$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa File: 34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa (raw, json) Hash identifier: 1SxHXmICyV4G05kGazKm5Rl198apP+N7SL3tG1BjxGg= Subject key identifier: F0:30:D6:C9:29:36:E9:41:94:66:6A:45:C6:6D:A0:B7:1B:68:8E:BF Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 2F3C72BD9C86D8885E450E684766F6EB7DAAC98D Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa Signing time: Mon 31 Jul 2023 00:05:28 +0000 ROA not before: Mon 31 Jul 2023 00:00:28 +0000 ROA not after: Mon 29 Jul 2024 00:05:28 +0000 asID: 131745 IP address blocks: 49.128.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:3c:72:bd:9c:86:d8:88:5e:45:0e:68:47:66:f6:eb:7d:aa:c9:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 31 00:00:28 2023 GMT Not After : Jul 29 00:05:28 2024 GMT Subject: CN=F030D6C92936E94194666A45C66DA0B71B688EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:64:fa:6f:52:1f:a9:c6:e7:88:dd:78:a5:89: 71:93:4d:1c:92:ca:37:83:99:cf:20:84:2b:78:ad: 86:e4:17:36:76:38:7d:80:38:6f:fb:50:54:b9:83: 7c:00:38:86:d5:30:29:9e:7b:66:3d:27:cd:f1:05: ef:7a:d8:54:b5:20:99:bc:92:8b:e3:77:7d:aa:6c: f4:10:c0:c8:5e:b5:56:30:71:42:2d:28:73:8c:37: 97:4a:8a:b3:f5:5c:6a:c8:98:af:49:eb:59:e0:78: 1a:53:66:75:f3:37:7a:1e:4d:2c:60:83:47:f9:81: 4f:7d:d8:43:58:07:67:27:46:58:25:e0:c8:20:e0: d6:85:cf:b0:ea:0e:be:e3:f5:a0:f4:d5:87:11:d3: 6e:87:66:72:40:8b:dd:c2:27:cb:cb:01:bd:b8:88: 5d:14:8a:7d:dc:51:6d:67:34:d7:2c:62:82:69:0b: d2:98:45:97:a3:1e:d4:8e:bb:52:9d:48:cb:76:f9: b8:24:8e:47:f4:f7:4d:e8:ae:cf:f9:58:eb:4e:dd: 0d:1c:8a:01:24:01:a9:64:3f:26:e8:49:88:df:be: e9:01:42:20:29:ed:fe:82:53:41:71:72:1f:3b:c1: e5:8f:f9:0b:40:b7:84:2c:c9:2f:80:19:9e:72:a9: 23:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:30:D6:C9:29:36:E9:41:94:66:6A:45:C6:6D:A0:B7:1B:68:8E:BF X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/34392e3132382e3138342e302f32322d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.128.184.0/22 Signature Algorithm: sha256WithRSAEncryption 23:19:3f:9a:25:4c:b3:e3:a1:f4:cd:3f:02:e1:e9:8e:a8:3f: 78:e0:95:67:6c:c3:7f:9b:57:bd:10:a5:91:80:a6:9d:a0:f6: e0:be:5e:39:c3:85:09:b1:c3:9f:1f:bc:42:cd:de:82:a6:cc: bf:60:ea:27:f1:7f:6c:b9:72:99:16:c1:c9:db:7c:b7:56:2a: 7e:42:5d:7f:a1:15:f4:a9:65:c5:7c:5d:44:95:5b:67:04:6d: 6a:8f:3c:15:6a:cf:85:f4:8d:64:06:19:05:3c:c0:49:73:61: 3e:bb:12:01:98:db:de:a7:2e:fb:58:ce:04:ad:b7:de:4d:5b: cb:cf:31:e2:0a:a1:2b:0b:dd:8a:42:5d:43:2e:5c:6c:ab:c2: 7d:aa:9e:62:9e:c4:8d:68:03:85:77:00:0d:02:63:55:f7:1f: f8:fa:a4:4b:45:26:80:c3:77:11:50:1b:87:fe:89:31:70:77: 5e:3f:1e:77:3c:42:d7:0a:b6:00:24:65:5f:7f:6d:6f:fc:e4: 41:a4:1a:2f:4e:9d:7e:ff:a0:ee:5e:1c:1c:86:57:8d:7e:e1: d8:71:e5:b7:0b:89:93:16:1b:61:1e:e8:6b:10:63:70:75:6e: 70:ba:68:b7:e2:27:7c:e7:4b:e5:49:a6:89:0c:2d:ab:3c:ed: e2:96:0e:36 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULzxyvZyG2IheRQ5oR2b2632qyY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yMzA3MzEwMDAwMjhaFw0yNDA3MjkwMDA1MjhaMDMxMTAvBgNV BAMTKEYwMzBENkM5MjkzNkU5NDE5NDY2NkE0NUM2NkRBMEI3MUI2ODhFQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyZPpvUh+pxueI3XiliXGTTRyS yjeDmc8ghCt4rYbkFzZ2OH2AOG/7UFS5g3wAOIbVMCmee2Y9J83xBe962FS1IJm8 kovjd32qbPQQwMhetVYwcUItKHOMN5dKirP1XGrImK9J61ngeBpTZnXzN3oeTSxg g0f5gU992ENYB2cnRlgl4Mgg4NaFz7DqDr7j9aD01YcR026HZnJAi93CJ8vLAb24 iF0Uin3cUW1nNNcsYoJpC9KYRZejHtSOu1KdSMt2+bgkjkf0903ors/5WOtO3Q0c igEkAalkPyboSYjfvukBQiAp7f6CU0Fxch87weWP+QtAt4QsyS+AGZ5yqSMTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8DDWySk26UGUZmpFxm2gtxtojr8wHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzM0MzkyZTMxMzIzODJlMzEzODM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCMYC4MA0GCSqG SIb3DQEBCwUAA4IBAQAjGT+aJUyz46H0zT8C4emOqD944JVnbMN/m1e9EKWRgKad oPbgvl45w4UJscOfH7xCzd6Cpsy/YOon8X9suXKZFsHJ23y3Vip+Ql1/oRX0qWXF fF1ElVtnBG1qjzwVas+F9I1kBhkFPMBJc2E+uxIBmNvepy77WM4ErbfeTVvLzzHi CqErC92KQl1DLlxsq8J9qp5insSNaAOFdwANAmNV9x/4+qRLRSaAw3cRUBuH/okx cHdePx53PELXCrYAJGVff21v/ORBpBovTp1+/6DuXhwchleNfuHYceW3C4mTFhth HuhrEGNwdW5wumi34id850vlSaaJDC2rPO3ilg42 -----END CERTIFICATE-----Generated at Thu Apr 25 05:43:41 2024 by rpki-client on console-fra.rpki-client.org