$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3132302e38392e39302e302f32332d3234203d3e20313335343737.roa File: 3132302e38392e39302e302f32332d3234203d3e20313335343737.roa (raw, json) Hash identifier: 8eOljULzhqzzEg8OQXx1NB3zAKX2+oYnrHWvOvQE4AM= Subject key identifier: 46:39:48:6E:C6:CB:63:40:07:C5:63:DA:D6:A1:D8:92:4D:3A:C2:BC Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 0A50B2A6269F137C966133FDF8E74B770359EE6B Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3132302e38392e39302e302f32332d3234203d3e20313335343737.roa Signing time: Thu 05 Oct 2023 17:00:01 +0000 ROA not before: Thu 05 Oct 2023 16:55:01 +0000 ROA not after: Thu 03 Oct 2024 17:00:01 +0000 asID: 135477 IP address blocks: 120.89.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:50:b2:a6:26:9f:13:7c:96:61:33:fd:f8:e7:4b:77:03:59:ee:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Oct 5 16:55:01 2023 GMT Not After : Oct 3 17:00:01 2024 GMT Subject: CN=4639486EC6CB634007C563DAD6A1D8924D3AC2BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ff:15:6b:06:f6:08:75:5c:b2:8e:e8:69:c3: ab:ae:6c:ec:f2:85:6c:ae:c0:be:e3:a1:85:fa:b8: b4:27:24:f4:1a:3f:ac:18:12:d0:a6:04:a6:d2:cc: 2d:ee:1a:a3:ea:40:db:d6:2c:73:08:15:54:13:e1: a6:c2:7d:07:71:c3:17:1a:e4:55:9b:25:df:8d:b0: 70:5a:ba:c5:dc:b5:78:09:1b:35:f8:03:0e:0c:9e: f9:38:47:4c:32:ad:09:15:3d:ef:ab:fa:1c:fb:27: 23:3d:0d:78:36:25:d3:ec:19:8a:b0:aa:3c:de:d1: 77:19:d7:ab:a9:5d:6f:5b:a4:b4:f8:b9:d6:6c:bb: bc:71:40:8d:44:2c:57:b0:88:dc:bf:64:d4:30:de: da:54:0b:60:46:e4:8c:5b:c2:c5:85:63:5d:fa:50: 26:8d:b0:21:ad:18:ee:d5:b5:6c:99:e8:fd:1d:49: 77:c1:d7:9e:37:77:ed:63:3a:8d:9b:c7:fd:5f:f8: 66:4b:4f:57:a5:50:80:7d:e5:d8:d9:b4:46:71:9e: eb:59:9c:1a:d2:28:e5:20:dc:22:83:63:56:e3:36: 4d:43:6b:58:40:c5:98:4b:df:fa:5d:00:aa:ea:21: 4c:f7:92:c1:c7:ac:2b:00:a0:26:74:08:e1:5e:69: 7e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:39:48:6E:C6:CB:63:40:07:C5:63:DA:D6:A1:D8:92:4D:3A:C2:BC X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3132302e38392e39302e302f32332d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.89.90.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:bc:5c:bd:6a:2c:b7:8e:15:81:a0:8c:9e:76:81:24:fe:4f: 84:e5:47:88:84:e2:ca:f8:43:58:77:73:39:77:5f:8e:c2:75: 20:37:e1:61:90:44:da:88:8c:b7:70:57:c3:b8:17:eb:44:e4: 06:bd:7d:25:ca:cb:ce:72:1a:fc:a3:b4:3f:4e:60:af:d8:48: 9b:ac:e3:bf:d5:17:6e:94:58:78:7e:6e:36:7b:98:9c:a4:73: 58:fd:01:dc:f1:3f:87:70:fc:77:f8:8a:a9:39:df:9b:cc:1f: 19:e4:ce:03:87:9b:57:ed:c4:00:22:38:b7:fe:49:31:1e:2f: ec:c6:e4:97:dd:04:a5:aa:d3:da:70:76:71:20:02:9b:97:fe: 0c:da:5b:a4:78:5e:01:53:c3:8c:16:77:07:9d:e1:d0:80:00: 39:25:00:04:2b:5a:60:ea:51:d3:5a:20:59:47:95:c3:32:42: 4b:51:7a:36:95:49:2b:5f:3b:6b:21:e7:10:d7:66:98:ca:23: 79:b9:85:30:a2:df:db:ee:84:b4:13:a6:62:1f:68:c3:8d:f4: f0:08:20:cd:11:d9:e3:1e:82:b3:17:91:f2:6d:01:dd:ab:ce: c2:31:06:7c:44:5e:5b:06:fd:7c:f8:8e:42:a6:24:69:3f:88: 14:84:e8:d0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUClCypiafE3yWYTP9+OdLdwNZ7mswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yMzEwMDUxNjU1MDFaFw0yNDEwMDMxNzAwMDFaMDMxMTAvBgNV BAMTKDQ2Mzk0ODZFQzZDQjYzNDAwN0M1NjNEQUQ2QTFEODkyNEQzQUMyQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+/xVrBvYIdVyyjuhpw6uubOzy hWyuwL7joYX6uLQnJPQaP6wYEtCmBKbSzC3uGqPqQNvWLHMIFVQT4abCfQdxwxca 5FWbJd+NsHBausXctXgJGzX4Aw4Mnvk4R0wyrQkVPe+r+hz7JyM9DXg2JdPsGYqw qjze0XcZ16upXW9bpLT4udZsu7xxQI1ELFewiNy/ZNQw3tpUC2BG5IxbwsWFY136 UCaNsCGtGO7VtWyZ6P0dSXfB1543d+1jOo2bx/1f+GZLT1elUIB95djZtEZxnutZ nBrSKOUg3CKDY1bjNk1Da1hAxZhL3/pdAKrqIUz3ksHHrCsAoCZ0COFeaX5PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURjlIbsbLY0AHxWPa1qHYkk06wrwwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzIzMDJlMzgzOTJlMzkzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXhZWjANBgkqhkiG 9w0BAQsFAAOCAQEAj7xcvWost44VgaCMnnaBJP5PhOVHiITiyvhDWHdzOXdfjsJ1 IDfhYZBE2oiMt3BXw7gX60TkBr19JcrLznIa/KO0P05gr9hIm6zjv9UXbpRYeH5u NnuYnKRzWP0B3PE/h3D8d/iKqTnfm8wfGeTOA4ebV+3EACI4t/5JMR4v7Mbkl90E parT2nB2cSACm5f+DNpbpHheAVPDjBZ3B53h0IAAOSUABCtaYOpR01ogWUeVwzJC S1F6NpVJK187ayHnENdmmMojebmFMKLf2+6EtBOmYh9ow4308AggzRHZ4x6CsxeR 8m0B3avOwjEGfEReWwb9fPiOQqYkaT+IFITo0A== -----END CERTIFICATE-----Generated at Sat Jun 22 18:39:15 2024 by rpki-client on console-fra.rpki-client.org