$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa File: 3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa (raw, json) Hash identifier: sQkBIgYmu/4emgKk7QffiE3bPf6Jjks+g4xGW32LtEI= Subject key identifier: CC:A0:AA:17:91:3A:E5:22:57:08:25:F1:0C:A5:39:B3:F8:E4:A5:7D Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 1CB9CC3817EC88339F2AA0181B304E856E745984 Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa Signing time: Sun 02 Jul 2023 03:00:01 +0000 ROA not before: Sun 02 Jul 2023 02:55:01 +0000 ROA not after: Sun 30 Jun 2024 03:00:01 +0000 asID: 18004 IP address blocks: 115.178.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 07:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b9:cc:38:17:ec:88:33:9f:2a:a0:18:1b:30:4e:85:6e:74:59:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: Jul 2 02:55:01 2023 GMT Not After : Jun 30 03:00:01 2024 GMT Subject: CN=CCA0AA17913AE522570825F10CA539B3F8E4A57D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:26:fe:37:2c:af:66:5c:45:1f:fa:45:a4:96: 96:ba:9e:b5:f2:0f:f6:d5:3f:7e:1f:58:9f:18:2b: 3e:14:87:d5:8b:48:86:90:1e:11:b2:4e:cd:be:b9: 66:0a:25:06:63:d0:0f:bc:d2:85:97:8f:87:93:56: 4a:cf:34:41:80:b9:d1:ca:3e:bc:5f:fa:2a:31:fb: e6:51:16:e0:73:0b:df:a9:65:1d:26:d8:17:22:49: 49:38:33:a2:58:94:d0:1b:83:e6:a3:c0:ef:52:94: ad:cb:06:7f:69:9a:2d:7d:ca:8b:5c:b1:19:a7:3d: c1:d8:19:11:76:b2:db:8b:df:83:44:d2:b5:5c:f3: 32:22:22:3e:3c:7a:8f:0d:47:44:63:78:20:e9:0d: a0:8c:d2:80:7e:46:1f:3e:43:f0:30:b8:e5:12:79: 3e:82:d7:9d:9d:26:95:99:37:63:26:1d:f4:29:bc: ca:fa:7c:a2:33:88:28:dd:34:e6:d7:a5:c7:e4:f0: 6d:ef:c8:58:4f:9b:c1:12:e0:bc:0b:fb:1d:36:7d: 52:4f:ed:89:5f:f9:43:a4:eb:b4:29:a2:11:84:e2: 0b:7e:23:4b:de:d0:5d:60:78:93:63:2e:27:85:0a: d0:fd:ce:7a:b1:31:cb:8f:ab:be:0f:91:9d:83:d5: e9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A0:AA:17:91:3A:E5:22:57:08:25:F1:0C:A5:39:B3:F8:E4:A5:7D X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/3131352e3137382e3139322e302f31392d3234203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.192.0/19 Signature Algorithm: sha256WithRSAEncryption 91:a6:88:eb:7c:6b:e4:19:03:9c:52:ea:96:31:8a:71:bb:bb: 59:73:04:90:61:0f:bd:d5:ef:fe:84:43:e7:20:6d:78:ff:78: 63:3c:44:38:2b:18:4a:9a:97:93:45:a1:9e:a5:2e:cc:d0:dd: 0e:df:08:ce:a4:72:44:59:79:a6:50:3d:7d:6f:7a:7b:71:3a: 29:14:20:47:a6:89:7a:73:07:46:f2:29:7c:64:17:f1:fb:3d: ed:b0:46:76:84:6a:ae:9d:ef:68:ab:01:d7:2f:63:3e:0a:a9: e6:90:c5:08:41:79:ed:38:bc:fc:d3:14:55:e5:a4:35:e9:aa: 3c:77:01:e5:c8:89:29:0c:a3:82:a1:49:f6:36:17:74:57:79: 9d:7a:0c:b3:13:00:9d:3e:60:b8:cb:c6:f3:ef:64:ad:aa:79: 5e:1d:9d:fd:cb:87:36:7c:65:ea:07:13:cb:d0:8d:91:29:49: 0d:67:5e:53:de:e7:1c:e2:d8:34:68:4f:7a:be:71:13:d1:f0: 5e:bb:87:bd:b5:d6:6d:4f:0a:53:11:55:3f:7d:59:2a:87:4a: 6c:18:af:b2:6c:3b:2e:71:e2:37:7b:4f:fd:b0:4a:e5:55:2b: ab:44:53:24:b7:1f:14:92:88:5c:ac:74:5d:5e:92:b3:38:3b: e0:28:2c:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHLnMOBfsiDOfKqAYGzBOhW50WYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yMzA3MDIwMjU1MDFaFw0yNDA2MzAwMzAwMDFaMDMxMTAvBgNV BAMTKENDQTBBQTE3OTEzQUU1MjI1NzA4MjVGMTBDQTUzOUIzRjhFNEE1N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGJv43LK9mXEUf+kWklpa6nrXy D/bVP34fWJ8YKz4Uh9WLSIaQHhGyTs2+uWYKJQZj0A+80oWXj4eTVkrPNEGAudHK Prxf+iox++ZRFuBzC9+pZR0m2BciSUk4M6JYlNAbg+ajwO9SlK3LBn9pmi19yotc sRmnPcHYGRF2stuL34NE0rVc8zIiIj48eo8NR0RjeCDpDaCM0oB+Rh8+Q/AwuOUS eT6C152dJpWZN2MmHfQpvMr6fKIziCjdNObXpcfk8G3vyFhPm8ES4LwL+x02fVJP 7Ylf+UOk67QpohGE4gt+I0ve0F1geJNjLieFCtD9znqxMcuPq74PkZ2D1ekzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzKCqF5E65SJXCCXxDKU5s/jkpX0wHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMxMzEzNTJlMzEzNzM4MmUzMTM5MzIyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzMTM4MzAzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFc7LAMA0GCSqG SIb3DQEBCwUAA4IBAQCRpojrfGvkGQOcUuqWMYpxu7tZcwSQYQ+91e/+hEPnIG14 /3hjPEQ4KxhKmpeTRaGepS7M0N0O3wjOpHJEWXmmUD19b3p7cTopFCBHpol6cwdG 8il8ZBfx+z3tsEZ2hGqune9oqwHXL2M+CqnmkMUIQXntOLz80xRV5aQ16ao8dwHl yIkpDKOCoUn2Nhd0V3mdegyzEwCdPmC4y8bz72StqnleHZ39y4c2fGXqBxPL0I2R KUkNZ15T3ucc4tg0aE96vnET0fBeu4e9tdZtTwpTEVU/fVkqh0psGK+ybDsuceI3 e0/9sErlVSurRFMktx8UkohcrHRdXpKzODvgKCx3 -----END CERTIFICATE-----Generated at Fri May 17 01:00:59 2024 by rpki-client on console-ams.rpki-client.org