$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa File: 3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: JZr0h02CfpfGKc+SXJek0NEOpoOLyyun/U/N2E0WqY4= Subject key identifier: 97:04:22:91:4C:17:6F:D4:A0:12:D2:D6:DE:86:5B:50:4A:62:05:7C Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 46AB8E4DEC72753D8C82B6D96A435FB9776397A6 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa Signing time: Mon 31 Jul 2023 00:08:39 +0000 ROA not before: Mon 31 Jul 2023 00:03:39 +0000 ROA not after: Mon 29 Jul 2024 00:08:39 +0000 asID: 138128 IP address blocks: 223.130.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ab:8e:4d:ec:72:75:3d:8c:82:b6:d9:6a:43:5f:b9:77:63:97:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jul 31 00:03:39 2023 GMT Not After : Jul 29 00:08:39 2024 GMT Subject: CN=970422914C176FD4A012D2D6DE865B504A62057C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:be:05:90:94:13:52:31:dd:26:39:24:63:47: 41:f2:ac:d4:d5:08:42:76:a9:21:21:f7:ff:d3:fd: 92:ba:9e:da:d4:bd:62:93:c4:4b:dd:ad:97:12:9f: 47:39:8a:1a:01:ce:a7:2b:42:46:db:bc:ec:2b:07: f7:06:08:60:7e:31:a0:07:57:eb:5a:00:16:19:f6: cf:18:45:0c:e1:1a:c7:db:42:f3:50:14:c1:77:05: 87:6c:4e:79:70:d8:d7:9b:0f:44:6e:b8:6f:53:dc: 05:f7:a9:ff:2d:be:35:e5:c3:8f:68:36:16:a8:fc: 10:e8:dd:73:33:17:2f:99:c1:d9:86:76:60:83:1b: eb:d4:6b:1b:51:ef:a2:56:4f:bc:79:55:45:86:29: c8:60:f8:f2:65:01:d0:47:f4:94:23:ce:54:91:8c: 2a:c1:25:7a:3f:3f:d0:7a:d7:58:2e:22:61:f1:04: 06:ea:99:de:10:ba:61:b9:d0:0e:84:05:47:69:81: ef:b4:4c:19:d8:c4:c8:04:36:fd:6f:22:42:48:f8: 0c:a2:7b:28:a2:f6:c6:52:d5:af:aa:c0:b5:ad:40: 46:9a:10:27:60:5e:69:41:90:0d:bf:66:f8:92:7c: 7a:d7:dc:0d:95:76:c6:e3:75:09:f1:0c:76:1c:0d: bc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:04:22:91:4C:17:6F:D4:A0:12:D2:D6:DE:86:5B:50:4A:62:05:7C X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32312e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.130.21.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:d5:dd:01:5d:50:b1:27:e7:39:ad:57:6a:1e:b7:b3:ea:8d: cb:19:00:08:93:41:53:6d:71:76:5a:fa:19:66:c4:7e:0c:c8: f3:28:98:10:b4:56:05:26:98:d2:eb:ba:a7:29:4a:6a:71:d8: 4d:c3:43:56:42:f9:ef:98:f1:4a:a1:ec:ae:ef:0c:b1:41:1f: 7f:e6:ea:f4:af:1a:0d:05:b0:98:38:e0:4c:52:53:9d:c3:a2: 0c:8a:52:37:47:4b:c5:d6:81:49:70:94:6b:07:76:dc:55:05: 13:b9:e8:a8:c2:39:88:f0:8f:4d:e5:a4:b5:66:06:ab:7e:35: 0b:5c:90:c1:af:4e:4e:d1:40:bf:a4:79:0e:74:e4:8a:c8:fb: 2f:94:a4:19:a6:b9:4d:09:2e:e0:2b:e7:b7:22:af:b2:cb:65: 5f:f7:f0:f6:a0:3f:7c:19:e9:9a:d4:31:26:5e:99:16:68:6b: f5:49:7f:c6:b7:38:92:1b:46:a7:72:b6:e7:3b:1f:7b:bc:4e: e1:96:fb:79:b7:87:45:82:f7:d2:23:c2:90:7f:52:cf:c4:87: 04:2f:d7:c2:dd:10:2f:2c:6b:0a:ae:9f:86:48:5e:9f:ca:63: 44:84:21:c5:75:af:80:d9:af:07:f4:ab:dc:26:1c:5c:3d:41: 21:73:eb:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURquOTexydT2MgrbZakNfuXdjl6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yMzA3MzEwMDAzMzlaFw0yNDA3MjkwMDA4MzlaMDMxMTAvBgNV BAMTKDk3MDQyMjkxNEMxNzZGRDRBMDEyRDJENkRFODY1QjUwNEE2MjA1N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdvgWQlBNSMd0mOSRjR0HyrNTV CEJ2qSEh9//T/ZK6ntrUvWKTxEvdrZcSn0c5ihoBzqcrQkbbvOwrB/cGCGB+MaAH V+taABYZ9s8YRQzhGsfbQvNQFMF3BYdsTnlw2NebD0RuuG9T3AX3qf8tvjXlw49o Nhao/BDo3XMzFy+ZwdmGdmCDG+vUaxtR76JWT7x5VUWGKchg+PJlAdBH9JQjzlSR jCrBJXo/P9B611guImHxBAbqmd4QumG50A6EBUdpge+0TBnYxMgENv1vIkJI+Ayi eyii9sZS1a+qwLWtQEaaECdgXmlBkA2/ZviSfHrX3A2VdsbjdQnxDHYcDbzfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlwQikUwXb9SgEtLW3oZbUEpiBXwwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzMyMzIzMzJlMzEzMzMwMmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA34IVMA0GCSqG SIb3DQEBCwUAA4IBAQCM1d0BXVCxJ+c5rVdqHrez6o3LGQAIk0FTbXF2WvoZZsR+ DMjzKJgQtFYFJpjS67qnKUpqcdhNw0NWQvnvmPFKoeyu7wyxQR9/5ur0rxoNBbCY OOBMUlOdw6IMilI3R0vF1oFJcJRrB3bcVQUTueiowjmI8I9N5aS1ZgarfjULXJDB r05O0UC/pHkOdOSKyPsvlKQZprlNCS7gK+e3Iq+yy2Vf9/D2oD98Gema1DEmXpkW aGv1SX/GtziSG0ancrbnOx97vE7hlvt5t4dFgvfSI8KQf1LPxIcEL9fC3RAvLGsK rp+GSF6fymNEhCHFda+A2a8H9KvcJhxcPUEhc+u+ -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org