$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133342e302f32342d3234203d3e203435333036.roa File: 3131392e31352e3133342e302f32342d3234203d3e203435333036.roa (raw, json) Hash identifier: kK3B7DGRDI3DxgeVMrB//6fpNtabdJzMYE25+1tn06o= Subject key identifier: AF:F1:37:45:D0:79:4F:39:C3:55:32:5D:8E:05:50:3E:EC:F2:F4:8F Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 25ECBD9463DDF17BC2D7B2A44000CA7E5D27DC3E Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133342e302f32342d3234203d3e203435333036.roa Signing time: Sun 16 Jul 2023 06:00:00 +0000 ROA not before: Sun 16 Jul 2023 05:55:00 +0000 ROA not after: Sun 14 Jul 2024 06:00:00 +0000 asID: 45306 IP address blocks: 119.15.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ec:bd:94:63:dd:f1:7b:c2:d7:b2:a4:40:00:ca:7e:5d:27:dc:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jul 16 05:55:00 2023 GMT Not After : Jul 14 06:00:00 2024 GMT Subject: CN=AFF13745D0794F39C355325D8E05503EECF2F48F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:18:de:5f:3b:0a:85:55:7b:a4:a5:a6:4b:c1: ef:d6:8c:cd:93:bd:0f:d3:90:c5:55:84:86:1c:20: 4d:74:6c:eb:db:ae:08:60:1c:44:e2:56:95:98:a1: 6e:6f:23:fb:fc:40:f2:bd:03:16:2d:b3:42:1d:d9: df:8f:10:c3:49:d0:93:52:b8:8f:c6:97:a3:47:d9: 0d:a3:a7:97:5b:2f:2f:3e:93:fa:f2:46:dc:d6:e1: e7:9f:f0:e3:ba:df:4e:1e:74:ad:78:19:b2:e7:79: 18:93:cd:6a:4c:96:af:fa:c6:d7:59:d0:32:d0:62: 10:dd:79:2e:de:0e:27:c3:0b:10:0c:5d:0c:bf:77: d8:72:7b:e4:b5:fc:e8:be:25:12:dc:4f:e3:2b:13: c9:c2:61:f6:d3:0b:53:f5:68:a1:eb:f9:0d:92:a1: 5e:0f:87:29:5a:fa:76:02:c1:42:3f:e7:aa:58:2d: 03:b8:e4:6a:fa:59:db:c7:f8:44:79:84:f5:6a:1c: 52:e0:eb:cc:b9:c1:a6:50:d9:ff:96:37:ac:5c:26: 5f:37:df:a6:89:83:cd:07:82:b4:35:ed:24:6b:9d: b1:99:93:57:88:11:5e:5d:36:85:a8:95:9c:6b:73: 90:f1:8f:ec:4e:a6:0c:0e:31:12:23:93:18:85:95: fb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F1:37:45:D0:79:4F:39:C3:55:32:5D:8E:05:50:3E:EC:F2:F4:8F X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3131392e31352e3133342e302f32342d3234203d3e203435333036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.15.134.0/24 Signature Algorithm: sha256WithRSAEncryption 48:61:12:11:e9:b8:e6:17:36:8b:fb:3c:b2:46:98:9c:84:ed: 3d:d2:fd:06:54:68:e4:7e:26:ca:08:ea:b7:12:92:64:fb:a6: 02:fd:38:b4:48:2d:3b:d8:89:19:0a:9d:3f:f9:ab:04:1c:23: e0:23:06:93:a2:d1:46:eb:26:58:d3:63:4f:70:c9:f1:ae:dc: 3f:39:86:65:24:2e:89:64:af:8f:a2:28:89:b5:59:13:e8:1a: e5:a0:cf:af:74:9b:58:67:32:03:83:bf:33:81:96:51:4b:ae: e2:53:a2:e5:60:fa:89:52:32:9f:c4:72:63:76:75:a7:ae:ad: 22:e1:bb:9d:94:65:d1:e6:09:c5:a7:0e:b9:91:48:26:90:b8: ac:c5:e2:00:9e:eb:a5:7d:dc:0f:db:2d:54:ca:b2:6a:5e:e0: 23:e7:37:2a:08:b0:e4:67:a7:ff:35:7f:77:9f:de:8d:71:f3: 30:0c:9e:f7:24:58:d1:cf:2c:9a:5c:56:fe:49:bc:70:86:94: 2b:61:64:9a:f8:05:b8:55:78:64:4c:ac:96:0c:56:0e:ea:79: d2:6a:b4:b7:d0:ec:0a:5f:8a:f0:a5:af:f5:9b:10:73:5c:cd: a1:2e:21:19:30:0e:dc:5d:b2:10:55:f6:1c:c7:3d:03:27:16: b7:1c:8b:f4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJey9lGPd8XvC17KkQADKfl0n3D4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yMzA3MTYwNTU1MDBaFw0yNDA3MTQwNjAwMDBaMDMxMTAvBgNV BAMTKEFGRjEzNzQ1RDA3OTRGMzlDMzU1MzI1RDhFMDU1MDNFRUNGMkY0OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXGN5fOwqFVXukpaZLwe/WjM2T vQ/TkMVVhIYcIE10bOvbrghgHETiVpWYoW5vI/v8QPK9AxYts0Id2d+PEMNJ0JNS uI/Gl6NH2Q2jp5dbLy8+k/ryRtzW4eef8OO6304edK14GbLneRiTzWpMlq/6xtdZ 0DLQYhDdeS7eDifDCxAMXQy/d9hye+S1/Oi+JRLcT+MrE8nCYfbTC1P1aKHr+Q2S oV4Phyla+nYCwUI/56pYLQO45Gr6WdvH+ER5hPVqHFLg68y5waZQ2f+WN6xcJl83 36aJg80HgrQ17SRrnbGZk1eIEV5dNoWolZxrc5Dxj+xOpgwOMRIjkxiFlfvzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUr/E3RdB5TznDVTJdjgVQPuzy9I8wHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMxMzEzOTJlMzEzNTJlMzEzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHcPhjANBgkqhkiG 9w0BAQsFAAOCAQEASGESEem45hc2i/s8skaYnITtPdL9BlRo5H4mygjqtxKSZPum Av04tEgtO9iJGQqdP/mrBBwj4CMGk6LRRusmWNNjT3DJ8a7cPzmGZSQuiWSvj6Io ibVZE+ga5aDPr3SbWGcyA4O/M4GWUUuu4lOi5WD6iVIyn8RyY3Z1p66tIuG7nZRl 0eYJxacOuZFIJpC4rMXiAJ7rpX3cD9stVMqyal7gI+c3Kgiw5Gen/zV/d5/ejXHz MAye9yRY0c8smlxW/km8cIaUK2FkmvgFuFV4ZEyslgxWDup50mq0t9DsCl+K8KWv 9ZsQc1zNoS4hGTAO3F2yEFX2HMc9AycWtxyL9A== -----END CERTIFICATE-----Generated at Sat Jun 1 19:26:35 2024 by rpki-client on console-fra.rpki-client.org