$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234382e302f32332d3233203d3e203633353031.roa File: 36312e31342e3234382e302f32332d3233203d3e203633353031.roa (raw, json) Hash identifier: ImZsodsR/mskWyIVIQFOy461WrxzwPOck9ySi6RUQYY= Subject key identifier: 94:A0:5C:B7:99:8B:71:BE:34:D0:4A:25:41:E5:3E:EE:9E:49:EC:93 Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Certificate serial: 5A5FBA390F363AB94B35A032F55831AF4D2B8B21 Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234382e302f32332d3233203d3e203633353031.roa Signing time: Sun 23 Jul 2023 17:00:02 +0000 ROA not before: Sun 23 Jul 2023 16:55:02 +0000 ROA not after: Sun 21 Jul 2024 17:00:02 +0000 asID: 63501 IP address blocks: 61.14.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:5f:ba:39:0f:36:3a:b9:4b:35:a0:32:f5:58:31:af:4d:2b:8b:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Validity Not Before: Jul 23 16:55:02 2023 GMT Not After : Jul 21 17:00:02 2024 GMT Subject: CN=94A05CB7998B71BE34D04A2541E53EEE9E49EC93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:23:b2:a6:b5:79:16:c7:d9:5c:bb:43:23:22: c0:a3:f8:91:8c:c0:e8:64:96:48:c3:6b:8e:b6:67: 5b:32:8c:49:47:91:0b:76:fa:b4:31:05:e2:18:b0: 14:6e:e8:75:eb:db:bc:61:c5:4c:80:21:5f:90:35: 8b:71:9e:e4:eb:69:50:c5:c8:1e:e0:c6:79:93:8c: 86:40:b2:1e:68:7f:53:d9:e9:29:96:9e:81:53:d8: 7f:72:ed:15:2a:18:28:ed:b3:44:16:77:14:32:4e: f0:54:a1:cb:46:3c:72:3d:9e:53:51:51:8e:4c:1b: fd:5b:a3:34:7b:e5:32:51:62:94:b5:a9:76:52:e9: fb:87:50:ee:cc:ad:23:3f:b3:52:4a:9b:df:75:94: 9d:14:44:38:67:44:ab:d4:e1:58:67:38:3d:5f:33: b8:e6:f1:67:17:84:b8:56:c9:79:df:c5:6d:2d:43: 88:3a:c7:f0:33:cc:7f:66:08:2a:00:62:9a:89:4d: 47:5a:76:76:25:a7:dd:28:2d:a5:22:f1:2a:2a:6d: 7e:18:f7:93:d3:83:1e:08:dd:75:9c:fa:9a:51:d3: ff:7e:84:50:18:b8:ef:26:03:dc:53:80:c8:6c:51: f3:7b:6f:87:a7:a2:54:cd:a9:ee:99:a4:4b:88:4b: 1c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A0:5C:B7:99:8B:71:BE:34:D0:4A:25:41:E5:3E:EE:9E:49:EC:93 X509v3 Authority Key Identifier: keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234382e302f32332d3233203d3e203633353031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.14.248.0/23 Signature Algorithm: sha256WithRSAEncryption 29:30:83:c2:4b:da:2c:29:d7:d1:e1:a7:9c:cb:a3:1b:9d:64: 7b:7f:27:49:be:7b:70:00:1c:0a:f1:ff:7a:78:1b:5c:2b:76: 12:fe:b6:34:12:d2:93:2a:16:9f:d1:cd:5f:37:a1:34:7e:61: 39:0a:12:9c:5e:3d:b7:65:48:8a:76:13:b9:7a:22:36:80:3d: d7:e9:ef:a6:8a:63:7d:ce:03:e0:38:ad:23:2b:0c:6d:76:d9: c0:b1:92:f0:75:ec:d6:fe:a5:9b:cd:3c:1a:24:39:5e:20:ed: f4:9d:2a:27:77:90:59:94:5f:9e:2a:c7:12:cf:24:19:bb:ac: a3:71:90:d3:c2:ab:22:be:b5:9b:9d:a3:b8:55:4d:14:0a:5b: f2:50:d3:10:81:b7:b0:6a:e6:5f:5a:dc:2b:16:0b:a6:4f:ef: ad:73:f0:5f:05:8a:85:82:67:50:2c:73:6e:67:3f:e6:e1:4a: 03:81:b4:77:f3:a3:60:f7:3b:12:58:d1:86:dc:ee:19:a2:99: e0:70:11:f3:ff:d6:f3:92:a5:96:90:31:54:76:56:0d:8d:9f: 69:08:f5:52:b6:bc:4a:13:fb:01:6d:45:29:49:7f:a4:d1:bd: 83:30:b0:15:d3:0d:16:64:e4:93:40:4c:3e:37:94:b1:53:30: d0:75:99:46 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWl+6OQ82OrlLNaAy9Vgxr00riyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4 NTVBMThFMTAeFw0yMzA3MjMxNjU1MDJaFw0yNDA3MjExNzAwMDJaMDMxMTAvBgNV BAMTKDk0QTA1Q0I3OTk4QjcxQkUzNEQwNEEyNTQxRTUzRUVFOUU0OUVDOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHI7KmtXkWx9lcu0MjIsCj+JGM wOhklkjDa462Z1syjElHkQt2+rQxBeIYsBRu6HXr27xhxUyAIV+QNYtxnuTraVDF yB7gxnmTjIZAsh5of1PZ6SmWnoFT2H9y7RUqGCjts0QWdxQyTvBUoctGPHI9nlNR UY5MG/1bozR75TJRYpS1qXZS6fuHUO7MrSM/s1JKm991lJ0URDhnRKvU4VhnOD1f M7jm8WcXhLhWyXnfxW0tQ4g6x/AzzH9mCCoAYpqJTUdadnYlp90oLaUi8SoqbX4Y 95PTgx4I3XWc+ppR0/9+hFAYuO8mA9xTgMhsUfN7b4enolTNqe6ZpEuISxxBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUlKBct5mLcb400EolQeU+7p5J7JMwHwYDVR0j BBgwFoAURVaWqB9DT5o21m9FX0s8Q4VaGOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDkxOGIxNS1lNjNlLTRiMzgtYTA1Yy02NTBmYjQ5ZjA1OTQvMC80NTU2OTZBODFG NDM0RjlBMzZENjZGNDU1RjRCM0M0Mzg1NUExOEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4NTVB MThFMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkOTE4YjE1LWU2M2UtNGIzOC1h MDVjLTY1MGZiNDlmMDU5NC8wLzM2MzEyZTMxMzQyZTMyMzQzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM2MzMzNTMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE9DvgwDQYJKoZIhvcN AQELBQADggEBACkwg8JL2iwp19Hhp5zLoxudZHt/J0m+e3AAHArx/3p4G1wrdhL+ tjQS0pMqFp/RzV83oTR+YTkKEpxePbdlSIp2E7l6IjaAPdfp76aKY33OA+A4rSMr DG122cCxkvB17Nb+pZvNPBokOV4g7fSdKid3kFmUX54qxxLPJBm7rKNxkNPCqyK+ tZudo7hVTRQKW/JQ0xCBt7Bq5l9a3CsWC6ZP761z8F8FioWCZ1Asc25nP+bhSgOB tHfzo2D3OxJY0Ybc7hmimeBwEfP/1vOSpZaQMVR2Vg2Nn2kI9VK2vEoT+wFtRSlJ f6TRvYMwsBXTDRZk5JNATD43lLFTMNB1mUY= -----END CERTIFICATE-----Generated at Sat Jun 1 20:06:33 2024 by rpki-client on console-fra.rpki-client.org