$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa File: 3138302e3231312e38382e302f32312d3234203d3e203435373235.roa (raw, json) Hash identifier: CYlqDXDzxJGrtconJGwz0Jx+3dC7El3t8MZ9LV+Me0Q= Subject key identifier: 0F:40:2C:EF:F9:C1:FA:05:CF:3A:CD:8E:69:1A:3D:78:0D:0C:30:B0 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 3070A09BCB24056932788559453F7E25B5F53DC8 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa Signing time: Tue 25 Jul 2023 09:00:03 +0000 ROA not before: Tue 25 Jul 2023 08:55:03 +0000 ROA not after: Tue 23 Jul 2024 09:00:03 +0000 asID: 45725 IP address blocks: 180.211.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:70:a0:9b:cb:24:05:69:32:78:85:59:45:3f:7e:25:b5:f5:3d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Jul 25 08:55:03 2023 GMT Not After : Jul 23 09:00:03 2024 GMT Subject: CN=0F402CEFF9C1FA05CF3ACD8E691A3D780D0C30B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bf:98:41:5c:b6:3a:72:82:d8:20:3a:a8:63: eb:d0:c7:f1:e4:85:64:18:32:c3:d0:9b:c4:71:68: 96:d0:bf:3b:c6:40:7c:08:d3:0c:9c:dc:1e:f8:a0: cc:fa:24:1c:bc:51:46:20:86:6e:84:0a:5f:b2:bd: 1f:f5:b4:60:cd:56:a5:91:05:be:d7:1a:fc:10:6f: 00:df:cc:01:67:a1:9e:ef:33:11:3b:4c:d7:c9:8b: ad:f2:3f:df:2b:2d:14:c0:30:97:62:32:97:a8:0c: 80:7a:c1:a1:bc:a5:89:63:e7:e7:8b:cc:4a:97:ba: 2f:88:e3:db:f8:24:f8:6d:ce:d4:5e:26:28:85:4b: 5d:23:d6:2c:c8:27:8d:f3:1b:62:32:cb:c1:ad:19: 8b:38:cd:65:cb:88:2e:f4:0c:70:67:e0:ce:e7:f4: 3f:81:21:5d:91:dd:06:55:2e:d0:91:6a:36:af:9d: f1:a7:1f:87:dd:62:9d:a3:f5:5f:06:c0:bf:5f:3e: 5b:59:d1:74:ea:30:76:dd:85:ee:e0:98:d1:4a:2b: 99:40:8e:00:ac:1a:d2:25:ee:c8:31:6c:ef:72:9e: 7a:80:6e:64:56:0d:4d:a5:f1:11:20:ce:ce:84:40: bb:3c:62:07:3e:b6:35:b6:d8:00:13:b7:bd:bd:73: 76:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:40:2C:EF:F9:C1:FA:05:CF:3A:CD:8E:69:1A:3D:78:0D:0C:30:B0 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.211.88.0/21 Signature Algorithm: sha256WithRSAEncryption 39:65:5b:d2:06:6d:6a:7d:46:a7:6d:51:41:b7:f2:6a:72:f9: 8e:57:3b:b9:aa:30:63:58:2e:f7:27:70:25:53:ec:dd:f4:6c: 14:1d:9a:45:a5:d9:5b:a3:34:a9:50:e5:b4:93:31:45:f2:ea: ab:25:3a:e7:e1:dc:02:0f:ff:88:b6:1d:b8:eb:30:ea:a0:6b: c6:01:0f:53:f9:97:75:62:cb:b7:7d:43:8f:e9:6b:2d:a1:36: 6c:66:fb:7d:81:36:c9:17:6a:eb:30:37:4a:35:83:56:f9:43: bb:2b:1b:85:67:a4:96:cc:f9:89:19:37:04:81:0b:bf:d1:10: 4a:e1:3b:29:c5:ba:b7:dc:ea:8e:58:0c:25:7c:df:13:b8:b5: 1a:c6:d2:b4:fe:40:6c:98:5d:1d:6a:f3:71:c5:f0:4a:8b:48: b6:c7:57:96:9d:df:7d:57:21:9c:c7:57:c8:a3:38:f5:e1:0e: 26:7f:96:07:9c:02:63:5e:06:3c:c7:8a:13:32:e5:37:60:ea: d9:52:36:3a:4e:b8:7d:cb:bb:78:47:df:5a:ce:3d:0e:3b:45: 0d:e5:d4:0d:58:d4:c2:5f:c6:51:64:10:00:c7:c5:34:a4:4b: 5b:b7:ba:6a:d1:ad:1e:96:0d:1f:f4:9c:73:80:40:5e:a2:a3: 56:0b:30:39 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMHCgm8skBWkyeIVZRT9+JbX1PcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yMzA3MjUwODU1MDNaFw0yNDA3MjMwOTAwMDNaMDMxMTAvBgNV BAMTKDBGNDAyQ0VGRjlDMUZBMDVDRjNBQ0Q4RTY5MUEzRDc4MEQwQzMwQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9v5hBXLY6coLYIDqoY+vQx/Hk hWQYMsPQm8RxaJbQvzvGQHwI0wyc3B74oMz6JBy8UUYghm6ECl+yvR/1tGDNVqWR Bb7XGvwQbwDfzAFnoZ7vMxE7TNfJi63yP98rLRTAMJdiMpeoDIB6waG8pYlj5+eL zEqXui+I49v4JPhtztReJiiFS10j1izIJ43zG2Iyy8GtGYs4zWXLiC70DHBn4M7n 9D+BIV2R3QZVLtCRajavnfGnH4fdYp2j9V8GwL9fPltZ0XTqMHbdhe7gmNFKK5lA jgCsGtIl7sgxbO9ynnqAbmRWDU2l8REgzs6EQLs8Ygc+tjW22AATt729c3YbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUD0As7/nB+gXPOs2OaRo9eA0MMLAwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzgzMDJlMzIzMTMxMmUzODM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA7TTWDANBgkqhkiG 9w0BAQsFAAOCAQEAOWVb0gZtan1Gp21RQbfyanL5jlc7uaowY1gu9ydwJVPs3fRs FB2aRaXZW6M0qVDltJMxRfLqqyU65+HcAg//iLYduOsw6qBrxgEPU/mXdWLLt31D j+lrLaE2bGb7fYE2yRdq6zA3SjWDVvlDuysbhWeklsz5iRk3BIELv9EQSuE7KcW6 t9zqjlgMJXzfE7i1GsbStP5AbJhdHWrzccXwSotItsdXlp3ffVchnMdXyKM49eEO Jn+WB5wCY14GPMeKEzLlN2Dq2VI2Ok64fcu7eEffWs49DjtFDeXUDVjUwl/GUWQQ AMfFNKRLW7e6atGtHpYNH/Scc4BAXqKjVgswOQ== -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:29 2024 by rpki-client on console-fra.rpki-client.org