$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa File: 34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: 2lzZTqv8w1r4F6pMpadx2JpD8WBpEdb9zvQ3d+EpMgQ= Subject key identifier: 1D:FA:C5:47:32:96:44:5B:6F:8E:A0:75:F0:F6:C9:0A:5D:CE:7D:EE Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 263D5D9CE0B956A1FF6EA3704A134FDC08261382 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa Signing time: Mon 31 Jul 2023 00:03:14 +0000 ROA not before: Sun 30 Jul 2023 23:58:14 +0000 ROA not after: Mon 29 Jul 2024 00:03:14 +0000 asID: 131717 IP address blocks: 45.118.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 22:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:3d:5d:9c:e0:b9:56:a1:ff:6e:a3:70:4a:13:4f:dc:08:26:13:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 30 23:58:14 2023 GMT Not After : Jul 29 00:03:14 2024 GMT Subject: CN=1DFAC5473296445B6F8EA075F0F6C90A5DCE7DEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:69:db:96:7d:01:b8:9e:ed:db:76:0f:89:bf: 39:0f:a7:25:36:87:2b:3d:a1:15:e3:2f:f9:89:b7: 6c:31:3c:30:ee:df:4c:35:3b:6a:af:73:86:4e:1a: 93:bf:42:dc:1c:4d:c8:c6:91:f9:79:99:05:cd:f1: dc:6e:b4:e9:43:78:7d:42:7c:86:1d:22:ba:44:36: 5c:f6:d0:2a:86:81:f2:56:04:46:b1:4e:c7:2e:05: f0:1a:3d:6f:cd:86:f6:b8:3d:8e:29:38:e2:6c:ea: 03:8f:be:06:e3:7f:7b:ee:37:fd:a7:93:75:38:c6: af:02:70:ab:5f:2f:13:8f:c6:cd:39:8c:15:da:1e: ad:2b:6d:6b:ef:8a:24:ad:92:7f:66:ea:df:0e:19: 72:1b:45:ad:15:f0:3a:a6:3c:1d:7f:f6:ca:77:53: 1e:0a:ad:9f:a8:d8:b9:cd:4c:3e:bd:ae:c5:99:e9: 97:7f:f4:70:f3:fd:aa:72:7c:1f:02:54:ec:f4:8d: d1:ff:24:64:f3:98:e6:09:9f:30:96:1b:b3:98:71: a5:ef:65:27:50:30:a8:f9:53:12:b2:6f:5a:13:5d: e4:69:cc:9a:e8:92:71:10:a1:92:22:e4:0a:f6:b9: 93:1b:eb:59:72:e0:66:dd:08:dc:6e:ad:49:e3:79: 2e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:FA:C5:47:32:96:44:5B:6F:8E:A0:75:F0:F6:C9:0A:5D:CE:7D:EE X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131342e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.118.114.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:62:4f:f1:3b:7a:99:4d:c6:5d:ae:6e:f9:69:da:e5:5c:86: e8:33:94:54:24:6e:50:f7:26:b2:14:7a:d2:d6:2c:3c:82:0c: a2:ee:df:af:ab:a2:c2:32:d3:3c:92:c0:dd:d6:63:cd:41:e1: 12:95:60:8c:ae:82:b7:c9:a9:da:2c:90:f8:ea:df:12:ad:88: 82:33:67:4c:ff:ca:3d:5a:82:17:0c:b6:3a:94:26:23:4c:f9: 1f:6a:a1:c0:bb:d1:fb:73:b6:e0:85:bc:52:5c:cf:42:a3:bb: 11:77:66:b6:62:ed:8d:90:7b:f3:d5:93:83:5d:cf:cc:f6:85: 44:65:d0:ef:d2:c3:f9:ec:11:aa:3b:d9:a9:12:3b:0d:75:75: 72:c0:00:74:08:54:1b:44:fc:e0:7a:a7:30:fd:4c:c9:86:a0: 0d:3d:61:3c:a0:74:6d:33:3b:75:82:9d:95:1a:e9:33:3b:69: 2a:b9:a7:b7:0f:bb:51:1b:49:83:bb:61:7f:66:ac:4b:43:a1: b7:8b:ca:b2:7b:88:7d:8e:34:c3:a4:3e:50:1e:28:5b:e3:2c: 67:77:b0:45:a4:89:eb:28:fb:6d:97:cc:d3:7a:cd:d4:7d:57: ff:47:7f:21:bb:1e:07:db:2e:2f:f8:0f:d8:80:a7:d9:d5:6c: 43:79:fd:86 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJj1dnOC5VqH/bqNwShNP3AgmE4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yMzA3MzAyMzU4MTRaFw0yNDA3MjkwMDAzMTRaMDMxMTAvBgNV BAMTKDFERkFDNTQ3MzI5NjQ0NUI2RjhFQTA3NUYwRjZDOTBBNURDRTdERUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMaduWfQG4nu3bdg+JvzkPpyU2 hys9oRXjL/mJt2wxPDDu30w1O2qvc4ZOGpO/QtwcTcjGkfl5mQXN8dxutOlDeH1C fIYdIrpENlz20CqGgfJWBEaxTscuBfAaPW/Nhva4PY4pOOJs6gOPvgbjf3vuN/2n k3U4xq8CcKtfLxOPxs05jBXaHq0rbWvviiStkn9m6t8OGXIbRa0V8DqmPB1/9sp3 Ux4KrZ+o2LnNTD69rsWZ6Zd/9HDz/apyfB8CVOz0jdH/JGTzmOYJnzCWG7OYcaXv ZSdQMKj5UxKyb1oTXeRpzJroknEQoZIi5Ar2uZMb61ly4GbdCNxurUnjeS5VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHfrFRzKWRFtvjqB18PbJCl3Ofe4wHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALXZyMA0GCSqG SIb3DQEBCwUAA4IBAQCOYk/xO3qZTcZdrm75adrlXIboM5RUJG5Q9yayFHrS1iw8 ggyi7t+vq6LCMtM8ksDd1mPNQeESlWCMroK3yanaLJD46t8SrYiCM2dM/8o9WoIX DLY6lCYjTPkfaqHAu9H7c7bghbxSXM9Co7sRd2a2Yu2NkHvz1ZODXc/M9oVEZdDv 0sP57BGqO9mpEjsNdXVywAB0CFQbRPzgeqcw/UzJhqANPWE8oHRtMzt1gp2VGukz O2kquae3D7tRG0mDu2F/ZqxLQ6G3i8qye4h9jjTDpD5QHihb4yxnd7BFpInrKPtt l8zTes3UfVf/R38hux4H2y4v+A/YgKfZ1WxDef2G -----END CERTIFICATE-----Generated at Tue Apr 23 18:36:34 2024 by rpki-client on console-ams.rpki-client.org