$ rpki-client -vvf repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3132382e302f32312d3234203d3e203234313935.roa File: 3131382e39312e3132382e302f32312d3234203d3e203234313935.roa (raw, json) Hash identifier: J7i391hIJxMfyvqtQvqe8sWLAUU/GR6bdewT6EqoOS8= Subject key identifier: FE:4E:4F:4D:D4:D4:8C:28:DA:54:28:9A:8E:74:E8:B0:D8:DB:B7:F6 Certificate issuer: /CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Certificate serial: 4E2B063D631343BB649ABA7FF5723F56EBF1870C Authority key identifier: 1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3132382e302f32312d3234203d3e203234313935.roa Signing time: Sat 09 Sep 2023 09:00:00 +0000 ROA not before: Sat 09 Sep 2023 08:55:00 +0000 ROA not after: Sat 07 Sep 2024 09:00:00 +0000 asID: 24195 IP address blocks: 118.91.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:2b:06:3d:63:13:43:bb:64:9a:ba:7f:f5:72:3f:56:eb:f1:87:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Validity Not Before: Sep 9 08:55:00 2023 GMT Not After : Sep 7 09:00:00 2024 GMT Subject: CN=FE4E4F4DD4D48C28DA54289A8E74E8B0D8DBB7F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9d:51:1f:cc:b0:cd:ac:f6:3b:24:cf:bd:ed: 6f:0b:47:02:88:83:d4:6f:bd:a0:89:7e:db:4f:89: 33:0f:3d:9f:cc:e4:4f:bc:f0:4a:fe:95:58:d2:32: c6:e0:1d:f0:1a:58:08:f8:34:e1:9e:d5:75:b2:ff: 6f:0f:29:5d:a0:0a:17:2a:87:31:54:74:cc:3b:68: fe:ee:da:74:76:54:ea:a8:67:13:e0:56:bd:7c:c7: 7f:f9:60:df:10:7b:5d:eb:5d:e4:65:a9:02:79:d0: 8a:c6:e5:90:51:cb:60:be:8d:9d:cb:b8:55:3c:08: dd:b9:e6:ba:9b:a3:8f:fb:0e:db:14:f4:bf:21:89: 8c:03:d2:c2:cb:5a:5c:01:27:d5:13:48:f9:48:3d: a7:e0:56:72:bc:45:84:6f:ca:aa:f7:3e:3a:a0:26: 3d:0f:47:fa:22:5f:7e:84:6a:c3:07:b4:5f:1b:5a: a9:c7:23:1b:2d:ba:2a:97:ef:b7:cd:82:90:e0:3e: be:43:62:b8:86:34:6f:17:10:0a:26:da:05:4f:86: 96:49:f4:40:50:39:80:a9:e3:d2:60:f2:c2:d0:46: 5b:a1:94:07:b7:ba:6d:24:4f:8b:71:12:55:c9:6d: be:ec:2f:25:63:08:60:de:57:ef:50:79:9f:4c:67: 50:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:4E:4F:4D:D4:D4:8C:28:DA:54:28:9A:8E:74:E8:B0:D8:DB:B7:F6 X509v3 Authority Key Identifier: keyid:1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/3131382e39312e3132382e302f32312d3234203d3e203234313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 118.91.128.0/21 Signature Algorithm: sha256WithRSAEncryption 97:12:96:cd:1a:61:90:22:58:23:d3:e5:da:73:25:63:0f:d4: 0b:d5:8d:d9:a2:0e:87:e6:e8:07:19:d4:d2:f6:e2:e1:18:5f: 42:04:f9:dd:f9:7b:00:8e:dd:8e:a7:f3:d4:41:4e:ba:ab:df: 8a:f1:81:98:05:b3:e4:03:ef:4b:15:42:a1:07:2e:c1:3e:62: b8:06:00:0b:1b:80:6d:fc:a4:d7:c2:3e:38:52:0d:4b:7d:8f: c9:9f:68:0c:2f:91:6e:cb:56:93:22:48:6e:7b:59:48:b9:3e: 40:fd:65:f8:15:82:f1:67:7e:20:20:75:6e:83:cf:21:5c:2c: ea:d7:d9:12:f2:1f:2c:24:35:d0:c4:2c:81:1e:d3:6e:42:92: 84:53:6e:bc:6c:0f:01:bd:ca:d4:5b:d3:a9:0c:3b:8c:c4:f5: e4:47:6b:05:48:97:29:2f:42:48:5a:81:a6:16:b5:76:1c:95: 36:33:64:c1:f6:93:12:80:f7:cb:9e:2c:06:d3:58:1a:eb:1a: bf:04:89:7e:1d:16:60:7d:11:25:12:cf:25:b7:95:7a:68:46: e3:23:1f:5f:67:c2:14:f2:93:5d:e7:1c:a0:6e:07:db:cd:04: 97:2a:71:4c:c7:b5:76:50:29:88:9e:8c:b3:67:82:31:98:1c: 31:14:91:ea -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTisGPWMTQ7tkmrp/9XI/VuvxhwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUx QzdGRTk0NjAeFw0yMzA5MDkwODU1MDBaFw0yNDA5MDcwOTAwMDBaMDMxMTAvBgNV BAMTKEZFNEU0RjRERDRENDhDMjhEQTU0Mjg5QThFNzRFOEIwRDhEQkI3RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOnVEfzLDNrPY7JM+97W8LRwKI g9RvvaCJfttPiTMPPZ/M5E+88Er+lVjSMsbgHfAaWAj4NOGe1XWy/28PKV2gChcq hzFUdMw7aP7u2nR2VOqoZxPgVr18x3/5YN8Qe13rXeRlqQJ50IrG5ZBRy2C+jZ3L uFU8CN255rqbo4/7DtsU9L8hiYwD0sLLWlwBJ9UTSPlIPafgVnK8RYRvyqr3Pjqg Jj0PR/oiX36EasMHtF8bWqnHIxstuiqX77fNgpDgPr5DYriGNG8XEAom2gVPhpZJ 9EBQOYCp49Jg8sLQRluhlAe3um0kT4txElXJbb7sLyVjCGDeV+9QeZ9MZ1DJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/k5PTdTUjCjaVCiajnTosNjbt/YwHwYDVR0j BBgwFoAUH81H+0vXKeIuT+785bYbThx/6UYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzkyYTRjZC1kYmFjLTQzYWMtODA2MC0yZThkNDJlYWU2NTUvMC8xRkNENDdGQjRC RDcyOUUyMkU0RkVFRkNFNUI2MUI0RTFDN0ZFOTQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUxQzdG RTk0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3OTJhNGNkLWRiYWMtNDNhYy04 MDYwLTJlOGQ0MmVhZTY1NS8wLzMxMzEzODJlMzkzMTJlMzEzMjM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzNDMxMzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3ZbgDANBgkqhkiG 9w0BAQsFAAOCAQEAlxKWzRphkCJYI9Pl2nMlYw/UC9WN2aIOh+boBxnU0vbi4Rhf QgT53fl7AI7djqfz1EFOuqvfivGBmAWz5APvSxVCoQcuwT5iuAYACxuAbfyk18I+ OFINS32PyZ9oDC+RbstWkyJIbntZSLk+QP1l+BWC8Wd+ICB1boPPIVws6tfZEvIf LCQ10MQsgR7TbkKShFNuvGwPAb3K1FvTqQw7jMT15EdrBUiXKS9CSFqBpha1dhyV NjNkwfaTEoD3y54sBtNYGusavwSJfh0WYH0RJRLPJbeVemhG4yMfX2fCFPKTXecc oG4H280ElypxTMe1dlApiJ6Ms2eCMZgcMRSR6g== -----END CERTIFICATE-----Generated at Sun Jun 2 18:39:56 2024 by rpki-client on console-fra.rpki-client.org