$ rpki-client -vvf repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/3137352e3131312e39382e302f32342d3234203d3e20313338313230.roa File: 3137352e3131312e39382e302f32342d3234203d3e20313338313230.roa (raw, json) Hash identifier: eo71gmKqCBqCRLoV3lqgT8UgSrLYh4ed1jpMkdQ59/I= Subject key identifier: B5:64:4A:13:CA:B3:52:50:D3:47:E9:09:19:0D:2E:DC:CC:67:C4:33 Certificate issuer: /CN=8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D Certificate serial: 35ABE7BE2BE13FD0C611A11AA5F617608A566D56 Authority key identifier: 86:50:DE:F1:B1:C8:9D:70:1C:2B:B9:9C:A9:07:9E:ED:BC:CC:04:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/3137352e3131312e39382e302f32342d3234203d3e20313338313230.roa Signing time: Mon 27 Nov 2023 10:01:35 +0000 ROA not before: Mon 27 Nov 2023 09:56:35 +0000 ROA not after: Mon 25 Nov 2024 10:01:35 +0000 asID: 138120 IP address blocks: 175.111.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.crl rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ab:e7:be:2b:e1:3f:d0:c6:11:a1:1a:a5:f6:17:60:8a:56:6d:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D Validity Not Before: Nov 27 09:56:35 2023 GMT Not After : Nov 25 10:01:35 2024 GMT Subject: CN=B5644A13CAB35250D347E909190D2EDCCC67C433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:4f:8b:42:8e:3d:97:83:43:f8:54:9c:a5: b3:df:de:1a:83:29:fe:67:69:8b:40:70:72:19:a7: 68:e6:2a:17:21:a5:dd:6a:1f:3d:c7:87:e5:dc:c0: 99:ca:e5:cf:da:1f:85:0c:9a:90:ce:c1:19:cd:52: 1c:e1:dd:13:1f:26:98:48:0a:0f:f3:4d:40:53:73: d8:3c:ff:b4:a2:d2:77:5e:35:2a:87:fa:10:38:0c: 73:38:99:7c:87:1c:99:d1:79:12:a2:b9:bc:db:dc: 12:14:3a:f5:8a:36:9f:26:74:da:c9:ae:47:85:44: c9:da:72:6e:96:55:6d:62:0e:1c:1f:02:38:d4:0d: 01:51:e8:e0:5f:f7:6f:3c:6b:69:04:85:a8:b5:52: 6f:ca:07:6f:73:7e:06:4d:4f:31:2f:1e:74:17:40: a8:89:d8:c7:cb:a8:0d:93:7d:34:b3:da:98:c2:d3: b4:d5:a6:4c:b2:56:33:0f:9e:44:2f:be:52:86:5e: 2c:f0:55:fc:e6:a0:1c:5c:ae:a2:ea:e0:ab:66:1d: d5:8d:8a:59:e3:e0:da:f5:cf:f2:34:7e:d1:c7:75: e4:2d:a4:fa:57:b3:bd:4a:78:04:81:83:3e:9b:56: fd:8f:51:07:8f:da:4e:d2:5b:4d:9f:76:7e:1d:e2: a6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:64:4A:13:CA:B3:52:50:D3:47:E9:09:19:0D:2E:DC:CC:67:C4:33 X509v3 Authority Key Identifier: keyid:86:50:DE:F1:B1:C8:9D:70:1C:2B:B9:9C:A9:07:9E:ED:BC:CC:04:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8650DEF1B1C89D701C2BB99CA9079EEDBCCC046D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aba8cf65-d468-4309-9f30-9b9f26d9ce2d/0/3137352e3131312e39382e302f32342d3234203d3e20313338313230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.98.0/24 Signature Algorithm: sha256WithRSAEncryption 36:9c:e5:7e:3a:cd:27:ef:75:8c:79:ed:d6:56:0e:6b:cd:ba: 96:68:df:b1:cc:db:e4:5f:46:6a:ba:77:ff:aa:86:30:a1:e6: e9:3f:95:4e:4d:e4:f2:a7:60:9b:46:61:84:5c:bb:d1:c2:bc: d1:27:b9:ad:59:0f:c6:03:9c:7f:24:6f:52:4f:11:e7:85:41: 8f:4f:eb:ee:b7:ae:6f:bf:8b:60:b6:db:96:d0:a7:b9:77:62: 99:fa:ba:6d:ba:c0:e6:43:7f:cc:14:5a:82:cd:6a:64:f3:b8: c5:9a:ea:12:ae:dc:70:20:25:bc:e9:62:8b:41:c5:5e:f5:8e: d7:ff:64:4f:6e:69:24:2b:dd:53:a5:35:0a:2b:80:1a:6d:7f: 2b:89:37:b6:95:8b:48:e6:fd:a7:c4:aa:48:64:3b:b3:85:61: 70:08:b6:de:ea:e9:60:67:55:96:2a:2f:fb:ab:76:ca:4c:09: 36:56:61:aa:c7:17:26:48:50:f0:c5:70:9c:9b:63:35:a9:ea: 11:d0:27:c7:75:09:fa:55:52:dd:c5:5d:ca:00:e7:29:a2:2e: 7b:35:3f:0a:c7:bb:8b:bd:21:d8:35:8e:2e:9e:2e:45:af:5d: 4d:93:c6:e6:e5:c6:0f:c6:e6:08:26:28:8f:5c:36:4e:7b:77: 2b:2b:29:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNavnvivhP9DGEaEapfYXYIpWbVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1MERFRjFCMUM4OUQ3MDFDMkJCOTlDQTkwNzlFRURC Q0NDMDQ2RDAeFw0yMzExMjcwOTU2MzVaFw0yNDExMjUxMDAxMzVaMDMxMTAvBgNV BAMTKEI1NjQ0QTEzQ0FCMzUyNTBEMzQ3RTkwOTE5MEQyRURDQ0M2N0M0MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8uU+LQo49l4ND+FScpbPf3hqD Kf5naYtAcHIZp2jmKhchpd1qHz3Hh+XcwJnK5c/aH4UMmpDOwRnNUhzh3RMfJphI Cg/zTUBTc9g8/7Si0ndeNSqH+hA4DHM4mXyHHJnReRKiubzb3BIUOvWKNp8mdNrJ rkeFRMnacm6WVW1iDhwfAjjUDQFR6OBf9288a2kEhai1Um/KB29zfgZNTzEvHnQX QKiJ2MfLqA2TfTSz2pjC07TVpkyyVjMPnkQvvlKGXizwVfzmoBxcrqLq4KtmHdWN ilnj4Nr1z/I0ftHHdeQtpPpXs71KeASBgz6bVv2PUQeP2k7SW02fdn4d4qazAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtWRKE8qzUlDTR+kJGQ0u3MxnxDMwHwYDVR0j BBgwFoAUhlDe8bHInXAcK7mcqQee7bzMBG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YmE4Y2Y2NS1kNDY4LTQzMDktOWYzMC05YjlmMjZkOWNlMmQvMC84NjUwREVGMUIx Qzg5RDcwMUMyQkI5OUNBOTA3OUVFREJDQ0MwNDZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1MERFRjFCMUM4OUQ3MDFDMkJCOTlDQTkwNzlFRURCQ0ND MDQ2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiYThjZjY1LWQ0NjgtNDMwOS05 ZjMwLTliOWYyNmQ5Y2UyZC8wLzMxMzczNTJlMzEzMTMxMmUzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr29iMA0GCSqG SIb3DQEBCwUAA4IBAQA2nOV+Os0n73WMee3WVg5rzbqWaN+xzNvkX0Zqunf/qoYw oebpP5VOTeTyp2CbRmGEXLvRwrzRJ7mtWQ/GA5x/JG9STxHnhUGPT+vut65vv4tg ttuW0Ke5d2KZ+rptusDmQ3/MFFqCzWpk87jFmuoSrtxwICW86WKLQcVe9Y7X/2RP bmkkK91TpTUKK4AabX8riTe2lYtI5v2nxKpIZDuzhWFwCLbe6ulgZ1WWKi/7q3bK TAk2VmGqxxcmSFDwxXCcm2M1qeoR0CfHdQn6VVLdxV3KAOcpoi57NT8Kx7uLvSHY NY4uni5Fr11Nk8bm5cYPxuYIJiiPXDZOe3crKylE -----END CERTIFICATE-----Generated at Sat Jun 22 08:04:35 2024 by rpki-client on console-fra.rpki-client.org