$ rpki-client -vvf repo-rpki.idnic.net/repo/defe8f9b-8c34-4342-a0fe-ca1075fba5ff/0/3131352e3137382e34382e302f32342d3234203d3e203338373833.roa File: 3131352e3137382e34382e302f32342d3234203d3e203338373833.roa (raw, json) Hash identifier: cqtrpFCMqd60CyH6zgiX1WHyJ3MUPAFfnaWOO4S3O9U= Subject key identifier: D2:17:24:06:72:29:7F:DE:C0:9B:8F:58:A2:2B:88:BF:B4:B0:C5:AB Certificate issuer: /CN=B605E2C01C5BDC6CEE49545C80501360234DC910 Certificate serial: 58C88F51CF7E4380CD55E4E4C389E53707320805 Authority key identifier: B6:05:E2:C0:1C:5B:DC:6C:EE:49:54:5C:80:50:13:60:23:4D:C9:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605E2C01C5BDC6CEE49545C80501360234DC910.cer Subject info access: rsync://repo-rpki.idnic.net/repo/defe8f9b-8c34-4342-a0fe-ca1075fba5ff/0/3131352e3137382e34382e302f32342d3234203d3e203338373833.roa Signing time: Mon 31 Jul 2023 00:07:38 +0000 ROA not before: Mon 31 Jul 2023 00:02:38 +0000 ROA not after: Mon 29 Jul 2024 00:07:38 +0000 asID: 38783 IP address blocks: 115.178.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/defe8f9b-8c34-4342-a0fe-ca1075fba5ff/0/B605E2C01C5BDC6CEE49545C80501360234DC910.crl rsync://repo-rpki.idnic.net/repo/defe8f9b-8c34-4342-a0fe-ca1075fba5ff/0/B605E2C01C5BDC6CEE49545C80501360234DC910.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605E2C01C5BDC6CEE49545C80501360234DC910.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 14:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c8:8f:51:cf:7e:43:80:cd:55:e4:e4:c3:89:e5:37:07:32:08:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B605E2C01C5BDC6CEE49545C80501360234DC910 Validity Not Before: Jul 31 00:02:38 2023 GMT Not After : Jul 29 00:07:38 2024 GMT Subject: CN=D217240672297FDEC09B8F58A22B88BFB4B0C5AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ad:05:e7:29:3e:6a:11:e0:38:bd:ec:5f:1e: b8:15:09:7d:68:de:9d:71:62:e8:f4:16:3a:cb:13: bb:d8:03:41:7f:5b:8e:ef:4e:7a:37:31:bb:e6:db: 69:36:d8:83:ac:fe:20:0d:e4:7b:a7:ee:c6:27:ef: cf:c4:64:22:ce:db:68:a8:26:a1:df:44:ec:d8:a7: 71:f4:28:c8:c5:df:c7:45:bb:74:63:3a:ea:e2:78: 39:4b:50:05:e9:7e:66:0d:58:ec:90:9f:c9:b7:d3: 84:a0:54:4c:1d:52:f1:dd:b1:da:8b:e3:38:78:33: e4:f1:4a:6c:11:23:52:c2:fb:13:97:59:45:b3:46: 34:07:be:e8:2c:38:c6:db:0f:63:e1:42:64:64:6d: ee:68:4b:43:7d:62:61:7d:d7:5c:9f:58:c2:1f:46: d3:52:b3:36:f3:c0:11:20:d2:07:bd:29:48:45:a6: 51:49:f3:b4:68:af:88:95:69:18:09:4a:2d:b1:57: 25:6a:9c:31:18:60:38:d5:b8:c9:4b:9e:8f:a2:f7: b9:5f:02:25:09:ca:77:f1:7a:46:ea:1a:74:c1:17: 45:55:19:e6:7f:a1:07:d4:19:56:30:e8:bc:d0:bc: 56:e4:11:96:b5:a2:fc:92:31:ce:2d:8c:58:0a:1c: 52:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:17:24:06:72:29:7F:DE:C0:9B:8F:58:A2:2B:88:BF:B4:B0:C5:AB X509v3 Authority Key Identifier: keyid:B6:05:E2:C0:1C:5B:DC:6C:EE:49:54:5C:80:50:13:60:23:4D:C9:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/defe8f9b-8c34-4342-a0fe-ca1075fba5ff/0/B605E2C01C5BDC6CEE49545C80501360234DC910.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605E2C01C5BDC6CEE49545C80501360234DC910.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/defe8f9b-8c34-4342-a0fe-ca1075fba5ff/0/3131352e3137382e34382e302f32342d3234203d3e203338373833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.48.0/24 Signature Algorithm: sha256WithRSAEncryption a8:a9:d5:e3:80:8f:00:16:58:cf:38:25:ab:34:3b:44:6a:0d: e9:c3:aa:56:c4:d0:5f:f7:5a:9e:bf:e0:55:82:54:95:06:83: d9:76:98:9f:ab:46:6f:03:40:1c:a3:a3:df:00:2b:a6:05:a5: 8a:df:44:b8:bb:7e:1e:f7:07:eb:fb:e2:b3:c7:bb:7d:16:4f: 1e:ac:00:92:6a:2d:8c:97:59:0e:24:6d:93:40:69:e0:20:e7: e7:1c:f0:a4:3a:30:44:70:99:d4:7e:d4:56:64:f1:64:21:ec: 15:01:8a:90:67:39:3b:66:f7:d6:1a:d7:48:3d:32:9c:77:91: 79:99:d9:f6:de:9f:e1:9b:39:e6:8c:63:e6:3d:0e:4f:aa:5e: 4c:7b:77:b4:41:79:6c:28:31:43:5a:95:74:93:7f:9f:f2:7a: 7f:9f:07:f8:a1:11:34:10:85:59:cc:12:48:d8:e6:4d:52:f7: 33:36:4b:89:98:56:39:25:d7:3d:40:4f:29:28:97:af:62:8f: 52:d8:82:e4:50:69:84:7d:da:df:84:bf:bd:cd:53:32:de:9a: 86:c2:cc:d6:88:a5:21:66:2e:26:70:91:f8:6f:6f:4e:4e:47: 8c:ed:02:2a:cd:e4:41:3c:7f:5f:42:30:f6:fd:d0:af:09:38: d4:88:de:06 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWMiPUc9+Q4DNVeTkw4nlNwcyCAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYwNUUyQzAxQzVCREM2Q0VFNDk1NDVDODA1MDEzNjAy MzREQzkxMDAeFw0yMzA3MzEwMDAyMzhaFw0yNDA3MjkwMDA3MzhaMDMxMTAvBgNV BAMTKEQyMTcyNDA2NzIyOTdGREVDMDlCOEY1OEEyMkI4OEJGQjRCMEM1QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgrQXnKT5qEeA4vexfHrgVCX1o 3p1xYuj0FjrLE7vYA0F/W47vTno3Mbvm22k22IOs/iAN5Hun7sYn78/EZCLO22io JqHfROzYp3H0KMjF38dFu3RjOurieDlLUAXpfmYNWOyQn8m304SgVEwdUvHdsdqL 4zh4M+TxSmwRI1LC+xOXWUWzRjQHvugsOMbbD2PhQmRkbe5oS0N9YmF911yfWMIf RtNSszbzwBEg0ge9KUhFplFJ87Ror4iVaRgJSi2xVyVqnDEYYDjVuMlLno+i97lf AiUJynfxekbqGnTBF0VVGeZ/oQfUGVYw6LzQvFbkEZa1ovySMc4tjFgKHFKDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0hckBnIpf97Am49YoiuIv7SwxaswHwYDVR0j BBgwFoAUtgXiwBxb3GzuSVRcgFATYCNNyRAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWZlOGY5Yi04YzM0LTQzNDItYTBmZS1jYTEwNzVmYmE1ZmYvMC9CNjA1RTJDMDFD NUJEQzZDRUU0OTU0NUM4MDUwMTM2MDIzNERDOTEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYwNUUyQzAxQzVCREM2Q0VFNDk1NDVDODA1MDEzNjAyMzRE QzkxMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlZmU4ZjliLThjMzQtNDM0Mi1h MGZlLWNhMTA3NWZiYTVmZi8wLzMxMzEzNTJlMzEzNzM4MmUzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOyMDANBgkqhkiG 9w0BAQsFAAOCAQEAqKnV44CPABZYzzglqzQ7RGoN6cOqVsTQX/danr/gVYJUlQaD 2XaYn6tGbwNAHKOj3wArpgWlit9EuLt+HvcH6/vis8e7fRZPHqwAkmotjJdZDiRt k0Bp4CDn5xzwpDowRHCZ1H7UVmTxZCHsFQGKkGc5O2b31hrXSD0ynHeReZnZ9t6f 4Zs55oxj5j0OT6peTHt3tEF5bCgxQ1qVdJN/n/J6f58H+KERNBCFWcwSSNjmTVL3 MzZLiZhWOSXXPUBPKSiXr2KPUtiC5FBphH3a34S/vc1TMt6ahsLM1oilIWYuJnCR +G9vTk5HjO0CKs3kQTx/X0Iw9v3Qrwk41IjeBg== -----END CERTIFICATE-----Generated at Thu May 9 18:11:57 2024 by rpki-client on console-fra.rpki-client.org