$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32312d3234203d3e203535363636.roa File: 3131392e322e34382e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: lC6l8S1sYS1P+zZduw6MVuvts85hGpemtGX3NpT2X6k= Subject key identifier: 4C:44:65:AA:B0:02:33:6C:2E:66:90:FC:5F:8E:6D:12:B2:0D:6E:9D Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 59591DA808BCC5A8F541BDFE2CAC211CB6E18167 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32312d3234203d3e203535363636.roa Signing time: Mon 31 Jul 2023 00:14:34 +0000 ROA not before: Mon 31 Jul 2023 00:09:34 +0000 ROA not after: Mon 29 Jul 2024 00:14:34 +0000 asID: 55666 IP address blocks: 119.2.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:59:1d:a8:08:bc:c5:a8:f5:41:bd:fe:2c:ac:21:1c:b6:e1:81:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 31 00:09:34 2023 GMT Not After : Jul 29 00:14:34 2024 GMT Subject: CN=4C4465AAB002336C2E6690FC5F8E6D12B20D6E9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9a:36:a0:70:cf:2f:c0:af:e8:f4:4f:44:71: 08:27:8e:ae:e8:2b:45:db:2d:dc:ce:4c:f3:d9:77: 1a:65:08:de:4d:81:eb:5e:5f:7d:a6:ef:d3:90:c4: 13:fe:68:ea:5d:44:78:f1:0c:a5:41:cc:a2:36:82: f5:b4:f2:4a:66:53:a0:da:4b:bf:89:7e:dc:ff:3b: 18:55:6d:3e:4b:2b:bb:a2:21:3e:c4:cc:a7:a3:f6: a3:b7:85:fb:24:31:59:a7:06:a5:18:53:47:33:1c: 87:ff:8f:47:cc:d9:94:a2:9b:e1:c4:63:cd:89:20: 29:9e:4f:bd:f6:9a:ee:8f:2f:5b:b6:f0:fd:1e:1b: 11:3c:97:21:95:d9:9b:45:18:e4:b9:c4:38:9c:75: 61:8d:ec:75:32:b0:65:10:c0:80:c2:90:fa:95:d6: 07:9e:1a:bc:f8:f0:12:17:84:f4:90:12:d1:bd:7c: d1:74:54:f5:e6:fc:60:e7:6f:b7:55:b9:8e:ce:9a: 56:7d:2f:71:f1:27:43:28:3c:40:d4:78:52:98:37: 2a:da:13:19:71:94:c6:f5:11:f5:76:60:b9:64:17: c4:ce:11:b7:03:16:93:f0:5e:f3:69:2d:be:9f:71: 2a:e7:5e:33:8f:f0:0c:22:88:03:9d:7b:4a:ca:33: 04:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:44:65:AA:B0:02:33:6C:2E:66:90:FC:5F:8E:6D:12:B2:0D:6E:9D X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.48.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:3a:13:28:c3:b3:02:b8:5d:c6:c7:89:b3:58:39:61:31:90: 96:15:47:98:d7:47:7e:5f:40:d7:72:82:8c:33:6f:d5:8a:f2: cd:ab:b8:b1:1c:1f:07:18:52:95:6e:39:8b:46:89:6e:24:34: 6a:1e:17:8a:cd:ef:e5:a8:ba:46:07:6d:0c:51:4f:9a:15:09: 0b:d5:f4:b6:f1:75:f1:81:2f:06:43:b2:69:8c:31:dd:d2:15: eb:40:37:c3:f1:df:8a:43:08:42:5c:2f:6d:f0:74:12:22:61: 6a:e3:b9:cc:62:f3:d1:ca:17:61:5a:75:34:65:b3:0f:3b:30: eb:bf:5b:fb:61:3c:10:15:74:f5:59:02:35:69:ff:31:c7:1c: 42:8d:fd:b6:71:2b:ed:78:03:a6:fa:8c:52:c4:76:68:0b:fc: 71:9d:8d:d2:49:61:a1:c1:94:a5:62:7c:84:b5:47:85:08:20: f5:92:73:f0:ce:ba:cb:41:e6:b9:07:95:7c:90:fd:df:8c:bb: e5:2a:dc:65:60:6e:2d:bc:c9:25:5b:9d:28:15:4c:80:a0:3a: 98:14:48:d4:06:84:b2:d5:dc:f3:30:d9:02:f6:e5:82:6b:da: e6:1e:86:35:06:49:fe:6d:39:a1:4c:cc:d0:f4:53:60:02:60: 97:ac:bd:97 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUWVkdqAi8xaj1Qb3+LKwhHLbhgWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yMzA3MzEwMDA5MzRaFw0yNDA3MjkwMDE0MzRaMDMxMTAvBgNV BAMTKDRDNDQ2NUFBQjAwMjMzNkMyRTY2OTBGQzVGOEU2RDEyQjIwRDZFOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWmjagcM8vwK/o9E9EcQgnjq7o K0XbLdzOTPPZdxplCN5NgeteX32m79OQxBP+aOpdRHjxDKVBzKI2gvW08kpmU6Da S7+Jftz/OxhVbT5LK7uiIT7EzKej9qO3hfskMVmnBqUYU0czHIf/j0fM2ZSim+HE Y82JICmeT732mu6PL1u28P0eGxE8lyGV2ZtFGOS5xDicdWGN7HUysGUQwIDCkPqV 1geeGrz48BIXhPSQEtG9fNF0VPXm/GDnb7dVuY7OmlZ9L3HxJ0MoPEDUeFKYNyra ExlxlMb1EfV2YLlkF8TOEbcDFpPwXvNpLb6fcSrnXjOP8AwiiAOde0rKMwSrAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUTERlqrACM2wuZpD8X45tErINbp0wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWVhN2ExMTUtYjhiOC00OTBiLTgz MjAtYzllNTlhMTAwM2RkLzAvMzEzMTM5MmUzMjJlMzQzODJlMzAyZjMyMzEyZDMy MzQyMDNkM2UyMDM1MzUzNjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN3AjAwDQYJKoZIhvcNAQEL BQADggEBAB86EyjDswK4XcbHibNYOWExkJYVR5jXR35fQNdygowzb9WK8s2ruLEc HwcYUpVuOYtGiW4kNGoeF4rN7+WoukYHbQxRT5oVCQvV9LbxdfGBLwZDsmmMMd3S FetAN8Px34pDCEJcL23wdBIiYWrjucxi89HKF2FadTRlsw87MOu/W/thPBAVdPVZ AjVp/zHHHEKN/bZxK+14A6b6jFLEdmgL/HGdjdJJYaHBlKVifIS1R4UIIPWSc/DO ustB5rkHlXyQ/d+Mu+Uq3GVgbi28ySVbnSgVTICgOpgUSNQGhLLV3PMw2QL25YJr 2uYehjUGSf5tOaFMzND0U2ACYJesvZc= -----END CERTIFICATE-----Generated at Fri May 3 04:35:14 2024 by rpki-client on console-ams.rpki-client.org