$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135312e302f32342d3234203d3e203538333937.roa File: 3131372e35332e3135312e302f32342d3234203d3e203538333937.roa (raw, json) Hash identifier: 8BrAITvHaerrYAu1VoqOOGMXo5eUwhwyhxfTRZCHQl4= Subject key identifier: FF:5B:5D:45:2C:62:E9:98:FA:CA:13:95:00:AB:C8:DC:23:72:B0:78 Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Certificate serial: 6EC09158E240368C1F3A6B25CC1D5B827E6237B8 Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135312e302f32342d3234203d3e203538333937.roa Signing time: Fri 08 Dec 2023 21:00:01 +0000 ROA not before: Fri 08 Dec 2023 20:55:01 +0000 ROA not after: Fri 06 Dec 2024 21:00:01 +0000 asID: 58397 IP address blocks: 117.53.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 23:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:c0:91:58:e2:40:36:8c:1f:3a:6b:25:cc:1d:5b:82:7e:62:37:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE Validity Not Before: Dec 8 20:55:01 2023 GMT Not After : Dec 6 21:00:01 2024 GMT Subject: CN=FF5B5D452C62E998FACA139500ABC8DC2372B078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:23:34:6d:81:f0:46:f1:01:b9:09:1c:52:8f: 46:04:1e:9e:e6:24:25:87:79:ce:cd:06:6b:99:2e: a0:a8:28:96:c3:0b:37:8e:5c:52:5e:19:cb:72:a2: 16:74:35:1b:95:9e:1a:c1:08:f0:53:a9:a3:70:b7: 23:87:a2:1b:fb:c4:8b:f9:4c:77:23:ce:f4:56:50: f9:d1:dd:53:ad:56:66:e3:9f:8a:c9:60:8a:b2:17: 18:bd:2a:5c:6f:2f:d7:29:4b:09:ff:fe:91:77:2e: d5:61:2a:4f:e2:7f:07:5e:86:de:9c:84:77:c0:4f: 63:05:d2:4f:b0:99:37:58:6d:4c:35:a7:be:bd:64: 47:54:c0:df:f4:28:05:56:5f:3e:88:be:1a:4f:ed: fe:95:3e:7b:4e:77:f5:38:11:b4:b9:d0:a6:83:cd: 73:29:f1:82:84:96:2b:bc:b6:67:67:35:4f:a2:94: 85:dd:ea:ab:f6:25:74:1c:85:c6:02:09:37:6f:93: 47:33:80:6f:78:20:95:6d:28:5c:2e:fe:14:79:c2: 0a:99:67:21:db:83:74:67:d0:35:81:f0:17:2d:17: d1:b1:7c:a8:bd:3c:39:6e:a6:b1:b7:9b:a8:65:61: 00:48:8a:02:d8:3a:af:b6:58:20:ce:ec:3b:bf:48: e3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5B:5D:45:2C:62:E9:98:FA:CA:13:95:00:AB:C8:DC:23:72:B0:78 X509v3 Authority Key Identifier: keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135312e302f32342d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.53.151.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:06:1a:9d:59:e5:eb:c0:bf:25:54:a9:a8:3d:d8:f5:6c:1b: c2:44:25:dc:ae:65:b7:04:99:88:ac:82:a7:56:30:27:14:dd: ee:8a:00:45:4f:04:92:e9:e4:6a:63:10:46:7a:80:38:f0:43: 6c:5b:bc:68:e4:50:bf:ca:1a:de:12:b4:94:cc:3c:f0:f6:2f: a4:ab:e4:a5:6a:79:65:f2:9a:ef:1d:5e:ec:78:7c:24:4a:72: 28:73:1e:d9:87:d0:08:d9:0d:f7:b6:63:8a:71:13:ef:74:c4: 28:0d:b8:94:46:4b:12:ba:a6:a8:2e:d2:22:7c:36:2d:7d:5a: 76:60:a6:ab:a0:05:5c:01:2e:05:3b:83:76:94:88:2f:9a:9f: 14:cf:54:b1:df:4e:4a:f9:e7:25:e2:7d:c3:65:7e:7a:bb:fd: 36:7b:fe:bd:a3:bb:3a:67:43:8c:58:cb:a0:6e:8b:3e:f4:35: 34:df:9a:b9:fe:ba:0f:48:8f:bb:d5:3a:68:8e:2b:85:a8:5a: 71:cf:ff:9c:2b:e0:23:bb:b2:a5:3b:df:77:3c:f5:39:3d:0b: 9b:48:24:9d:00:73:39:99:42:be:5b:8b:43:69:b9:a5:1a:32: 61:15:18:34:ee:23:21:9b:69:3c:27:ec:86:61:af:26:39:93: f0:df:bd:23 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbsCRWOJANowfOmslzB1bgn5iN7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1 Mzg5OThBRTAeFw0yMzEyMDgyMDU1MDFaFw0yNDEyMDYyMTAwMDFaMDMxMTAvBgNV BAMTKEZGNUI1RDQ1MkM2MkU5OThGQUNBMTM5NTAwQUJDOERDMjM3MkIwNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChIzRtgfBG8QG5CRxSj0YEHp7m JCWHec7NBmuZLqCoKJbDCzeOXFJeGctyohZ0NRuVnhrBCPBTqaNwtyOHohv7xIv5 THcjzvRWUPnR3VOtVmbjn4rJYIqyFxi9KlxvL9cpSwn//pF3LtVhKk/ifwdeht6c hHfAT2MF0k+wmTdYbUw1p769ZEdUwN/0KAVWXz6IvhpP7f6VPntOd/U4EbS50KaD zXMp8YKEliu8tmdnNU+ilIXd6qv2JXQchcYCCTdvk0czgG94IJVtKFwu/hR5wgqZ ZyHbg3Rn0DWB8BctF9GxfKi9PDluprG3m6hlYQBIigLYOq+2WCDO7Du/SOO1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/1tdRSxi6Zj6yhOVAKvI3CNysHgwHwYDVR0j BBgwFoAUxpAFu3ukaKEKMs5E6cTOeFOJmK4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiYTQ1ZS1mNWRhLTQ1ODEtYmZlNS1jMTYxNmMzMGVmYWIvMC9DNjkwMDVCQjdC QTQ2OEExMEEzMkNFNDRFOUM0Q0U3ODUzODk5OEFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzY5MDA1QkI3QkE0NjhBMTBBMzJDRTQ0RTlDNENFNzg1Mzg5 OThBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJhNDVlLWY1ZGEtNDU4MS1i ZmU1LWMxNjE2YzMwZWZhYi8wLzMxMzEzNzJlMzUzMzJlMzEzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHU1lzANBgkqhkiG 9w0BAQsFAAOCAQEAjgYanVnl68C/JVSpqD3Y9WwbwkQl3K5ltwSZiKyCp1YwJxTd 7ooARU8EkunkamMQRnqAOPBDbFu8aORQv8oa3hK0lMw88PYvpKvkpWp5ZfKa7x1e 7Hh8JEpyKHMe2YfQCNkN97ZjinET73TEKA24lEZLErqmqC7SInw2LX1admCmq6AF XAEuBTuDdpSIL5qfFM9Usd9OSvnnJeJ9w2V+erv9Nnv+vaO7OmdDjFjLoG6LPvQ1 NN+auf66D0iPu9U6aI4rhahacc//nCvgI7uypTvfdzz1OT0Lm0gknQBzOZlCvluL Q2m5pRoyYRUYNO4jIZtpPCfshmGvJjmT8N+9Iw== -----END CERTIFICATE-----Generated at Thu May 2 17:16:34 2024 by rpki-client on console-ams.rpki-client.org