$ rpki-client -vvf repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: Qz3VPAtsQ5pmTU4QezJpic7NPbrD51VE+5rq5XP0n9w= Subject key identifier: D2:A9:58:25:77:09:95:DC:AB:10:8D:57:F0:3D:E0:33:E3:B7:7D:89 Certificate issuer: /CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Certificate serial: 78C05751652E40872A0AE8A16D3BB75C392693F8 Authority key identifier: F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa Signing time: Mon 31 Jul 2023 00:05:27 +0000 ROA not before: Mon 31 Jul 2023 00:00:27 +0000 ROA not after: Mon 29 Jul 2024 00:05:27 +0000 asID: 46032 IP address blocks: 118.151.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 12:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c0:57:51:65:2e:40:87:2a:0a:e8:a1:6d:3b:b7:5c:39:26:93:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Validity Not Before: Jul 31 00:00:27 2023 GMT Not After : Jul 29 00:05:27 2024 GMT Subject: CN=D2A95825770995DCAB108D57F03DE033E3B77D89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6d:ae:a6:4d:13:04:29:c8:04:ec:58:6b:30: ec:3b:a9:e3:7d:84:45:43:0f:b7:59:c8:7d:7b:92: bf:4a:1f:be:2f:fd:fa:c7:d3:25:ee:24:0c:1d:6e: 04:8a:fb:4e:4a:44:b5:5b:ea:69:95:82:39:d5:bb: a8:d0:de:3d:62:80:dd:f1:da:ca:99:23:2d:b1:82: f8:6b:d9:2f:8a:da:b7:ce:88:5c:39:d4:58:69:81: 2f:44:51:68:91:fc:c9:ab:43:ee:00:fe:b3:f5:56: 75:f7:ff:4d:38:99:5b:7e:d0:e3:b5:c7:dc:76:39: 37:0b:13:4e:5a:7e:81:39:cf:76:a5:81:61:2a:d8: 7c:2b:c0:8f:b6:b3:9a:d8:ce:f6:fa:c9:4d:6d:32: 1e:37:d1:6c:dd:64:62:3b:0c:cb:a2:f5:a3:01:6c: bf:e1:5a:fa:7d:89:e1:12:79:52:d9:06:0f:6f:79: 8c:f5:03:7a:a6:d2:0e:94:9e:4a:d6:9c:73:30:06: 83:e0:ac:38:af:f4:0f:8f:28:99:df:59:21:bd:db: a0:15:61:a6:62:86:2c:a6:c5:72:34:f6:73:c7:cf: a4:64:ad:39:35:0e:65:df:9b:7e:76:10:e4:39:f4: 47:ec:0a:db:fe:c6:9e:e6:7f:24:04:a8:9f:c8:06: 4e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A9:58:25:77:09:95:DC:AB:10:8D:57:F0:3D:E0:33:E3:B7:7D:89 X509v3 Authority Key Identifier: keyid:F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232302e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.220.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:f4:4e:71:a3:97:b5:db:dd:59:15:44:bb:96:8a:4d:0e:b4: f7:b4:71:f8:cf:5c:b6:5f:ab:dd:e1:56:62:88:8e:72:f5:85: a6:2d:4d:ae:60:a6:09:ce:09:94:c6:89:9e:45:d3:f9:72:61: a4:04:16:98:17:c1:c6:9b:55:b4:86:ef:de:55:0a:cd:46:d7: 87:b5:2e:32:ec:48:cd:44:39:23:88:65:85:ec:ef:d1:77:f3: e7:53:41:37:90:90:4f:51:45:5f:47:a6:07:98:cc:84:5c:d6: 18:20:bf:7c:3c:02:9d:82:98:bc:17:5a:d2:0f:5b:6f:ca:1f: ca:6c:eb:99:e9:e1:09:ff:62:64:28:18:f8:6b:07:2f:ab:31: c3:5f:3a:5c:02:67:b1:53:ab:1e:ca:3f:72:d9:23:1d:60:1b: 5d:b5:86:4d:d3:d0:7a:c3:07:c9:1d:a3:f2:8d:2d:80:48:34: 74:cb:b9:b0:7f:00:dd:38:26:af:9a:c0:a7:57:a6:ad:4e:27: 1a:b8:98:c8:c4:d0:43:7c:43:80:4a:ea:69:31:72:44:7e:5a: 65:02:d7:f1:42:b4:f9:f5:bc:9e:c9:c2:c1:60:0a:26:d6:d1: 20:cb:ce:98:c8:e7:e0:12:38:a4:bf:81:4f:d5:11:61:fc:ba: d8:5c:1d:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeMBXUWUuQIcqCuihbTu3XDkmk/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZC RUIyM0ZFODAeFw0yMzA3MzEwMDAwMjdaFw0yNDA3MjkwMDA1MjdaMDMxMTAvBgNV BAMTKEQyQTk1ODI1NzcwOTk1RENBQjEwOEQ1N0YwM0RFMDMzRTNCNzdEODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ba6mTRMEKcgE7FhrMOw7qeN9 hEVDD7dZyH17kr9KH74v/frH0yXuJAwdbgSK+05KRLVb6mmVgjnVu6jQ3j1igN3x 2sqZIy2xgvhr2S+K2rfOiFw51FhpgS9EUWiR/MmrQ+4A/rP1VnX3/004mVt+0OO1 x9x2OTcLE05afoE5z3algWEq2HwrwI+2s5rYzvb6yU1tMh430WzdZGI7DMui9aMB bL/hWvp9ieESeVLZBg9veYz1A3qm0g6UnkrWnHMwBoPgrDiv9A+PKJnfWSG926AV YaZihiymxXI09nPHz6RkrTk1DmXfm352EOQ59EfsCtv+xp7mfyQEqJ/IBk6rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0qlYJXcJldyrEI1X8D3gM+O3fYkwHwYDVR0j BBgwFoAU8bccT5/77BaMhkXf95upBr6yP+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTdiOTBjYi04ZWJkLTRjN2ItOGMzMS0xMzNhOGI0ZWQ2OWMvMC9GMUI3MUM0RjlG RkJFQzE2OEM4NjQ1REZGNzlCQTkwNkJFQjIzRkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZCRUIy M0ZFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpfcMA0GCSqG SIb3DQEBCwUAA4IBAQAt9E5xo5e1291ZFUS7lopNDrT3tHH4z1y2X6vd4VZiiI5y 9YWmLU2uYKYJzgmUxomeRdP5cmGkBBaYF8HGm1W0hu/eVQrNRteHtS4y7EjNRDkj iGWF7O/Rd/PnU0E3kJBPUUVfR6YHmMyEXNYYIL98PAKdgpi8F1rSD1tvyh/KbOuZ 6eEJ/2JkKBj4awcvqzHDXzpcAmexU6seyj9y2SMdYBtdtYZN09B6wwfJHaPyjS2A SDR0y7mwfwDdOCavmsCnV6atTicauJjIxNBDfEOASuppMXJEflplAtfxQrT59bye ycLBYAom1tEgy86YyOfgEjikv4FP1RFh/LrYXB26 -----END CERTIFICATE-----Generated at Wed May 1 10:09:33 2024 by rpki-client on console-ams.rpki-client.org