$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/3131332e3231322e3136302e302f32312d3234203d3e203435323935.roa File: 3131332e3231322e3136302e302f32312d3234203d3e203435323935.roa (raw, json) Hash identifier: ugg+NO7/Ec+pAdET3tThsENFHo/crVtnOALQ5/CsdLI= Subject key identifier: D8:56:8B:24:B4:44:F2:E7:39:54:7D:06:B2:F3:92:A4:AF:13:3C:B6 Certificate issuer: /CN=F30F14F4AEB6630FF4E270B0729358AEBFA97733 Certificate serial: 447EF911E077E83C9DB67B266A856EB9E0252583 Authority key identifier: F3:0F:14:F4:AE:B6:63:0F:F4:E2:70:B0:72:93:58:AE:BF:A9:77:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F30F14F4AEB6630FF4E270B0729358AEBFA97733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/3131332e3231322e3136302e302f32312d3234203d3e203435323935.roa Signing time: Mon 31 Jul 2023 00:08:17 +0000 ROA not before: Mon 31 Jul 2023 00:03:17 +0000 ROA not after: Mon 29 Jul 2024 00:08:17 +0000 asID: 45295 IP address blocks: 113.212.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/F30F14F4AEB6630FF4E270B0729358AEBFA97733.crl rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/F30F14F4AEB6630FF4E270B0729358AEBFA97733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F30F14F4AEB6630FF4E270B0729358AEBFA97733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7e:f9:11:e0:77:e8:3c:9d:b6:7b:26:6a:85:6e:b9:e0:25:25:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F30F14F4AEB6630FF4E270B0729358AEBFA97733 Validity Not Before: Jul 31 00:03:17 2023 GMT Not After : Jul 29 00:08:17 2024 GMT Subject: CN=D8568B24B444F2E739547D06B2F392A4AF133CB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d4:36:c2:d5:6b:93:b3:a2:eb:94:f3:2a:bf: 00:a0:5e:7a:0a:b4:71:6f:14:66:c4:d9:7a:34:78: a2:f9:c9:2e:76:eb:7c:82:9c:a1:e8:65:8d:75:6b: a2:fc:9d:57:35:51:73:8c:ef:8a:8c:c6:c9:1a:ec: 46:11:92:8c:07:93:56:a5:e0:f9:34:05:33:ea:be: ed:89:db:ae:03:ae:4f:d4:99:dc:ce:c2:39:66:8d: fb:ce:c9:56:96:b4:1e:8e:79:80:d3:c6:69:84:dd: b5:0e:e8:50:a5:55:9d:e4:04:b1:1a:27:43:56:3f: 39:77:ab:dc:13:b3:1f:71:86:f6:d6:cb:8a:6f:38: 0a:61:99:a4:04:41:c2:88:86:72:20:f2:a2:9b:81: b6:c0:fb:e7:6d:e8:c7:38:56:f4:c3:ac:b3:c5:fa: cb:1d:d5:8c:3d:8d:5f:95:92:06:60:24:53:d4:ff: 6b:86:d2:14:f0:a2:ec:b6:4e:0a:c1:96:2f:26:e4: dc:82:ed:8f:34:6c:95:75:0b:27:39:7c:0d:a2:cb: 18:f5:07:02:3a:4e:68:16:57:24:b8:95:ec:de:8a: 0a:dc:5d:d4:1f:5d:e7:b9:88:23:1a:b8:55:c4:3f: 95:26:1f:4a:7f:33:10:25:34:0c:4e:7b:99:da:ec: a8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:56:8B:24:B4:44:F2:E7:39:54:7D:06:B2:F3:92:A4:AF:13:3C:B6 X509v3 Authority Key Identifier: keyid:F3:0F:14:F4:AE:B6:63:0F:F4:E2:70:B0:72:93:58:AE:BF:A9:77:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/F30F14F4AEB6630FF4E270B0729358AEBFA97733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F30F14F4AEB6630FF4E270B0729358AEBFA97733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f48a89-90c5-4f5a-8015-36f1196a71c8/0/3131332e3231322e3136302e302f32312d3234203d3e203435323935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 113.212.160.0/21 Signature Algorithm: sha256WithRSAEncryption 5d:95:1b:aa:70:0a:c6:19:c9:93:aa:e7:87:2e:e0:27:2c:8f: 25:62:5e:e9:93:1e:71:7c:5a:0a:7f:75:a8:ce:e7:7c:c3:3b: 7d:86:df:30:c6:6d:03:e4:c5:c8:c8:8d:0e:7e:db:a7:4c:e9: e9:ec:71:6f:47:6b:89:70:69:1d:74:9d:80:28:a0:58:3d:d2: f5:2e:cf:e8:5a:86:6f:38:22:98:2a:f7:0b:d4:36:16:16:d3: 82:4f:c0:72:d7:b3:71:c0:92:86:fe:ca:0e:35:e9:da:17:f2: 5e:9c:10:9d:8c:9d:73:5f:ce:2e:ef:25:72:21:ba:e6:53:0c: e0:55:02:67:80:51:30:40:4c:6b:bb:74:00:af:d0:54:ce:06: 1b:e4:41:a8:50:26:54:65:3e:4a:6b:dd:9d:42:91:10:d6:05: 1d:4b:c9:d5:09:65:85:17:96:90:a8:13:f9:95:47:b0:b2:ac: 6f:25:44:81:96:89:55:c4:f0:8c:dd:4b:c3:dd:3b:46:83:50: 37:ac:05:d1:af:6b:b1:3a:13:fb:11:63:75:dd:4f:0b:80:2b: 12:23:b8:6c:4a:4d:41:e8:76:b3:95:58:6e:88:d9:37:d7:a8: 9e:89:24:a7:5a:59:40:b6:4d:fd:b4:e2:b9:27:da:61:d5:76: 9f:d0:89:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURH75EeB36DydtnsmaoVuueAlJYMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMwRjE0RjRBRUI2NjMwRkY0RTI3MEIwNzI5MzU4QUVC RkE5NzczMzAeFw0yMzA3MzEwMDAzMTdaFw0yNDA3MjkwMDA4MTdaMDMxMTAvBgNV BAMTKEQ4NTY4QjI0QjQ0NEYyRTczOTU0N0QwNkIyRjM5MkE0QUYxMzNDQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm1DbC1WuTs6LrlPMqvwCgXnoK tHFvFGbE2Xo0eKL5yS5263yCnKHoZY11a6L8nVc1UXOM74qMxska7EYRkowHk1al 4Pk0BTPqvu2J264Drk/UmdzOwjlmjfvOyVaWtB6OeYDTxmmE3bUO6FClVZ3kBLEa J0NWPzl3q9wTsx9xhvbWy4pvOAphmaQEQcKIhnIg8qKbgbbA++dt6Mc4VvTDrLPF +ssd1Yw9jV+VkgZgJFPU/2uG0hTwouy2TgrBli8m5NyC7Y80bJV1Cyc5fA2iyxj1 BwI6TmgWVyS4lezeigrcXdQfXee5iCMauFXEP5UmH0p/MxAlNAxOe5na7KhDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2FaLJLRE8uc5VH0GsvOSpK8TPLYwHwYDVR0j BBgwFoAU8w8U9K62Yw/04nCwcpNYrr+pdzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGY0OGE4OS05MGM1LTRmNWEtODAxNS0zNmYxMTk2YTcxYzgvMC9GMzBGMTRGNEFF QjY2MzBGRjRFMjcwQjA3MjkzNThBRUJGQTk3NzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMwRjE0RjRBRUI2NjMwRkY0RTI3MEIwNzI5MzU4QUVCRkE5 NzczMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjQ4YTg5LTkwYzUtNGY1YS04 MDE1LTM2ZjExOTZhNzFjOC8wLzMxMzEzMzJlMzIzMTMyMmUzMTM2MzAyZTMwMmYz MjMxMmQzMjM0MjAzZDNlMjAzNDM1MzIzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDcdSgMA0GCSqG SIb3DQEBCwUAA4IBAQBdlRuqcArGGcmTqueHLuAnLI8lYl7pkx5xfFoKf3Wozud8 wzt9ht8wxm0D5MXIyI0OftunTOnp7HFvR2uJcGkddJ2AKKBYPdL1Ls/oWoZvOCKY KvcL1DYWFtOCT8By17NxwJKG/soONenaF/JenBCdjJ1zX84u7yVyIbrmUwzgVQJn gFEwQExru3QAr9BUzgYb5EGoUCZUZT5Ka92dQpEQ1gUdS8nVCWWFF5aQqBP5lUew sqxvJUSBlolVxPCM3UvD3TtGg1A3rAXRr2uxOhP7EWN13U8LgCsSI7hsSk1B6Haz lVhuiNk316ieiSSnWllAtk39tOK5J9ph1Xaf0Ins -----END CERTIFICATE-----Generated at Fri Jun 21 19:32:10 2024 by rpki-client on console-ams.rpki-client.org