$ rpki-client -vvf repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232312e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232312e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: C7/RuHJP7EiV+AKZ1QqrFL2lGyUEOj4RDS+futbS3hc= Subject key identifier: D2:85:3B:B3:C5:99:A7:FF:37:8A:87:33:33:3A:B1:69:20:EA:B3:FE Certificate issuer: /CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Certificate serial: 05AA2518402AEE6D1B2118425BB7BBEB483E2BCE Authority key identifier: F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232312e302f32342d3234203d3e203436303332.roa Signing time: Mon 31 Jul 2023 00:05:27 +0000 ROA not before: Mon 31 Jul 2023 00:00:27 +0000 ROA not after: Mon 29 Jul 2024 00:05:27 +0000 asID: 46032 IP address blocks: 118.151.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 12:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:aa:25:18:40:2a:ee:6d:1b:21:18:42:5b:b7:bb:eb:48:3e:2b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Validity Not Before: Jul 31 00:00:27 2023 GMT Not After : Jul 29 00:05:27 2024 GMT Subject: CN=D2853BB3C599A7FF378A8733333AB16920EAB3FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:66:ba:12:5b:33:5b:ad:a9:77:1b:14:c0:48: 75:4e:a0:1b:b2:01:26:fc:5a:ca:11:b2:9e:28:a1: 58:81:e5:87:71:a0:34:85:06:48:48:af:63:67:50: 1c:ad:2e:ae:fc:a6:d1:bc:ed:32:da:1e:4c:fb:e1: 1a:cc:51:c6:ec:2e:b9:5f:6d:a5:ff:7f:0b:a3:7e: 09:d4:df:a1:2b:0e:87:e3:bc:67:c3:76:5c:f2:e5: 81:1f:b0:9c:ab:0b:6f:92:a5:51:b4:bf:8f:04:e1: f3:d3:e9:87:7a:33:6a:6b:93:62:6d:5d:18:94:a4: 02:22:a9:f0:c5:c6:b2:89:60:1b:a6:ab:b9:0e:ae: 80:a8:35:14:a8:69:3f:49:77:73:dd:2a:65:2e:e6: 76:10:a5:35:17:74:8f:57:8a:4d:ca:16:0f:59:8c: ff:e7:bb:91:1f:a7:3f:2f:96:38:5c:88:46:8c:3c: 3c:a2:de:5b:aa:90:9e:da:cc:50:4b:f1:42:ac:37: 1b:47:7f:a9:96:f5:da:9d:b6:76:1e:ea:1f:ed:28: 1e:9a:55:04:1c:8f:f4:7e:b7:51:7d:a3:aa:ec:f1: 7a:d8:d2:3a:37:5c:0f:b3:79:0c:01:2d:19:21:58: c7:3f:28:3b:3a:02:53:70:4e:02:36:94:9e:b7:f7: 29:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:85:3B:B3:C5:99:A7:FF:37:8A:87:33:33:3A:B1:69:20:EA:B3:FE X509v3 Authority Key Identifier: keyid:F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232312e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.221.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:95:a2:4d:9e:0f:b7:d3:43:0a:e7:60:3a:e6:ea:33:99:19: 58:4a:ab:d3:82:e4:7c:38:fe:e9:a0:a0:6d:c7:b8:bb:f2:17: cb:b4:c5:92:14:e0:66:63:99:6d:32:6f:74:6d:41:a5:df:97: d3:8b:97:63:d9:e1:d9:ea:02:ee:5c:a2:02:4c:97:9b:da:bb: 0d:c6:95:2d:4b:c4:38:03:7b:7e:35:3d:43:3a:62:96:30:f8: 54:95:68:7a:f8:c3:b5:95:e5:64:be:10:e5:bf:4e:99:47:7a: 59:d3:6c:5a:0c:6d:93:12:b0:86:9a:e4:19:38:30:e8:05:85: d9:f3:4d:ed:bc:92:4a:65:07:64:ca:2f:07:a0:5a:f3:32:02: c1:db:94:37:dc:14:bc:ff:0b:72:39:4d:65:1a:03:f6:c9:55: c0:f2:79:7b:68:0e:6f:a7:8c:c5:72:e3:9e:e5:7e:c7:bd:f1: b4:73:47:cc:e8:9a:ae:a7:84:79:77:4b:9e:ae:cf:d7:3c:08: a4:d1:af:12:79:c0:4a:16:12:02:03:42:3c:13:a4:e1:d0:9e: 73:91:7e:a7:98:77:dc:f8:7f:67:a3:ae:85:5b:a5:b9:d7:55: 57:eb:c7:a3:50:ba:78:c7:11:32:32:fb:dc:71:94:9d:14:99: 5a:bc:26:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBaolGEAq7m0bIRhCW7e760g+K84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZC RUIyM0ZFODAeFw0yMzA3MzEwMDAwMjdaFw0yNDA3MjkwMDA1MjdaMDMxMTAvBgNV BAMTKEQyODUzQkIzQzU5OUE3RkYzNzhBODczMzMzM0FCMTY5MjBFQUIzRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ZroSWzNbral3GxTASHVOoBuy ASb8WsoRsp4ooViB5YdxoDSFBkhIr2NnUBytLq78ptG87TLaHkz74RrMUcbsLrlf baX/fwujfgnU36ErDofjvGfDdlzy5YEfsJyrC2+SpVG0v48E4fPT6Yd6M2prk2Jt XRiUpAIiqfDFxrKJYBumq7kOroCoNRSoaT9Jd3PdKmUu5nYQpTUXdI9Xik3KFg9Z jP/nu5Efpz8vljhciEaMPDyi3luqkJ7azFBL8UKsNxtHf6mW9dqdtnYe6h/tKB6a VQQcj/R+t1F9o6rs8XrY0jo3XA+zeQwBLRkhWMc/KDs6AlNwTgI2lJ639ynpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0oU7s8WZp/83ioczMzqxaSDqs/4wHwYDVR0j BBgwFoAU8bccT5/77BaMhkXf95upBr6yP+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTdiOTBjYi04ZWJkLTRjN2ItOGMzMS0xMzNhOGI0ZWQ2OWMvMC9GMUI3MUM0RjlG RkJFQzE2OEM4NjQ1REZGNzlCQTkwNkJFQjIzRkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZCRUIy M0ZFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpfdMA0GCSqG SIb3DQEBCwUAA4IBAQCPlaJNng+300MK52A65uozmRlYSqvTguR8OP7poKBtx7i7 8hfLtMWSFOBmY5ltMm90bUGl35fTi5dj2eHZ6gLuXKICTJeb2rsNxpUtS8Q4A3t+ NT1DOmKWMPhUlWh6+MO1leVkvhDlv06ZR3pZ02xaDG2TErCGmuQZODDoBYXZ803t vJJKZQdkyi8HoFrzMgLB25Q33BS8/wtyOU1lGgP2yVXA8nl7aA5vp4zFcuOe5X7H vfG0c0fM6Jqup4R5d0uers/XPAik0a8SecBKFhICA0I8E6Th0J5zkX6nmHfc+H9n o66FW6W511VX68ejULp4xxEyMvvccZSdFJlavCao -----END CERTIFICATE-----Generated at Wed May 1 10:09:33 2024 by rpki-client on console-ams.rpki-client.org