$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa File: 3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa (raw, json) Hash identifier: jTZFiCb+uR0wj9uWEl9IgtnB0kq451pwpGhfiUuR+yk= Subject key identifier: 20:A5:5D:F1:D8:06:2D:F1:FA:26:C9:2C:0F:D5:A8:4F:09:F6:6B:D3 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 7AD20BC6370F67005351C7ADD73B88F4647DD6EB Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa Signing time: Mon 31 Jul 2023 00:02:35 +0000 ROA not before: Sun 30 Jul 2023 23:57:35 +0000 ROA not after: Mon 29 Jul 2024 00:02:35 +0000 asID: 46026 IP address blocks: 175.111.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d2:0b:c6:37:0f:67:00:53:51:c7:ad:d7:3b:88:f4:64:7d:d6:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Jul 30 23:57:35 2023 GMT Not After : Jul 29 00:02:35 2024 GMT Subject: CN=20A55DF1D8062DF1FA26C92C0FD5A84F09F66BD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9d:ce:94:c6:0b:b5:9c:11:27:6c:8f:09:16: c2:c1:f9:4a:2d:dd:0b:ce:b1:c2:bc:4b:d8:e0:d9: 26:cc:5b:3e:20:f1:e8:7e:5e:3e:4e:e7:e7:b4:e5: ba:0b:e6:14:18:7e:b0:e3:c3:b2:10:08:b3:0e:1a: 4b:fb:c9:34:4c:76:9e:c8:58:8b:cf:62:df:62:85: 96:43:6f:6c:2e:98:93:3a:2d:37:ee:4c:da:c3:f2: 59:7e:6c:b0:03:51:a7:6c:44:54:48:18:5d:33:4a: 25:4d:f0:44:7a:d6:e1:33:3f:7f:34:60:72:4e:4b: 70:82:76:ba:fe:b0:c3:80:27:68:0d:70:fd:4e:9b: 3d:91:f7:b1:d2:50:20:b1:cb:1f:9a:83:ab:b8:86: aa:66:52:83:c0:a2:e7:91:d5:88:8b:19:54:12:f3: ff:df:2d:ee:48:7e:bc:fa:5a:7b:26:40:55:7e:64: ab:f0:98:18:0f:c6:05:2a:e7:da:1b:4f:58:84:ea: 31:ab:dd:61:e9:89:33:dc:cc:4f:76:55:50:64:8f: 87:8d:9a:65:62:5f:01:3f:4b:7a:0c:10:6f:fa:51: 6d:f8:84:8f:6e:8c:b4:e4:bb:39:28:a6:1f:bd:d0: 31:c3:3e:96:e9:da:74:41:b9:a7:2a:f3:2f:54:5c: 90:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A5:5D:F1:D8:06:2D:F1:FA:26:C9:2C:0F:D5:A8:4F:09:F6:6B:D3 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3137352e3131312e3131322e302f32342d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.112.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:7e:53:66:fa:7f:e3:17:6c:a1:e5:78:f6:f0:4a:2c:94:2f: 30:ae:67:27:3c:b2:64:2b:f4:78:d2:e2:24:0b:bd:31:dd:a6: e1:1c:91:40:e6:1f:18:08:fb:37:b3:e5:37:bc:04:87:28:fc: f3:b1:cf:50:05:0a:76:a5:57:a6:b1:25:5f:ec:47:85:fe:9d: 2a:b0:2c:c9:bd:2e:a7:02:b2:d8:43:53:66:9f:bc:87:d6:93: ce:29:40:70:a2:60:a2:de:0d:79:26:78:d1:66:d4:c2:d4:95: 61:95:4b:45:90:0c:cd:e1:19:c7:31:de:86:98:40:93:c2:21: 09:28:a8:04:09:78:31:5c:82:2c:7f:f3:57:58:1c:4a:e4:08: 50:92:99:0d:1b:f0:f6:e0:b8:29:20:95:65:16:3a:f4:ad:de: 07:cc:c5:4d:45:26:5c:aa:a1:fe:08:73:11:0d:59:18:94:72: 9b:15:a8:17:0e:0a:12:c9:e4:1a:18:7a:af:5f:c9:da:fb:14: 8d:d2:94:ca:ea:4d:35:5b:a2:17:81:ab:24:82:f9:dc:7d:48: 9a:6e:11:ac:91:06:32:da:3d:12:d7:6a:38:34:ab:91:cd:10: 11:99:5a:2f:bd:34:ab:17:3d:92:48:44:b6:c9:76:ff:a5:53: 78:97:f0:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUetILxjcPZwBTUcet1zuI9GR91uswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yMzA3MzAyMzU3MzVaFw0yNDA3MjkwMDAyMzVaMDMxMTAvBgNV BAMTKDIwQTU1REYxRDgwNjJERjFGQTI2QzkyQzBGRDVBODRGMDlGNjZCRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAnc6Uxgu1nBEnbI8JFsLB+Uot 3QvOscK8S9jg2SbMWz4g8eh+Xj5O5+e05boL5hQYfrDjw7IQCLMOGkv7yTRMdp7I WIvPYt9ihZZDb2wumJM6LTfuTNrD8ll+bLADUadsRFRIGF0zSiVN8ER61uEzP380 YHJOS3CCdrr+sMOAJ2gNcP1Omz2R97HSUCCxyx+ag6u4hqpmUoPAoueR1YiLGVQS 8//fLe5Ifrz6WnsmQFV+ZKvwmBgPxgUq59obT1iE6jGr3WHpiTPczE92VVBkj4eN mmViXwE/S3oMEG/6UW34hI9ujLTkuzkoph+90DHDPpbp2nRBuacq8y9UXJD1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIKVd8dgGLfH6JsksD9WoTwn2a9MwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzczNTJlMzEzMTMxMmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29wMA0GCSqG SIb3DQEBCwUAA4IBAQBtflNm+n/jF2yh5Xj28EoslC8wrmcnPLJkK/R40uIkC70x 3abhHJFA5h8YCPs3s+U3vASHKPzzsc9QBQp2pVemsSVf7EeF/p0qsCzJvS6nArLY Q1Nmn7yH1pPOKUBwomCi3g15JnjRZtTC1JVhlUtFkAzN4RnHMd6GmECTwiEJKKgE CXgxXIIsf/NXWBxK5AhQkpkNG/D24LgpIJVlFjr0rd4HzMVNRSZcqqH+CHMRDVkY lHKbFagXDgoSyeQaGHqvX8na+xSN0pTK6k01W6IXgaskgvncfUiabhGskQYy2j0S 12o4NKuRzRARmVovvTSrFz2SSES2yXb/pVN4l/CW -----END CERTIFICATE-----Generated at Fri May 3 04:35:13 2024 by rpki-client on console-ams.rpki-client.org