$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3133322e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: c6Mwa7dKyH8lbxPsxYsq7cY9047QVkZ8ejVB5dfWheg= Subject key identifier: B2:2A:CA:FB:85:D0:12:A8:44:B3:21:23:42:D1:1B:36:FB:99:C6:BF Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 4398BDFC502D6D7B4062AB6726008D8AAE951738 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa Signing time: Sun 16 Jul 2023 05:00:00 +0000 ROA not before: Sun 16 Jul 2023 04:55:00 +0000 ROA not after: Sun 14 Jul 2024 05:00:00 +0000 asID: 45306 IP address blocks: 119.15.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:98:bd:fc:50:2d:6d:7b:40:62:ab:67:26:00:8d:8a:ae:95:17:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jul 16 04:55:00 2023 GMT Not After : Jul 14 05:00:00 2024 GMT Subject: CN=B22ACAFB85D012A844B3212342D11B36FB99C6BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d5:1a:51:fa:ed:59:60:95:b0:1b:d0:24:5a: 14:2c:3f:a2:a8:f4:e2:8d:2c:de:4b:b5:d0:bd:3b: e7:c0:62:00:47:4c:d6:db:10:a0:8e:a5:d1:f7:a0: 48:7a:aa:ea:00:4a:df:57:aa:b9:5a:f1:5a:8c:1e: c7:f2:9c:65:33:69:41:2f:7a:a5:99:57:6b:90:97: 1e:11:6c:54:c3:84:6c:ba:ba:cc:fe:e6:e6:40:1f: 63:18:9c:61:f0:a7:98:06:21:82:6b:a6:38:d5:c6: c7:90:9e:e9:15:d6:cd:1f:ce:12:59:91:ff:b1:17: c5:53:6c:1c:9a:a7:87:de:86:b9:b7:42:b8:da:56: bd:c9:35:93:f6:ae:05:d1:be:57:de:06:92:1a:00: fe:40:5f:95:93:56:e5:ee:74:d4:69:32:27:3a:2b: 52:f7:c0:e4:d2:61:43:c5:2a:04:82:a6:5d:99:83: d5:f2:9e:bd:d4:98:10:1a:cc:5b:97:c9:8a:49:b3: dc:4d:84:d9:fe:7f:6a:92:5c:cb:70:e3:df:7d:d7: f2:14:22:65:56:3f:ce:1a:f9:61:a8:97:29:b4:cd: 8d:88:57:81:85:bd:a6:4b:27:9b:a0:60:5e:e4:60: 5c:3d:ae:89:5f:36:58:ef:af:9c:e1:95:85:ce:03: d8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2A:CA:FB:85:D0:12:A8:44:B3:21:23:42:D1:1B:36:FB:99:C6:BF X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133322e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.132.0/24 Signature Algorithm: sha256WithRSAEncryption 44:8c:9d:90:e9:75:88:e8:41:38:9f:f8:fd:b1:2b:2b:c0:b7: 7c:d3:46:58:b5:a2:68:f4:26:ed:1a:6c:c8:c3:6f:92:3e:6a: 12:18:49:d9:f4:ac:79:4e:2a:dd:b3:b4:37:d0:20:62:27:93: 33:c6:ef:01:c3:12:41:c1:0b:48:45:17:26:82:3f:94:63:f6: 09:d1:47:b0:05:1b:87:ba:a0:04:f1:ae:e3:5c:95:90:ed:84: 9b:92:35:c8:c4:f1:6d:39:1d:64:2d:4d:af:4e:0d:da:93:6c: 20:7a:90:75:5d:e9:e9:7f:73:f8:f4:77:4a:5f:aa:97:82:1e: 9f:1b:82:63:67:c0:a5:e6:1d:19:72:78:d7:32:3e:48:6f:6a: 0e:1b:0e:21:cd:77:2a:7c:78:1c:70:ce:2d:32:ee:d5:21:52: 88:57:6d:68:fe:da:23:e2:a4:38:76:a2:c6:58:bf:7b:ba:00: 37:03:f0:df:85:31:c4:d7:65:e8:ad:50:24:fb:75:5f:d5:44: a2:6c:0d:4b:a8:6a:1a:30:f9:26:42:e6:aa:47:a9:d7:0a:b0: 3e:3e:5b:91:88:fc:ca:67:57:44:8b:04:7e:44:49:d5:ee:5a: 4e:d8:28:f3:5b:dc:66:aa:e3:ad:76:01:d8:e8:5d:ca:ce:3c: ce:b3:e6:49 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ5i9/FAtbXtAYqtnJgCNiq6VFzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yMzA3MTYwNDU1MDBaFw0yNDA3MTQwNTAwMDBaMDMxMTAvBgNV BAMTKEIyMkFDQUZCODVEMDEyQTg0NEIzMjEyMzQyRDExQjM2RkI5OUM2QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF1RpR+u1ZYJWwG9AkWhQsP6Ko 9OKNLN5LtdC9O+fAYgBHTNbbEKCOpdH3oEh6quoASt9Xqrla8VqMHsfynGUzaUEv eqWZV2uQlx4RbFTDhGy6usz+5uZAH2MYnGHwp5gGIYJrpjjVxseQnukV1s0fzhJZ kf+xF8VTbByap4fehrm3QrjaVr3JNZP2rgXRvlfeBpIaAP5AX5WTVuXudNRpMic6 K1L3wOTSYUPFKgSCpl2Zg9Xynr3UmBAazFuXyYpJs9xNhNn+f2qSXMtw49991/IU ImVWP84a+WGolym0zY2IV4GFvaZLJ5ugYF7kYFw9rolfNljvr5zhlYXOA9iBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsirK+4XQEqhEsyEjQtEbNvuZxr8wHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPhDANBgkqhkiG 9w0BAQsFAAOCAQEARIydkOl1iOhBOJ/4/bErK8C3fNNGWLWiaPQm7RpsyMNvkj5q EhhJ2fSseU4q3bO0N9AgYieTM8bvAcMSQcELSEUXJoI/lGP2CdFHsAUbh7qgBPGu 41yVkO2Em5I1yMTxbTkdZC1Nr04N2pNsIHqQdV3p6X9z+PR3Sl+ql4IenxuCY2fA peYdGXJ41zI+SG9qDhsOIc13Knx4HHDOLTLu1SFSiFdtaP7aI+KkOHaixli/e7oA NwPw34UxxNdl6K1QJPt1X9VEomwNS6hqGjD5JkLmqkep1wqwPj5bkYj8ymdXRIsE fkRJ1e5aTtgo81vcZqrjrXYB2Ohdys48zrPmSQ== -----END CERTIFICATE-----Generated at Sat Jun 1 19:26:35 2024 by rpki-client on console-fra.rpki-client.org