$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230302e302f32332d3233203d3e203338343936.roa File: 3131362e36362e3230302e302f32332d3233203d3e203338343936.roa (raw, json) Hash identifier: 2wXlrZiE5CIHuSJMYeFu3y8FrzP46MTa5eU1IfE3CpA= Subject key identifier: AF:24:A0:C3:C6:5D:86:64:55:2E:91:A8:95:14:EB:43:68:C5:96:87 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 17A4EBBCDE2AE426640DB722419396A6D60A81EB Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230302e302f32332d3233203d3e203338343936.roa Signing time: Thu 21 Sep 2023 11:00:01 +0000 ROA not before: Thu 21 Sep 2023 10:55:01 +0000 ROA not after: Thu 19 Sep 2024 11:00:01 +0000 asID: 38496 IP address blocks: 116.66.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:a4:eb:bc:de:2a:e4:26:64:0d:b7:22:41:93:96:a6:d6:0a:81:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Sep 21 10:55:01 2023 GMT Not After : Sep 19 11:00:01 2024 GMT Subject: CN=AF24A0C3C65D8664552E91A89514EB4368C59687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1a:91:43:d8:c7:fa:af:14:28:69:0b:c2:03: 15:c1:c5:03:6b:f2:37:21:9e:63:da:c4:ed:56:2d: 1b:2c:e4:ce:a0:78:85:d0:68:b7:1a:1b:ae:cf:28: af:dd:b5:23:a7:f6:40:df:26:0c:15:e6:bd:9c:07: 49:99:8f:1c:e1:81:de:d0:e4:b4:f3:a8:26:fe:63: d3:bb:3c:19:e9:cf:13:ac:2e:78:17:63:d0:45:dd: 4d:aa:f0:70:55:08:23:4d:04:47:21:dd:8d:00:81: 8a:94:ed:fb:1e:0c:38:7b:e2:7d:9c:e4:32:3c:e3: 36:d8:55:c5:9a:7b:a2:cb:59:54:42:32:98:36:b5: ed:55:58:93:3c:68:39:8e:51:ff:7d:79:e4:1c:d8: e8:91:ac:02:6a:ca:87:44:46:82:31:96:3c:4f:7d: 51:84:17:54:bf:60:3f:c4:58:04:87:4f:97:6f:21: 86:ba:15:30:df:b4:29:5e:21:0a:44:d1:c6:1e:5e: 85:3c:31:48:1a:ff:aa:e4:07:2e:e5:40:f4:18:07: 42:63:3e:ab:94:87:92:a2:c4:d6:d9:05:03:84:39: 91:59:fe:95:91:f6:a7:9f:6a:cb:cd:df:7b:59:c4: e8:f5:47:b6:50:bd:f9:22:16:6f:f9:7d:66:17:85: e1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:24:A0:C3:C6:5D:86:64:55:2E:91:A8:95:14:EB:43:68:C5:96:87 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230302e302f32332d3233203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.66.200.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:bb:0c:62:4f:4f:7a:95:b7:f5:68:52:bd:d3:28:40:5e:62: e2:0e:0d:40:b6:d9:68:72:9d:57:dd:81:97:9b:6d:6e:3d:21: 1d:23:ec:d7:6e:c0:02:15:8b:9b:57:1f:fb:0a:16:70:68:d3: ac:49:e7:d8:1c:f3:6c:35:43:d1:cc:e9:2c:4e:6e:77:c6:2c: ae:6a:9a:65:c7:9e:f6:f7:28:db:f3:be:1e:cf:f1:b9:b0:57: 4c:d3:f9:e7:cf:19:47:41:76:4a:b7:3e:6e:03:b4:15:95:e7: 39:eb:e7:13:86:14:a1:7d:24:3c:b1:b4:00:d8:40:2d:ce:3f: ff:6c:50:67:c3:41:4b:8b:ba:28:1c:3a:c1:ab:e5:97:99:19: af:23:f2:b7:58:3e:d0:07:96:1e:66:d6:2f:4d:eb:a9:b5:cd: 1f:6c:f8:a6:70:d8:42:d4:f5:f8:15:c4:54:38:60:b6:27:c2: 58:00:d4:12:2b:1f:54:8c:44:72:43:3f:33:f7:6a:dc:61:b8: d0:e4:ab:45:0d:ab:39:87:76:8d:19:80:8e:97:13:23:1b:26: 90:79:eb:db:31:4b:12:a2:f7:cc:4e:bb:d3:61:27:f7:15:3e: 44:b6:b7:37:c7:2d:bd:09:b8:5a:fc:80:6f:12:6c:df:68:a5: 0a:df:af:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF6TrvN4q5CZkDbciQZOWptYKgeswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yMzA5MjExMDU1MDFaFw0yNDA5MTkxMTAwMDFaMDMxMTAvBgNV BAMTKEFGMjRBMEMzQzY1RDg2NjQ1NTJFOTFBODk1MTRFQjQzNjhDNTk2ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3GpFD2Mf6rxQoaQvCAxXBxQNr 8jchnmPaxO1WLRss5M6geIXQaLcaG67PKK/dtSOn9kDfJgwV5r2cB0mZjxzhgd7Q 5LTzqCb+Y9O7PBnpzxOsLngXY9BF3U2q8HBVCCNNBEch3Y0AgYqU7fseDDh74n2c 5DI84zbYVcWae6LLWVRCMpg2te1VWJM8aDmOUf99eeQc2OiRrAJqyodERoIxljxP fVGEF1S/YD/EWASHT5dvIYa6FTDftCleIQpE0cYeXoU8MUga/6rkBy7lQPQYB0Jj PquUh5KixNbZBQOEOZFZ/pWR9qefasvN33tZxOj1R7ZQvfkiFm/5fWYXheEpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrySgw8ZdhmRVLpGolRTrQ2jFlocwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNjJlMzYzNjJlMzIzMDMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXRCyDANBgkqhkiG 9w0BAQsFAAOCAQEAD7sMYk9PepW39WhSvdMoQF5i4g4NQLbZaHKdV92Bl5ttbj0h HSPs127AAhWLm1cf+woWcGjTrEnn2BzzbDVD0czpLE5ud8YsrmqaZcee9vco2/O+ Hs/xubBXTNP5588ZR0F2Src+bgO0FZXnOevnE4YUoX0kPLG0ANhALc4//2xQZ8NB S4u6KBw6wavll5kZryPyt1g+0AeWHmbWL03rqbXNH2z4pnDYQtT1+BXEVDhgtifC WADUEisfVIxEckM/M/dq3GG40OSrRQ2rOYd2jRmAjpcTIxsmkHnr2zFLEqL3zE67 02En9xU+RLa3N8ctvQm4WvyAbxJs32ilCt+vww== -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:29 2024 by rpki-client on console-fra.rpki-client.org