$ rpki-client -vvf repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/3131352e3138372e33302e302f32332d3233203d3e203538333639.roa File: 3131352e3138372e33302e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: aGxVxCR6im4qQVjJVhCruVD5Ks5PiIaxzq+O0Yb701U= Subject key identifier: 3B:52:A8:01:82:49:B7:5D:44:0B:9D:BF:55:61:BF:F3:6D:5D:E2:FF Certificate issuer: /CN=46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5 Certificate serial: 67D998D0CA1B31397CA2436886CEF1F724AD008F Authority key identifier: 46:A0:85:9F:8C:7C:C2:C2:E7:D5:CB:C8:E4:36:34:F8:A3:DD:AA:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/3131352e3138372e33302e302f32332d3233203d3e203538333639.roa Signing time: Tue 21 Nov 2023 08:33:48 +0000 ROA not before: Tue 21 Nov 2023 08:28:48 +0000 ROA not after: Tue 19 Nov 2024 08:33:48 +0000 asID: 58369 IP address blocks: 115.187.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.crl rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 20:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d9:98:d0:ca:1b:31:39:7c:a2:43:68:86:ce:f1:f7:24:ad:00:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5 Validity Not Before: Nov 21 08:28:48 2023 GMT Not After : Nov 19 08:33:48 2024 GMT Subject: CN=3B52A8018249B75D440B9DBF5561BFF36D5DE2FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6d:2d:3b:dd:4f:da:7f:23:6b:f3:7d:f8:4f: 6c:a3:83:d9:e1:25:ec:65:b8:ad:51:ed:d6:d9:25: d5:05:42:e8:bc:28:b7:7d:17:f5:6c:88:fa:72:6a: bd:b0:2a:b2:14:c5:26:1e:6d:95:c6:79:55:d3:db: 07:a5:f4:d4:fa:50:b9:85:85:98:90:a1:fc:76:83: 22:b3:00:37:91:38:82:0f:8e:15:cb:c8:75:74:90: 69:86:38:26:51:d9:05:1f:b1:86:85:8a:29:2c:22: 77:32:51:62:a9:27:cd:2a:d8:e0:03:f2:48:2b:5d: 94:55:91:95:96:f8:d0:92:c4:d6:1a:d6:d7:0c:e7: ff:31:ea:87:f3:57:9b:4b:51:7f:d8:e4:15:d5:55: d3:49:90:a2:11:2d:89:c4:6d:6e:05:40:55:0a:55: 8b:b7:72:ea:85:bd:97:d7:82:31:8b:3f:2c:d1:ee: 82:b0:b7:7e:a5:e5:b3:49:29:37:9a:ce:6f:b8:e9: 19:f7:b4:3b:d4:df:57:93:a4:01:31:a8:4e:85:6d: 31:44:22:30:b9:64:95:ce:d7:cb:3e:31:5a:6f:62: 9c:7a:cb:cd:62:89:4b:7e:8d:da:a7:2e:08:d8:86: 25:c2:b0:4a:d6:ee:19:82:65:9f:97:52:26:b6:9a: b2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:52:A8:01:82:49:B7:5D:44:0B:9D:BF:55:61:BF:F3:6D:5D:E2:FF X509v3 Authority Key Identifier: keyid:46:A0:85:9F:8C:7C:C2:C2:E7:D5:CB:C8:E4:36:34:F8:A3:DD:AA:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46A0859F8C7CC2C2E7D5CBC8E43634F8A3DDAAF5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d05409ed-9f40-4f5a-b5ee-a088da2f5978/0/3131352e3138372e33302e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.187.30.0/23 Signature Algorithm: sha256WithRSAEncryption 78:ab:f3:a5:af:d4:6f:1f:1a:ae:31:5a:b8:46:4f:61:83:4c: 1c:5e:64:c2:5b:7f:a3:21:dc:58:09:b3:04:20:3e:59:5b:6d: c4:02:a6:c5:cc:4a:cc:e3:ab:d8:ea:e9:39:a3:3b:b2:db:70: 50:02:d9:a9:15:a0:35:05:92:63:3f:be:9f:99:78:12:8a:94: b6:7a:81:61:78:6c:2a:1b:1e:e8:c0:95:ec:3c:0d:cc:1f:1a: 68:9b:d8:ce:81:98:9e:a5:01:97:73:17:75:2a:6d:b1:35:18: 45:8b:93:61:c6:15:58:1b:d8:7d:08:9f:dc:29:1c:2f:1d:43: 56:5d:41:7d:a6:5f:8d:e9:2f:7a:ce:3e:5c:c8:fd:37:dd:9e: 71:df:26:fd:2b:a8:4f:14:00:ba:0e:33:56:96:43:07:0f:ae: 14:7a:81:6a:f7:0d:57:8c:96:53:13:f9:aa:fd:09:d3:58:b0: d7:82:14:16:a6:c5:9d:f3:01:89:fc:b5:81:96:2c:a2:58:8a: a6:f0:87:b8:20:22:8e:0b:bc:f2:5d:b6:61:6a:d7:8b:b1:01: b0:0b:41:26:67:78:8f:ba:84:5f:2d:5a:fc:d9:e1:da:ff:42: 9b:af:5c:16:be:db:6f:4c:92:a5:59:93:35:bc:8d:67:20:74: 92:c9:9f:8e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZ9mY0MobMTl8okNohs7x9yStAI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDZBMDg1OUY4QzdDQzJDMkU3RDVDQkM4RTQzNjM0RjhB M0REQUFGNTAeFw0yMzExMjEwODI4NDhaFw0yNDExMTkwODMzNDhaMDMxMTAvBgNV BAMTKDNCNTJBODAxODI0OUI3NUQ0NDBCOURCRjU1NjFCRkYzNkQ1REUyRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxbS073U/afyNr8334T2yjg9nh JexluK1R7dbZJdUFQui8KLd9F/VsiPpyar2wKrIUxSYebZXGeVXT2wel9NT6ULmF hZiQofx2gyKzADeROIIPjhXLyHV0kGmGOCZR2QUfsYaFiiksIncyUWKpJ80q2OAD 8kgrXZRVkZWW+NCSxNYa1tcM5/8x6ofzV5tLUX/Y5BXVVdNJkKIRLYnEbW4FQFUK VYu3cuqFvZfXgjGLPyzR7oKwt36l5bNJKTeazm+46Rn3tDvU31eTpAExqE6FbTFE IjC5ZJXO18s+MVpvYpx6y81iiUt+jdqnLgjYhiXCsErW7hmCZZ+XUia2mrLdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUO1KoAYJJt11EC52/VWG/821d4v8wHwYDVR0j BBgwFoAURqCFn4x8wsLn1cvI5DY0+KPdqvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDU0MDllZC05ZjQwLTRmNWEtYjVlZS1hMDg4ZGEyZjU5NzgvMC80NkEwODU5RjhD N0NDMkMyRTdENUNCQzhFNDM2MzRGOEEzRERBQUY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDZBMDg1OUY4QzdDQzJDMkU3RDVDQkM4RTQzNjM0RjhBM0RE QUFGNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNTQwOWVkLTlmNDAtNGY1YS1i NWVlLWEwODhkYTJmNTk3OC8wLzMxMzEzNTJlMzEzODM3MmUzMzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXO7HjANBgkqhkiG 9w0BAQsFAAOCAQEAeKvzpa/Ubx8arjFauEZPYYNMHF5kwlt/oyHcWAmzBCA+WVtt xAKmxcxKzOOr2OrpOaM7sttwUALZqRWgNQWSYz++n5l4EoqUtnqBYXhsKhse6MCV 7DwNzB8aaJvYzoGYnqUBl3MXdSptsTUYRYuTYcYVWBvYfQif3CkcLx1DVl1BfaZf jekves4+XMj9N92ecd8m/SuoTxQAug4zVpZDBw+uFHqBavcNV4yWUxP5qv0J01iw 14IUFqbFnfMBify1gZYsoliKpvCHuCAijgu88l22YWrXi7EBsAtBJmd4j7qEXy1a /Nnh2v9Cm69cFr7bb0ySpVmTNbyNZyB0ksmfjg== -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:20 2024 by rpki-client on console-ams.rpki-client.org