$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131332e302f32342d3234203d3e20313331373137.roa File: 34352e3131382e3131332e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: zJjyZvPa9QD0M6xDBPYeoJfPIu36bfdzPqNknIK5jDg= Subject key identifier: 9F:08:07:8E:5D:77:E1:C2:AA:89:B7:A8:43:A0:89:61:DE:E6:08:67 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 2117F500D84A5A700DAD9A431EF087577BFD4648 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131332e302f32342d3234203d3e20313331373137.roa Signing time: Mon 31 Jul 2023 00:03:13 +0000 ROA not before: Sun 30 Jul 2023 23:58:13 +0000 ROA not after: Mon 29 Jul 2024 00:03:13 +0000 asID: 131717 IP address blocks: 45.118.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 22:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:17:f5:00:d8:4a:5a:70:0d:ad:9a:43:1e:f0:87:57:7b:fd:46:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 30 23:58:13 2023 GMT Not After : Jul 29 00:03:13 2024 GMT Subject: CN=9F08078E5D77E1C2AA89B7A843A08961DEE60867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d2:87:2b:8f:ed:55:6e:9a:8a:3f:97:86:db: 12:98:b5:11:08:ac:f6:19:48:2c:46:4c:40:f0:e3: 07:18:2b:a3:d5:be:c6:56:26:bd:50:07:07:79:5f: 6c:49:e6:e4:1c:73:3d:27:5c:89:e1:bb:ea:37:83: 2c:ad:fe:9f:86:84:f9:88:a7:3d:8b:dc:64:24:7b: 59:75:01:fe:30:1c:b6:4b:ef:27:97:eb:d4:29:9a: 60:b2:8c:70:38:6b:1e:c4:eb:75:7f:c6:b8:4e:35: e2:12:5c:85:f0:3a:d9:35:a4:e9:46:6a:05:fc:1e: 78:6b:ec:65:52:b3:14:5b:a6:c0:9d:9e:7c:59:d6: 92:60:51:d3:fc:1a:4c:ee:cd:e8:d2:46:9f:69:48: 8d:3e:e3:0e:35:f5:5a:25:2d:a3:e7:37:7b:dc:f5: 74:43:ee:22:77:b0:3b:9e:72:53:29:ae:09:bb:9d: 92:07:5d:76:d7:e4:50:7a:26:63:ea:e8:da:0f:52: 68:bc:84:c2:42:c4:29:67:b5:09:d1:aa:7a:13:a7: 72:f7:3b:87:e7:2a:6f:0d:a9:7a:3f:39:db:83:9c: b0:5b:3e:08:1f:a5:08:15:e5:47:26:d4:2e:33:78: 45:b0:6e:96:79:a0:ba:6d:a9:ab:f2:a7:82:18:e9: b2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:08:07:8E:5D:77:E1:C2:AA:89:B7:A8:43:A0:89:61:DE:E6:08:67 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131332e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.113.0/24 Signature Algorithm: sha256WithRSAEncryption 31:9b:e9:47:30:52:2f:40:68:da:69:54:a7:d3:8d:81:d6:58: 9b:61:60:f3:bc:da:e6:20:19:fb:33:19:0b:de:93:82:0c:f1: b5:93:e7:e2:f3:f3:be:22:51:59:5f:2d:88:23:1c:dd:20:a9: 62:68:6b:b7:2a:b6:7c:d4:62:e0:46:15:99:37:5f:9b:0c:03: c4:38:a3:09:aa:f8:af:dd:0f:6a:36:68:cd:2e:bb:20:e0:95: 77:37:81:b9:08:92:3e:87:88:fc:b8:ad:e3:b5:7c:78:6e:92: 51:c8:ae:89:bd:2a:2b:6f:ed:d8:09:0c:0a:93:5f:b9:2e:b1: d3:16:02:dd:2a:2a:a5:72:1d:30:fe:48:db:b1:a2:cc:c8:da: 15:57:c6:d7:8b:07:84:54:ac:44:3f:00:78:dd:10:7a:d3:8c: 2e:1f:6c:44:56:d1:c7:dc:46:46:2c:7f:0e:fe:fa:57:54:e8: ec:25:ef:f1:9d:12:47:98:0c:de:a4:35:2a:fa:ca:50:7c:ab: 66:5e:bd:e2:c8:3b:bb:5e:79:28:e8:c9:b9:ac:ce:ff:e0:bb: de:ff:a7:a9:74:3d:83:b5:1c:a2:c5:b5:3f:c9:14:9a:04:f2: 21:d0:05:b3:12:ca:00:62:3f:d0:79:b8:a5:e2:f4:6e:46:25: 2b:c7:7e:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIRf1ANhKWnANrZpDHvCHV3v9RkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yMzA3MzAyMzU4MTNaFw0yNDA3MjkwMDAzMTNaMDMxMTAvBgNV BAMTKDlGMDgwNzhFNUQ3N0UxQzJBQTg5QjdBODQzQTA4OTYxREVFNjA4NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX0ocrj+1VbpqKP5eG2xKYtREI rPYZSCxGTEDw4wcYK6PVvsZWJr1QBwd5X2xJ5uQccz0nXInhu+o3gyyt/p+GhPmI pz2L3GQke1l1Af4wHLZL7yeX69QpmmCyjHA4ax7E63V/xrhONeISXIXwOtk1pOlG agX8Hnhr7GVSsxRbpsCdnnxZ1pJgUdP8GkzuzejSRp9pSI0+4w419VolLaPnN3vc 9XRD7iJ3sDueclMprgm7nZIHXXbX5FB6JmPq6NoPUmi8hMJCxClntQnRqnoTp3L3 O4fnKm8NqXo/OduDnLBbPggfpQgV5Ucm1C4zeEWwbpZ5oLptqavyp4IY6bJHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnwgHjl134cKqibeoQ6CJYd7mCGcwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXZxMA0GCSqG SIb3DQEBCwUAA4IBAQAxm+lHMFIvQGjaaVSn042B1libYWDzvNrmIBn7MxkL3pOC DPG1k+fi8/O+IlFZXy2IIxzdIKliaGu3KrZ81GLgRhWZN1+bDAPEOKMJqviv3Q9q NmjNLrsg4JV3N4G5CJI+h4j8uK3jtXx4bpJRyK6JvSorb+3YCQwKk1+5LrHTFgLd Kiqlch0w/kjbsaLMyNoVV8bXiweEVKxEPwB43RB604wuH2xEVtHH3EZGLH8O/vpX VOjsJe/xnRJHmAzepDUq+spQfKtmXr3iyDu7Xnko6Mm5rM7/4Lve/6epdD2DtRyi xbU/yRSaBPIh0AWzEsoAYj/Qebil4vRuRiUrx372 -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:34 2024 by rpki-client on console-ams.rpki-client.org