$ rpki-client -vvf repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa File: 3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa (raw, json) Hash identifier: 4IjvoqLBZj8IPVxvIBQwyyrbtNEuYS21+rmD0N24/d4= Subject key identifier: BE:0A:7F:EC:59:23:4C:C5:C5:75:F6:A4:B0:CA:9D:43:F8:31:E9:87 Certificate issuer: /CN=708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520 Certificate serial: 1B9FC95B378EB05DC7B1386F9354ACFAD822CFE3 Authority key identifier: 70:8D:1F:99:C0:BD:2A:17:83:D1:CE:42:6B:BF:E8:3C:9C:0C:C5:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa Signing time: Thu 23 Nov 2023 21:58:58 +0000 ROA not before: Thu 23 Nov 2023 21:53:58 +0000 ROA not after: Thu 21 Nov 2024 21:58:58 +0000 asID: 152034 IP address blocks: 115.187.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.crl rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 16:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:9f:c9:5b:37:8e:b0:5d:c7:b1:38:6f:93:54:ac:fa:d8:22:cf:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520 Validity Not Before: Nov 23 21:53:58 2023 GMT Not After : Nov 21 21:58:58 2024 GMT Subject: CN=BE0A7FEC59234CC5C575F6A4B0CA9D43F831E987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7f:b8:e8:2e:4e:29:a3:a2:61:8c:bc:1f:83: d0:c1:28:05:22:3b:67:a1:bd:9c:f7:8f:31:0e:3b: 06:17:25:e1:98:d6:1e:a9:e6:64:10:c6:a9:d4:a5: 92:0e:05:a6:7f:86:a0:14:3a:03:99:59:d7:d7:5b: 50:1a:65:50:4d:86:0e:5c:2f:a1:3c:68:b5:d0:b8: c2:0e:80:18:73:85:25:1c:28:e4:2e:01:27:a3:c2: 0e:7b:0f:c8:86:4e:b2:79:ee:f9:af:78:48:43:d9: e0:bb:e3:f1:fa:b0:a3:a1:c6:88:d3:e7:db:98:e0: 49:d8:ec:b3:f1:d9:72:5b:fc:24:f0:8a:3e:a9:a0: 4a:6e:61:9e:42:2b:b0:f3:5f:35:49:56:91:db:a5: 97:f3:2d:dc:af:2f:e9:00:fb:05:ad:81:b7:21:36: 34:6e:68:7a:74:ae:20:21:80:07:dd:c1:e6:01:17: f0:06:e2:0a:b7:98:1e:ee:51:31:90:82:07:b7:65: ae:8a:a7:63:db:4b:a2:ed:bb:d6:f4:a0:17:13:e9: ba:86:49:4e:28:80:9b:03:cb:8c:53:fd:c5:5d:68: b2:8e:1b:d7:2b:3e:53:58:47:30:da:8f:1e:ca:5a: 03:a5:7c:06:9d:cf:72:04:b6:63:e2:6e:95:af:13: 31:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0A:7F:EC:59:23:4C:C5:C5:75:F6:A4:B0:CA:9D:43:F8:31:E9:87 X509v3 Authority Key Identifier: keyid:70:8D:1F:99:C0:BD:2A:17:83:D1:CE:42:6B:BF:E8:3C:9C:0C:C5:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/708D1F99C0BD2A1783D1CE426BBFE83C9C0CC520.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eb74ece6-880c-4cef-add2-77719ebedec9/0/3131352e3138372e32382e302f32332d3234203d3e20313532303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.187.28.0/23 Signature Algorithm: sha256WithRSAEncryption 47:23:a0:7c:3e:d0:07:cf:41:04:56:6f:27:f2:91:d2:15:1a: 00:4e:21:66:5a:e7:42:b5:62:5d:78:6f:69:01:ea:41:5d:dd: 02:94:d6:ca:61:d2:ee:21:ed:7c:ff:41:0c:19:50:a7:25:f5: 29:c2:e5:5b:c7:cd:6f:a0:4c:6c:6b:a1:97:85:77:71:20:96: 13:72:c8:6e:a6:aa:f7:76:86:d6:52:66:ca:43:a0:66:73:2d: 13:f6:d0:a7:6a:95:a2:09:b1:56:57:ae:87:8b:90:c5:bf:fb: 4c:07:53:35:7a:5c:1b:e4:f5:7d:f3:bd:29:04:33:d6:7f:9e: 6f:34:87:a3:06:f9:32:6c:03:8b:b5:7f:58:af:0f:59:27:30: 73:7b:d3:81:a0:74:da:f8:be:40:d1:70:2b:49:f9:d7:26:26: 9e:3f:ec:d2:70:e8:8a:3f:a0:d3:c3:6a:58:b2:ef:2f:56:48: bf:da:2b:de:5c:4b:ac:46:43:fd:1a:09:98:b4:35:c0:23:45: 4c:bc:b9:a4:a1:41:0c:fa:8e:da:84:a5:d2:63:3e:86:55:bf: bf:9e:34:d5:3a:02:5c:98:ab:d2:07:27:b6:03:4d:96:b3:bd: a3:01:17:11:6f:6c:52:f9:9f:1f:23:92:42:8d:15:13:d3:ac: f3:f0:c8:9b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG5/JWzeOsF3HsThvk1Ss+tgiz+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzA4RDFGOTlDMEJEMkExNzgzRDFDRTQyNkJCRkU4M0M5 QzBDQzUyMDAeFw0yMzExMjMyMTUzNThaFw0yNDExMjEyMTU4NThaMDMxMTAvBgNV BAMTKEJFMEE3RkVDNTkyMzRDQzVDNTc1RjZBNEIwQ0E5RDQzRjgzMUU5ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSf7joLk4po6JhjLwfg9DBKAUi O2ehvZz3jzEOOwYXJeGY1h6p5mQQxqnUpZIOBaZ/hqAUOgOZWdfXW1AaZVBNhg5c L6E8aLXQuMIOgBhzhSUcKOQuASejwg57D8iGTrJ57vmveEhD2eC74/H6sKOhxojT 59uY4EnY7LPx2XJb/CTwij6poEpuYZ5CK7DzXzVJVpHbpZfzLdyvL+kA+wWtgbch NjRuaHp0riAhgAfdweYBF/AG4gq3mB7uUTGQgge3Za6Kp2PbS6Ltu9b0oBcT6bqG SU4ogJsDy4xT/cVdaLKOG9crPlNYRzDajx7KWgOlfAadz3IEtmPibpWvEzHdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvgp/7FkjTMXFdfaksMqdQ/gx6YcwHwYDVR0j BBgwFoAUcI0fmcC9KheD0c5Ca7/oPJwMxSAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Yjc0ZWNlNi04ODBjLTRjZWYtYWRkMi03NzcxOWViZWRlYzkvMC83MDhEMUY5OUMw QkQyQTE3ODNEMUNFNDI2QkJGRTgzQzlDMENDNTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzA4RDFGOTlDMEJEMkExNzgzRDFDRTQyNkJCRkU4M0M5QzBD QzUyMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViNzRlY2U2LTg4MGMtNGNlZi1h ZGQyLTc3NzE5ZWJlZGVjOS8wLzMxMzEzNTJlMzEzODM3MmUzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBc7scMA0GCSqG SIb3DQEBCwUAA4IBAQBHI6B8PtAHz0EEVm8n8pHSFRoATiFmWudCtWJdeG9pAepB Xd0ClNbKYdLuIe18/0EMGVCnJfUpwuVbx81voExsa6GXhXdxIJYTcshupqr3dobW UmbKQ6Bmcy0T9tCnapWiCbFWV66Hi5DFv/tMB1M1elwb5PV9870pBDPWf55vNIej BvkybAOLtX9Yrw9ZJzBze9OBoHTa+L5A0XArSfnXJiaeP+zScOiKP6DTw2pYsu8v Vki/2iveXEusRkP9GgmYtDXAI0VMvLmkoUEM+o7ahKXSYz6GVb+/njTVOgJcmKvS Bye2A02Ws72jARcRb2xS+Z8fI5JCjRUT06zz8Mib -----END CERTIFICATE-----Generated at Fri May 31 16:38:19 2024 by rpki-client on console-ams.rpki-client.org