$ rpki-client -vvf repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/3131332e32302e3133362e302f32312d3234203d3e203435373136.roa File: 3131332e32302e3133362e302f32312d3234203d3e203435373136.roa (raw, json) Hash identifier: V46Ngid+lXtoUujI8LA6MwNd88kQDN3PITwYM03J8vY= Subject key identifier: 9C:BB:E5:E4:54:0E:04:24:03:86:6C:03:DD:60:D9:5F:86:A1:F5:9D Certificate issuer: /CN=37D7265DD2BAA67ECABEEC597D30727F574E8A01 Certificate serial: 7104E3BE4381DF10E32DF8D75EC1217E3267240C Authority key identifier: 37:D7:26:5D:D2:BA:A6:7E:CA:BE:EC:59:7D:30:72:7F:57:4E:8A:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37D7265DD2BAA67ECABEEC597D30727F574E8A01.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/3131332e32302e3133362e302f32312d3234203d3e203435373136.roa Signing time: Mon 31 Jul 2023 00:03:10 +0000 ROA not before: Sun 30 Jul 2023 23:58:10 +0000 ROA not after: Mon 29 Jul 2024 00:03:10 +0000 asID: 45716 IP address blocks: 113.20.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/37D7265DD2BAA67ECABEEC597D30727F574E8A01.crl rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/37D7265DD2BAA67ECABEEC597D30727F574E8A01.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37D7265DD2BAA67ECABEEC597D30727F574E8A01.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 14:56:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:04:e3:be:43:81:df:10:e3:2d:f8:d7:5e:c1:21:7e:32:67:24:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37D7265DD2BAA67ECABEEC597D30727F574E8A01 Validity Not Before: Jul 30 23:58:10 2023 GMT Not After : Jul 29 00:03:10 2024 GMT Subject: CN=9CBBE5E4540E042403866C03DD60D95F86A1F59D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e7:e1:9a:12:13:02:2a:16:a8:c7:ba:98:22: 01:63:58:ec:c2:7d:5e:2c:07:18:97:8d:4a:f9:f4: 0c:cc:e0:c9:a8:4c:f5:93:bb:db:c3:c7:20:fa:ab: 1d:be:d1:67:a3:3c:89:62:78:e4:8f:cf:16:73:92: 15:1d:cd:37:4f:02:90:dd:a0:6f:83:05:88:22:a1: 92:df:26:11:d2:c9:5d:4a:a6:fb:5d:3a:2e:be:1d: 81:b8:b1:f5:3b:d1:ee:73:97:b0:8b:ef:2c:ae:23: 30:be:51:4f:c6:92:5e:c9:d3:79:9b:bb:76:fd:21: 23:96:62:02:d9:54:f8:c6:de:8a:5d:5a:ba:31:d8: 6c:20:62:d8:90:84:f6:49:99:07:21:84:94:96:9a: 85:03:3f:3a:ba:d5:c7:83:44:3f:86:3d:30:e6:47: e5:b2:b2:d6:cf:d4:8f:a4:4d:45:d1:c4:24:22:13: b1:b1:33:e6:6f:c9:d5:64:a1:56:bc:65:74:41:b6: 6e:27:08:aa:11:2a:87:80:55:98:22:4e:5a:8b:5f: 97:ee:f6:ac:86:9b:bd:db:65:cf:f3:59:2e:51:63: 22:71:f3:33:9b:7b:79:0c:f9:ff:48:c3:13:26:02: 4c:80:b1:52:8c:32:84:24:82:a1:ee:5b:2b:3b:40: c3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BB:E5:E4:54:0E:04:24:03:86:6C:03:DD:60:D9:5F:86:A1:F5:9D X509v3 Authority Key Identifier: keyid:37:D7:26:5D:D2:BA:A6:7E:CA:BE:EC:59:7D:30:72:7F:57:4E:8A:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/37D7265DD2BAA67ECABEEC597D30727F574E8A01.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37D7265DD2BAA67ECABEEC597D30727F574E8A01.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/3131332e32302e3133362e302f32312d3234203d3e203435373136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.20.136.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:19:7e:c3:ef:0c:67:26:43:05:19:c2:55:74:c7:46:88:6f: 70:c8:11:e8:19:31:8a:26:09:b1:42:b2:cf:d6:6b:96:2a:21: 0a:c4:bd:0f:61:45:9e:e7:c5:00:35:cf:06:61:05:13:0f:75: 8f:ba:1d:81:cb:94:d4:68:ba:31:73:f2:d5:7f:ad:5e:dd:86: 5d:da:e9:6e:7e:b2:c8:40:06:31:89:89:e1:a5:98:24:c4:2d: 1d:26:28:3f:41:db:d7:07:4a:41:b2:81:06:89:8c:aa:9a:35: 37:e3:c6:1d:ef:c6:d1:1c:ea:53:8b:99:95:ff:ff:b9:89:c4: 94:89:2a:fa:01:41:d0:59:99:4d:dd:f2:dc:65:e2:3a:a7:f9: 32:9b:59:7d:20:3d:9c:5f:7b:25:9d:5b:4d:12:d8:b2:32:eb: 6a:a9:df:2e:21:8b:6e:9f:e4:0f:96:b6:72:cf:38:54:22:27: c1:ec:88:b2:14:ca:c9:a0:09:17:0a:97:b8:e4:48:6a:6c:80: 52:84:b1:b1:2e:63:4d:81:75:82:3f:49:b4:7f:68:8a:ec:4e: 33:c5:79:90:85:1f:c6:f1:be:1f:b1:9f:f3:27:79:c2:d3:26: ba:2c:cc:0b:a3:16:45:f7:bf:a4:83:c6:5e:60:f0:42:d2:68: 09:a2:e9:59 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcQTjvkOB3xDjLfjXXsEhfjJnJAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdENzI2NUREMkJBQTY3RUNBQkVFQzU5N0QzMDcyN0Y1 NzRFOEEwMTAeFw0yMzA3MzAyMzU4MTBaFw0yNDA3MjkwMDAzMTBaMDMxMTAvBgNV BAMTKDlDQkJFNUU0NTQwRTA0MjQwMzg2NkMwM0RENjBEOTVGODZBMUY1OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA5+GaEhMCKhaox7qYIgFjWOzC fV4sBxiXjUr59AzM4MmoTPWTu9vDxyD6qx2+0WejPIlieOSPzxZzkhUdzTdPApDd oG+DBYgioZLfJhHSyV1KpvtdOi6+HYG4sfU70e5zl7CL7yyuIzC+UU/Gkl7J03mb u3b9ISOWYgLZVPjG3opdWrox2GwgYtiQhPZJmQchhJSWmoUDPzq61ceDRD+GPTDm R+WystbP1I+kTUXRxCQiE7GxM+ZvydVkoVa8ZXRBtm4nCKoRKoeAVZgiTlqLX5fu 9qyGm73bZc/zWS5RYyJx8zObe3kM+f9IwxMmAkyAsVKMMoQkgqHuWys7QMO3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnLvl5FQOBCQDhmwD3WDZX4ah9Z0wHwYDVR0j BBgwFoAUN9cmXdK6pn7KvuxZfTByf1dOigEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWFmMDBlYy1kMDgzLTRhOWYtODIxZi03ZGExOGY4MTU0MTcvMC8zN0Q3MjY1REQy QkFBNjdFQ0FCRUVDNTk3RDMwNzI3RjU3NEU4QTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdENzI2NUREMkJBQTY3RUNBQkVFQzU5N0QzMDcyN0Y1NzRF OEEwMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5YWYwMGVjLWQwODMtNGE5Zi04 MjFmLTdkYTE4ZjgxNTQxNy8wLzMxMzEzMzJlMzIzMDJlMzEzMzM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTM3MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3EUiDANBgkqhkiG 9w0BAQsFAAOCAQEADxl+w+8MZyZDBRnCVXTHRohvcMgR6BkxiiYJsUKyz9Zrlioh CsS9D2FFnufFADXPBmEFEw91j7odgcuU1Gi6MXPy1X+tXt2GXdrpbn6yyEAGMYmJ 4aWYJMQtHSYoP0Hb1wdKQbKBBomMqpo1N+PGHe/G0RzqU4uZlf//uYnElIkq+gFB 0FmZTd3y3GXiOqf5MptZfSA9nF97JZ1bTRLYsjLraqnfLiGLbp/kD5a2cs84VCIn weyIshTKyaAJFwqXuORIamyAUoSxsS5jTYF1gj9JtH9oiuxOM8V5kIUfxvG+H7Gf 8yd5wtMmuizMC6MWRfe/pIPGXmDwQtJoCaLpWQ== -----END CERTIFICATE-----Generated at Wed May 1 12:16:02 2024 by rpki-client on console-ams.rpki-client.org