$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137362e302f32312d3234203d3e203535363636.roa File: 34392e3132382e3137362e302f32312d3234203d3e203535363636.roa (raw, json) Hash identifier: zfi7T1QyBKhGSE1HLxcKPPk4VtqeuUsNqOFfB+s9va8= Subject key identifier: 4B:CE:72:20:C8:D3:FC:F1:F3:5C:95:16:F7:6F:17:84:DD:83:2B:8F Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 06097ABCF91C64D6D7AEDD2A10881126E09A47FE Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137362e302f32312d3234203d3e203535363636.roa Signing time: Mon 31 Jul 2023 00:14:35 +0000 ROA not before: Mon 31 Jul 2023 00:09:35 +0000 ROA not after: Mon 29 Jul 2024 00:14:35 +0000 asID: 55666 IP address blocks: 49.128.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:09:7a:bc:f9:1c:64:d6:d7:ae:dd:2a:10:88:11:26:e0:9a:47:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 31 00:09:35 2023 GMT Not After : Jul 29 00:14:35 2024 GMT Subject: CN=4BCE7220C8D3FCF1F35C9516F76F1784DD832B8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:45:aa:b6:d7:8e:fe:0e:18:84:11:37:2e:d8: f4:a1:24:45:30:1c:57:53:64:12:ed:db:e9:5f:d8: 9c:08:54:ea:5c:7a:64:ae:02:a2:e4:0f:25:a5:cd: 0a:08:47:74:b8:a7:d3:73:a4:c0:a0:b7:2b:94:25: d0:87:0e:c5:2e:48:39:73:0c:25:a3:e0:77:1f:4a: 9f:47:2c:79:01:43:93:1a:51:73:05:46:57:19:58: 2e:0d:77:6a:3f:4b:1b:99:73:55:11:92:74:72:83: 15:85:5c:c1:21:a2:f6:55:f9:7d:67:3d:76:8b:ae: e3:14:40:4a:79:4a:5c:60:57:48:de:75:86:12:e2: 90:0c:1e:b7:70:a0:3e:ff:99:1a:b6:47:df:6c:55: 3b:12:9f:45:21:8f:02:3e:8f:31:82:a2:ef:1b:53: 89:41:80:25:d0:44:16:d5:a0:9f:db:69:7e:e5:e3: c4:52:ca:ce:14:dd:fa:ca:6c:90:32:b3:58:6a:ae: 3c:3d:4c:2f:d4:ac:20:63:22:c2:38:17:e6:2e:f3: 5b:9a:86:fb:5e:1b:4b:c2:e4:fb:14:22:17:55:a2: a3:7e:41:aa:a0:c6:fc:e6:b4:ee:16:f5:80:5c:0d: fb:87:e4:8a:93:95:97:1d:a6:25:e6:25:53:12:2f: b4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CE:72:20:C8:D3:FC:F1:F3:5C:95:16:F7:6F:17:84:DD:83:2B:8F X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137362e302f32312d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.128.176.0/21 Signature Algorithm: sha256WithRSAEncryption 9c:47:80:30:d3:cd:dc:d3:de:80:9e:7f:09:1a:81:d2:b3:fd: b7:67:f7:3c:f1:70:9e:0d:db:f3:0d:17:6b:87:de:57:b3:d7: 41:0e:57:9a:7f:93:09:e1:09:54:ae:36:ab:15:60:e6:9d:f3: c5:ce:f2:24:27:72:8d:65:4f:35:4e:6d:4e:ff:a7:ee:ae:4f: 12:05:d4:7b:36:54:d4:52:11:2e:bc:c8:6d:04:bf:fd:13:37: 4a:4e:fe:ff:ad:6b:46:90:4c:52:35:29:a2:5f:68:83:a4:28: 09:e0:b7:43:ca:5c:dc:7d:29:c5:47:65:1c:8f:92:10:80:c7: b8:bb:19:10:22:1d:e4:9f:d7:5b:85:cb:21:cf:b1:3c:bc:9a: 11:a3:5d:49:9c:1a:98:a3:fe:4a:7f:8c:7d:3b:56:4b:f0:b0: 8a:1d:af:83:bb:c8:82:76:b6:42:e1:b8:ab:66:69:5c:27:05: d8:66:bf:3e:6a:d3:2d:1d:d6:cb:4b:54:74:3a:98:54:30:d4: f4:05:1f:1f:2b:77:df:5d:61:eb:ad:fb:4a:8f:ad:2c:c9:bc: fb:15:a4:b1:14:76:37:27:97:33:89:85:79:24:01:91:23:f2: e4:ed:f3:ec:cd:b7:2c:cd:ab:62:69:7a:90:d4:0a:6b:c9:8e: 21:bc:a1:ce -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBgl6vPkcZNbXrt0qEIgRJuCaR/4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yMzA3MzEwMDA5MzVaFw0yNDA3MjkwMDE0MzVaMDMxMTAvBgNV BAMTKDRCQ0U3MjIwQzhEM0ZDRjFGMzVDOTUxNkY3NkYxNzg0REQ4MzJCOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwRaq2147+DhiEETcu2PShJEUw HFdTZBLt2+lf2JwIVOpcemSuAqLkDyWlzQoIR3S4p9NzpMCgtyuUJdCHDsUuSDlz DCWj4HcfSp9HLHkBQ5MaUXMFRlcZWC4Nd2o/SxuZc1URknRygxWFXMEhovZV+X1n PXaLruMUQEp5SlxgV0jedYYS4pAMHrdwoD7/mRq2R99sVTsSn0UhjwI+jzGCou8b U4lBgCXQRBbVoJ/baX7l48RSys4U3frKbJAys1hqrjw9TC/UrCBjIsI4F+Yu81ua hvteG0vC5PsUIhdVoqN+QaqgxvzmtO4W9YBcDfuH5IqTlZcdpiXmJVMSL7RXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUS85yIMjT/PHzXJUW928XhN2DK48wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzM0MzkyZTMxMzIzODJlMzEzNzM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzGAsDANBgkqhkiG 9w0BAQsFAAOCAQEAnEeAMNPN3NPegJ5/CRqB0rP9t2f3PPFwng3b8w0Xa4feV7PX QQ5Xmn+TCeEJVK42qxVg5p3zxc7yJCdyjWVPNU5tTv+n7q5PEgXUezZU1FIRLrzI bQS//RM3Sk7+/61rRpBMUjUpol9og6QoCeC3Q8pc3H0pxUdlHI+SEIDHuLsZECId 5J/XW4XLIc+xPLyaEaNdSZwamKP+Sn+MfTtWS/Cwih2vg7vIgna2QuG4q2ZpXCcF 2Ga/PmrTLR3Wy0tUdDqYVDDU9AUfHyt3311h6637So+tLMm8+xWksRR2NyeXM4mF eSQBkSPy5O3z7M23LM2rYml6kNQKa8mOIbyhzg== -----END CERTIFICATE-----Generated at Fri May 3 04:35:14 2024 by rpki-client on console-ams.rpki-client.org