$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa File: 3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa (raw, json) Hash identifier: rPSDYrQU4nzSP+ijECNnTmmqFbNqzhs2dBEE3lrfWFo= Subject key identifier: 6B:26:09:0A:F5:38:21:29:F3:1D:F5:CC:02:DF:E6:AC:D7:87:B4:00 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 052089A2D8880BC3ED4DF8084183CF84C17A76D9 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa Signing time: Mon 31 Jul 2023 00:05:44 +0000 ROA not before: Mon 31 Jul 2023 00:00:44 +0000 ROA not after: Mon 29 Jul 2024 00:05:44 +0000 asID: 24521 IP address blocks: 175.184.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 07:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:20:89:a2:d8:88:0b:c3:ed:4d:f8:08:41:83:cf:84:c1:7a:76:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jul 31 00:00:44 2023 GMT Not After : Jul 29 00:05:44 2024 GMT Subject: CN=6B26090AF5382129F31DF5CC02DFE6ACD787B400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b4:79:52:d1:e1:be:f3:df:62:65:ed:e7:96: de:c2:7a:fa:3f:11:bd:3a:a0:f3:6b:aa:4d:0d:29: 64:90:c3:b2:18:ad:1a:a4:1b:86:fc:fa:74:71:96: 4c:61:68:03:55:9f:d2:cd:da:ca:0d:53:56:f8:d8: 07:b9:bf:39:8f:7c:30:c9:f4:a6:f1:e2:01:58:60: c6:ba:db:67:94:f0:8f:f1:e0:f7:15:c6:76:c7:05: 1d:d7:c7:ad:81:72:fc:cf:7e:fc:59:b9:6b:fc:9d: b9:04:cf:4c:7f:5f:7e:19:09:7d:41:22:f0:8d:57: d4:d6:6b:69:33:5d:d4:0b:e5:98:05:89:17:c1:6b: 8f:ec:08:95:38:6e:17:74:a9:a3:52:39:b1:91:8f: 01:ea:92:93:b0:80:75:c6:f4:e9:77:82:23:cb:8a: 20:ae:da:0c:2d:41:78:c1:6a:5d:1c:40:2d:87:68: df:6a:be:da:26:8e:27:eb:fb:55:7f:3c:3f:0e:81: 81:15:ce:52:93:14:26:66:2b:4f:b4:55:f6:eb:18: 20:b3:6a:ca:87:05:c9:03:ce:9c:6e:ce:cb:61:40: 42:00:84:7c:1b:28:68:ac:b2:ad:cd:0f:c8:85:bb: a3:fa:5a:66:20:3d:05:e4:f6:88:a3:85:88:5d:b8: 57:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:26:09:0A:F5:38:21:29:F3:1D:F5:CC:02:DF:E6:AC:D7:87:B4:00 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.184.224.0/21 Signature Algorithm: sha256WithRSAEncryption 05:32:13:4a:46:96:b7:36:2b:73:3d:75:20:d1:02:b6:46:e0: 70:f1:8d:00:9f:39:31:08:42:99:92:62:15:17:30:63:f3:f3: fe:66:92:a8:bd:88:68:13:91:8f:b9:56:f1:41:fb:64:f2:16: 68:1a:e1:42:47:c5:3a:5c:c3:9c:4e:89:ce:56:f1:76:34:7f: 0f:df:7d:39:67:c9:dc:6f:0e:6d:48:8b:4f:8a:bd:08:60:7a: 22:80:2e:5d:1c:3a:c0:27:9a:28:1e:d1:2c:f6:0e:93:42:5f: eb:c2:55:df:92:86:9d:74:a4:13:ac:9a:19:50:97:a4:c0:09: 90:12:bd:0a:77:98:3f:8a:e0:a2:c0:c3:42:00:1c:64:9a:41: 3b:43:20:b4:14:ca:ea:4d:84:95:54:d8:cc:98:82:83:d2:02: 72:04:31:6b:11:c5:3f:32:12:cf:a1:ab:07:94:d2:ed:79:46: 94:5a:b4:26:9d:e7:19:99:b5:e0:c1:3d:05:fd:60:86:02:9e: df:a6:0b:37:6b:5e:30:79:db:71:8e:30:41:6a:40:91:f3:0e: 5f:51:3e:44:db:af:4e:67:3b:59:ee:ba:d8:d5:0d:29:4d:12: fe:da:79:25:6f:17:39:7b:71:80:5b:27:df:e7:fd:8f:7a:2f: 38:67:63:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBSCJotiIC8PtTfgIQYPPhMF6dtkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yMzA3MzEwMDAwNDRaFw0yNDA3MjkwMDA1NDRaMDMxMTAvBgNV BAMTKDZCMjYwOTBBRjUzODIxMjlGMzFERjVDQzAyREZFNkFDRDc4N0I0MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDStHlS0eG+899iZe3nlt7Cevo/ Eb06oPNrqk0NKWSQw7IYrRqkG4b8+nRxlkxhaANVn9LN2soNU1b42Ae5vzmPfDDJ 9Kbx4gFYYMa622eU8I/x4PcVxnbHBR3Xx62BcvzPfvxZuWv8nbkEz0x/X34ZCX1B IvCNV9TWa2kzXdQL5ZgFiRfBa4/sCJU4bhd0qaNSObGRjwHqkpOwgHXG9Ol3giPL iiCu2gwtQXjBal0cQC2HaN9qvtomjifr+1V/PD8OgYEVzlKTFCZmK0+0VfbrGCCz asqHBckDzpxuzsthQEIAhHwbKGissq3ND8iFu6P6WmYgPQXk9oijhYhduFexAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUayYJCvU4ISnzHfXMAt/mrNeHtAAwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMxMzczNTJlMzEzODM0MmUzMjMyMzQyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzMjM0MzUzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDr7jgMA0GCSqG SIb3DQEBCwUAA4IBAQAFMhNKRpa3NitzPXUg0QK2RuBw8Y0AnzkxCEKZkmIVFzBj 8/P+ZpKovYhoE5GPuVbxQftk8hZoGuFCR8U6XMOcTonOVvF2NH8P3305Z8ncbw5t SItPir0IYHoigC5dHDrAJ5ooHtEs9g6TQl/rwlXfkoaddKQTrJoZUJekwAmQEr0K d5g/iuCiwMNCABxkmkE7QyC0FMrqTYSVVNjMmIKD0gJyBDFrEcU/MhLPoasHlNLt eUaUWrQmnecZmbXgwT0F/WCGAp7fpgs3a14wedtxjjBBakCR8w5fUT5E269OZztZ 7rrY1Q0pTRL+2nklbxc5e3GAWyff5/2Pei84Z2N8 -----END CERTIFICATE-----Generated at Tue May 7 03:49:11 2024 by rpki-client on console-ams.rpki-client.org