$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa File: 3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: hw3gqfgbhO4tatcZv0EHzWzicS22qeKby0cqTy6VvXY= Subject key identifier: 7E:AA:4A:92:D5:B7:26:A0:E7:C7:00:6D:67:01:A2:7C:29:6A:B2:81 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 53F522F7EFE05033EB8D5E2BE550518A4686BA9D Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa Signing time: Mon 31 Jul 2023 00:06:18 +0000 ROA not before: Mon 31 Jul 2023 00:01:18 +0000 ROA not after: Mon 29 Jul 2024 00:06:18 +0000 asID: 55699 IP address blocks: 116.193.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 09:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f5:22:f7:ef:e0:50:33:eb:8d:5e:2b:e5:50:51:8a:46:86:ba:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 31 00:01:18 2023 GMT Not After : Jul 29 00:06:18 2024 GMT Subject: CN=7EAA4A92D5B726A0E7C7006D6701A27C296AB281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ed:6c:12:e6:13:29:1d:92:87:77:5a:c4:ed: b3:7b:e4:1a:16:97:f9:d5:89:2f:97:3b:7f:6e:88: 3b:57:ed:0c:04:89:1c:e7:e9:24:95:30:c4:2c:05: c4:59:25:45:b6:65:f3:ae:a8:26:56:0d:c5:d1:10: 55:e1:a7:46:75:d7:71:52:be:fa:57:5e:1a:80:45: 8e:9a:8f:95:e8:bb:df:3d:33:fb:f3:fb:42:ef:8c: 51:bb:f2:0e:22:c2:0a:e3:ec:49:88:0b:e8:3b:6b: 0f:3c:71:6a:91:0b:0a:e8:72:12:b3:95:c0:ca:63: 15:8c:da:33:aa:9b:7f:db:f4:dc:86:e4:e6:52:60: 6c:09:c4:fd:e8:50:51:df:25:58:ec:22:c0:49:f8: 28:e2:d3:41:23:fc:c9:68:55:d9:77:eb:d0:1d:ac: b8:8c:65:cd:e5:c6:04:e0:66:22:88:23:90:ad:82: e5:98:88:1c:56:7b:6a:bc:ff:4e:2c:be:f0:56:1c: 02:32:35:b6:c8:70:9a:1f:5a:9f:41:e6:13:45:f6: 5d:09:d8:ad:6e:01:d5:10:90:58:88:07:0d:ef:3a: 8b:0d:f8:e7:95:bd:87:79:44:7a:9f:61:56:7f:79: f5:be:76:72:50:6d:b3:17:a2:b2:f4:cf:3e:a6:bb: 2f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:AA:4A:92:D5:B7:26:A0:E7:C7:00:6D:67:01:A2:7C:29:6A:B2:81 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.193.172.0/22 Signature Algorithm: sha256WithRSAEncryption c1:25:26:86:1d:13:b2:21:df:83:48:51:2a:8c:3a:3e:22:e1: 74:75:22:29:b8:ee:10:8b:ab:44:dc:04:e1:38:8b:6d:bf:b7: 48:c2:4a:fe:8b:c8:f2:d7:60:53:d0:86:14:c7:32:07:49:35: 5d:29:94:30:61:2c:4f:be:d0:7f:1f:0c:8f:80:9a:ca:a3:08: d0:e9:a6:1b:40:d8:46:bf:4f:d1:33:05:06:71:b9:cc:4e:81: 46:81:43:d3:59:5d:f9:69:82:c2:de:f7:0e:c8:b5:bd:ae:7d: 29:a6:59:74:ac:83:ed:35:67:43:21:bd:f2:17:15:fd:51:db: 89:c1:8c:5c:76:41:5e:7d:ad:e2:32:d7:1a:53:e1:b0:f7:a6: a9:87:f6:68:e1:46:67:fb:f0:69:ed:37:4f:83:a6:53:42:6d: 2e:e9:68:89:97:35:e4:8b:76:cc:40:6e:d5:da:11:2d:f4:e8: c9:b7:50:c5:0b:1b:16:11:27:d5:55:ca:b9:ed:f1:25:ad:19: bf:06:21:ac:9e:15:c3:58:74:9e:0a:c4:84:50:bb:4d:c3:4c: 87:73:0e:e2:4b:45:a4:89:81:4d:c9:47:80:07:64:e7:cd:cb: 29:69:75:2c:41:b4:80:40:3d:94:5c:8f:37:be:43:3f:a7:71: ee:95:eb:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU/Ui9+/gUDPrjV4r5VBRikaGup0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yMzA3MzEwMDAxMThaFw0yNDA3MjkwMDA2MThaMDMxMTAvBgNV BAMTKDdFQUE0QTkyRDVCNzI2QTBFN0M3MDA2RDY3MDFBMjdDMjk2QUIyODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC57WwS5hMpHZKHd1rE7bN75BoW l/nViS+XO39uiDtX7QwEiRzn6SSVMMQsBcRZJUW2ZfOuqCZWDcXREFXhp0Z113FS vvpXXhqARY6aj5Xou989M/vz+0LvjFG78g4iwgrj7EmIC+g7aw88cWqRCwrochKz lcDKYxWM2jOqm3/b9NyG5OZSYGwJxP3oUFHfJVjsIsBJ+Cji00Ej/MloVdl369Ad rLiMZc3lxgTgZiKII5CtguWYiBxWe2q8/04svvBWHAIyNbbIcJofWp9B5hNF9l0J 2K1uAdUQkFiIBw3vOosN+OeVvYd5RHqfYVZ/efW+dnJQbbMXorL0zz6muy+lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfqpKktW3JqDnxwBtZwGifClqsoEwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzEzNjJlMzEzOTMzMmUzMTM3MzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM1MzYzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCdMGsMA0GCSqG SIb3DQEBCwUAA4IBAQDBJSaGHROyId+DSFEqjDo+IuF0dSIpuO4Qi6tE3AThOItt v7dIwkr+i8jy12BT0IYUxzIHSTVdKZQwYSxPvtB/HwyPgJrKowjQ6aYbQNhGv0/R MwUGcbnMToFGgUPTWV35aYLC3vcOyLW9rn0ppll0rIPtNWdDIb3yFxX9UduJwYxc dkFefa3iMtcaU+Gw96aph/Zo4UZn+/Bp7TdPg6ZTQm0u6WiJlzXki3bMQG7V2hEt 9OjJt1DFCxsWESfVVcq57fElrRm/BiGsnhXDWHSeCsSEULtNw0yHcw7iS0WkiYFN yUeAB2TnzcspaXUsQbSAQD2UXI83vkM/p3HuleuD -----END CERTIFICATE-----Generated at Tue Apr 23 18:28:04 2024 by rpki-client on console-fra.rpki-client.org