$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa File: 34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa (raw, json) Hash identifier: yF6+Qe1B+0yDjiIgrS3RPefHFPW68AuvmjEgCvapmsU= Subject key identifier: 77:88:4C:4A:1D:E8:5B:81:B3:4E:FE:07:37:1F:70:47:02:58:7F:E0 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 5F8AF1A31FE7FAD36862AF048BD55C574B7A4DCE Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa Signing time: Mon 31 Jul 2023 00:03:13 +0000 ROA not before: Sun 30 Jul 2023 23:58:13 +0000 ROA not after: Mon 29 Jul 2024 00:03:13 +0000 asID: 131717 IP address blocks: 45.118.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 02:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:8a:f1:a3:1f:e7:fa:d3:68:62:af:04:8b:d5:5c:57:4b:7a:4d:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 30 23:58:13 2023 GMT Not After : Jul 29 00:03:13 2024 GMT Subject: CN=77884C4A1DE85B81B34EFE07371F704702587FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b5:1a:d4:53:03:a7:01:33:55:73:9f:99:4e: 7f:a9:92:8e:43:e1:f5:d8:79:0d:0f:2e:37:c9:54: 08:1e:ca:52:69:dc:c8:aa:e9:c0:92:df:35:55:29: 11:e9:52:96:7f:5f:90:3f:8b:5a:cb:bf:12:56:52: af:4b:54:57:43:3c:f6:ff:5f:35:98:a3:0b:9a:62: c3:33:6a:3f:b5:5d:3d:be:65:70:46:3e:7d:d6:b1: ba:9d:33:2c:33:72:0e:84:eb:f1:c1:a8:50:65:6e: c5:d6:01:e5:e9:ce:f7:ca:60:da:00:9c:07:4f:50: d5:1f:80:b0:50:d9:de:96:0f:40:2b:98:57:ee:04: c7:55:27:77:e4:f5:10:a2:0a:30:7f:03:14:7a:59: cf:3e:c4:12:e9:fe:cd:75:f6:27:62:62:48:7c:48: 62:d8:72:72:d0:2d:5d:99:71:fe:f9:9a:c2:c9:e7: 5c:d8:0d:4d:9e:79:5e:02:c6:c6:da:59:46:49:79: 4c:29:cc:c5:10:42:2f:69:0f:06:17:5f:2b:01:6c: f2:c3:83:1a:ef:1c:04:7e:2a:bb:33:c0:5a:de:37: 23:f0:0e:18:2e:e0:ad:9b:ba:40:ac:4c:6f:ca:4c: 27:cd:dc:35:04:18:b7:f1:7e:7d:04:0e:bc:78:ec: 57:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:88:4C:4A:1D:E8:5B:81:B3:4E:FE:07:37:1F:70:47:02:58:7F:E0 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.112.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:74:94:16:05:96:0c:32:23:c4:ca:41:af:17:61:0b:8c:42: 2f:ac:2d:6c:ab:5c:3b:33:54:82:ad:47:f1:ba:51:a5:ad:df: b1:5a:d3:b1:f9:4a:5c:a0:88:a2:10:94:d1:83:1f:e6:74:f1: f3:f1:d4:d4:51:62:36:e4:cc:3b:57:9a:3b:6a:43:ab:e4:7c: 62:24:8b:2d:c7:8c:b0:9d:3a:89:20:ac:ca:7d:26:9c:55:6d: d1:74:1c:d4:82:de:aa:27:83:39:43:ee:76:0d:90:63:16:04: 3a:36:e0:7b:6d:a0:e3:39:66:13:6c:1b:43:fa:c1:d4:f5:e1: 24:de:a9:8a:6d:3f:f8:a5:5d:08:50:05:96:eb:22:d6:06:44: c8:17:f4:80:3e:20:7c:a9:ab:c7:07:a8:23:2f:cd:d6:a1:d9: c1:bd:ed:e2:34:aa:6d:05:ab:17:07:93:50:34:8f:b7:62:b9: 3e:33:47:f2:41:af:1e:02:d6:14:e0:15:0a:3b:f9:9c:6c:fb: 09:40:a3:c0:09:69:a7:25:b6:a2:fa:a5:69:e2:38:21:7e:b1: 93:63:d8:fa:17:9e:4c:43:aa:0c:17:77:f1:5f:fa:e6:b6:35: 5f:88:4d:5d:8e:89:21:ce:a9:99:87:ee:6b:47:5b:1a:dc:3b: 1f:18:68:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX4rxox/n+tNoYq8Ei9VcV0t6Tc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yMzA3MzAyMzU4MTNaFw0yNDA3MjkwMDAzMTNaMDMxMTAvBgNV BAMTKDc3ODg0QzRBMURFODVCODFCMzRFRkUwNzM3MUY3MDQ3MDI1ODdGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8tRrUUwOnATNVc5+ZTn+pko5D 4fXYeQ0PLjfJVAgeylJp3Miq6cCS3zVVKRHpUpZ/X5A/i1rLvxJWUq9LVFdDPPb/ XzWYowuaYsMzaj+1XT2+ZXBGPn3WsbqdMywzcg6E6/HBqFBlbsXWAeXpzvfKYNoA nAdPUNUfgLBQ2d6WD0ArmFfuBMdVJ3fk9RCiCjB/AxR6Wc8+xBLp/s119idiYkh8 SGLYcnLQLV2Zcf75msLJ51zYDU2eeV4CxsbaWUZJeUwpzMUQQi9pDwYXXysBbPLD gxrvHAR+KrszwFreNyPwDhgu4K2bukCsTG/KTCfN3DUEGLfxfn0EDrx47FfZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd4hMSh3oW4GzTv4HNx9wRwJYf+AwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLXZwMA0GCSqG SIb3DQEBCwUAA4IBAQBtdJQWBZYMMiPEykGvF2ELjEIvrC1sq1w7M1SCrUfxulGl rd+xWtOx+UpcoIiiEJTRgx/mdPHz8dTUUWI25Mw7V5o7akOr5HxiJIstx4ywnTqJ IKzKfSacVW3RdBzUgt6qJ4M5Q+52DZBjFgQ6NuB7baDjOWYTbBtD+sHU9eEk3qmK bT/4pV0IUAWW6yLWBkTIF/SAPiB8qavHB6gjL83WodnBve3iNKptBasXB5NQNI+3 Yrk+M0fyQa8eAtYU4BUKO/mcbPsJQKPACWmnJbai+qVp4jghfrGTY9j6F55MQ6oM F3fxX/rmtjVfiE1djokhzqmZh+5rR1sa3DsfGGi9 -----END CERTIFICATE-----Generated at Thu Apr 18 20:08:49 2024 by rpki-client on console-fra.rpki-client.org