$ rpki-client -vvf repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/3131352e3136362e39362e302f31392d3234203d3e203234353335.roa File: 3131352e3136362e39362e302f31392d3234203d3e203234353335.roa (raw, json) Hash identifier: 0h89P4mlxUOfny8nP9Cz4xPvhwbO4Y11BQNDM1YkKnI= Subject key identifier: D3:49:99:16:AC:16:18:E9:D3:53:A4:AC:0F:05:1D:FB:8B:A4:20:FA Certificate issuer: /CN=47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097 Certificate serial: 6A57F126FA0B45AEC6192880D8739907CA5AFEE3 Authority key identifier: 47:B3:FB:F3:9D:8D:FE:5B:C5:CF:D2:BE:D3:9F:0F:A1:52:61:90:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/3131352e3136362e39362e302f31392d3234203d3e203234353335.roa Signing time: Tue 02 Apr 2024 09:00:01 +0000 ROA not before: Tue 02 Apr 2024 08:55:01 +0000 ROA not after: Tue 01 Apr 2025 09:00:01 +0000 asID: 24535 IP address blocks: 115.166.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.crl rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 22:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:57:f1:26:fa:0b:45:ae:c6:19:28:80:d8:73:99:07:ca:5a:fe:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097 Validity Not Before: Apr 2 08:55:01 2024 GMT Not After : Apr 1 09:00:01 2025 GMT Subject: CN=D3499916AC1618E9D353A4AC0F051DFB8BA420FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:5a:7c:38:a7:23:c2:25:c1:af:36:4b:55:3a: 10:0c:81:74:99:24:55:8c:5e:22:a3:da:f7:b9:a1: 04:87:48:be:2f:4e:9b:2b:36:8d:49:e7:17:ce:ea: 5f:5d:18:b3:41:8f:78:0c:38:e8:f2:f7:e8:64:d7: 36:69:0c:bf:a5:a8:91:01:fc:9e:64:d9:1b:ad:3a: 18:c8:ec:15:52:84:39:78:81:fd:c5:fe:29:18:58: e4:56:32:53:79:f2:0f:25:81:a6:45:61:68:14:3b: 78:7b:89:37:dd:bb:78:e3:0d:8f:d1:4e:03:73:3e: 99:9d:3a:c6:f2:5e:15:0a:88:37:5c:23:70:a6:3a: 81:2f:9b:22:6f:7b:99:6f:25:88:44:54:3f:aa:fc: ff:e5:45:f3:1f:f5:da:82:44:a9:db:7e:b4:47:91: 38:be:13:cc:21:a5:71:07:e5:40:05:9e:b4:a3:1c: d8:b8:cf:14:14:95:5a:8f:58:03:3d:b8:83:be:d2: b9:eb:1d:b4:78:fb:91:cb:99:53:a9:a3:46:32:b6: c4:8e:be:6c:2e:af:0c:4b:5b:fe:2c:0d:49:db:c6: 21:56:72:6a:1c:e2:7f:39:fa:19:38:22:98:0e:13: 92:26:c5:57:ae:0b:93:cd:54:8c:22:b2:6c:75:aa: f9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:49:99:16:AC:16:18:E9:D3:53:A4:AC:0F:05:1D:FB:8B:A4:20:FA X509v3 Authority Key Identifier: keyid:47:B3:FB:F3:9D:8D:FE:5B:C5:CF:D2:BE:D3:9F:0F:A1:52:61:90:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/3131352e3136362e39362e302f31392d3234203d3e203234353335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.166.96.0/19 Signature Algorithm: sha256WithRSAEncryption 62:8d:f5:9c:e1:7a:bf:a9:3c:4a:03:2b:b1:fc:9b:4b:1b:3c: a3:1a:12:88:9f:23:04:38:d1:56:6e:dd:ca:42:43:d7:53:c4: 59:60:fd:5e:b6:94:db:86:96:7a:16:f7:3c:d3:3b:c3:47:a6: eb:d4:a4:32:ba:bf:8c:02:dc:d9:d8:16:3a:42:e2:d4:4f:02: 53:ff:b8:58:50:ac:b2:08:60:c5:2a:c6:7d:b8:a1:ae:c3:64: 60:ba:96:71:d1:db:4b:b6:57:ae:e5:e1:ce:f4:37:1c:a6:4b: 79:fd:54:9f:d7:59:22:e7:35:7f:a3:b2:de:49:a4:2e:cb:5c: 49:3b:fb:8b:2b:82:fd:4b:5a:d5:25:0d:23:f0:11:b2:73:4b: 9d:e4:2b:ac:27:f3:57:d2:9b:88:d5:75:f5:70:a3:e8:ac:c6: 6c:f9:fd:74:62:44:55:5a:69:52:0c:1f:ad:d8:bd:fa:57:1b: ad:49:06:e9:94:38:2a:59:ba:64:78:d6:77:ba:57:83:2f:66: 7d:62:bc:7b:94:b1:dd:05:42:fe:52:f1:e6:0b:9b:cc:a9:0f: 58:89:cf:51:c3:97:c1:9f:b0:4d:1b:dd:e0:d7:dc:9f:c8:e2: f9:ea:56:e6:32:ea:71:cf:41:09:bf:2b:eb:bc:97:9d:9a:7c: 0a:fc:cc:86 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUalfxJvoLRa7GGSiA2HOZB8pa/uMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdCM0ZCRjM5RDhERkU1QkM1Q0ZEMkJFRDM5RjBGQTE1 MjYxOTA5NzAeFw0yNDA0MDIwODU1MDFaFw0yNTA0MDEwOTAwMDFaMDMxMTAvBgNV BAMTKEQzNDk5OTE2QUMxNjE4RTlEMzUzQTRBQzBGMDUxREZCOEJBNDIwRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzWnw4pyPCJcGvNktVOhAMgXSZ JFWMXiKj2ve5oQSHSL4vTpsrNo1J5xfO6l9dGLNBj3gMOOjy9+hk1zZpDL+lqJEB /J5k2RutOhjI7BVShDl4gf3F/ikYWORWMlN58g8lgaZFYWgUO3h7iTfdu3jjDY/R TgNzPpmdOsbyXhUKiDdcI3CmOoEvmyJve5lvJYhEVD+q/P/lRfMf9dqCRKnbfrRH kTi+E8whpXEH5UAFnrSjHNi4zxQUlVqPWAM9uIO+0rnrHbR4+5HLmVOpo0YytsSO vmwurwxLW/4sDUnbxiFWcmoc4n85+hk4IpgOE5ImxVeuC5PNVIwismx1qvkrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU00mZFqwWGOnTU6SsDwUd+4ukIPowHwYDVR0j BBgwFoAUR7P7852N/lvFz9K+058PoVJhkJcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZGQ0N2Y1Ni1lYzUzLTQyZWItOWI4Yi1mYTA4Zjg3NGQzMTkvMC80N0IzRkJGMzlE OERGRTVCQzVDRkQyQkVEMzlGMEZBMTUyNjE5MDk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdCM0ZCRjM5RDhERkU1QkM1Q0ZEMkJFRDM5RjBGQTE1MjYx OTA5Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkZDQ3ZjU2LWVjNTMtNDJlYi05 YjhiLWZhMDhmODc0ZDMxOS8wLzMxMzEzNTJlMzEzNjM2MmUzOTM2MmUzMDJmMzEz OTJkMzIzNDIwM2QzZTIwMzIzNDM1MzMzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXOmYDANBgkqhkiG 9w0BAQsFAAOCAQEAYo31nOF6v6k8SgMrsfybSxs8oxoSiJ8jBDjRVm7dykJD11PE WWD9XraU24aWehb3PNM7w0em69SkMrq/jALc2dgWOkLi1E8CU/+4WFCssghgxSrG fbihrsNkYLqWcdHbS7ZXruXhzvQ3HKZLef1Un9dZIuc1f6Oy3kmkLstcSTv7iyuC /Uta1SUNI/ARsnNLneQrrCfzV9KbiNV19XCj6KzGbPn9dGJEVVppUgwfrdi9+lcb rUkG6ZQ4Klm6ZHjWd7pXgy9mfWK8e5Sx3QVC/lLx5gubzKkPWInPUcOXwZ+wTRvd 4Nfcn8ji+epW5jLqcc9BCb8r67yXnZp8CvzMhg== -----END CERTIFICATE-----Generated at Fri Sep 27 21:26:38 2024 by rpki-client on console-fra.rpki-client.org