$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132382e302f32342d3234203d3e2039373934.roa File: 3131352e3137382e3132382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: qSA2UXJMMV0cIL1xnYkVbkQj8B4uSNPhlg4i6mqSefA= Subject key identifier: E0:AB:E2:05:35:D8:33:27:29:27:E5:4F:C9:46:83:E0:D3:A3:A2:84 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 67D4DD2283739BF016532731A163B1BBC8B37DC6 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132382e302f32342d3234203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:45 +0000 ROA not before: Sun 30 Jul 2023 23:58:45 +0000 ROA not after: Mon 29 Jul 2024 00:03:45 +0000 asID: 9794 IP address blocks: 115.178.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d4:dd:22:83:73:9b:f0:16:53:27:31:a1:63:b1:bb:c8:b3:7d:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:45 2023 GMT Not After : Jul 29 00:03:45 2024 GMT Subject: CN=E0ABE20535D833272927E54FC94683E0D3A3A284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ef:50:a1:b1:83:b2:05:f4:ac:30:5b:bb:7b: 40:64:c8:9a:dd:ff:21:90:83:e3:bd:1e:f3:6b:ec: 40:8e:da:89:b7:e2:90:ac:a8:49:d2:26:96:ca:1a: 00:7a:92:5f:77:4c:74:e3:be:e5:55:22:c5:1a:53: eb:72:3b:82:79:51:8b:93:e3:86:74:e3:69:8b:f1: 87:57:77:ea:76:5c:8f:77:81:81:7c:bc:3a:49:99: 48:53:96:eb:74:ce:83:2e:e1:63:3b:5e:cb:34:af: 78:8d:1b:2b:f3:4b:cc:a1:11:e3:7d:cb:6c:d5:68: bd:72:13:f1:d5:b4:4c:83:ba:92:d4:de:70:cf:34: c4:01:fd:23:aa:f3:82:e0:af:76:fc:e2:bf:de:d3: c7:98:42:9a:43:2f:b5:d9:c8:ae:c6:c1:8a:75:4d: 53:9b:dd:64:f7:70:32:f3:e0:9a:99:ab:f2:b3:e0: 99:45:74:ad:0b:63:0a:21:e8:b7:a3:c5:9c:1f:42: e9:60:07:d5:49:2a:03:cc:35:cf:e3:3f:e7:07:39: 7b:a8:9d:c9:43:b2:10:77:7c:6e:1d:41:f3:77:d5: 24:a4:d7:84:d1:5a:83:f4:fd:ab:84:3c:1c:a3:63: 94:e1:51:d7:c9:2e:da:5c:d2:eb:4f:09:0d:04:62: 81:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AB:E2:05:35:D8:33:27:29:27:E5:4F:C9:46:83:E0:D3:A3:A2:84 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3132382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.178.128.0/24 Signature Algorithm: sha256WithRSAEncryption 05:c6:b0:81:9b:fe:9b:00:db:ea:f4:72:d4:2b:e5:e8:d3:c8: c8:4a:31:03:48:7c:c1:c8:22:72:05:dd:42:f1:91:90:c4:b2: 57:6f:54:7f:7e:7f:c6:ed:bc:26:13:07:36:4d:df:9d:cb:84: 3d:05:94:72:bf:a7:ec:12:ed:e3:8a:ea:e5:82:4d:50:4d:9b: d5:b3:1e:7b:8e:1c:62:63:0f:a3:18:77:be:5c:0b:03:44:40: 77:f8:ee:a6:f8:e6:65:81:4d:09:cd:17:68:9f:bc:ca:8b:96: b7:9e:ec:5c:21:32:8b:ab:5b:50:1c:31:8c:c5:e0:e3:5a:89: 3a:a4:b9:ae:a1:1e:c2:0a:95:89:60:82:b4:cd:8b:e5:b0:f9: 33:e9:a6:db:83:1c:c7:c9:2d:a3:71:77:d6:4d:c9:94:8b:63: a8:fd:df:f2:6c:21:94:14:6a:ed:ce:34:ed:10:5c:76:64:42: 80:c7:ca:83:66:cc:e1:66:73:02:87:af:87:4c:4c:57:81:9d: e2:5c:2b:c7:f1:ed:65:cc:c7:46:4c:c5:8f:86:c8:23:1b:d8: a2:c0:66:ac:44:6e:26:06:21:64:d9:69:9b:45:36:ed:64:5e: 99:d0:d5:e1:bf:b6:21:d3:7c:75:22:0a:bf:e9:57:12:49:39: 4d:c8:cb:fb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZ9TdIoNzm/AWUycxoWOxu8izfcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDVaFw0yNDA3MjkwMDAzNDVaMDMxMTAvBgNV BAMTKEUwQUJFMjA1MzVEODMzMjcyOTI3RTU0RkM5NDY4M0UwRDNBM0EyODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx71ChsYOyBfSsMFu7e0BkyJrd /yGQg+O9HvNr7ECO2om34pCsqEnSJpbKGgB6kl93THTjvuVVIsUaU+tyO4J5UYuT 44Z042mL8YdXd+p2XI93gYF8vDpJmUhTlut0zoMu4WM7Xss0r3iNGyvzS8yhEeN9 y2zVaL1yE/HVtEyDupLU3nDPNMQB/SOq84Lgr3b84r/e08eYQppDL7XZyK7GwYp1 TVOb3WT3cDLz4JqZq/Kz4JlFdK0LYwoh6LejxZwfQulgB9VJKgPMNc/jP+cHOXuo nclDshB3fG4dQfN31SSk14TRWoP0/auEPByjY5ThUdfJLtpc0utPCQ0EYoGNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4KviBTXYMycpJ+VPyUaD4NOjooQwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMxMzEzNTJlMzEzNzM4MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHOygDANBgkqhkiG 9w0BAQsFAAOCAQEABcawgZv+mwDb6vRy1Cvl6NPIyEoxA0h8wcgicgXdQvGRkMSy V29Uf35/xu28JhMHNk3fncuEPQWUcr+n7BLt44rq5YJNUE2b1bMee44cYmMPoxh3 vlwLA0RAd/jupvjmZYFNCc0XaJ+8youWt57sXCEyi6tbUBwxjMXg41qJOqS5rqEe wgqViWCCtM2L5bD5M+mm24Mcx8kto3F31k3JlItjqP3f8mwhlBRq7c407RBcdmRC gMfKg2bM4WZzAoevh0xMV4Gd4lwrx/HtZczHRkzFj4bIIxvYosBmrERuJgYhZNlp m0U27WRemdDV4b+2IdN8dSIKv+lXEkk5TcjL+w== -----END CERTIFICATE-----Generated at Tue Apr 30 18:54:28 2024 by rpki-client on console-fra.rpki-client.org