$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134352e302f32342d3234203d3e20313430343831.roa File: 3131302e37362e3134352e302f32342d3234203d3e20313430343831.roa (raw, json) Hash identifier: LxkNw1wqE1e2Gllb6h9NQFIHDrAa1NajpeMpU+YFZ84= Subject key identifier: 10:9B:97:12:BF:35:3B:42:50:D6:2F:E9:99:83:0B:ED:F5:A0:C2:81 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 32DF67B79AEC276B21C093EC71BB4A7BCF18D00D Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134352e302f32342d3234203d3e20313430343831.roa Signing time: Fri 01 Sep 2023 15:51:54 +0000 ROA not before: Fri 01 Sep 2023 15:46:54 +0000 ROA not after: Fri 30 Aug 2024 15:51:54 +0000 asID: 140481 IP address blocks: 110.76.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:df:67:b7:9a:ec:27:6b:21:c0:93:ec:71:bb:4a:7b:cf:18:d0:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: Sep 1 15:46:54 2023 GMT Not After : Aug 30 15:51:54 2024 GMT Subject: CN=109B9712BF353B4250D62FE999830BEDF5A0C281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fc:66:11:ee:b8:a1:b2:79:83:46:72:95:84: 11:3d:85:0f:f2:73:6f:c0:9f:a5:0b:7a:84:6b:42: 38:6d:12:73:b7:62:09:59:13:2d:be:1f:c2:a7:0b: 8c:94:13:f6:c8:87:01:c0:38:53:fb:59:db:0b:47: e6:c2:77:67:94:71:c9:e0:1d:fb:61:c5:85:c9:8f: 78:d9:1f:9a:4a:03:ad:05:a0:c7:46:cd:3e:50:8b: 57:f5:0a:56:fa:af:41:af:65:eb:48:78:78:cc:2a: 59:6d:1a:a7:78:81:22:7d:09:73:f6:20:be:81:33: a4:34:cb:ed:81:67:8b:76:75:a8:05:c3:2c:34:e8: e3:3c:e0:60:ef:a3:34:52:5e:47:6d:26:ac:13:da: b7:6b:60:25:1c:2c:fa:ac:37:00:93:ba:e7:a5:43: eb:e7:d8:11:5a:c2:59:1a:a2:aa:3e:0f:7b:98:cf: 50:d4:81:7d:e3:24:cb:38:53:d6:a7:a4:cd:ae:0b: 70:20:9e:90:e2:f4:cb:61:dc:a2:10:fe:13:b6:75: a5:b5:ca:9b:f7:83:94:cf:e4:fb:88:7f:2b:cb:bf: 95:d5:77:8e:47:bc:f4:ff:d7:05:98:c3:27:15:10: ec:de:4a:8c:ec:a3:35:60:52:9a:b4:0f:32:5b:d2: 25:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:9B:97:12:BF:35:3B:42:50:D6:2F:E9:99:83:0B:ED:F5:A0:C2:81 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134352e302f32342d3234203d3e20313430343831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.76.145.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:ca:76:0d:90:8d:f1:02:cf:41:f3:8e:5c:e8:cf:14:b9:15: 13:e4:2e:a2:a9:63:b8:aa:47:8a:f8:a8:ed:88:0b:d1:8e:7c: c0:6b:0b:50:5d:e8:ca:be:f7:c2:97:f0:23:a1:ee:20:fe:bf: 3c:91:fe:fa:90:b7:34:d5:7c:cf:68:41:ee:26:2e:de:42:75: 80:39:d2:70:fe:93:f3:c0:d9:83:88:53:c8:55:ea:31:e4:71: ba:96:78:67:50:0d:9a:aa:d8:00:29:7f:14:8a:0b:e3:8d:58: ab:d2:55:57:04:9b:26:a7:24:8d:9e:b9:7f:50:4d:ad:0d:65: 02:22:e5:ad:ad:63:a3:46:09:df:0f:67:f8:e0:fd:df:32:34: 4d:30:58:ee:a3:0c:43:46:3f:0e:fc:7d:05:20:ff:00:50:27: 0b:53:cb:c6:d9:b4:ad:35:20:07:16:60:c0:52:25:0e:50:7d: ef:45:6a:25:c7:a5:97:e9:70:1f:a1:ff:f1:b6:6c:37:82:18: 97:04:f4:e9:b0:73:b5:71:19:d4:e5:47:b5:bf:ce:87:86:c5: 73:ef:00:89:70:fc:b2:7f:7d:28:9f:7d:af:fc:5c:cb:08:49: a3:2f:02:29:51:1c:68:a2:db:4b:8d:9d:d9:ee:4f:31:2f:d0: 5b:91:63:40 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMt9nt5rsJ2shwJPscbtKe88Y0A0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yMzA5MDExNTQ2NTRaFw0yNDA4MzAxNTUxNTRaMDMxMTAvBgNV BAMTKDEwOUI5NzEyQkYzNTNCNDI1MEQ2MkZFOTk5ODMwQkVERjVBMEMyODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX/GYR7rihsnmDRnKVhBE9hQ/y c2/An6ULeoRrQjhtEnO3YglZEy2+H8KnC4yUE/bIhwHAOFP7WdsLR+bCd2eUccng HfthxYXJj3jZH5pKA60FoMdGzT5Qi1f1Clb6r0GvZetIeHjMKlltGqd4gSJ9CXP2 IL6BM6Q0y+2BZ4t2dagFwyw06OM84GDvozRSXkdtJqwT2rdrYCUcLPqsNwCTuuel Q+vn2BFawlkaoqo+D3uYz1DUgX3jJMs4U9anpM2uC3AgnpDi9Mth3KIQ/hO2daW1 ypv3g5TP5PuIfyvLv5XVd45HvPT/1wWYwycVEOzeSozsozVgUpq0DzJb0iVPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEJuXEr81O0JQ1i/pmYML7fWgwoEwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzMDJlMzczNjJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbkyRMA0GCSqG SIb3DQEBCwUAA4IBAQBcynYNkI3xAs9B845c6M8UuRUT5C6iqWO4qkeK+KjtiAvR jnzAawtQXejKvvfCl/Ajoe4g/r88kf76kLc01XzPaEHuJi7eQnWAOdJw/pPzwNmD iFPIVeox5HG6lnhnUA2aqtgAKX8UigvjjVir0lVXBJsmpySNnrl/UE2tDWUCIuWt rWOjRgnfD2f44P3fMjRNMFjuowxDRj8O/H0FIP8AUCcLU8vG2bStNSAHFmDAUiUO UH3vRWolx6WX6XAfof/xtmw3ghiXBPTpsHO1cRnU5Ue1v86HhsVz7wCJcPyyf30o n32v/FzLCEmjLwIpURxoottLjZ3Z7k8xL9BbkWNA -----END CERTIFICATE-----Generated at Fri Jun 21 19:53:45 2024 by rpki-client on console-fra.rpki-client.org