$ rpki-client -vvf repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa File: 3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa (raw, json) Hash identifier: wV3mzM6WktIyo2CqHVsIocOV5QSwXhq7wNjEzBZcMLk= Subject key identifier: E5:4C:3A:01:D0:6B:29:76:A9:A0:31:14:5F:29:9A:96:14:60:19:92 Certificate issuer: /CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Certificate serial: 085360FD7B70D81DA276B719A2B77F05E3F2951E Authority key identifier: F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa Signing time: Mon 31 Jul 2023 00:05:27 +0000 ROA not before: Mon 31 Jul 2023 00:00:27 +0000 ROA not after: Mon 29 Jul 2024 00:05:27 +0000 asID: 46032 IP address blocks: 118.151.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 12:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:53:60:fd:7b:70:d8:1d:a2:76:b7:19:a2:b7:7f:05:e3:f2:95:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8 Validity Not Before: Jul 31 00:00:27 2023 GMT Not After : Jul 29 00:05:27 2024 GMT Subject: CN=E54C3A01D06B2976A9A031145F299A9614601992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:73:7b:1b:23:23:b2:cb:7e:cc:a8:73:0e:40: 79:00:dc:1d:73:08:e9:9b:8c:2e:63:08:2b:a5:cf: 74:f9:15:73:bf:d1:20:aa:3e:9e:23:19:48:90:a3: e7:40:95:99:2e:27:9a:08:08:9c:59:e8:b4:44:9e: e2:46:e9:e3:e8:cb:d0:df:6a:ce:d5:aa:2b:97:65: 74:7c:4a:82:c6:3f:b8:f2:11:b7:c2:5c:97:ce:b7: 2f:09:c7:23:ad:37:03:a0:51:39:54:c4:0f:b2:de: 9c:9a:3d:b5:d3:72:b0:30:ac:79:52:5c:8b:f4:ba: d0:7f:95:94:53:c4:4d:64:ac:fe:48:69:16:59:e6: 32:fc:d3:e1:a3:92:c1:d4:87:ec:73:c4:63:10:21: 69:96:4f:7b:89:55:b7:df:1e:6c:3b:65:28:43:7e: 8f:c9:3d:fe:b8:07:c4:a9:57:af:a7:6c:24:45:1c: dc:80:60:d7:5a:7a:b5:a3:f1:ce:ef:a1:8b:bb:91: 1d:30:c6:0e:c0:82:bd:8d:51:0b:ea:4a:6a:b8:c3: 49:c7:48:cd:93:bc:6f:4c:09:0f:78:58:b0:79:2e: d3:96:24:d3:b9:44:81:01:84:8e:9c:29:be:da:d7: d3:f5:24:fb:34:b9:1b:a9:19:72:19:5d:0c:ec:18: 97:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:4C:3A:01:D0:6B:29:76:A9:A0:31:14:5F:29:9A:96:14:60:19:92 X509v3 Authority Key Identifier: keyid:F1:B7:1C:4F:9F:FB:EC:16:8C:86:45:DF:F7:9B:A9:06:BE:B2:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1B71C4F9FFBEC168C8645DFF79BA906BEB23FE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c57b90cb-8ebd-4c7b-8c31-133a8b4ed69c/0/3131382e3135312e3232322e302f32342d3234203d3e203436303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.151.222.0/24 Signature Algorithm: sha256WithRSAEncryption 16:f9:02:35:74:6d:1f:ab:fb:dd:12:98:65:74:cd:24:44:0c: fe:26:94:61:0e:68:76:0e:04:e4:22:35:39:d2:a2:2f:73:cd: 36:d8:7d:33:de:bf:76:9d:58:c0:d4:51:73:e0:2e:9a:87:59: 6b:2a:ba:2c:f2:2a:96:4a:2d:62:16:40:9b:fa:9b:b4:89:05: 3c:15:3b:64:e0:31:ab:97:2b:da:2c:32:99:8b:79:6f:fe:a2: 7a:03:62:ed:89:91:dd:1b:df:47:49:bb:55:05:10:95:30:d9: 0c:30:93:23:09:44:a0:a3:9c:ff:eb:ad:bf:65:8d:e9:7a:d7: db:a2:3e:41:6d:21:ad:24:41:f7:47:bd:d7:52:28:67:2c:5a: f7:8e:b0:02:8a:c3:6e:8d:e5:cc:3b:59:9e:5a:0e:36:ec:4d: a9:d8:91:82:75:63:9f:42:88:82:c6:ec:a0:3a:19:9a:b1:92: 49:30:e2:55:29:20:2b:01:b4:69:f7:9a:d9:f2:73:20:eb:9a: 72:74:41:54:83:83:e5:59:26:11:53:9c:69:d0:e3:7a:71:43: d8:63:6b:13:bd:45:f3:eb:30:cf:b3:a3:02:c6:c0:4c:03:94: 94:c4:c9:66:84:c1:1f:0b:b3:79:dd:ec:7d:a6:65:ce:2d:02: ea:ba:94:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCFNg/Xtw2B2idrcZord/BePylR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZC RUIyM0ZFODAeFw0yMzA3MzEwMDAwMjdaFw0yNDA3MjkwMDA1MjdaMDMxMTAvBgNV BAMTKEU1NEMzQTAxRDA2QjI5NzZBOUEwMzExNDVGMjk5QTk2MTQ2MDE5OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBc3sbIyOyy37MqHMOQHkA3B1z COmbjC5jCCulz3T5FXO/0SCqPp4jGUiQo+dAlZkuJ5oICJxZ6LREnuJG6ePoy9Df as7VqiuXZXR8SoLGP7jyEbfCXJfOty8JxyOtNwOgUTlUxA+y3pyaPbXTcrAwrHlS XIv0utB/lZRTxE1krP5IaRZZ5jL80+GjksHUh+xzxGMQIWmWT3uJVbffHmw7ZShD fo/JPf64B8SpV6+nbCRFHNyAYNdaerWj8c7voYu7kR0wxg7Agr2NUQvqSmq4w0nH SM2TvG9MCQ94WLB5LtOWJNO5RIEBhI6cKb7a19P1JPs0uRupGXIZXQzsGJcdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5Uw6AdBrKXapoDEUXymalhRgGZIwHwYDVR0j BBgwFoAU8bccT5/77BaMhkXf95upBr6yP+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTdiOTBjYi04ZWJkLTRjN2ItOGMzMS0xMzNhOGI0ZWQ2OWMvMC9GMUI3MUM0RjlG RkJFQzE2OEM4NjQ1REZGNzlCQTkwNkJFQjIzRkU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFCNzFDNEY5RkZCRUMxNjhDODY0NURGRjc5QkE5MDZCRUIy M0ZFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1N2I5MGNiLThlYmQtNGM3Yi04 YzMxLTEzM2E4YjRlZDY5Yy8wLzMxMzEzODJlMzEzNTMxMmUzMjMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdpfeMA0GCSqG SIb3DQEBCwUAA4IBAQAW+QI1dG0fq/vdEphldM0kRAz+JpRhDmh2DgTkIjU50qIv c8022H0z3r92nVjA1FFz4C6ah1lrKros8iqWSi1iFkCb+pu0iQU8FTtk4DGrlyva LDKZi3lv/qJ6A2LtiZHdG99HSbtVBRCVMNkMMJMjCUSgo5z/662/ZY3petfboj5B bSGtJEH3R73XUihnLFr3jrACisNujeXMO1meWg427E2p2JGCdWOfQoiCxuygOhma sZJJMOJVKSArAbRp95rZ8nMg65pydEFUg4PlWSYRU5xp0ON6cUPYY2sTvUXz6zDP s6MCxsBMA5SUxMlmhMEfC7N53ex9pmXOLQLqupSr -----END CERTIFICATE-----Generated at Wed May 1 10:09:33 2024 by rpki-client on console-ams.rpki-client.org