$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3131392e3233352e3230382e302f32302d3234203d3e20313331313131.roa File: 3131392e3233352e3230382e302f32302d3234203d3e20313331313131.roa (raw, json) Hash identifier: OgDhMwTsmtNuUJkbJ6mo1inYSSEr+6QSfqhs+B1k/Z8= Subject key identifier: 00:E9:C7:C4:45:AE:70:88:2F:B4:7B:27:78:F0:83:0C:97:ED:9E:7B Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 46F16B017CAB65557073DDDC5C0C0E41B7D4AF35 Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3131392e3233352e3230382e302f32302d3234203d3e20313331313131.roa Signing time: Wed 07 Jun 2023 12:00:01 +0000 ROA not before: Wed 07 Jun 2023 11:55:01 +0000 ROA not after: Wed 05 Jun 2024 12:00:01 +0000 asID: 131111 IP address blocks: 119.235.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 17:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f1:6b:01:7c:ab:65:55:70:73:dd:dc:5c:0c:0e:41:b7:d4:af:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Jun 7 11:55:01 2023 GMT Not After : Jun 5 12:00:01 2024 GMT Subject: CN=00E9C7C445AE70882FB47B2778F0830C97ED9E7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:15:05:c8:41:0e:a8:b1:70:f9:26:11:a6:6b: ff:37:fc:0c:9f:38:5b:cc:db:d7:5e:06:cc:e2:d9: 38:d2:ab:e3:94:34:86:e3:71:ac:73:21:87:5e:05: 5d:63:3a:18:62:81:a8:1e:a7:c8:fe:b4:49:ff:6d: e9:19:7f:26:dc:05:1f:73:fa:f0:49:1d:16:3c:13: cb:ed:ca:2e:b5:df:4d:db:55:3d:e9:c8:57:15:4d: 73:5a:ca:9c:46:67:b5:ad:e1:98:c8:18:22:0a:f3: 0d:6e:ec:49:90:ac:3e:5d:26:7e:19:dd:93:ee:d2: 21:80:96:d5:ed:56:cf:30:b5:70:bf:9a:fb:b3:b2: dc:39:40:76:e4:67:0f:38:c4:ba:a9:03:e6:e1:8e: e1:04:f7:0b:2d:89:55:8f:5e:42:a9:c3:a1:38:a8: bc:32:11:c4:5f:0c:49:bc:2d:3a:eb:da:a4:5e:91: 59:22:03:82:98:87:97:af:19:8f:e8:24:07:07:1e: 35:57:79:d0:c1:6f:9e:d0:03:91:16:59:09:a5:b5: 9d:26:8f:5f:4b:21:75:4d:58:9c:af:0f:59:8d:b9: 65:dd:ab:ca:82:c1:b2:f5:d5:36:f1:55:b3:5b:ec: fe:15:28:4a:e1:17:9f:01:35:a6:9f:fc:fd:53:22: 87:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E9:C7:C4:45:AE:70:88:2F:B4:7B:27:78:F0:83:0C:97:ED:9E:7B X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3131392e3233352e3230382e302f32302d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.235.208.0/20 Signature Algorithm: sha256WithRSAEncryption 02:9b:13:8c:9f:21:83:f2:cb:45:e4:c5:89:47:f1:cb:37:89: 65:a0:b1:a7:52:34:49:52:ea:e5:37:fe:b2:38:18:76:fd:3e: 76:ba:5b:e9:77:b8:e3:27:f4:d4:08:b4:a9:4b:5e:99:ef:75: 3b:94:bf:a4:3a:cb:38:e5:d9:70:4a:60:d2:02:2f:e5:81:df: 8d:36:24:b1:9c:72:0c:15:53:c9:26:7b:6e:f6:8d:f6:d8:bb: 2d:2b:5d:fe:2e:fe:08:ae:21:22:20:80:3d:17:0a:6d:89:dc: e5:57:d7:8a:07:0c:25:6b:ab:c6:8e:2d:62:36:f2:75:42:d4: 51:a1:51:81:03:6e:74:81:52:e1:00:72:b7:90:4b:0c:bf:ce: 84:82:03:ac:24:bd:f6:07:ff:0d:08:25:55:b5:0c:81:7a:34: 23:1c:9d:44:92:48:e4:7f:e5:74:0c:09:de:ec:5b:a1:8b:15: 15:5c:b4:9a:25:08:38:93:01:50:55:fc:7f:b2:91:a2:ea:a3: d7:df:6c:fc:89:64:35:c7:77:4b:ad:10:d5:f2:84:4e:7f:6c: 66:af:53:1f:c0:f3:24:e8:c2:b3:fd:ad:52:e2:62:d3:8f:73: 39:90:9f:4b:20:5a:ca:c1:04:b9:1c:fd:40:bf:31:25:fe:1a: 27:66:df:19 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURvFrAXyrZVVwc93cXAwOQbfUrzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yMzA2MDcxMTU1MDFaFw0yNDA2MDUxMjAwMDFaMDMxMTAvBgNV BAMTKDAwRTlDN0M0NDVBRTcwODgyRkI0N0IyNzc4RjA4MzBDOTdFRDlFN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzFQXIQQ6osXD5JhGma/83/Ayf OFvM29deBszi2TjSq+OUNIbjcaxzIYdeBV1jOhhigagep8j+tEn/bekZfybcBR9z +vBJHRY8E8vtyi61303bVT3pyFcVTXNaypxGZ7Wt4ZjIGCIK8w1u7EmQrD5dJn4Z 3ZPu0iGAltXtVs8wtXC/mvuzstw5QHbkZw84xLqpA+bhjuEE9wstiVWPXkKpw6E4 qLwyEcRfDEm8LTrr2qRekVkiA4KYh5evGY/oJAcHHjVXedDBb57QA5EWWQmltZ0m j19LIXVNWJyvD1mNuWXdq8qCwbL11TbxVbNb7P4VKErhF58BNaaf/P1TIoelAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAOnHxEWucIgvtHsnePCDDJftnnswHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMxMzEzOTJlMzIzMzM1MmUzMjMwMzgyZTMwMmYz MjMwMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR369AwDQYJ KoZIhvcNAQELBQADggEBAAKbE4yfIYPyy0XkxYlH8cs3iWWgsadSNElS6uU3/rI4 GHb9Pna6W+l3uOMn9NQItKlLXpnvdTuUv6Q6yzjl2XBKYNICL+WB3402JLGccgwV U8kme272jfbYuy0rXf4u/giuISIggD0XCm2J3OVX14oHDCVrq8aOLWI28nVC1FGh UYEDbnSBUuEAcreQSwy/zoSCA6wkvfYH/w0IJVW1DIF6NCMcnUSSSOR/5XQMCd7s W6GLFRVctJolCDiTAVBV/H+ykaLqo9ffbPyJZDXHd0utENXyhE5/bGavUx/A8yTo wrP9rVLiYtOPczmQn0sgWsrBBLkc/UC/MSX+Gidm3xk= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:33 2024 by rpki-client on console-fra.rpki-client.org