023 00:03:05 +0000 ROA not before: Sun 30 Jul 2023 23:58:05 +0000 ROA not after: Mon 29 Jul 2024 00:03:05 +0000 asID: 38506 IP address blocks: 117.103.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 20:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f4:08:11:34:da:ed:b4:f5:e1:a5:bc:2e:e9:3f:74:11:37:d0:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: Jul 30 23:58:05 2023 GMT Not After : Jul 29 00:03:05 2024 GMT Subject: CN=6793FA40DB1084836C63CD9522472F21B8788F33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:28:57:ad:01:ca:98:cf:11:78:e0:75:fb:12: 4c:b8:ab:98:f4:b9:ee:bd:88:aa:02:fe:14:62:85: 61:6b:46:6e:c1:8c:19:ea:ab:35:ff:30:bb:4c:6c: 0c:99:42:a9:53:14:f5:82:fd:79:35:f3:54:80:3d: 17:e6:95:2f:ba:e0:b6:4b:de:f3:8a:b8:1b:2d:c2: 48:15:c1:40:c0:24:cd:03:7a:e5:5a:4d:26:36:3e: 84:59:b6:bd:55:ed:8c:20:dd:73:97:70:0b:50:46: 74:a5:cc:a4:88:36:63:21:19:ae:e7:d5:a6:3e:1d: ac:02:75:d8:3c:ee:60:3e:8e:39:d2:5e:3a:80:c3: 39:6f:f7:73:d6:42:7f:ee:a0:ea:30:de:9b:99:c6: 48:0a:45:f5:d8:ff:cf:54:85:db:51:55:61:52:24: c7:3a:77:9e:ac:10:ad:f2:3a:7b:32:67:15:3b:17: ce:30:cc:3e:0b:6e:d4:38:2b:14:78:19:8f:ff:8c: f3:ee:f1:4e:b4:e3:7b:95:2a:67:13:f4:d4:7b:dd: d5:de:c4:59:4f:bc:31:31:6c:f0:7b:d4:2b:49:26: 6a:8b:51:4a:b1:cc:ed:d0:91:88:17:5c:78:00:16: 22:45:3a:aa:68:f8:26:bd:4e:3f:65:89:45:67:09: 79:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:93:FA:40:DB:10:84:83:6C:63:CD:95:22:47:2F:21:B8:78:8F:33 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.168.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:87:5d:2d:fa:ff:ac:81:82:84:13:4b:22:a5:21:f8:94:12: a4:67:22:b6:1c:ae:72:b0:ad:70:40:b4:27:85:05:a1:f6:46: a5:6d:0d:6a:98:f4:c1:98:bf:c4:96:77:f9:69:45:f8:e5:a7: 99:79:92:af:bd:2a:a1:d9:c2:33:ab:f3:ef:64:78:6b:d0:5b: 8c:47:76:c0:3f:fe:ee:02:4f:4a:ea:af:ca:cf:cd:a2:62:55: f6:da:4c:32:9e:9c:84:42:ed:12:22:ec:60:c8:e8:7b:f3:c6: db:c0:8c:27:a4:92:6d:01:2f:2a:3e:e0:00:df:15:4e:f1:7c: 4e:c1:47:91:c4:21:e9:af:04:82:52:b6:88:5b:7e:cd:68:90: 81:a5:30:34:dd:48:0c:d8:66:b5:6b:58:a6:df:04:29:d7:1b: 6a:ab:e0:a0:22:9b:af:de:b8:12:5d:27:d2:24:61:e1:47:81: 78:a9:78:54:a4:34:f7:e3:19:90:99:a1:fc:9d:b9:76:b6:e2: 9c:86:13:1f:e6:36:e4:c9:e6:5a:69:11:78:4b:4a:42:74:79: b2:fb:16:5c:b9:1e:33:71:9c:d5:c0:c2:13:b8:5b:41:d1:f3: 89:8b:4f:bc:02:41:49:8d:56:bf:13:c2:2e:b5:67:8a:d6:4f: 58:d7:db:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU/QIETTa7bT14aW8Luk/dBE30C4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yMzA3MzAyMzU4MDVaFw0yNDA3MjkwMDAzMDVaMDMxMTAvBgNV BAMTKDY3OTNGQTQwREIxMDg0ODM2QzYzQ0Q5NTIyNDcyRjIxQjg3ODhGMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUKFetAcqYzxF44HX7Eky4q5j0 ue69iKoC/hRihWFrRm7BjBnqqzX/MLtMbAyZQqlTFPWC/Xk181SAPRfmlS+64LZL 3vOKuBstwkgVwUDAJM0DeuVaTSY2PoRZtr1V7Ywg3XOXcAtQRnSlzKSINmMhGa7n 1aY+HawCddg87mA+jjnSXjqAwzlv93PWQn/uoOow3puZxkgKRfXY/89UhdtRVWFS JMc6d56sEK3yOnsyZxU7F84wzD4LbtQ4KxR4GY//jPPu8U6043uVKmcT9NR73dXe xFlPvDExbPB71CtJJmqLUUqxzO3QkYgXXHgAFiJFOqpo+Ca9Tj9liUVnCXlNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ5P6QNsQhINsY82VIkcvIbh4jzMwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzNzJlMzEzMDMzMmUzMTM2MzgyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMzM4MzUzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDdWeoMA0GCSqG SIb3DQEBCwUAA4IBAQBbh10t+v+sgYKEE0sipSH4lBKkZyK2HK5ysK1wQLQnhQWh 9kalbQ1qmPTBmL/Elnf5aUX45aeZeZKvvSqh2cIzq/PvZHhr0FuMR3bAP/7uAk9K 6q/Kz82iYlX22kwynpyEQu0SIuxgyOh788bbwIwnpJJtAS8qPuAA3xVO8XxOwUeR xCHprwSCUraIW37NaJCBpTA03UgM2Ga1a1im3wQp1xtqq+CgIpuv3rgSXSfSJGHh R4F4qXhUpDT34xmQmaH8nbl2tuKchhMf5jbkyeZaaRF4S0pCdHmy+xZcuR4zcZzV wMITuFtB0fOJi0+8AkFJjVa/E8IutWeK1k9Y19um -----END CERTIFICATE-----Generated at Thu Apr 18 20:31:25 2024 by rpki-client on console-ams.rpki-client.org