$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130382e302f32342d3234203d3e2034383231.roa File: 3232332e32352e3130382e302f32342d3234203d3e2034383231.roa (raw, json) Hash identifier: LswmJUjYBSTxdSF08XDdiFJuzeMGnUv66qN622jV+Tw= Subject key identifier: 50:7B:41:39:46:E5:B3:E3:C5:F6:F6:72:C8:BB:E4:09:A5:4D:35:32 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 4E7DC7E1C6CDD0D7EEC4E06322BA3FAC2B0C3578 Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130382e302f32342d3234203d3e2034383231.roa Signing time: Mon 31 Jul 2023 00:08:27 +0000 ROA not before: Mon 31 Jul 2023 00:03:27 +0000 ROA not after: Mon 29 Jul 2024 00:08:27 +0000 asID: 4821 IP address blocks: 223.25.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 01:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:7d:c7:e1:c6:cd:d0:d7:ee:c4:e0:63:22:ba:3f:ac:2b:0c:35:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jul 31 00:03:27 2023 GMT Not After : Jul 29 00:08:27 2024 GMT Subject: CN=507B413946E5B3E3C5F6F672C8BBE409A54D3532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7b:3d:a9:7f:95:4f:ad:4c:94:e5:18:c8:58: 3e:12:a3:75:24:c5:72:6f:97:a3:31:a2:45:ca:2f: 42:fc:5d:d2:63:91:41:74:5c:58:e5:47:0e:c8:0c: 36:02:13:9b:db:12:c1:0d:28:c5:b9:2f:0d:cc:eb: 71:75:73:14:c0:0c:bc:3c:ea:2f:9d:af:83:bd:ea: c3:2a:6e:f4:67:85:8b:82:3a:33:07:c4:8b:b7:6e: 12:25:5d:7c:ab:8d:a8:4f:4c:92:c8:4c:d0:5f:5a: fd:1e:27:9c:8a:11:df:df:b2:6f:b4:02:b4:7b:ca: a0:b2:6c:74:58:9b:6d:42:b9:62:1a:3b:52:8b:0c: b9:ec:6a:84:9a:55:9d:a3:bc:a1:f1:08:01:0c:78: 71:5d:3e:b4:a3:b7:a2:c5:b0:76:c4:e4:63:0b:4f: 07:97:ee:34:0f:b4:38:98:d1:f1:2a:22:c4:98:8c: 6e:19:bd:f3:b9:b3:2c:16:05:6e:d1:ed:e3:88:ef: 68:5c:30:7d:30:b9:e9:ca:51:ac:4e:63:a6:02:04: 33:8b:8a:e6:4a:48:f7:af:4c:48:a7:58:d3:6b:a3: b5:ab:bb:db:99:d1:e1:8c:ac:9a:14:73:9c:7c:b1: 05:d6:73:93:aa:96:ee:9f:97:87:58:c9:d7:c3:27: 9f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:7B:41:39:46:E5:B3:E3:C5:F6:F6:72:C8:BB:E4:09:A5:4D:35:32 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130382e302f32342d3234203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.25.108.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:e5:4e:1b:a4:0e:f0:42:0e:97:3b:44:fa:01:0b:8f:cb:07: d7:77:52:c4:f3:38:d7:7a:56:9e:63:f2:71:06:af:50:30:04: c1:1d:fc:70:ba:fe:e7:51:e2:5f:fc:c8:71:8e:cf:04:cc:f5: 3b:83:8b:d6:0c:22:f7:5d:41:70:54:ab:70:a2:5f:3d:44:2e: 53:bb:4e:dc:da:37:de:3e:f5:67:9f:a0:de:0f:4d:c2:9f:00: 0d:63:9f:ee:7e:fe:6d:c8:07:51:3c:a4:13:f3:8f:ad:c8:dc: 2e:46:a9:1b:b2:f0:eb:85:03:ad:c7:ec:00:e2:5e:f2:ec:37: 0c:8b:09:4e:47:ba:7e:7a:cb:e0:02:08:78:66:4b:ea:b7:20: 16:27:c0:9c:5c:05:47:8f:c4:9c:79:68:1e:25:14:dd:68:2e: 47:b9:bb:f7:85:1e:62:a1:91:98:51:fa:62:7f:6c:d0:1e:bb: 85:96:16:d9:fa:77:a9:29:9f:ab:aa:92:c4:52:eb:ab:24:b9: a1:b9:05:fe:90:9a:4a:62:19:78:b7:23:1f:ba:17:4d:1f:92: 43:68:27:8b:a6:6f:34:df:98:2e:31:75:1c:18:60:d8:24:ce: 02:c7:b2:09:db:c4:f0:0d:cb:08:ac:44:ab:b7:db:57:47:04: 70:62:67:77 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTn3H4cbN0NfuxOBjIro/rCsMNXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yMzA3MzEwMDAzMjdaFw0yNDA3MjkwMDA4MjdaMDMxMTAvBgNV BAMTKDUwN0I0MTM5NDZFNUIzRTNDNUY2RjY3MkM4QkJFNDA5QTU0RDM1MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzez2pf5VPrUyU5RjIWD4So3Uk xXJvl6MxokXKL0L8XdJjkUF0XFjlRw7IDDYCE5vbEsENKMW5Lw3M63F1cxTADLw8 6i+dr4O96sMqbvRnhYuCOjMHxIu3bhIlXXyrjahPTJLITNBfWv0eJ5yKEd/fsm+0 ArR7yqCybHRYm21CuWIaO1KLDLnsaoSaVZ2jvKHxCAEMeHFdPrSjt6LFsHbE5GML TweX7jQPtDiY0fEqIsSYjG4ZvfO5sywWBW7R7eOI72hcMH0wuenKUaxOY6YCBDOL iuZKSPevTEinWNNro7Wru9uZ0eGMrJoUc5x8sQXWc5Oqlu6fl4dYydfDJ58ZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUUHtBOUbls+PF9vZyyLvkCaVNNTIwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMjU0NDE5LTUzYmUtNGFkNC1i ZjdmLTI5Zjg5MTI1MjNkMC8wLzMyMzIzMzJlMzIzNTJlMzEzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADfGWwwDQYJKoZIhvcN AQELBQADggEBAE/lThukDvBCDpc7RPoBC4/LB9d3UsTzONd6Vp5j8nEGr1AwBMEd /HC6/udR4l/8yHGOzwTM9TuDi9YMIvddQXBUq3CiXz1ELlO7TtzaN94+9WefoN4P TcKfAA1jn+5+/m3IB1E8pBPzj63I3C5GqRuy8OuFA63H7ADiXvLsNwyLCU5Hun56 y+ACCHhmS+q3IBYnwJxcBUePxJx5aB4lFN1oLke5u/eFHmKhkZhR+mJ/bNAeu4WW Ftn6d6kpn6uqksRS66skuaG5Bf6QmkpiGXi3Ix+6F00fkkNoJ4umbzTfmC4xdRwY YNgkzgLHsgnbxPANywisRKu321dHBHBiZ3c= -----END CERTIFICATE-----Generated at Thu May 30 00:39:44 2024 by rpki-client on console-fra.rpki-client.org