$ rpki-client -vvf repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/3131372e35332e3134342e302f32322d3234203d3e203538333937.roa File: 3131372e35332e3134342e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: OMaWRHwm/vWxjpYzxGXY2k4LIXQ9AplJgn3ZbNUGCnQ= Subject key identifier: CF:C2:A3:90:2D:5B:E9:FB:64:00:33:11:3D:39:56:8F:C9:DB:89:C3 Certificate issuer: /CN=498B46B789361D2AAA4E5CF9B2A81E223925A89F Certificate serial: 4FF69BD8C07FE45A60D9BB972D0E2A78E4D7FD05 Authority key identifier: 49:8B:46:B7:89:36:1D:2A:AA:4E:5C:F9:B2:A8:1E:22:39:25:A8:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/498B46B789361D2AAA4E5CF9B2A81E223925A89F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/3131372e35332e3134342e302f32322d3234203d3e203538333937.roa Signing time: Mon 31 Jul 2023 00:08:30 +0000 ROA not before: Mon 31 Jul 2023 00:03:30 +0000 ROA not after: Mon 29 Jul 2024 00:08:30 +0000 asID: 58397 IP address blocks: 117.53.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/498B46B789361D2AAA4E5CF9B2A81E223925A89F.crl rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/498B46B789361D2AAA4E5CF9B2A81E223925A89F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/498B46B789361D2AAA4E5CF9B2A81E223925A89F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:f6:9b:d8:c0:7f:e4:5a:60:d9:bb:97:2d:0e:2a:78:e4:d7:fd:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=498B46B789361D2AAA4E5CF9B2A81E223925A89F Validity Not Before: Jul 31 00:03:30 2023 GMT Not After : Jul 29 00:08:30 2024 GMT Subject: CN=CFC2A3902D5BE9FB640033113D39568FC9DB89C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a3:c6:87:9b:8c:4f:92:2a:a1:d8:7d:43:4a: cc:e6:75:a6:6a:c5:7f:5c:a5:75:9e:95:b3:16:85: 7e:c9:f9:11:fa:83:b4:30:db:41:34:b7:25:5c:b5: 5c:8b:61:ce:26:ad:b0:2e:f7:74:82:14:63:07:98: 05:6b:67:f1:90:24:00:0c:8f:d1:50:7c:d7:d4:a1: 41:ae:51:4c:29:b1:78:df:f5:cf:24:b3:10:2b:26: ae:d4:f0:db:b7:83:b3:2f:e8:1a:8b:00:21:bc:82: 1f:4a:7b:10:0f:07:9f:f2:5e:e2:e9:f5:9f:bd:0a: b9:ce:b7:b2:5b:a5:1e:e9:42:02:78:d8:75:b1:f5: f7:90:2a:9e:11:cc:29:1c:93:50:6e:3d:48:97:d9: ae:a6:93:35:f8:0e:09:05:d8:9d:2e:16:b1:01:ff: d2:37:52:8d:e7:0f:b1:6f:cd:8c:6e:52:97:40:a6: 01:d9:22:46:c1:cf:40:9f:24:96:eb:99:29:dd:97: f8:d6:08:0d:4d:50:83:e2:4a:b6:16:d8:af:a3:12: 26:14:ab:08:e6:1c:08:be:43:f0:a9:70:57:7f:01: cd:66:bb:7f:60:95:bb:17:4b:b7:c3:44:e1:29:84: db:4f:aa:2c:f0:a6:38:b9:1d:28:bb:5f:7a:bb:5e: 57:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C2:A3:90:2D:5B:E9:FB:64:00:33:11:3D:39:56:8F:C9:DB:89:C3 X509v3 Authority Key Identifier: keyid:49:8B:46:B7:89:36:1D:2A:AA:4E:5C:F9:B2:A8:1E:22:39:25:A8:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/498B46B789361D2AAA4E5CF9B2A81E223925A89F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/498B46B789361D2AAA4E5CF9B2A81E223925A89F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519166a1-18cd-44d3-a6e0-2ef82f760d28/0/3131372e35332e3134342e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.144.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:03:3b:34:5a:27:e9:af:b2:a3:50:06:65:e7:9c:ac:60:f4: a5:c7:fa:2d:d1:a7:9c:f8:39:25:24:11:fb:7e:b3:fa:2d:f2: b3:28:08:55:6f:b7:52:1a:e6:4b:bb:01:8e:fc:bb:bc:71:92: 0e:30:a4:13:b0:05:cc:c2:44:dd:82:b4:2b:44:ac:f7:6e:be: 41:4b:24:ac:51:43:1e:d9:a3:dc:6e:3d:0d:6b:b2:d7:23:e1: 17:f2:09:82:c0:7a:18:73:79:93:36:2c:81:a3:da:d0:bd:e9: 4f:ad:92:9a:9d:e7:9b:a0:ea:72:3c:54:14:b2:63:4d:91:a9: e3:cc:2f:fd:c7:7b:56:4d:31:81:56:0a:df:ae:d9:a6:8d:4a: c8:c9:5a:2d:e5:aa:4e:62:76:0a:35:51:ef:b2:4c:83:65:5e: 47:32:3c:d9:12:f5:19:88:61:aa:0d:6e:2d:b9:c1:97:3c:5f: 09:9f:55:1b:e4:99:78:4a:de:5f:59:e3:49:0a:ef:f3:9a:4b: 73:c9:df:2d:84:0c:75:36:60:da:df:b2:99:7f:0d:8a:c1:94: b3:f6:5a:93:86:e2:95:fe:e0:0c:3b:e6:04:0a:ef:ff:d8:b6: 88:81:7f:bb:33:d8:e8:5c:b4:14:77:6e:47:57:ae:4b:88:18: fa:8a:df:f5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT/ab2MB/5Fpg2buXLQ4qeOTX/QUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDk4QjQ2Qjc4OTM2MUQyQUFBNEU1Q0Y5QjJBODFFMjIz OTI1QTg5RjAeFw0yMzA3MzEwMDAzMzBaFw0yNDA3MjkwMDA4MzBaMDMxMTAvBgNV BAMTKENGQzJBMzkwMkQ1QkU5RkI2NDAwMzMxMTNEMzk1NjhGQzlEQjg5QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJo8aHm4xPkiqh2H1DSszmdaZq xX9cpXWelbMWhX7J+RH6g7Qw20E0tyVctVyLYc4mrbAu93SCFGMHmAVrZ/GQJAAM j9FQfNfUoUGuUUwpsXjf9c8ksxArJq7U8Nu3g7Mv6BqLACG8gh9KexAPB5/yXuLp 9Z+9CrnOt7JbpR7pQgJ42HWx9feQKp4RzCkck1BuPUiX2a6mkzX4DgkF2J0uFrEB /9I3Uo3nD7FvzYxuUpdApgHZIkbBz0CfJJbrmSndl/jWCA1NUIPiSrYW2K+jEiYU qwjmHAi+Q/CpcFd/Ac1mu39glbsXS7fDROEphNtPqizwpji5HSi7X3q7Xlc1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUz8KjkC1b6ftkADMRPTlWj8nbicMwHwYDVR0j BBgwFoAUSYtGt4k2HSqqTlz5sqgeIjklqJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTkxNjZhMS0xOGNkLTQ0ZDMtYTZlMC0yZWY4MmY3NjBkMjgvMC80OThCNDZCNzg5 MzYxRDJBQUE0RTVDRjlCMkE4MUUyMjM5MjVBODlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDk4QjQ2Qjc4OTM2MUQyQUFBNEU1Q0Y5QjJBODFFMjIzOTI1 QTg5Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOTE2NmExLTE4Y2QtNDRkMy1h NmUwLTJlZjgyZjc2MGQyOC8wLzMxMzEzNzJlMzUzMzJlMzEzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnU1kDANBgkqhkiG 9w0BAQsFAAOCAQEAnQM7NFon6a+yo1AGZeecrGD0pcf6LdGnnPg5JSQR+36z+i3y sygIVW+3UhrmS7sBjvy7vHGSDjCkE7AFzMJE3YK0K0Ss926+QUskrFFDHtmj3G49 DWuy1yPhF/IJgsB6GHN5kzYsgaPa0L3pT62Smp3nm6DqcjxUFLJjTZGp48wv/cd7 Vk0xgVYK367Zpo1KyMlaLeWqTmJ2CjVR77JMg2VeRzI82RL1GYhhqg1uLbnBlzxf CZ9VG+SZeEreX1njSQrv85pLc8nfLYQMdTZg2t+ymX8NisGUs/Zak4bilf7gDDvm BArv/9i2iIF/uzPY6Fy0FHduR1euS4gY+orf9Q== -----END CERTIFICATE-----Generated at Fri May 3 20:11:52 2024 by rpki-client on console-ams.rpki-client.org